Mock Version: 1.2.17
ENTER ['do'](['bash', '--login', '-c', '/usr/bin/rpmbuild -bs --target armv7hl --nodeps /builddir/build/SPECS/nss.spec'], chrootPath='/var/lib/mock/c71708-updates-armhfp-47386c27044d1b64a7a54f069fe3880e70676bac/root'shell=FalseprintOutput=Falseenv={'LANG': 'en_US.UTF-8', 'TERM': 'vt100', 'SHELL': '/bin/bash', 'PROMPT_COMMAND': 'printf "\x1b]0;<mock-chroot>\x07<mock-chroot>"', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'HOME': '/builddir', 'HOSTNAME': 'mock'}gid=135user='mockbuild'timeout=0logger=<mockbuild.trace_decorator.getLog object at 0x349930>uid=995)
Executing command: ['bash', '--login', '-c', '/usr/bin/rpmbuild -bs --target armv7hl --nodeps /builddir/build/SPECS/nss.spec'] with env {'LANG': 'en_US.UTF-8', 'TERM': 'vt100', 'SHELL': '/bin/bash', 'PROMPT_COMMAND': 'printf "\x1b]0;<mock-chroot>\x07<mock-chroot>"', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'HOME': '/builddir', 'HOSTNAME': 'mock'} and shell False
Building target platforms: armv7hl
Building for target armv7hl
Wrote: /builddir/build/SRPMS/nss-3.28.4-15.el7.src.rpm
Child return code was: 0
ENTER ['do'](['bash', '--login', '-c', u'/usr/bin/rpmbuild -bb --target armv7hl --nodeps /builddir/build/SPECS/nss.spec'], chrootPath='/var/lib/mock/c71708-updates-armhfp-47386c27044d1b64a7a54f069fe3880e70676bac/root'shell=Falseuid=995env={'LANG': 'en_US.UTF-8', 'TERM': 'vt100', 'SHELL': '/bin/bash', 'PROMPT_COMMAND': 'printf "\x1b]0;<mock-chroot>\x07<mock-chroot>"', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'HOME': '/builddir', 'HOSTNAME': 'mock'}gid=135user='mockbuild'timeout=0private_network=Truelogger=<mockbuild.trace_decorator.getLog object at 0x349930>printOutput=False)
Executing command: ['bash', '--login', '-c', u'/usr/bin/rpmbuild -bb --target armv7hl --nodeps /builddir/build/SPECS/nss.spec'] with env {'LANG': 'en_US.UTF-8', 'TERM': 'vt100', 'SHELL': '/bin/bash', 'PROMPT_COMMAND': 'printf "\x1b]0;<mock-chroot>\x07<mock-chroot>"', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'HOME': '/builddir', 'HOSTNAME': 'mock'} and shell False
Building target platforms: armv7hl
Building for target armv7hl
Executing(%prep): /bin/sh -e /var/tmp/rpm-tmp.dIewNi
+ umask 022
+ cd /builddir/build/BUILD
+ cd /builddir/build/BUILD
+ rm -rf nss-3.28.4
+ /usr/bin/gzip -dc /builddir/build/SOURCES/nss-3.28.4.tar.gz
+ /usr/bin/tar -xf -
+ STATUS=0
+ '[' 0 -ne 0 ']'
+ cd nss-3.28.4
+ /usr/bin/chmod -Rf a+rX,u+w,g-w,o-w .
+ /usr/bin/cp /builddir/build/SOURCES/PayPalEE.cert -f ./nss/tests/libpkix/certs
+ /usr/bin/cp /builddir/build/SOURCES/TestCA.ca.cert -f ./nss/tests/libpkix/certs
+ /usr/bin/cp /builddir/build/SOURCES/TestUser50.cert -f ./nss/tests/libpkix/certs
+ /usr/bin/cp /builddir/build/SOURCES/TestUser51.cert -f ./nss/tests/libpkix/certs
+ /usr/bin/cp /builddir/build/SOURCES/PayPalRootCA.cert -f ./nss/tests/libpkix/certs
+ /usr/bin/cp /builddir/build/SOURCES/PayPalICA.cert -f ./nss/tests/libpkix/certs
+ /usr/bin/cp /builddir/build/SOURCES/TestOldCA.p12 -f ./nss/tests/tools
+ cd /builddir/build/BUILD
+ cd nss-3.28.4
+ /usr/bin/chmod -Rf a+rX,u+w,g-w,o-w .
Patch #2 (add-relro-linker-option.patch):
+ echo 'Patch #2 (add-relro-linker-option.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/add-relro-linker-option.patch
+ /usr/bin/patch -p0 -b --suffix .relro --fuzz=0
patching file nss/coreconf/Linux.mk
Hunk #1 succeeded at 189 (offset 15 lines).
Patch #3 (renegotiate-transitional.patch):
+ echo 'Patch #3 (renegotiate-transitional.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/renegotiate-transitional.patch
+ /usr/bin/patch -p0 -b --suffix .transitional --fuzz=0
patching file nss/lib/ssl/sslsock.c
Hunk #1 succeeded at 65 (offset -7 lines).
Patch #16 (nss-539183.patch):
+ echo 'Patch #16 (nss-539183.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-539183.patch
+ /usr/bin/patch -p0 -b --suffix .539183 --fuzz=0
patching file nss/cmd/httpserv/httpserv.c
Hunk #1 succeeded at 974 (offset -2 lines).
patching file nss/cmd/selfserv/selfserv.c
Hunk #1 succeeded at 1683 (offset -48 lines).
Patch #40 (nss-3.14.0.0-disble-ocsp-test.patch):
+ echo 'Patch #40 (nss-3.14.0.0-disble-ocsp-test.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-3.14.0.0-disble-ocsp-test.patch
+ /usr/bin/patch -p0 -b --suffix .noocsptest --fuzz=0
patching file nss/tests/chains/scenarios/scenarios
Hunk #1 succeeded at 18 (offset -32 lines).
Patch #47 (utilwrap-include-templates.patch):
+ echo 'Patch #47 (utilwrap-include-templates.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/utilwrap-include-templates.patch
+ /usr/bin/patch -p0 -b --suffix .templates --fuzz=0
patching file nss/lib/nss/config.mk
Patch #49 (nss-skip-bltest-and-fipstest.patch):
+ echo 'Patch #49 (nss-skip-bltest-and-fipstest.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-skip-bltest-and-fipstest.patch
+ /usr/bin/patch -p0 -b --suffix .skipthem --fuzz=0
patching file nss/cmd/Makefile
Patch #50 (iquote.patch):
+ echo 'Patch #50 (iquote.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/iquote.patch
+ /usr/bin/patch -p0 -b --suffix .iquote --fuzz=0
patching file ./nss/cmd/certutil/Makefile
patching file ./nss/cmd/httpserv/Makefile
patching file ./nss/cmd/lib/Makefile
patching file ./nss/cmd/modutil/Makefile
patching file ./nss/cmd/pk12util/Makefile
patching file ./nss/cmd/selfserv/Makefile
patching file ./nss/cmd/ssltap/Makefile
patching file ./nss/cmd/strsclnt/Makefile
patching file ./nss/cmd/tstclnt/Makefile
patching file ./nss/cmd/vfyserv/Makefile
patching file ./nss/coreconf/location.mk
patching file ./nss/gtests/ssl_gtest/Makefile
patching file ./nss/lib/certhigh/Makefile
patching file ./nss/lib/cryptohi/Makefile
patching file ./nss/lib/libpkix/pkix/checker/Makefile
patching file ./nss/lib/nss/Makefile
patching file ./nss/lib/pkcs12/Makefile
patching file ./nss/lib/ssl/Makefile
~/build/BUILD/nss-3.28.4/nss ~/build/BUILD/nss-3.28.4
Patch #52 (Bug-1001841-disable-sslv2-libssl.patch):
+ pushd nss
+ echo 'Patch #52 (Bug-1001841-disable-sslv2-libssl.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/Bug-1001841-disable-sslv2-libssl.patch
+ /usr/bin/patch -p1 -b --suffix .disableSSL2libssl --fuzz=0
patching file lib/ssl/config.mk
patching file lib/ssl/sslsock.c
Patch #53 (Bug-1001841-disable-sslv2-tests.patch):
+ echo 'Patch #53 (Bug-1001841-disable-sslv2-tests.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/Bug-1001841-disable-sslv2-tests.patch
+ /usr/bin/patch -p1 -b --suffix .disableSSL2tests --fuzz=0
patching file tests/ssl/ssl.sh
Patch #55 (enable-fips-when-system-is-in-fips-mode.patch):
+ echo 'Patch #55 (enable-fips-when-system-is-in-fips-mode.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/enable-fips-when-system-is-in-fips-mode.patch
+ /usr/bin/patch -p1 -b --suffix .852023_enable_fips_when_in_fips_mode --fuzz=0
patching file lib/pk11wrap/pk11pars.c
patching file lib/pk11wrap/pk11util.c
patching file lib/pk11wrap/secmodi.h
Patch #56 (p-ignore-setpolicy.patch):
+ echo 'Patch #56 (p-ignore-setpolicy.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/p-ignore-setpolicy.patch
+ /usr/bin/patch -p1 -b --suffix .1026677_ignore_set_policy --fuzz=0
patching file lib/ssl/sslsock.c
Hunk #1 succeeded at 1379 (offset -12 lines).
Hunk #2 succeeded at 1390 (offset -12 lines).
Patch #62 (nss-fix-deadlock-squash.patch):
+ echo 'Patch #62 (nss-fix-deadlock-squash.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-fix-deadlock-squash.patch
+ /usr/bin/patch -p1 -b --suffix .fix_deadlock --fuzz=0
patching file lib/pki/tdcache.c
Patch #100 (fix-min-library-version-in-SSLVersionRange.patch):
+ echo 'Patch #100 (fix-min-library-version-in-SSLVersionRange.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/fix-min-library-version-in-SSLVersionRange.patch
+ /usr/bin/patch -p0 -b --suffix .1171318 --fuzz=0
patching file ./lib/ssl/sslsock.c
Hunk #1 succeeded at 90 (offset -2 lines).
Patch #74 (race.patch):
+ echo 'Patch #74 (race.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/race.patch
+ /usr/bin/patch -p1 -b --suffix .race --fuzz=0
patching file lib/pk11wrap/pk11util.c
~/build/BUILD/nss-3.28.4
Patch #94 (nss-3.16-token-init-race.patch):
+ popd
+ echo 'Patch #94 (nss-3.16-token-init-race.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-3.16-token-init-race.patch
+ /usr/bin/patch -p0 -b --suffix .init-token-race --fuzz=0
patching file nss/lib/pk11wrap/dev3hack.c
patching file nss/lib/pk11wrap/pk11auth.c
patching file nss/lib/pk11wrap/pk11slot.c
patching file nss/lib/pk11wrap/pk11util.c
Patch #108 (nss-sni-c-v-fix.patch):
+ echo 'Patch #108 (nss-sni-c-v-fix.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-sni-c-v-fix.patch
+ /usr/bin/patch -p0 -b --suffix .sni_c_v_fix --fuzz=0
patching file nss/tests/ssl/sslauth.txt
~/build/BUILD/nss-3.28.4/nss ~/build/BUILD/nss-3.28.4
Patch #123 (nss-skip-util-gtest.patch):
+ pushd nss
+ echo 'Patch #123 (nss-skip-util-gtest.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-skip-util-gtest.patch
+ /usr/bin/patch -p1 -b --suffix .skip-util-gtests --fuzz=0
patching file gtests/manifest.mn
patching file gtests/ssl_gtest/manifest.mn
Hunk #1 succeeded at 49 (offset 1 line).
patching file tests/gtests/gtests.sh
Patch #126 (nss-reorder-cipher-suites.patch):
+ echo 'Patch #126 (nss-reorder-cipher-suites.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-reorder-cipher-suites.patch
+ /usr/bin/patch -p1 -b --suffix .reorder-cipher-suites --fuzz=0
patching file lib/ssl/ssl3con.c
patching file lib/ssl/sslenum.c
Patch #127 (nss-disable-cipher-suites.patch):
+ echo 'Patch #127 (nss-disable-cipher-suites.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-disable-cipher-suites.patch
+ /usr/bin/patch -p1 -b --suffix .disable-cipher-suites --fuzz=0
patching file lib/ssl/ssl3con.c
Patch #128 (nss-enable-cipher-suites.patch):
+ echo 'Patch #128 (nss-enable-cipher-suites.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-enable-cipher-suites.patch
+ /usr/bin/patch -p1 -b --suffix .enable-cipher-suites --fuzz=0
patching file lib/ssl/ssl3con.c
Hunk #2 succeeded at 103 (offset 1 line).
Hunk #3 succeeded at 115 (offset 2 lines).
Hunk #4 succeeded at 143 (offset 3 lines).
Patch #129 (moz-1320932.patch):
+ echo 'Patch #129 (moz-1320932.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/moz-1320932.patch
+ /usr/bin/patch -p1 -b --suffix .fix_ssl_sh_typo --fuzz=0
patching file tests/ssl/ssl.sh
Hunk #1 succeeded at 1026 (offset 20 lines).
Patch #130 (disable-pss.patch):
+ echo 'Patch #130 (disable-pss.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/disable-pss.patch
+ /usr/bin/patch -p1 -b --suffix .disable_pss --fuzz=0
patching file lib/ssl/ssl3con.c
Hunk #1 succeeded at 183 (offset 6 lines).
Hunk #2 succeeded at 4634 (offset 6 lines).
patching file lib/ssl/sslcert.c
Patch #132 (nss-tstclnt-optspec.patch):
+ echo 'Patch #132 (nss-tstclnt-optspec.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-tstclnt-optspec.patch
+ /usr/bin/patch -p1 -b --suffix .tstclnt-optspec --fuzz=0
patching file cmd/tstclnt/tstclnt.c
Hunk #1 succeeded at 1487 (offset -22 lines).
Patch #133 (nss-1334976-1336487-1345083-ca-2.14.patch):
+ echo 'Patch #133 (nss-1334976-1336487-1345083-ca-2.14.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-1334976-1336487-1345083-ca-2.14.patch
+ /usr/bin/patch -p1 -b --suffix .mozilla-ca-policy-plus-ca-2.14 --fuzz=0
patching file cmd/addbuiltin/addbuiltin.c
patching file cmd/lib/secutil.c
patching file lib/ckfw/builtins/certdata.txt
patching file lib/ckfw/builtins/nssckbi.h
patching file lib/certdb/genname.c
patching file lib/cryptohi/keythi.h
patching file lib/nss/nss.def
patching file lib/pk11wrap/pk11obj.c
patching file lib/pk11wrap/pk11priv.h
patching file lib/pk11wrap/pk11pub.h
Patch #134 (nss-alert-handler.patch):
+ echo 'Patch #134 (nss-alert-handler.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-alert-handler.patch
+ /usr/bin/patch -p1 -b --suffix .alert-handler --fuzz=0
patching file gtests/ssl_gtest/ssl_0rtt_unittest.cc
patching file gtests/ssl_gtest/ssl_exporter_unittest.cc
patching file gtests/ssl_gtest/ssl_extension_unittest.cc
patching file gtests/ssl_gtest/ssl_version_unittest.cc
patching file gtests/ssl_gtest/tls_agent.cc
patching file gtests/ssl_gtest/tls_agent.h
patching file gtests/ssl_gtest/tls_connect.cc
patching file lib/ssl/ssl3con.c
Hunk #1 succeeded at 3149 (offset 6 lines).
Hunk #2 succeeded at 3265 (offset 6 lines).
patching file lib/ssl/ssl.def
patching file lib/ssl/ssl.h
patching file lib/ssl/sslimpl.h
patching file lib/ssl/sslsecur.c
patching file lib/ssl/sslsock.c
patching file lib/ssl/sslsock.c
Hunk #1 succeeded at 2153 (offset 1 line).
Patch #135 (nss-check-policy-file.patch):
+ echo 'Patch #135 (nss-check-policy-file.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-check-policy-file.patch
+ /usr/bin/patch -p1 -b --suffix .check_policy_file --fuzz=0
patching file lib/pk11wrap/pk11pars.c
Hunk #2 succeeded at 709 (offset 4 lines).
Hunk #3 succeeded at 752 (offset 4 lines).
Hunk #4 succeeded at 1677 (offset 4 lines).
Patch #136 (nss-tools-sha256-default.patch):
+ echo 'Patch #136 (nss-tools-sha256-default.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-tools-sha256-default.patch
+ /usr/bin/patch -p1 -b --suffix .tools-sha256-default --fuzz=0
patching file cmd/smimetools/cmsutil.c
patching file cmd/smimetools/smime
patching file lib/cryptohi/secsign.c
Patch #137 (nss-is-token-present-race.patch):
+ echo 'Patch #137 (nss-is-token-present-race.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-is-token-present-race.patch
+ /usr/bin/patch -p1 -b --suffix .is-token-present-race --fuzz=0
patching file lib/dev/devslot.c
Patch #138 (nss-pk12util.patch):
+ echo 'Patch #138 (nss-pk12util.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-pk12util.patch
+ /usr/bin/patch -p1 -b --suffix .pk12util --fuzz=0
patching file lib/pk11wrap/pk11mech.c
patching file lib/pkcs12/p12d.c
patching file lib/softoken/lowpbe.c
patching file cmd/pk12util/pk12util.c
patching file lib/pk11wrap/pk11pbe.c
patching file lib/pkcs12/p12d.c
patching file lib/pkcs12/p12e.c
patching file lib/pkcs12/p12local.c
patching file lib/pkcs12/p12local.h
patching file lib/pkcs12/p12plcy.c
patching file lib/pkcs7/p7create.c
patching file lib/pkcs7/secpkcs7.h
patching file tests/tools/tools.sh
patching file lib/pkcs12/p12d.c
patching file lib/pkcs12/p12e.c
patching file lib/pkcs12/p12local.c
patching file lib/pkcs12/p12local.h
patching file lib/pk11wrap/pk11pbe.c
patching file lib/pk11wrap/pk11priv.h
patching file lib/pk11wrap/pk11slot.c
Hunk #1 succeeded at 2260 (offset -31 lines).
Patch #139 (nss-disable-pss-gtests.patch):
+ echo 'Patch #139 (nss-disable-pss-gtests.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-disable-pss-gtests.patch
+ /usr/bin/patch -p1 -b --suffix .disable-pss-gtests --fuzz=0
patching file gtests/ssl_gtest/ssl_ecdh_unittest.cc
Patch #140 (nss-ssl3gthr.patch):
+ echo 'Patch #140 (nss-ssl3gthr.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-ssl3gthr.patch
+ /usr/bin/patch -p1 -b --suffix .ssl3gthr --fuzz=0
patching file gtests/ssl_gtest/ssl_gather_unittest.cc
patching file gtests/ssl_gtest/ssl_gtest.gyp
patching file gtests/ssl_gtest/ssl_v2_client_hello_unittest.cc
patching file lib/ssl/ssl3gthr.c
patching file lib/ssl/ssldef.c
patching file lib/ssl/sslimpl.h
Patch #141 (nss-sysinit-getenv.patch):
+ echo 'Patch #141 (nss-sysinit-getenv.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-sysinit-getenv.patch
+ /usr/bin/patch -p1 -b --suffix .sysinit-getenv --fuzz=0
patching file lib/sysinit/nsssysinit.c
Patch #142 (nss-transcript.patch):
+ echo 'Patch #142 (nss-transcript.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-transcript.patch
+ /usr/bin/patch -p1 -b --suffix .transcript --fuzz=0
patching file lib/ssl/ssl3con.c
Hunk #1 succeeded at 9789 (offset 31 lines).
Hunk #2 succeeded at 11694 (offset 31 lines).
patching file lib/ssl/ssl3prot.h
Hunk #1 succeeded at 237 (offset 1 line).
Patch #143 (nss-pk12util-force-unicode.patch):
+ echo 'Patch #143 (nss-pk12util-force-unicode.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-pk12util-force-unicode.patch
+ /usr/bin/patch -p1 -b --suffix .pk12util-force-unicode --fuzz=0
patching file cmd/pk12util/pk12util.c
patching file lib/nss/nss.h
patching file lib/nss/nssoptions.c
patching file lib/pkcs12/p12d.c
patching file tests/tools/tools.sh
Patch #144 (nss-pk12util-faulty-aes.patch):
+ echo 'Patch #144 (nss-pk12util-faulty-aes.patch):'
+ /usr/bin/cat /builddir/build/SOURCES/nss-pk12util-faulty-aes.patch
+ /usr/bin/patch -p1 -b --suffix .pk12util-faulty-aes --fuzz=0
patching file lib/pk11wrap/pk11pbe.c
~/build/BUILD/nss-3.28.4
+ popd
+ /usr/bin/cp ./nss/lib/softoken/lowkeyi.h ./nss/cmd/rsaperf
+ /usr/bin/cp ./nss/lib/softoken/lowkeyti.h ./nss/cmd/rsaperf
+ /usr/bin/mv ./nss/lib/util/verref.h ./nss/verref.h
+ /usr/bin/rm -rf ./nss/lib/freebl
+ /usr/bin/rm -rf ./nss/lib/softoken
+ /usr/bin/rm -rf ./nss/lib/util
+ /usr/bin/rm -rf ./nss/cmd/bltest
+ /usr/bin/rm -rf ./nss/cmd/fipstest
+ /usr/bin/rm -rf ./nss/cmd/rsaperf_low
~/build/BUILD/nss-3.28.4/nss/tests/ssl ~/build/BUILD/nss-3.28.4
+ pushd nss/tests/ssl
+ cat sslcov.txt
+ sed -r 's/^([^#].*EXPORT|^[^#].*SSL2)/#disabled \1/'
+ cat sslstress.txt
+ sed -r 's/^([^#].*EXPORT|^[^#].*SSL2)/#disabled \1/'
~/build/BUILD/nss-3.28.4
+ popd
+ exit 0
Executing(%build): /bin/sh -e /var/tmp/rpm-tmp.QMVxrZ
+ umask 022
+ cd /builddir/build/BUILD
+ cd nss-3.28.4
+ export NSS_NO_SSL2=1
+ NSS_NO_SSL2=1
+ FREEBL_NO_DEPEND=1
+ export FREEBL_NO_DEPEND
+ export BUILD_OPT=1
+ BUILD_OPT=1
+ XCFLAGS='-O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard'
+ export XCFLAGS
+ PKG_CONFIG_ALLOW_SYSTEM_LIBS=1
+ PKG_CONFIG_ALLOW_SYSTEM_CFLAGS=1
+ export PKG_CONFIG_ALLOW_SYSTEM_LIBS
+ export PKG_CONFIG_ALLOW_SYSTEM_CFLAGS
++ /usr/bin/pkg-config --cflags-only-I nspr
++ sed s/-I//
+ NSPR_INCLUDE_DIR='/usr/include/nspr4  '
+ NSPR_LIB_DIR=/usr/lib
+ export NSPR_INCLUDE_DIR
+ export NSPR_LIB_DIR
++ /usr/bin/pkg-config --cflags-only-I nss-util
++ sed s/-I//
+ export 'NSSUTIL_INCLUDE_DIR=/usr/include/nss3 -I/usr/include/nspr4  '
+ NSSUTIL_INCLUDE_DIR='/usr/include/nss3 -I/usr/include/nspr4  '
+ export NSSUTIL_LIB_DIR=/usr/lib
+ NSSUTIL_LIB_DIR=/usr/lib
++ /usr/bin/pkg-config --cflags-only-I nss-softokn
++ sed s/-I//
+ export 'FREEBL_INCLUDE_DIR=/usr/include/nss3 -I/usr/include/nspr4  '
+ FREEBL_INCLUDE_DIR='/usr/include/nss3 -I/usr/include/nspr4  '
+ export FREEBL_LIB_DIR=/usr/lib
+ FREEBL_LIB_DIR=/usr/lib
+ export USE_SYSTEM_FREEBL=1
+ USE_SYSTEM_FREEBL=1
+ export NSS_USE_SYSTEM_FREEBL=1
+ NSS_USE_SYSTEM_FREEBL=1
++ /usr/bin/pkg-config --libs nss-softokn
+ export 'FREEBL_LIBS=-L/usr/lib -lfreebl3 -lnssdbm3 -lsoftokn3 -lnssutil3 -lplds4 -lplc4 -lnspr4 -lpthread -ldl  '
+ FREEBL_LIBS='-L/usr/lib -lfreebl3 -lnssdbm3 -lsoftokn3 -lnssutil3 -lplds4 -lplc4 -lnspr4 -lpthread -ldl  '
+ export SOFTOKEN_LIB_DIR=/usr/lib
+ SOFTOKEN_LIB_DIR=/usr/lib
+ export USE_SYSTEM_NSSUTIL=1
+ USE_SYSTEM_NSSUTIL=1
+ export USE_SYSTEM_SOFTOKEN=1
+ USE_SYSTEM_SOFTOKEN=1
+ export NSS_BUILD_WITHOUT_SOFTOKEN=1
+ NSS_BUILD_WITHOUT_SOFTOKEN=1
+ NSS_USE_SYSTEM_SQLITE=1
+ export NSS_USE_SYSTEM_SQLITE
+ export NSS_ALLOW_SSLKEYLOGFILE=1
+ NSS_ALLOW_SSLKEYLOGFILE=1
+ export IN_TREE_FREEBL_HEADERS_FIRST=1
+ IN_TREE_FREEBL_HEADERS_FIRST=1
+ export NSS_BLTEST_NOT_AVAILABLE=1
+ NSS_BLTEST_NOT_AVAILABLE=1
+ /usr/bin/make -C ./nss/coreconf
make: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf'
cd nsinstall; /usr/bin/make export
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
make[1]: Nothing to be done for `export'.
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
cd nsinstall; /usr/bin/make libs
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/coreconf -I../../../dist/private/coreconf -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard nsinstall.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pathsub.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/coreconf -I../../../dist/private/coreconf -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pathsub.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/coreconf -I../../../dist/private/coreconf -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pathsub.o  -Wl,-z,relro   -lpthread  -ldl -lc
true -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
make: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf'
+ /usr/bin/make -C ./nss/lib/dbm
make: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm'
cd include; /usr/bin/make export
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/include'
Creating ../../../../dist/public/dbm
../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 mcom_db.h ncompat.h winfile.h ../../../../dist/public/dbm
Creating ../../../../dist/private/dbm
../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 hsearch.h page.h extern.h queue.h hash.h search.h ../../../../dist/private/dbm
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/include'
cd src; /usr/bin/make export
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/src'
make[1]: Nothing to be done for `export'.
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/src'
cd include; /usr/bin/make libs
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/include'
make[1]: Nothing to be done for `libs'.
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/include'
cd src; /usr/bin/make libs
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/src'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/db.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard db.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/h_bigkey.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard h_bigkey.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/h_func.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard h_func.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/h_log2.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard h_log2.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/h_page.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard h_page.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/hash.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard hash.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/hash_buf.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard hash_buf.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/mktemp.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard mktemp.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/dirent.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard dirent.c
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libdbm.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libdbm.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/db.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/h_bigkey.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/h_func.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/h_log2.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/h_page.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/hash.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/hash_buf.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/mktemp.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/dirent.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libdbm.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libdbm.a
../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libdbm.a ../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/src'
make: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm'
+ export POLICY_FILE=nss-rhel7.config
+ POLICY_FILE=nss-rhel7.config
+ export POLICY_PATH=/etc/pki/nss-legacy
+ POLICY_PATH=/etc/pki/nss-legacy
+ /usr/bin/mkdir -p ./dist/private/nss
+ /usr/bin/mv ./nss/verref.h ./dist/private/nss/verref.h
+ /usr/bin/make -C ./nss
make: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss'
cd coreconf; /usr/bin/make export
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf'
cd nsinstall; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
cd nsinstall; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
true -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf'
cd lib; /usr/bin/make export
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib'
cd dbm; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm'
cd include; /usr/bin/make export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/include'
../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 mcom_db.h ncompat.h winfile.h ../../../../dist/public/dbm
../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 hsearch.h page.h extern.h queue.h hash.h search.h ../../../../dist/private/dbm
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/include'
cd src; /usr/bin/make export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/src'
make[3]: Nothing to be done for `export'.
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/src'
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm'
cd base; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/base'
Creating ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 nssbaset.h nssbase.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 baset.h base.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/base'
cd dev; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dev'
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 ckhelper.h devm.h devtm.h devt.h dev.h nssdevt.h nssdev.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dev'
cd pki; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pki'
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pki.h pkit.h nsspkit.h nsspki.h pkistore.h pki3hack.h pkitm.h pkim.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pki'
cd libpkix; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix'
cd include; /usr/bin/make export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/include'
../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix.h pkix_crlsel.h pkix_errorstrings.h pkix_results.h pkixt.h pkix_certsel.h pkix_params.h pkix_revchecker.h pkix_certstore.h pkix_pl_pki.h pkix_sample_modules.h pkix_checker.h pkix_pl_system.h pkix_util.h ../../../../dist/private/nss
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/include'
cd pkix; /usr/bin/make export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix'
cd certsel; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/certsel'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_certselector.h pkix_comcertselparams.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/crlsel'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_comcrlselparams.h pkix_crlselector.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/checker'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_basicconstraintschecker.h pkix_certchainchecker.h pkix_crlchecker.h pkix_ekuchecker.h pkix_expirationchecker.h pkix_namechainingchecker.h pkix_nameconstraintschecker.h pkix_ocspchecker.h pkix_policychecker.h pkix_revocationmethod.h pkix_revocationchecker.h pkix_signaturechecker.h pkix_targetcertchecker.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/params'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_procparams.h pkix_trustanchor.h pkix_valparams.h pkix_resourcelimits.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/results'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_buildresult.h pkix_policynode.h pkix_valresult.h pkix_verifynode.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/store'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_store.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/top'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_build.h pkix_lifecycle.h pkix_validate.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/util'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_tools.h pkix_error.h pkix_logger.h pkix_list.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/util'
cd certsel; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/certsel'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_certselector.h pkix_comcertselparams.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/crlsel'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_comcrlselparams.h pkix_crlselector.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/checker'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_basicconstraintschecker.h pkix_certchainchecker.h pkix_crlchecker.h pkix_ekuchecker.h pkix_expirationchecker.h pkix_namechainingchecker.h pkix_nameconstraintschecker.h pkix_ocspchecker.h pkix_policychecker.h pkix_revocationmethod.h pkix_revocationchecker.h pkix_signaturechecker.h pkix_targetcertchecker.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/params'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_procparams.h pkix_trustanchor.h pkix_valparams.h pkix_resourcelimits.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/results'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_buildresult.h pkix_policynode.h pkix_valresult.h pkix_verifynode.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/store'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_store.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/top'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_build.h pkix_lifecycle.h pkix_validate.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/util'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_tools.h pkix_error.h pkix_logger.h pkix_list.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/util'
There are no private exports.
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix'
cd pkix_pl_nss; /usr/bin/make export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss'
cd pki; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/pki'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_pl_basicconstraints.h pkix_pl_cert.h pkix_pl_certpolicyinfo.h pkix_pl_certpolicymap.h pkix_pl_certpolicyqualifier.h pkix_pl_crl.h pkix_pl_crldp.h pkix_pl_crlentry.h pkix_pl_date.h pkix_pl_generalname.h pkix_pl_infoaccess.h pkix_pl_nameconstraints.h pkix_pl_ocsprequest.h pkix_pl_ocspresponse.h pkix_pl_publickey.h pkix_pl_x500name.h pkix_pl_ocspcertid.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/system'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_pl_common.h pkix_pl_mem.h pkix_pl_object.h pkix_pl_string.h pkix_pl_primhash.h pkix_pl_bigint.h pkix_pl_mutex.h pkix_pl_bytearray.h pkix_pl_lifecycle.h pkix_pl_oid.h pkix_pl_hashtable.h pkix_pl_rwlock.h pkix_pl_monitorlock.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/module'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_pl_aiamgr.h pkix_pl_colcertstore.h pkix_pl_httpcertstore.h pkix_pl_httpdefaultclient.h pkix_pl_ldapt.h pkix_pl_ldapcertstore.h pkix_pl_ldapresponse.h pkix_pl_ldaprequest.h pkix_pl_ldapdefaultclient.h pkix_pl_nsscontext.h pkix_pl_pk11certstore.h pkix_pl_socket.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/module'
cd pki; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/pki'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_pl_basicconstraints.h pkix_pl_cert.h pkix_pl_certpolicyinfo.h pkix_pl_certpolicymap.h pkix_pl_certpolicyqualifier.h pkix_pl_crl.h pkix_pl_crldp.h pkix_pl_crlentry.h pkix_pl_date.h pkix_pl_generalname.h pkix_pl_infoaccess.h pkix_pl_nameconstraints.h pkix_pl_ocsprequest.h pkix_pl_ocspresponse.h pkix_pl_publickey.h pkix_pl_x500name.h pkix_pl_ocspcertid.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/system'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_pl_common.h pkix_pl_mem.h pkix_pl_object.h pkix_pl_string.h pkix_pl_primhash.h pkix_pl_bigint.h pkix_pl_mutex.h pkix_pl_bytearray.h pkix_pl_lifecycle.h pkix_pl_oid.h pkix_pl_hashtable.h pkix_pl_rwlock.h pkix_pl_monitorlock.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/module'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_pl_aiamgr.h pkix_pl_colcertstore.h pkix_pl_httpcertstore.h pkix_pl_httpdefaultclient.h pkix_pl_ldapt.h pkix_pl_ldapcertstore.h pkix_pl_ldapresponse.h pkix_pl_ldaprequest.h pkix_pl_ldapdefaultclient.h pkix_pl_nsscontext.h pkix_pl_pk11certstore.h pkix_pl_socket.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/module'
There are no private exports.
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss'
cd include; /usr/bin/make private_export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/include'
../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix.h pkix_crlsel.h pkix_errorstrings.h pkix_results.h pkixt.h pkix_certsel.h pkix_params.h pkix_revchecker.h pkix_certstore.h pkix_pl_pki.h pkix_sample_modules.h pkix_checker.h pkix_pl_system.h pkix_util.h ../../../../dist/private/nss
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/include'
cd pkix; /usr/bin/make private_export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix'
cd certsel; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/certsel'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_certselector.h pkix_comcertselparams.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/crlsel'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_comcrlselparams.h pkix_crlselector.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/checker'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_basicconstraintschecker.h pkix_certchainchecker.h pkix_crlchecker.h pkix_ekuchecker.h pkix_expirationchecker.h pkix_namechainingchecker.h pkix_nameconstraintschecker.h pkix_ocspchecker.h pkix_policychecker.h pkix_revocationmethod.h pkix_revocationchecker.h pkix_signaturechecker.h pkix_targetcertchecker.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/params'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_procparams.h pkix_trustanchor.h pkix_valparams.h pkix_resourcelimits.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/results'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_buildresult.h pkix_policynode.h pkix_valresult.h pkix_verifynode.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/store'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_store.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/top'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_build.h pkix_lifecycle.h pkix_validate.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/util'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_tools.h pkix_error.h pkix_logger.h pkix_list.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/util'
There are no private exports.
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix'
cd pkix_pl_nss; /usr/bin/make private_export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss'
cd pki; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/pki'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_pl_basicconstraints.h pkix_pl_cert.h pkix_pl_certpolicyinfo.h pkix_pl_certpolicymap.h pkix_pl_certpolicyqualifier.h pkix_pl_crl.h pkix_pl_crldp.h pkix_pl_crlentry.h pkix_pl_date.h pkix_pl_generalname.h pkix_pl_infoaccess.h pkix_pl_nameconstraints.h pkix_pl_ocsprequest.h pkix_pl_ocspresponse.h pkix_pl_publickey.h pkix_pl_x500name.h pkix_pl_ocspcertid.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/system'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_pl_common.h pkix_pl_mem.h pkix_pl_object.h pkix_pl_string.h pkix_pl_primhash.h pkix_pl_bigint.h pkix_pl_mutex.h pkix_pl_bytearray.h pkix_pl_lifecycle.h pkix_pl_oid.h pkix_pl_hashtable.h pkix_pl_rwlock.h pkix_pl_monitorlock.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make private_export
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/module'
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkix_pl_aiamgr.h pkix_pl_colcertstore.h pkix_pl_httpcertstore.h pkix_pl_httpdefaultclient.h pkix_pl_ldapt.h pkix_pl_ldapcertstore.h pkix_pl_ldapresponse.h pkix_pl_ldaprequest.h pkix_pl_ldapdefaultclient.h pkix_pl_nsscontext.h pkix_pl_pk11certstore.h pkix_pl_socket.h ../../../../../dist/private/nss
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/module'
There are no private exports.
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss'
There are no private exports.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix'
cd certdb; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/certdb'
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 cert.h certt.h certdb.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 genname.h xconst.h certxutl.h certi.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/certdb'
cd certhigh; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/certhigh'
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 ocsp.h ocspt.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 ocspti.h ocspi.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/certhigh'
cd pk11wrap; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pk11wrap'
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 secmod.h secmodt.h secpkcs5.h pk11func.h pk11pub.h pk11priv.h pk11sdr.h pk11pqg.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 secmodi.h dev3hack.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pk11wrap'
cd cryptohi; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/cryptohi'
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 cryptohi.h cryptoht.h key.h keyhi.h keyt.h keythi.h sechash.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 keyi.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/cryptohi'
cd nss; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/nss'
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 nss.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 nssrenam.h nssoptions.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/nss'
cd ssl; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ssl'
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 ssl.h sslt.h sslerr.h sslproto.h preenc.h ../../../dist/public/nss
There are no private exports.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ssl'
cd pkcs7; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pkcs7'
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 secmime.h secpkcs7.h pkcs7t.h ../../../dist/public/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pkcs7'
cd pkcs12; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pkcs12'
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 pkcs12t.h pkcs12.h p12plcy.h p12.h p12t.h ../../../dist/public/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pkcs12'
cd smime; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/smime'
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 cms.h cmst.h smime.h cmsreclist.h ../../../dist/public/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/smime'
cd crmf; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/crmf'
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 crmf.h crmft.h cmmf.h cmmft.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 crmfi.h crmfit.h cmmfi.h cmmfit.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/crmf'
cd jar; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/jar'
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 jar.h jar-ds.h jarfile.h ../../../dist/public/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/jar'
cd ckfw; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw'
cd builtins; /usr/bin/make export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw/builtins'
../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 nssckbi.h ../../../../dist/public/nss
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw/builtins'
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 nssck.api nssckepv.h nssckft.h nssckfw.h nssckfwc.h nssckfwt.h nssckg.h nssckmdt.h nssckt.h ../../../dist/public/nss
cd builtins; /usr/bin/make private_export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw/builtins'
There are no private exports.
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw/builtins'
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 ck.h ckfw.h ckfwm.h ckfwtm.h ckmd.h ckt.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw'
cd sysinit; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/sysinit'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/sysinit'
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib'
cd cmd; /usr/bin/make export
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd'
cd lib; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/lib'
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 444 basicutil.h secutil.h pk11table.h ../../../dist/private/nss
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/lib'
cd shlibsign; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/shlibsign'
cd mangle; /usr/bin/make export
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/shlibsign/mangle'
make[3]: Nothing to be done for `export'.
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/shlibsign/mangle'
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/shlibsign'
cd addbuiltin; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/addbuiltin'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/addbuiltin'
cd atob; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/atob'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/atob'
cd btoa; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/btoa'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/btoa'
cd certcgi; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/certcgi'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/certcgi'
cd certutil; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/certutil'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/certutil'
cd chktest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/chktest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/chktest'
cd crlutil; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/crlutil'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/crlutil'
cd crmftest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/crmftest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/crmftest'
cd dbtest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/dbtest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/dbtest'
cd derdump; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/derdump'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/derdump'
cd digest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/digest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/digest'
cd httpserv; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/httpserv'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/httpserv'
cd listsuites; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/listsuites'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/listsuites'
cd makepqg; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/makepqg'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/makepqg'
cd multinit; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/multinit'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/multinit'
cd ocspclnt; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ocspclnt'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ocspclnt'
cd ocspresp; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ocspresp'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ocspresp'
cd oidcalc; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/oidcalc'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/oidcalc'
cd p7content; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7content'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7content'
cd p7env; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7env'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7env'
cd p7sign; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7sign'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7sign'
cd p7verify; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7verify'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7verify'
cd pk12util; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk12util'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk12util'
cd pk11ectest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11ectest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11ectest'
cd pk11gcmtest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11gcmtest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11gcmtest'
cd pk11mode; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11mode'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11mode'
cd pk1sign; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk1sign'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk1sign'
cd pp; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pp'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pp'
cd pwdecrypt; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pwdecrypt'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pwdecrypt'
cd rsaperf; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/rsaperf'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/rsaperf'
cd sdrtest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/sdrtest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/sdrtest'
cd selfserv; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/selfserv'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/selfserv'
cd signtool; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/signtool'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/signtool'
cd signver; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/signver'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/signver'
cd smimetools; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/smimetools'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/smimetools'
cd ssltap; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ssltap'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ssltap'
cd strsclnt; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/strsclnt'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/strsclnt'
cd symkeyutil; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/symkeyutil'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/symkeyutil'
cd tests; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/tests'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/tests'
cd tstclnt; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/tstclnt'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/tstclnt'
cd vfychain; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/vfychain'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/vfychain'
cd vfyserv; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/vfyserv'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/vfyserv'
cd modutil; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/modutil'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/modutil'
cd pkix-errcodes; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pkix-errcodes'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pkix-errcodes'
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd'
cd gtests; /usr/bin/make export
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests'
cd google_test; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/google_test'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/google_test'
cd common; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/common'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/common'
cd der_gtest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/der_gtest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/der_gtest'
cd pk11_gtest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/pk11_gtest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/pk11_gtest'
cd ssl_gtest; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/ssl_gtest'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/ssl_gtest'
cd nss_bogo_shim; /usr/bin/make export
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/nss_bogo_shim'
make[2]: Nothing to be done for `export'.
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/nss_bogo_shim'
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests'
cd coreconf; /usr/bin/make libs
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf'
cd nsinstall; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
true -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf/nsinstall'
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/coreconf'
cd lib; /usr/bin/make libs
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib'
cd dbm; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm'
cd include; /usr/bin/make libs
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/include'
make[3]: Nothing to be done for `libs'.
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/include'
cd src; /usr/bin/make libs
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/src'
../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libdbm.a ../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm/src'
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dbm'
cd base; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/base'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/arena.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard arena.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/error.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard error.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/errorval.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard errorval.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/hashops.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard hashops.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libc.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard libc.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/tracker.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard tracker.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/item.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard item.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/utf8.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard utf8.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/list.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard list.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/hash.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard hash.c
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnssb.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnssb.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/arena.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/error.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/errorval.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/hashops.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libc.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/tracker.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/item.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/utf8.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/list.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/hash.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnssb.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnssb.a
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnssb.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/base'
cd dev; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dev'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/devslot.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard devslot.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/devtoken.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard devtoken.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/devutil.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard devutil.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ckhelper.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard ckhelper.c
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnssdev.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnssdev.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/devslot.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/devtoken.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/devutil.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ckhelper.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnssdev.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnssdev.a
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnssdev.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/dev'
cd pki; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pki'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/asymmkey.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard asymmkey.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certificate.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard certificate.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cryptocontext.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard cryptocontext.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/symmkey.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard symmkey.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/trustdomain.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard trustdomain.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/tdcache.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard tdcache.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certdecode.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard certdecode.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkistore.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkistore.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkibase.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkibase.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pki3hack.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pki3hack.c
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnsspki.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnsspki.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/asymmkey.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certificate.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cryptocontext.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/symmkey.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/trustdomain.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/tdcache.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certdecode.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkistore.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkibase.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pki3hack.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnsspki.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnsspki.a
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnsspki.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pki'
cd libpkix; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix'
cd include; /usr/bin/make libs
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/include'
make[3]: Nothing to be done for `libs'.
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/include'
cd pkix; /usr/bin/make libs
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix'
cd certsel; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/certsel'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_certselector.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_certselector.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_comcertselparams.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_comcertselparams.c
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixcertsel.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixcertsel.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_certselector.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_comcertselparams.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixcertsel.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixcertsel.a
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixcertsel.a ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/crlsel'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_crlselector.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_crlselector.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_comcrlselparams.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_comcrlselparams.c
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixcrlsel.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixcrlsel.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_crlselector.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_comcrlselparams.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixcrlsel.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixcrlsel.a
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixcrlsel.a ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/checker'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_basicconstraintschecker.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_basicconstraintschecker.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_certchainchecker.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_certchainchecker.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_crlchecker.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_crlchecker.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_ekuchecker.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_ekuchecker.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_expirationchecker.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_expirationchecker.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_namechainingchecker.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_namechainingchecker.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_nameconstraintschecker.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_nameconstraintschecker.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_ocspchecker.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_ocspchecker.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_revocationmethod.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_revocationmethod.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_revocationchecker.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_revocationchecker.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_policychecker.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_policychecker.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_signaturechecker.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_signaturechecker.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_targetcertchecker.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -iquote ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_targetcertchecker.c
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixchecker.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixchecker.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_basicconstraintschecker.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_certchainchecker.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_crlchecker.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_ekuchecker.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_expirationchecker.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_namechainingchecker.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_nameconstraintschecker.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_ocspchecker.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_revocationmethod.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_revocationchecker.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_policychecker.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_signaturechecker.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_targetcertchecker.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixchecker.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixchecker.a
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixchecker.a ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/params'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_trustanchor.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_trustanchor.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_procparams.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_procparams.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_valparams.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_valparams.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_resourcelimits.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_resourcelimits.c
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixparams.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixparams.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_trustanchor.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_procparams.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_valparams.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_resourcelimits.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixparams.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixparams.a
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixparams.a ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/results'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_buildresult.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_buildresult.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_policynode.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_policynode.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_valresult.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_valresult.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_verifynode.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_verifynode.c
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixresults.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixresults.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_buildresult.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_policynode.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_valresult.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_verifynode.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixresults.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixresults.a
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixresults.a ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/store'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_store.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_store.c
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixstore.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixstore.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_store.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixstore.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixstore.a
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixstore.a ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/top'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_validate.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_validate.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_lifecycle.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_lifecycle.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_build.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_build.c
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixtop.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixtop.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_validate.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_lifecycle.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_build.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixtop.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixtop.a
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixtop.a ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/util'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_tools.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_tools.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_error.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_error.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_logger.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_logger.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_list.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_list.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_errpaths.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_errpaths.c
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixutil.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixutil.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_tools.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_error.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_logger.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_list.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_errpaths.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixutil.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixutil.a
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixutil.a ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix/util'
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix'
cd pkix_pl_nss; /usr/bin/make libs
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss'
cd pki; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/pki'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_basicconstraints.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_basicconstraints.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_cert.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_cert.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_certpolicyinfo.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_certpolicyinfo.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_certpolicymap.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_certpolicymap.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_certpolicyqualifier.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_certpolicyqualifier.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_crl.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_crl.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_crldp.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_crldp.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_crlentry.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_crlentry.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_date.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_date.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_generalname.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_generalname.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_infoaccess.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_infoaccess.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_nameconstraints.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_nameconstraints.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_ocsprequest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_ocsprequest.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_ocspresponse.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_ocspresponse.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_publickey.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_publickey.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_x500name.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_x500name.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_ocspcertid.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_ocspcertid.c
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixpki.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixpki.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_basicconstraints.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_cert.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_certpolicyinfo.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_certpolicymap.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_certpolicyqualifier.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_crl.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_crldp.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_crlentry.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_date.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_generalname.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_infoaccess.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_nameconstraints.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_ocsprequest.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_ocspresponse.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_publickey.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_x500name.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_ocspcertid.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixpki.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixpki.a
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixpki.a ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/system'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_bigint.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_bigint.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_bytearray.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_bytearray.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_common.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_common.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_error.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_error.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_hashtable.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_hashtable.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_lifecycle.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_lifecycle.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_mem.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_mem.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_monitorlock.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_monitorlock.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_mutex.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_mutex.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_object.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_object.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_oid.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_oid.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_primhash.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_primhash.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_rwlock.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_rwlock.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_string.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_string.c
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixsystem.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixsystem.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_bigint.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_bytearray.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_common.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_error.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_hashtable.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_lifecycle.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_mem.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_monitorlock.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_mutex.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_object.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_oid.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_primhash.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_rwlock.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_string.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixsystem.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixsystem.a
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixsystem.a ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make libs
make[4]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/module'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_aiamgr.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_aiamgr.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_colcertstore.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_colcertstore.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_httpcertstore.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_httpcertstore.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_httpdefaultclient.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_httpdefaultclient.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldaptemplates.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_ldaptemplates.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldapcertstore.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_ldapcertstore.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldapresponse.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_ldapresponse.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldaprequest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_ldaprequest.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldapdefaultclient.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_ldapdefaultclient.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_nsscontext.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_nsscontext.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_pk11certstore.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_pk11certstore.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_socket.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix_pl_socket.c
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixmodule.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixmodule.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_aiamgr.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_colcertstore.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_httpcertstore.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_httpdefaultclient.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldaptemplates.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldapcertstore.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldapresponse.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldaprequest.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldapdefaultclient.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_nsscontext.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_pk11certstore.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_socket.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixmodule.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixmodule.a
../../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkixmodule.a ../../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[4]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss/module'
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix/pkix_pl_nss'
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/libpkix'
cd certdb; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/certdb'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/alg1485.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard alg1485.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certdb.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard certdb.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certv3.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard certv3.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certxutl.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard certxutl.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crl.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard crl.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/genname.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard genname.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/stanpcertdb.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard stanpcertdb.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/polcyxtn.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard polcyxtn.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/secname.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard secname.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/xauthkid.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard xauthkid.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/xbsconst.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard xbsconst.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/xconst.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard xconst.c
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libcertdb.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libcertdb.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/alg1485.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certdb.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certv3.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certxutl.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crl.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/genname.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/stanpcertdb.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/polcyxtn.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/secname.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/xauthkid.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/xbsconst.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/xconst.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libcertdb.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libcertdb.a
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libcertdb.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/certdb'
cd certhigh; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/certhigh'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certhtml.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard certhtml.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certreq.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard certreq.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crlv2.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard crlv2.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ocsp.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard ocsp.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ocspsig.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard ocspsig.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certhigh.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard certhigh.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certvfy.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard certvfy.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certvfypkix.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard certvfypkix.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/xcrldist.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard xcrldist.c
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libcerthi.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libcerthi.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certhtml.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certreq.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crlv2.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ocsp.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ocspsig.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certhigh.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certvfy.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certvfypkix.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/xcrldist.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libcerthi.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libcerthi.a
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libcerthi.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/certhigh'
cd pk11wrap; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pk11wrap'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/dev3hack.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard dev3hack.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11akey.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pk11akey.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11auth.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pk11auth.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11cert.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pk11cert.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11cxt.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pk11cxt.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11err.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pk11err.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11kea.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pk11kea.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11list.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pk11list.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11load.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pk11load.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11mech.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pk11mech.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11merge.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pk11merge.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11nobj.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pk11nobj.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11obj.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pk11obj.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11pars.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pk11pars.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11pbe.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pk11pbe.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11pk12.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pk11pk12.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11pqg.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pk11pqg.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11sdr.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pk11sdr.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11skey.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pk11skey.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11slot.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pk11slot.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11util.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pk11util.c
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpk11wrap.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpk11wrap.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/dev3hack.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11akey.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11auth.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11cert.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11cxt.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11err.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11kea.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11list.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11load.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11mech.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11merge.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11nobj.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11obj.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11pars.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11pbe.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11pk12.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11pqg.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11sdr.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11skey.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11slot.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11util.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpk11wrap.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpk11wrap.a
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpk11wrap.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pk11wrap'
cd cryptohi; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/cryptohi'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sechash.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard sechash.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/seckey.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard seckey.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/secsign.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard secsign.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/secvfy.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard secvfy.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/dsautil.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard dsautil.c
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libcryptohi.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libcryptohi.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sechash.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/seckey.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/secsign.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/secvfy.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/dsautil.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libcryptohi.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libcryptohi.a
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libcryptohi.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/cryptohi'
cd nss; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/nss'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nssinit.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss-rhel7.config\" -DPOLICY_PATH=\"/etc/pki/nss-legacy\" -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard nssinit.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nssoptions.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss-rhel7.config\" -DPOLICY_PATH=\"/etc/pki/nss-legacy\" -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard nssoptions.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nssver.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss-rhel7.config\" -DPOLICY_PATH=\"/etc/pki/nss-legacy\" -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard nssver.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/utilwrap.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss-rhel7.config\" -DPOLICY_PATH=\"/etc/pki/nss-legacy\" -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard utilwrap.c
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnss.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnss.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nssinit.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nssoptions.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nssver.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/utilwrap.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnss.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnss.a
grep -v ';-' nss.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nss.def
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnss3.so
cc -shared  -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libnss3.so  -Wl,--version-script,Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nss.def -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnss3.so Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nssinit.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nssoptions.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nssver.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/utilwrap.o ../certhigh/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certhtml.o ../certhigh/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certreq.o ../certhigh/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crlv2.o ../certhigh/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ocsp.o ../certhigh/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ocspsig.o ../certhigh/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certhigh.o ../certhigh/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certvfy.o ../certhigh/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certvfypkix.o ../certhigh/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/xcrldist.o ../cryptohi/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sechash.o ../cryptohi/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/seckey.o ../cryptohi/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/secsign.o ../cryptohi/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/secvfy.o ../cryptohi/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/dsautil.o ../pk11wrap/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/dev3hack.o ../pk11wrap/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11akey.o ../pk11wrap/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11auth.o ../pk11wrap/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11cert.o ../pk11wrap/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11cxt.o ../pk11wrap/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11err.o ../pk11wrap/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11kea.o ../pk11wrap/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11list.o ../pk11wrap/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11load.o ../pk11wrap/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11mech.o ../pk11wrap/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11merge.o ../pk11wrap/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11nobj.o ../pk11wrap/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11obj.o ../pk11wrap/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11pars.o ../pk11wrap/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11pbe.o ../pk11wrap/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11pk12.o ../pk11wrap/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11pqg.o ../pk11wrap/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11sdr.o ../pk11wrap/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11skey.o ../pk11wrap/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11slot.o ../pk11wrap/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11util.o ../certdb/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/alg1485.o ../certdb/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certdb.o ../certdb/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certv3.o ../certdb/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certxutl.o ../certdb/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crl.o ../certdb/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/genname.o ../certdb/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/stanpcertdb.o ../certdb/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/polcyxtn.o ../certdb/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/secname.o ../certdb/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/xauthkid.o ../certdb/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/xbsconst.o ../certdb/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/xconst.o ../pki/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/asymmkey.o ../pki/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certificate.o ../pki/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cryptocontext.o ../pki/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/symmkey.o ../pki/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/trustdomain.o ../pki/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/tdcache.o ../pki/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certdecode.o ../pki/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkistore.o ../pki/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkibase.o ../pki/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pki3hack.o ../dev/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/devslot.o ../dev/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/devtoken.o ../dev/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/devutil.o ../dev/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ckhelper.o ../base/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/arena.o ../base/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/error.o ../base/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/errorval.o ../base/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/hashops.o ../base/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libc.o ../base/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/tracker.o ../base/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/item.o ../base/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/utf8.o ../base/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/list.o ../base/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/hash.o ../libpkix/pkix/certsel/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_certselector.o ../libpkix/pkix/certsel/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_comcertselparams.o ../libpkix/pkix/checker/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_basicconstraintschecker.o ../libpkix/pkix/checker/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_certchainchecker.o ../libpkix/pkix/checker/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_crlchecker.o ../libpkix/pkix/checker/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_ekuchecker.o ../libpkix/pkix/checker/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_expirationchecker.o ../libpkix/pkix/checker/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_namechainingchecker.o ../libpkix/pkix/checker/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_nameconstraintschecker.o ../libpkix/pkix/checker/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_ocspchecker.o ../libpkix/pkix/checker/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_revocationmethod.o ../libpkix/pkix/checker/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_revocationchecker.o ../libpkix/pkix/checker/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_policychecker.o ../libpkix/pkix/checker/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_signaturechecker.o ../libpkix/pkix/checker/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_targetcertchecker.o ../libpkix/pkix/params/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_trustanchor.o ../libpkix/pkix/params/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_procparams.o ../libpkix/pkix/params/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_valparams.o ../libpkix/pkix/params/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_resourcelimits.o ../libpkix/pkix/results/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_buildresult.o ../libpkix/pkix/results/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_policynode.o ../libpkix/pkix/results/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_valresult.o ../libpkix/pkix/results/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_verifynode.o ../libpkix/pkix/top/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_validate.o ../libpkix/pkix/top/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_lifecycle.o ../libpkix/pkix/top/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_build.o ../libpkix/pkix/util/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_tools.o ../libpkix/pkix/util/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_error.o ../libpkix/pkix/util/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_logger.o ../libpkix/pkix/util/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_list.o ../libpkix/pkix/util/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_errpaths.o ../libpkix/pkix/crlsel/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_crlselector.o ../libpkix/pkix/crlsel/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_comcrlselparams.o ../libpkix/pkix/store/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_store.o ../libpkix/pkix_pl_nss/pki/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_basicconstraints.o ../libpkix/pkix_pl_nss/pki/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_cert.o ../libpkix/pkix_pl_nss/pki/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_certpolicyinfo.o ../libpkix/pkix_pl_nss/pki/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_certpolicymap.o ../libpkix/pkix_pl_nss/pki/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_certpolicyqualifier.o ../libpkix/pkix_pl_nss/pki/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_crl.o ../libpkix/pkix_pl_nss/pki/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_crldp.o ../libpkix/pkix_pl_nss/pki/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_crlentry.o ../libpkix/pkix_pl_nss/pki/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_date.o ../libpkix/pkix_pl_nss/pki/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_generalname.o ../libpkix/pkix_pl_nss/pki/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_infoaccess.o ../libpkix/pkix_pl_nss/pki/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_nameconstraints.o ../libpkix/pkix_pl_nss/pki/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_ocsprequest.o ../libpkix/pkix_pl_nss/pki/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_ocspresponse.o ../libpkix/pkix_pl_nss/pki/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_publickey.o ../libpkix/pkix_pl_nss/pki/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_x500name.o ../libpkix/pkix_pl_nss/pki/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_ocspcertid.o ../libpkix/pkix_pl_nss/system/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_bigint.o ../libpkix/pkix_pl_nss/system/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_bytearray.o ../libpkix/pkix_pl_nss/system/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_common.o ../libpkix/pkix_pl_nss/system/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_error.o ../libpkix/pkix_pl_nss/system/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_hashtable.o ../libpkix/pkix_pl_nss/system/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_lifecycle.o ../libpkix/pkix_pl_nss/system/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_mem.o ../libpkix/pkix_pl_nss/system/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_monitorlock.o ../libpkix/pkix_pl_nss/system/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_mutex.o ../libpkix/pkix_pl_nss/system/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_object.o ../libpkix/pkix_pl_nss/system/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_oid.o ../libpkix/pkix_pl_nss/system/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_primhash.o ../libpkix/pkix_pl_nss/system/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_rwlock.o ../libpkix/pkix_pl_nss/system/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_string.o ../libpkix/pkix_pl_nss/module/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_aiamgr.o ../libpkix/pkix_pl_nss/module/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_colcertstore.o ../libpkix/pkix_pl_nss/module/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_httpcertstore.o ../libpkix/pkix_pl_nss/module/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_httpdefaultclient.o ../libpkix/pkix_pl_nss/module/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldaptemplates.o ../libpkix/pkix_pl_nss/module/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldapcertstore.o ../libpkix/pkix_pl_nss/module/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldapresponse.o ../libpkix/pkix_pl_nss/module/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldaprequest.o ../libpkix/pkix_pl_nss/module/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_ldapdefaultclient.o ../libpkix/pkix_pl_nss/module/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_nsscontext.o ../libpkix/pkix_pl_nss/module/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_pk11certstore.o ../libpkix/pkix_pl_nss/module/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix_pl_socket.o   -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnss3.so
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnss.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnss3.so ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/nss'
cd ssl; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ssl'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/dtlscon.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard dtlscon.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/prelib.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard prelib.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl3con.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard ssl3con.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl3gthr.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard ssl3gthr.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslauth.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard sslauth.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslcon.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard sslcon.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssldef.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard ssldef.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslenum.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard sslenum.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslerr.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard sslerr.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslerrstrs.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard sslerrstrs.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslinit.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard sslinit.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl3ext.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard ssl3ext.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl3exthandle.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard ssl3exthandle.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslmutex.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard sslmutex.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslnonce.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard sslnonce.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslreveal.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard sslreveal.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslsecur.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard sslsecur.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslsnce.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard sslsnce.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslsock.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard sslsock.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssltrace.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard ssltrace.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslver.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard sslver.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/authcert.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard authcert.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmpcert.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard cmpcert.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslinfo.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard sslinfo.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl3ecc.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard ssl3ecc.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/tls13con.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard tls13con.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/tls13exthandle.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard tls13exthandle.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/tls13hkdf.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard tls13hkdf.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslcert.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard sslcert.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslgrp.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard sslgrp.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/unix_err.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -DNSS_NO_SSL2 -DNSS_ALLOW_SSLKEYLOGFILE=1 -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard unix_err.c
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libssl.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libssl.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/dtlscon.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/prelib.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl3con.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl3gthr.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslauth.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslcon.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssldef.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslenum.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslerr.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslerrstrs.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslinit.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl3ext.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl3exthandle.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslmutex.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslnonce.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslreveal.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslsecur.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslsnce.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslsock.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssltrace.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslver.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/authcert.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmpcert.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslinfo.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl3ecc.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/tls13con.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/tls13exthandle.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/tls13hkdf.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslcert.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslgrp.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/unix_err.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libssl.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libssl.a
grep -v ';-' ssl.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl.def
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libssl3.so
cc -shared  -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libssl3.so  -Wl,--version-script,Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl.def -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libssl3.so Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/dtlscon.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/prelib.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl3con.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl3gthr.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslauth.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslcon.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssldef.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslenum.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslerr.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslerrstrs.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslinit.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl3ext.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl3exthandle.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslmutex.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslnonce.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslreveal.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslsecur.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslsnce.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslsock.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssltrace.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslver.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/authcert.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmpcert.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslinfo.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl3ecc.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/tls13con.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/tls13exthandle.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/tls13hkdf.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslcert.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sslgrp.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/unix_err.o    -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc -lz
chmod +x Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libssl3.so
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libssl.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libssl3.so ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ssl'
cd pkcs7; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pkcs7'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certread.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard certread.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7common.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard p7common.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7create.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard p7create.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7decode.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard p7decode.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7encode.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard p7encode.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7local.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard p7local.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/secmime.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard secmime.c
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkcs7.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkcs7.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certread.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7common.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7create.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7decode.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7encode.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7local.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/secmime.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkcs7.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkcs7.a
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkcs7.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pkcs7'
cd pkcs12; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pkcs12'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p12local.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard p12local.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p12creat.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard p12creat.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p12dec.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard p12dec.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p12plcy.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard p12plcy.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p12tmpl.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard p12tmpl.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p12e.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard p12e.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p12d.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard p12d.c
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkcs12.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkcs12.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p12local.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p12creat.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p12dec.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p12plcy.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p12tmpl.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p12e.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p12d.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkcs12.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkcs12.a
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libpkcs12.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/pkcs12'
cd smime; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/smime'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsarray.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard cmsarray.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsasn1.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard cmsasn1.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsattr.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard cmsattr.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmscinfo.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard cmscinfo.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmscipher.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard cmscipher.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsdecode.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard cmsdecode.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsdigdata.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard cmsdigdata.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsdigest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard cmsdigest.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsencdata.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard cmsencdata.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsencode.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard cmsencode.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsenvdata.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard cmsenvdata.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsmessage.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard cmsmessage.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmspubkey.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard cmspubkey.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsrecinfo.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard cmsrecinfo.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsreclist.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard cmsreclist.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmssigdata.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard cmssigdata.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmssiginfo.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard cmssiginfo.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsudf.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard cmsudf.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsutil.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard cmsutil.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/smimemessage.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard smimemessage.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/smimeutil.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard smimeutil.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/smimever.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard smimever.c
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libsmime.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libsmime.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsarray.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsasn1.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsattr.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmscinfo.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmscipher.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsdecode.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsdigdata.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsdigest.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsencdata.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsencode.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsenvdata.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsmessage.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmspubkey.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsrecinfo.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsreclist.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmssigdata.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmssiginfo.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsudf.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsutil.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/smimemessage.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/smimeutil.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/smimever.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libsmime.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libsmime.a
grep -v ';-' smime.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/smime.def
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libsmime3.so
cc -shared  -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libsmime3.so  -Wl,--version-script,Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/smime.def -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libsmime3.so Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsarray.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsasn1.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsattr.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmscinfo.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmscipher.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsdecode.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsdigdata.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsdigest.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsencdata.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsencode.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsenvdata.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsmessage.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmspubkey.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsrecinfo.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsreclist.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmssigdata.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmssiginfo.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsudf.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsutil.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/smimemessage.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/smimeutil.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/smimever.o ../pkcs12/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p12local.o ../pkcs12/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p12creat.o ../pkcs12/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p12dec.o ../pkcs12/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p12plcy.o ../pkcs12/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p12tmpl.o ../pkcs12/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p12e.o ../pkcs12/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p12d.o ../pkcs7/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certread.o ../pkcs7/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7common.o ../pkcs7/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7create.o ../pkcs7/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7decode.o ../pkcs7/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7encode.o ../pkcs7/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7local.o ../pkcs7/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/secmime.o   -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libsmime3.so
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libsmime.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libsmime3.so ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/smime'
cd crmf; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/crmf'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crmfenc.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard crmfenc.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crmftmpl.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard crmftmpl.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crmfreq.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard crmfreq.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crmfpop.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard crmfpop.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crmfdec.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard crmfdec.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crmfget.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard crmfget.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crmfcont.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard crmfcont.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmmfasn1.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard cmmfasn1.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmmfresp.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard cmmfresp.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmmfrec.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard cmmfrec.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmmfchal.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard cmmfchal.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/servget.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard servget.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/encutil.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard encutil.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/respcli.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard respcli.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/respcmn.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard respcmn.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/challcli.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard challcli.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/asn1cmn.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard asn1cmn.c
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libcrmf.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libcrmf.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crmfenc.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crmftmpl.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crmfreq.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crmfpop.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crmfdec.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crmfget.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crmfcont.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmmfasn1.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmmfresp.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmmfrec.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmmfchal.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/servget.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/encutil.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/respcli.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/respcmn.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/challcli.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/asn1cmn.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libcrmf.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libcrmf.a
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libcrmf.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/crmf'
cd jar; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/jar'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/jarver.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard jarver.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/jarsign.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard jarsign.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/jar.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard jar.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/jar-ds.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard jar-ds.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/jarfile.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard jarfile.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/jarint.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard jarint.c
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libjar.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libjar.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/jarver.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/jarsign.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/jar.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/jar-ds.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/jarfile.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/jarint.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libjar.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libjar.a
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libjar.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/jar'
cd ckfw; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crypto.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard crypto.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/find.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard find.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/hash.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard hash.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/instance.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard instance.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/mutex.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard mutex.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/object.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard object.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/session.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard session.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sessobj.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard sessobj.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/slot.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard slot.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/token.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard token.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/wrap.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard wrap.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/mechanism.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard mechanism.c
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnssckfw.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnssckfw.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crypto.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/find.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/hash.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/instance.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/mutex.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/object.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/session.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sessobj.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/slot.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/token.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/wrap.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/mechanism.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnssckfw.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnssckfw.a
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnssckfw.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
cd builtins; /usr/bin/make libs
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw/builtins'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/anchor.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard anchor.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/constants.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard constants.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bfind.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard bfind.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/binst.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard binst.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bobject.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard bobject.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bsession.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard bsession.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bslot.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard bslot.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/btoken.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard btoken.c
perl certdata.perl certdata.txt Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certdata.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certdata.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certdata.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ckbiver.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard ckbiver.c
grep -v ';-' nssckbi.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nssckbi.def
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnssckbi.so
cc -shared  -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libnssckbi.so  -Wl,--version-script,Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nssckbi.def -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnssckbi.so Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/anchor.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/constants.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bfind.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/binst.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bobject.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bsession.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bslot.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/btoken.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certdata.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ckbiver.o   ../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckfw.a ../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssb.a  -L/usr/lib -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnssckbi.so
../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnssckbi.so ../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw/builtins'
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/ckfw'
cd sysinit; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/sysinit'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsssysinit.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard nsssysinit.c
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnsssysinit.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnsssysinit.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsssysinit.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnsssysinit.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnsssysinit.a
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnsssysinit.so
cc -shared  -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libnsssysinit.so  -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnsssysinit.so Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsssysinit.o    -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnsssysinit.so
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnsssysinit.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libnsssysinit.so ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib/sysinit'
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/lib'
cd cmd; /usr/bin/make libs
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd'
cd lib; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/lib'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/basicutil.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard basicutil.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/secutil.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard secutil.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/secpwd.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard secpwd.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/derprint.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard derprint.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/moreoids.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard moreoids.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pppolicy.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pppolicy.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ffs.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard ffs.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11table.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pk11table.c
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libsectool.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libsectool.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/basicutil.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/secutil.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/secpwd.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/derprint.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/moreoids.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pppolicy.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ffs.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11table.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libsectool.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libsectool.a
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libsectool.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/lib'
cd shlibsign; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/shlibsign'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/shlibsign.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard shlibsign.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/shlibsign -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/shlibsign.o  -Wl,-z,relro  -L/usr/lib -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/shlibsign ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
cd mangle; /usr/bin/make libs
make[3]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/shlibsign/mangle'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/mangle.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard mangle.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/mangle -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/mangle.o  -Wl,-z,relro  -L/usr/lib -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/mangle ../../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[3]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/shlibsign/mangle'
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/shlibsign'
cd addbuiltin; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/addbuiltin'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/addbuiltin.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard addbuiltin.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/addbuiltin -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/addbuiltin.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/addbuiltin ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/addbuiltin'
cd atob; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/atob'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/atob.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard atob.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/atob -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/atob.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/atob ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/atob'
cd btoa; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/btoa'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/btoa.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard btoa.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/btoa -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/btoa.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/btoa ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/btoa'
cd certcgi; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/certcgi'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certcgi.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard certcgi.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certcgi -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certcgi.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssb.a  /usr/lib/libfreebl.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a   /usr/lib/libfreebl.a -L/usr/lib -lsoftokn3  -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lsqlite3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certcgi ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/certcgi'
cd certutil; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/certutil'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certext.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard certext.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certutil.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard certutil.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/keystuff.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard keystuff.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certutil -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certext.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certutil.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/keystuff.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certutil ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/certutil'
cd chktest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/chktest'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/chktest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard chktest.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/chktest -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/chktest.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssb.a  /usr/lib/libfreebl.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a   /usr/lib/libfreebl.a -L/usr/lib -lsoftokn3  -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lsqlite3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/chktest ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/chktest'
cd crlutil; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/crlutil'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crlgen_lex.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard crlgen_lex.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crlgen.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard crlgen.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crlutil.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard crlutil.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crlutil -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crlgen_lex.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crlgen.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crlutil.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crlutil ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/crlutil'
cd crmftest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/crmftest'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/testcrmf.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard testcrmf.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crmftest -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/testcrmf.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcrmf.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/crmftest ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/crmftest'
cd dbtest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/dbtest'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/dbtest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard dbtest.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/dbtest -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/dbtest.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/dbtest ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/dbtest'
cd derdump; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/derdump'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/derdump.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard derdump.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/derdump -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/derdump.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/derdump ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/derdump'
cd digest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/digest'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/digest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard digest.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/digest -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/digest.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/digest ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/digest'
cd httpserv; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/httpserv'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/httpserv.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard httpserv.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/httpserv -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/httpserv.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/httpserv ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/httpserv'
cd listsuites; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/listsuites'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/listsuites.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard listsuites.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/listsuites -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/listsuites.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/listsuites ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/listsuites'
cd makepqg; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/makepqg'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/makepqg.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard makepqg.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/makepqg -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/makepqg.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/makepqg ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/makepqg'
cd multinit; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/multinit'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/multinit.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard multinit.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/multinit -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/multinit.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/multinit ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/multinit'
cd ocspclnt; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ocspclnt'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ocspclnt.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard ocspclnt.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ocspclnt -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ocspclnt.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ocspclnt ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ocspclnt'
cd ocspresp; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ocspresp'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ocspresp.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard ocspresp.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ocspresp -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ocspresp.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ocspresp ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ocspresp'
cd oidcalc; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/oidcalc'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/oidcalc.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard oidcalc.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/oidcalc -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/oidcalc.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/oidcalc ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/oidcalc'
cd p7content; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7content'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7content.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard p7content.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7content -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7content.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7content ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7content'
cd p7env; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7env'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7env.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard p7env.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7env -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7env.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7env ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7env'
cd p7sign; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7sign'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7sign.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard p7sign.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7sign -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7sign.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7sign ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7sign'
cd p7verify; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7verify'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7verify.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard p7verify.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7verify -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7verify.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/p7verify ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/p7verify'
cd pk12util; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk12util'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk12util.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pk12util.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk12util -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk12util.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk12util ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk12util'
cd pk11ectest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11ectest'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11ectest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pk11ectest.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11ectest -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11ectest.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssb.a  /usr/lib/libfreebl.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a   /usr/lib/libfreebl.a -L/usr/lib -lsoftokn3  -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lsqlite3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11ectest ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11ectest'
cd pk11gcmtest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11gcmtest'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11gcmtest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pk11gcmtest.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11gcmtest -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11gcmtest.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11gcmtest ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11gcmtest'
cd pk11mode; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11mode'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11mode.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pk11mode.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11mode -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11mode.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11mode ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk11mode'
cd pk1sign; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk1sign'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk1sign.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pk1sign.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk1sign -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk1sign.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk1sign ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pk1sign'
cd pp; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pp'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pp.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pp.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pp -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pp.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pp ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pp'
cd pwdecrypt; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pwdecrypt'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pwdecrypt.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pwdecrypt.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pwdecrypt -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pwdecrypt.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pwdecrypt ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pwdecrypt'
cd rsaperf; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/rsaperf'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/rsaperf.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../nss/lib/softoken -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard rsaperf.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/defkey.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../nss/lib/softoken -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard defkey.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/rsaperf -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../nss/lib/softoken -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/rsaperf.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/defkey.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssb.a  /usr/lib/libfreebl.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a   /usr/lib/libfreebl.a -L/usr/lib -lsoftokn3  -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lsqlite3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/rsaperf ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/rsaperf'
cd sdrtest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/sdrtest'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sdrtest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard sdrtest.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sdrtest -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sdrtest.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sdrtest ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/sdrtest'
cd selfserv; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/selfserv'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/selfserv.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard selfserv.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/selfserv -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/selfserv.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/selfserv ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/selfserv'
cd signtool; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/signtool'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/signtool.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard signtool.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certgen.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard certgen.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/javascript.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard javascript.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/list.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard list.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sign.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard sign.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/util.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard util.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/verify.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard verify.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/zip.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard zip.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/signtool -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/signtool.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/certgen.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/javascript.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/list.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/sign.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/util.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/verify.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/zip.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libjar.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc -lz
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/signtool ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/signtool'
cd signver; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/signver'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/signver.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard signver.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk7print.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pk7print.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/signver -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/signver.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk7print.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/signver ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/signver'
cd smimetools; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/smimetools'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsutil.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard cmsutil.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsutil -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsutil.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/cmsutil ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/smimetools'
cd ssltap; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ssltap'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssltap.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard ssltap.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssltap -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssltap.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssltap ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/ssltap'
cd strsclnt; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/strsclnt'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/strsclnt.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard strsclnt.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/strsclnt -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/strsclnt.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/strsclnt ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/strsclnt'
cd symkeyutil; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/symkeyutil'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/symkeyutil.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard symkeyutil.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/symkeyutil -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/symkeyutil.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/symkeyutil ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/symkeyutil'
cd tests; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/tests'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/baddbdir.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard baddbdir.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/baddbdir -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/baddbdir.o \
 -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/conflict.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard conflict.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/conflict -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/conflict.o \
 -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/dertimetest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard dertimetest.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/dertimetest -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/dertimetest.o \
 -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/encodeinttest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard encodeinttest.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/encodeinttest -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/encodeinttest.o \
 -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nonspr10.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard nonspr10.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nonspr10 -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nonspr10.o \
 -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/remtest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard remtest.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/remtest -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/remtest.o \
 -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/secmodtest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard secmodtest.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/secmodtest -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/secmodtest.o \
 -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/baddbdir Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/conflict Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/dertimetest Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/encodeinttest Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nonspr10 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/remtest Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/secmodtest ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/tests'
cd tstclnt; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/tstclnt'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/tstclnt.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard tstclnt.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/tstclnt -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/tstclnt.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/tstclnt ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/tstclnt'
cd vfychain; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/vfychain'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/vfychain.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard vfychain.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/vfychain -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/vfychain.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/vfychain ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/vfychain'
cd vfyserv; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/vfyserv'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/vfyserv.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard vfyserv.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/vfyutil.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard vfyutil.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/vfyserv -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/vfyserv.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/vfyutil.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/vfyserv ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/vfyserv'
cd modutil; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/modutil'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/modutil.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard modutil.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pk11.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/instsec.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard instsec.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/install.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard install.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/installparse.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard installparse.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/install-ds.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard install-ds.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lex.Pk11Install_yy.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard lex.Pk11Install_yy.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/modutil -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/modutil.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/instsec.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/install.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/installparse.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/install-ds.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lex.Pk11Install_yy.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libjar.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc -lz
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/modutil ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/modutil'
cd pkix-errcodes; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pkix-errcodes'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix-errcodes.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard pkix-errcodes.c
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix-errcodes -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix-errcodes.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pkix-errcodes ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd/pkix-errcodes'
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/cmd'
cd gtests; /usr/bin/make libs
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests'
cd google_test; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/google_test'
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/gtest/src; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/gtest/src; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/gtest/src; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/gtest/src/gtest-all.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -Igtest/include/ -Igtest -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/gtest -I../../../dist/private/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -std=c++0x gtest/src/gtest-all.cc
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libgtest.a
ar cr Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libgtest.a Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/gtest/src/gtest-all.o
echo Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libgtest.a
Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libgtest.a
rm -f Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libgtest1.so
g++ -shared  -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro  -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libgtest1.so Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/gtest/src/gtest-all.o   ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
chmod +x Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libgtest1.so
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 664 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libgtest.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libgtest1.so ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/google_test'
cd common; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/common'
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/gtests.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -std=c++0x gtests.cc
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/gtests -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/gtests.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libgtest.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/gtests ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/common'
cd der_gtest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/der_gtest'
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/der_getint_unittest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -std=c++0x der_getint_unittest.cc
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/der_private_key_import_unittest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -std=c++0x der_private_key_import_unittest.cc
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/der_gtest -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/der_getint_unittest.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/der_private_key_import_unittest.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libgtest.a  ../common/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/gtests.o ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/der_gtest ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/der_gtest'
cd pk11_gtest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/pk11_gtest'
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11_aeskeywrap_unittest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -std=c++0x pk11_aeskeywrap_unittest.cc
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11_chacha20poly1305_unittest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -std=c++0x pk11_chacha20poly1305_unittest.cc
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11_export_unittest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -std=c++0x pk11_export_unittest.cc
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11_pbkdf2_unittest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -std=c++0x pk11_pbkdf2_unittest.cc
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11_prf_unittest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -std=c++0x pk11_prf_unittest.cc
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11_prng_unittest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -std=c++0x pk11_prng_unittest.cc
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11_rsapss_unittest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -std=c++0x pk11_rsapss_unittest.cc
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11_gtest -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11_aeskeywrap_unittest.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11_chacha20poly1305_unittest.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11_export_unittest.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11_pbkdf2_unittest.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11_prf_unittest.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11_prng_unittest.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11_rsapss_unittest.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libgtest.a  ../common/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/gtests.o ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  /usr/lib/libfreebl.a -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -L/usr/lib -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/pk11_gtest ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/pk11_gtest'
cd ssl_gtest; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/ssl_gtest'
cc -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libssl_internals.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 libssl_internals.c
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl_0rtt_unittest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_0rtt_unittest.cc
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl_cert_ext_unittest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_cert_ext_unittest.cc
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl_ciphersuite_unittest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_ciphersuite_unittest.cc
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl_dhe_unittest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_dhe_unittest.cc
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl_drop_unittest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_drop_unittest.cc
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl_ecdh_unittest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_ecdh_unittest.cc
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl_ems_unittest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_ems_unittest.cc
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl_exporter_unittest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_exporter_unittest.cc
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl_gtest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_gtest.cc
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl_record_unittest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_record_unittest.cc
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl_skip_unittest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_skip_unittest.cc
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl_staticrsa_unittest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x ssl_staticrsa_unittest.cc
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/test_io.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x test_io.cc
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/tls_agent.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x tls_agent.cc
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/tls_connect.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x tls_connect.cc
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/tls_hkdf_unittest.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x tls_hkdf_unittest.cc
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/tls_filter.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x tls_filter.cc
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/tls_parser.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 -std=c++0x tls_parser.cc
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl_gtest -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -I../../lib/ssl -DNSS_DISABLE_TLS_1_3 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/libssl_internals.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl_0rtt_unittest.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl_cert_ext_unittest.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl_ciphersuite_unittest.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl_dhe_unittest.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl_drop_unittest.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl_ecdh_unittest.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl_ems_unittest.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl_exporter_unittest.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl_gtest.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl_record_unittest.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl_skip_unittest.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl_staticrsa_unittest.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/test_io.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/tls_agent.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/tls_connect.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/tls_hkdf_unittest.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/tls_filter.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/tls_parser.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libgtest.a -lsoftokn3 ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssb.a  /usr/lib/libfreebl.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a   /usr/lib/libfreebl.a -L/usr/lib -lsoftokn3  -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lsqlite3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc -lz
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/ssl_gtest ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/ssl_gtest'
cd nss_bogo_shim; /usr/bin/make libs
make[2]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/nss_bogo_shim'
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/config.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -I../../lib/ssl -std=c++0x -std=c++0x config.cc
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsskeys.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -I../../lib/ssl -std=c++0x -std=c++0x nsskeys.cc
if test ! -d Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; then rm -rf Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; ../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -D Linux4.8_arm_cc_glibc_PTH_OPT.OBJ; fi
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nss_bogo_shim.o -c -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -I../../lib/ssl -std=c++0x -std=c++0x nss_bogo_shim.cc
g++ -o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nss_bogo_shim -O2 -fPIC -DLINUX2_1  -pipe -ffunction-sections -fdata-sections -DLINUX -Dlinux -DHAVE_STRERROR -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4   -I/usr/include/nss3 -I/usr/include/nspr4   -I../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches   -march=armv7-a -mfpu=vfpv3-d16  -mfloat-abi=hard -I../../lib/ssl Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/config.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsskeys.o Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nss_bogo_shim.o  -Wl,-z,relro ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssb.a  /usr/lib/libfreebl.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a   /usr/lib/libfreebl.a -L/usr/lib -lsoftokn3  -L../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib -lsqlite3 -L/usr/lib -lnssutil3 -L/usr/lib -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc -lz
../../coreconf/nsinstall/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nsinstall -R -m 775 Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/nss_bogo_shim ../../../dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
make[2]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests/nss_bogo_shim'
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/gtests'
make: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss'
~/build/BUILD/nss-3.28.4/nss ~/build/BUILD/nss-3.28.4
+ unset NSS_BLTEST_NOT_AVAILABLE
+ pushd ./nss
+ /usr/bin/make clean_docs build_docs
/usr/bin/make -C ./doc clean
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/doc'
rm -f date.xml version.xml *.tar.bz2
rm -f html/*.proc
rm -fr nss-man ascii
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/doc'
/usr/bin/make -C ./doc
make[1]: Entering directory `/builddir/build/BUILD/nss-3.28.4/nss/doc'
date +"%e %B %Y" | tr -d '\n' > date.xml
echo -n  > version.xml
mkdir -p html
mkdir -p nroff
make[1]: Leaving directory `/builddir/build/BUILD/nss-3.28.4/nss/doc'
~/build/BUILD/nss-3.28.4
+ popd
+ /usr/bin/mkdir -p ./dist/doc/nroff
+ /usr/bin/cp ./nss/doc/nroff/certutil.1 ./nss/doc/nroff/cmsutil.1 ./nss/doc/nroff/crlutil.1 ./nss/doc/nroff/derdump.1 ./nss/doc/nroff/modutil.1 ./nss/doc/nroff/pk12util.1 ./nss/doc/nroff/pp.1 ./nss/doc/nroff/signtool.1 ./nss/doc/nroff/signver.1 ./nss/doc/nroff/ssltap.1 ./nss/doc/nroff/vfychain.1 ./nss/doc/nroff/vfyserv.1 ./dist/doc/nroff
+ /usr/bin/mkdir -p ./dist/pkgconfig
+ /usr/bin/cat /builddir/build/SOURCES/nss.pc.in
+ sed -e s,%libdir%,/usr/lib,g -e s,%prefix%,/usr,g -e s,%exec_prefix%,/usr,g -e s,%includedir%,/usr/include/nss3,g -e s,%NSS_VERSION%,3.28.4,g -e s,%NSPR_VERSION%,4.13.1,g -e s,%NSSUTIL_VERSION%,3.28.4,g -e s,%SOFTOKEN_VERSION%,3.28.3,g
++ cat nss/lib/nss/nss.h
++ grep '#define.*NSS_VMAJOR'
++ awk '{print $3}'
+ NSS_VMAJOR=3
++ cat nss/lib/nss/nss.h
++ grep '#define.*NSS_VMINOR'
++ awk '{print $3}'
+ NSS_VMINOR=28
++ cat nss/lib/nss/nss.h
++ grep '#define.*NSS_VPATCH'
++ awk '{print $3}'
+ NSS_VPATCH=4
+ export NSS_VMAJOR
+ export NSS_VMINOR
+ export NSS_VPATCH
+ /usr/bin/cat /builddir/build/SOURCES/nss-config.in
+ sed -e s,@libdir@,/usr/lib,g -e s,@prefix@,/usr,g -e s,@exec_prefix@,/usr,g -e s,@includedir@,/usr/include/nss3,g -e s,@MOD_MAJOR_VERSION@,3,g -e s,@MOD_MINOR_VERSION@,28,g -e s,@MOD_PATCH_VERSION@,4,g
+ chmod 755 ./dist/pkgconfig/nss-config
+ /usr/bin/cat /builddir/build/SOURCES/setup-nsssysinit.sh
+ chmod 755 ./dist/pkgconfig/setup-nsssysinit.sh
+ /usr/bin/cp ./nss/lib/ckfw/nssck.api ./dist/private/nss/
+ date '+%e %B %Y'
+ tr -d '\n'
+ echo -n 3.28.4
+ for m in /builddir/build/SOURCES/nss-config.xml /builddir/build/SOURCES/setup-nsssysinit.xml /builddir/build/SOURCES/pkcs11.txt.xml
+ cp /builddir/build/SOURCES/nss-config.xml .
+ for m in /builddir/build/SOURCES/nss-config.xml /builddir/build/SOURCES/setup-nsssysinit.xml /builddir/build/SOURCES/pkcs11.txt.xml
+ cp /builddir/build/SOURCES/setup-nsssysinit.xml .
+ for m in /builddir/build/SOURCES/nss-config.xml /builddir/build/SOURCES/setup-nsssysinit.xml /builddir/build/SOURCES/pkcs11.txt.xml
+ cp /builddir/build/SOURCES/pkcs11.txt.xml .
+ for m in nss-config.xml setup-nsssysinit.xml pkcs11.txt.xml
+ xmlto man nss-config.xml
Note: Writing nss-config.1
+ for m in nss-config.xml setup-nsssysinit.xml pkcs11.txt.xml
+ xmlto man setup-nsssysinit.xml
Note: Writing setup-nsssysinit.1
+ for m in nss-config.xml setup-nsssysinit.xml pkcs11.txt.xml
+ xmlto man pkcs11.txt.xml
Note: Writing pkcs11.txt.5
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/cert8.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/cert9.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/key3.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/key4.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/secmod.db.xml .
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man cert8.db.xml
Note: Writing cert8.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man cert9.db.xml
Note: Writing cert9.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man key3.db.xml
Note: Writing key3.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man key4.db.xml
Note: Writing key4.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man secmod.db.xml
Note: Writing secmod.db.5
+ exit 0
Executing(%install): /bin/sh -e /var/tmp/rpm-tmp.7lluA1
+ umask 022
+ cd /builddir/build/BUILD
+ '[' /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm '!=' / ']'
+ rm -rf /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm
++ dirname /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm
+ mkdir -p /builddir/build/BUILDROOT
+ mkdir /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm
+ cd nss-3.28.4
+ /usr/bin/rm -rf /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3/templates
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/bin
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/lib
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/lib/nss/unsupported-tools
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/lib/pkgconfig
+ mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/share/man/man1
+ mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/share/man/man5
+ touch /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/lib/libnssckbi.so
+ /usr/bin/install -p -m 755 dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/lib/nss/libnssckbi.so
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnss3.so /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/lib
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/lib
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/lib
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libssl3.so /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/lib
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//etc/pki/nssdb
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-cert8.db /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//etc/pki/nssdb/cert8.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-key3.db /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//etc/pki/nssdb/key3.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-secmod.db /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//etc/pki/nssdb/secmod.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-cert9.db /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//etc/pki/nssdb/cert9.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-key4.db /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//etc/pki/nssdb/key4.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/system-pkcs11.txt /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//etc/pki/nssdb/pkcs11.txt
+ for file in libcrmf.a libnssb.a libnssckfw.a
+ /usr/bin/install -p -m 644 dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/lib
+ for file in libcrmf.a libnssb.a libnssckfw.a
+ /usr/bin/install -p -m 644 dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssb.a /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/lib
+ for file in libcrmf.a libnssb.a libnssckfw.a
+ /usr/bin/install -p -m 644 dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/lib
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/certutil /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/cmsutil /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/crlutil /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/modutil /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/pk12util /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/signtool /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/signver /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/ssltap /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/bin
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/atob /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/lib/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/btoa /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/lib/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/derdump /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/lib/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/listsuites /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/lib/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/ocspclnt /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/lib/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/pp /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/lib/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/selfserv /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/lib/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/strsclnt /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/lib/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/symkeyutil /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/lib/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/tstclnt /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/lib/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/vfyserv /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/lib/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/vfychain /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/lib/nss/unsupported-tools
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/cert.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/certdb.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/certt.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/cmmf.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/cmmft.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/cms.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/cmsreclist.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/cmst.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/crmf.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/crmft.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/cryptohi.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/cryptoht.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/jar-ds.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/jar.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/jarfile.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/key.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/keyhi.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/keyt.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/keythi.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nss.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssbase.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssbaset.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssckbi.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssckepv.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssckft.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssckfw.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssckfwc.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssckfwt.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssckg.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssckmdt.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/nssckt.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/ocsp.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/ocspt.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/p12.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/p12plcy.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/p12t.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/pk11func.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/pk11pqg.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/pk11priv.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/pk11pub.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/pk11sdr.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/pkcs12.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/pkcs12t.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/pkcs7t.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/preenc.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/sechash.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/secmime.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/secmod.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/secmodt.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/secpkcs5.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/secpkcs7.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/smime.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/ssl.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/sslerr.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/sslproto.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in 'dist/public/nss/*.h'
+ /usr/bin/install -p -m 644 dist/public/nss/sslt.h /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3
+ for file in dist/private/nss/nssck.api
+ /usr/bin/install -p -m 644 dist/private/nss/nssck.api /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/include/nss3/templates
+ /usr/bin/install -p -m 644 ./dist/pkgconfig/nss.pc /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/lib/pkgconfig/nss.pc
+ /usr/bin/install -p -m 755 ./dist/pkgconfig/nss-config /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/bin/nss-config
+ /usr/bin/install -p -m 755 ./dist/pkgconfig/setup-nsssysinit.sh /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/bin/setup-nsssysinit.sh
+ ln -r -s -f /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/bin/setup-nsssysinit.sh /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm//usr/bin/setup-nsssysinit
+ for f in nss-config setup-nsssysinit
+ install -c -m 644 nss-config.1 /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/share/man/man1/nss-config.1
+ for f in nss-config setup-nsssysinit
+ install -c -m 644 setup-nsssysinit.1 /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/share/man/man1/setup-nsssysinit.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/certutil.1 /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/share/man/man1/certutil.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/cmsutil.1 /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/share/man/man1/cmsutil.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/crlutil.1 /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/share/man/man1/crlutil.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/derdump.1 /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/share/man/man1/derdump.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/modutil.1 /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/share/man/man1/modutil.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/pk12util.1 /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/share/man/man1/pk12util.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/pp.1 /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/share/man/man1/pp.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/signtool.1 /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/share/man/man1/signtool.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/signver.1 /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/share/man/man1/signver.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/ssltap.1 /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/share/man/man1/ssltap.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/vfychain.1 /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/share/man/man1/vfychain.1
+ for f in '""certutil' cmsutil crlutil derdump modutil pk12util pp signtool signver ssltap vfychain 'vfyserv""'
+ install -c -m 644 ./dist/doc/nroff/vfyserv.1 /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/share/man/man1/vfyserv.1
+ for f in pkcs11.txt
+ install -c -m 644 pkcs11.txt.5 /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/share/man/man5/pkcs11.txt.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 cert8.db.5 /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/share/man/man5/cert8.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 cert9.db.5 /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/share/man/man5/cert9.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 key3.db.5 /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/share/man/man5/key3.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 key4.db.5 /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/share/man/man5/key4.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 secmod.db.5 /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/share/man/man5/secmod.db.5
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/etc/pki/nss-legacy
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/nss-rhel7.config /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/etc/pki/nss-legacy/nss-rhel7.config
+ /usr/lib/rpm/find-debuginfo.sh --strict-build-id -m --run-dwz --dwz-low-mem-die-limit 10000000 --dwz-max-die-limit 50000000 /builddir/build/BUILD/nss-3.28.4
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/bin/certutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/bin/modutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/bin/ssltap
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/bin/cmsutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/bin/crlutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/bin/pk12util
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/bin/signtool
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/bin/signver
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/lib/libsmime3.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/lib/libnsssysinit.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/lib/libssl3.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/lib/nss/unsupported-tools/listsuites
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/lib/nss/unsupported-tools/symkeyutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/lib/nss/unsupported-tools/derdump
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/lib/nss/unsupported-tools/pp
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/lib/nss/unsupported-tools/tstclnt
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/lib/nss/unsupported-tools/atob
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/lib/nss/unsupported-tools/btoa
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/lib/nss/unsupported-tools/strsclnt
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/lib/nss/unsupported-tools/ocspclnt
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/lib/nss/unsupported-tools/vfychain
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/lib/nss/unsupported-tools/selfserv
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/lib/nss/unsupported-tools/vfyserv
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/lib/nss/libnssckbi.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm/usr/lib/libnss3.so
/usr/lib/rpm/sepdebugcrcfix: Updated 25 CRC32s, 0 CRC32s did match.
cpio: nss-3.28.4/nss/cmd/modutil/lex.Pk11Install_yy.cpp: Cannot stat: No such file or directory
cpio: nss-3.28.4/nss/cmd/modutil/ytab.c: Cannot stat: No such file or directory
25109 blocks
+ /usr/lib/rpm/check-buildroot
+ /usr/lib/rpm/redhat/brp-compress
+ /usr/lib/rpm/redhat/brp-strip-static-archive /usr/bin/strip
+ /usr/lib/rpm/brp-python-bytecompile /usr/bin/python 1
+ /usr/lib/rpm/redhat/brp-python-hardlink
+ /usr/lib/rpm/redhat/brp-java-repack-jars
Executing(%check): /bin/sh -e /var/tmp/rpm-tmp.0lB4tL
+ umask 022
+ cd /builddir/build/BUILD
+ cd nss-3.28.4
+ '[' 0 -eq 1 ']'
+ export NSS_NO_SSL2=1
+ NSS_NO_SSL2=1
+ FREEBL_NO_DEPEND=1
+ export FREEBL_NO_DEPEND
+ export BUILD_OPT=1
+ BUILD_OPT=1
+ export NSS_BLTEST_NOT_AVAILABLE=1
+ NSS_BLTEST_NOT_AVAILABLE=1
+ export SOFTOKEN_LIB_DIR=/usr/lib
+ SOFTOKEN_LIB_DIR=/usr/lib
++ find ./nss/tests
++ grep -c ' '
+ SPACEISBAD=0
+ :
+ '[' 0 -ne 0 ']'
++ perl -e 'print 9000 + int rand 1000'
9183
+ MYRAND=9183
+ echo 9183
+ RANDSERV=selfserv_9183
+ echo selfserv_9183
selfserv_9183
++ ls -d ./dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
./dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
+ DISTBINDIR=./dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
+ echo ./dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
++ pwd
~/build/BUILD/nss-3.28.4 ~/build/BUILD/nss-3.28.4
+ pushd /builddir/build/BUILD/nss-3.28.4
+ cd ./dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin
+ ln -s selfserv selfserv_9183
~/build/BUILD/nss-3.28.4
+ popd
+ find ./nss/tests -type f
+ grep -v '\.db$'
+ grep -v '\.crl$'
+ grep -v '\.crt$'
+ xargs grep -lw selfserv
+ xargs -l perl -pi -e 's/\bselfserv\b/selfserv_9183/g'
+ grep -vw CVS
+ killall selfserv_9183
selfserv_9183: no process found
+ :
+ rm -rf ./tests_results
~/build/BUILD/nss-3.28.4/nss/tests ~/build/BUILD/nss-3.28.4
+ pushd ./nss/tests/
+ HOST=localhost
+ DOMSUF=localdomain
+ PORT=9183
+ NSS_CYCLES=
+ NSS_TESTS='libpkix cert dbtests tools fips sdr crmf smime ssl ocsp merge pkits chains ec gtests ssl_gtests'
+ NSS_SSL_TESTS=
+ NSS_SSL_RUN=
+ ./all.sh
testdir is /builddir/build/BUILD/nss-3.28.4/tests_results/security
init.sh init: Creating /builddir/build/BUILD/nss-3.28.4/tests_results/security
which: no domainname in (.:/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin:/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib:/bin:/usr/bin:/usr/sbin:/sbin:/usr/local/sbin:/builddir/.local/bin:/builddir/bin)
********************************************
   Platform: Linux4.8_arm_cc_glibc_PTH_OPT.OBJ
   Results: localhost.1
********************************************
init.sh init: Testing PATH .:/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin:/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib:/bin:/usr/bin:/usr/sbin:/sbin:/usr/local/sbin:/builddir/.local/bin:/builddir/bin against LIB /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib:
Running tests for libpkix
TIMESTAMP libpkix BEGIN: Sat Oct 21 13:21:23 UTC 2017
TIMESTAMP libpkix END: Sat Oct 21 13:21:23 UTC 2017
Running tests for cert
TIMESTAMP cert BEGIN: Sat Oct 21 13:21:23 UTC 2017
cert.sh: Certutil and Crlutil Tests with ECC ===============================
cert.sh: #1: Looking for root certs module. - PASSED
cert.sh: Creating a CA Certificate TestCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -f ../tests.pw
cert.sh: #2: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #3: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert TestCA  --------------------------
certutil -s "CN=NSS Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4: Creating CA Cert TestCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n TestCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -o root.cert
cert.sh: #5: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate serverCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -f ../tests.pw
cert.sh: #6: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #7: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert serverCA  --------------------------
certutil -s "CN=NSS Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA -t Cu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8: Creating CA Cert serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n serverCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -o root.cert
cert.sh: #9: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-serverCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
cert.sh: Creating CA Cert chain-1-serverCA  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA -t u,u,u -v 600 -c serverCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #10: Creating CA Cert chain-1-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-serverCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -o root.cert
cert.sh: #11: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-serverCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
cert.sh: Creating CA Cert chain-2-serverCA  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA -t u,u,u -v 600 -c chain-1-serverCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #12: Creating CA Cert chain-2-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-serverCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -o root.cert
cert.sh: #13: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate clientCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -f ../tests.pw
cert.sh: #14: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #15: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert clientCA  --------------------------
certutil -s "CN=NSS Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA -t Tu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #16: Creating CA Cert clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n clientCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -o root.cert
cert.sh: #17: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-clientCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
cert.sh: Creating CA Cert chain-1-clientCA  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA -t u,u,u -v 600 -c clientCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #18: Creating CA Cert chain-1-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-clientCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -o root.cert
cert.sh: #19: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-clientCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
cert.sh: Creating CA Cert chain-2-clientCA  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA -t u,u,u -v 600 -c chain-1-clientCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #20: Creating CA Cert chain-2-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-clientCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -o root.cert
cert.sh: #21: Exporting Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate TestCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA
cert.sh: Creating DSA CA Cert TestCA-dsa  --------------------------
certutil -s "CN=NSS Test CA (DSA), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-dsa -k dsa -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #22: Creating DSA CA Cert TestCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n TestCA-dsa -r -d . -o dsaroot.cert
cert.sh: #23: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
cert.sh: Creating DSA CA Cert serverCA-dsa  --------------------------
certutil -s "CN=NSS Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-dsa -k dsa -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #24: Creating DSA CA Cert serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #25: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
cert.sh: Creating DSA CA Cert chain-1-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-dsa -k dsa -t u,u,u -v 600 -c serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #26: Creating DSA CA Cert chain-1-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #27: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
cert.sh: Creating DSA CA Cert chain-2-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #28: Creating DSA CA Cert chain-2-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #29: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
cert.sh: Creating DSA CA Cert clientCA-dsa  --------------------------
certutil -s "CN=NSS Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-dsa -k dsa -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #30: Creating DSA CA Cert clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #31: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
cert.sh: Creating DSA CA Cert chain-1-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-dsa -k dsa -t u,u,u -v 600 -c clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #32: Creating DSA CA Cert chain-1-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #33: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
cert.sh: Creating DSA CA Cert chain-2-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #34: Creating DSA CA Cert chain-2-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #35: Exporting DSA Root Cert - PASSED
cert.sh: Creating an EC CA Certificate TestCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA
cert.sh: Creating EC CA Cert TestCA-ec  --------------------------
certutil -s "CN=NSS Test CA (ECC), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-ec -k ec -q secp521r1 -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #36: Creating EC CA Cert TestCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n TestCA-ec -r -d . -o ecroot.cert
cert.sh: #37: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate serverCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
cert.sh: Creating EC CA Cert serverCA-ec  --------------------------
certutil -s "CN=NSS Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-ec -k ec -q secp521r1 -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #38: Creating EC CA Cert serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n serverCA-ec -r -d . -o ecroot.cert
cert.sh: #39: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
cert.sh: Creating EC CA Cert chain-1-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #40: Creating EC CA Cert chain-1-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #41: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA
cert.sh: Creating EC CA Cert chain-2-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #42: Creating EC CA Cert chain-2-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #43: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate clientCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
cert.sh: Creating EC CA Cert clientCA-ec  --------------------------
certutil -s "CN=NSS Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-ec -k ec -q secp521r1 -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #44: Creating EC CA Cert clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n clientCA-ec -r -d . -o ecroot.cert
cert.sh: #45: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
cert.sh: Creating EC CA Cert chain-1-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #46: Creating EC CA Cert chain-1-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #47: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA
cert.sh: Creating EC CA Cert chain-2-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #48: Creating EC CA Cert chain-2-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #49: Exporting EC Root Cert - PASSED
cert.sh: Creating Certificates, issued by the last ===============
     of a chain of CA's which are not in the same database============
Server Cert
cert.sh: Initializing localhost.localdomain's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -f ../tests.pw
cert.sh: #50: Initializing localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #51: Loading root cert module to localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #52: Generate Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 200 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain.cert -f ../tests.pw
cert.sh: #53: Sign localhost.localdomain's Request (ext) - PASSED
cert.sh: Import localhost.localdomain's Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #54: Import localhost.localdomain's Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/clientCA.ca.cert
cert.sh: #55: Import Client Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #56: Generate DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA-dsa -m 200 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw
cert.sh: #57: Sign localhost.localdomain's DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #58: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/clientCA-dsa.ca.cert
cert.sh: #59: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #60: Generate mixed DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 202 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw
cert.sh: #61: Sign localhost.localdomain's mixed DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #62: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #63: Generate EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA-ec -m 200 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-ec.cert -f ../tests.pw
cert.sh: #64: Sign localhost.localdomain's EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #65: Import localhost.localdomain's EC Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-ec -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/clientCA-ec.ca.cert
cert.sh: #66: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #67: Generate mixed EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 201 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw
cert.sh: #68: Sign localhost.localdomain's mixed EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #69: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) - PASSED
Importing all the server's own CA chain into the servers DB
cert.sh: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/chain-1-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #70: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/chain-1-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #71: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/chain-2-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #72: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/serverCA-ec.ca.cert
cert.sh: #73: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/chain-2-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #74: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/chain-1-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #75: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/serverCA.ca.cert
cert.sh: #76: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/serverCA-dsa.ca.cert
cert.sh: #77: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/chain-2-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #78: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
Client Cert
cert.sh: Initializing ExtendedSSLUser's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -f ../tests.pw
cert.sh: #79: Initializing ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #80: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #81: Generate Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 300 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser.cert -f ../tests.pw
cert.sh: #82: Sign ExtendedSSLUser's Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #83: Import ExtendedSSLUser's Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/serverCA.ca.cert
cert.sh: #84: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #85: Generate DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA-dsa -m 300 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-dsa.cert -f ../tests.pw
cert.sh: #86: Sign ExtendedSSLUser's DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #87: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/serverCA-dsa.ca.cert
cert.sh: #88: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #89: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 302 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-dsamixed.cert -f ../tests.pw
cert.sh: #90: Sign ExtendedSSLUser's mixed DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #91: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #92: Generate EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA-ec -m 300 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-ec.cert -f ../tests.pw
cert.sh: #93: Sign ExtendedSSLUser's EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #94: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA/serverCA-ec.ca.cert
cert.sh: #95: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #96: Generate mixed EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 301 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-ecmixed.cert -f ../tests.pw
cert.sh: #97: Sign ExtendedSSLUser's mixed EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #98: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) - PASSED
Importing all the client's own CA chain into the servers DB
cert.sh: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/chain-1-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #99: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/clientCA-dsa.ca.cert
cert.sh: #100: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-ec -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/clientCA-ec.ca.cert
cert.sh: #101: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/chain-2-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #102: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/chain-2-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #103: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/chain-1-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #104: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/chain-2-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #105: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/chain-1-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #106: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/clientCA/clientCA.ca.cert
cert.sh: #107: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh SUCCESS: EXT passed
cert.sh: Creating Client CA Issued Certificates ===============
cert.sh: Initializing TestUser's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw
cert.sh: #108: Initializing TestUser's Cert DB - PASSED
cert.sh: Loading root cert module to TestUser's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #109: Loading root cert module to TestUser's Cert DB - PASSED
cert.sh: Import Root CA for TestUser --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -i ../CA/TestCA.ca.cert
cert.sh: #110: Import Root CA for TestUser - PASSED
cert.sh: Import DSA Root CA for TestUser --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -i ../CA/TestCA-dsa.ca.cert
cert.sh: #111: Import DSA Root CA for TestUser - PASSED
cert.sh: Import EC Root CA for TestUser --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -i ../CA/TestCA-ec.ca.cert
cert.sh: #112: Import EC Root CA for TestUser - PASSED
cert.sh: Generate Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #113: Generate Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's Request --------------------------
certutil -C -c TestCA -m 70 -v 60 -d ../CA -i req -o TestUser.cert -f ../tests.pw 
cert.sh: #114: Sign TestUser's Request - PASSED
cert.sh: Import TestUser's Cert --------------------------
certutil -A -n TestUser -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #115: Import TestUser's Cert - PASSED
cert.sh SUCCESS: TestUser's Cert Created
cert.sh: Generate DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #116: Generate DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 70 -v 60 -d ../CA -i req -o TestUser-dsa.cert -f ../tests.pw 
cert.sh: #117: Sign TestUser's DSA Request - PASSED
cert.sh: Import TestUser's DSA Cert --------------------------
certutil -A -n TestUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #118: Import TestUser's DSA Cert - PASSED
cert.sh SUCCESS: TestUser's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #119: Generate mixed DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20070 -v 60 -d ../CA -i req -o TestUser-dsamixed.cert -f ../tests.pw 
cert.sh: #120: Sign TestUser's DSA Request with RSA - PASSED
cert.sh: Import TestUser's mixed DSA Cert --------------------------
certutil -A -n TestUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #121: Import TestUser's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #122: Generate EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request --------------------------
certutil -C -c TestCA-ec -m 70 -v 60 -d ../CA -i req -o TestUser-ec.cert -f ../tests.pw 
cert.sh: #123: Sign TestUser's EC Request - PASSED
cert.sh: Import TestUser's EC Cert --------------------------
certutil -A -n TestUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #124: Import TestUser's EC Cert - PASSED
cert.sh SUCCESS: TestUser's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #125: Generate mixed EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10070 -v 60 -d ../CA -i req -o TestUser-ecmixed.cert -f ../tests.pw 
cert.sh: #126: Sign TestUser's EC Request with RSA - PASSED
cert.sh: Import TestUser's mixed EC Cert --------------------------
certutil -A -n TestUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #127: Import TestUser's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain ------------------------------------
cert.sh: Initializing localhost.localdomain's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #128: Initializing localhost.localdomain's Cert DB - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #129: Loading root cert module to localhost.localdomain's Cert DB - PASSED
cert.sh: Import Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -i ../CA/TestCA.ca.cert
cert.sh: #130: Import Root CA for localhost.localdomain - PASSED
cert.sh: Import DSA Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -i ../CA/TestCA-dsa.ca.cert
cert.sh: #131: Import DSA Root CA for localhost.localdomain - PASSED
cert.sh: Import EC Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -i ../CA/TestCA-ec.ca.cert
cert.sh: #132: Import EC Root CA for localhost.localdomain - PASSED
cert.sh: Generate Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #133: Generate Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's Request --------------------------
certutil -C -c TestCA -m 100 -v 60 -d ../CA -i req -o localhost.localdomain.cert -f ../tests.pw 
cert.sh: #134: Sign localhost.localdomain's Request - PASSED
cert.sh: Import localhost.localdomain's Cert --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #135: Import localhost.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #136: Generate DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #137: Sign localhost.localdomain's DSA Request - PASSED
cert.sh: Import localhost.localdomain's DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #138: Import localhost.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #139: Generate mixed DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20100 -v 60 -d ../CA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #140: Sign localhost.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #141: Import localhost.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #142: Generate EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-ec.cert -f ../tests.pw 
cert.sh: #143: Sign localhost.localdomain's EC Request - PASSED
cert.sh: Import localhost.localdomain's EC Cert --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #144: Import localhost.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #145: Generate mixed EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10100 -v 60 -d ../CA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #146: Sign localhost.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #147: Import localhost.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain-sni --------------------------------
cert.sh: Generate Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #148: Generate Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's Request --------------------------
certutil -C -c TestCA -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain.cert -f ../tests.pw 
cert.sh: #149: Sign localhost-sni.localdomain's Request - PASSED
cert.sh: Import localhost-sni.localdomain's Cert --------------------------
certutil -A -n localhost-sni.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #150: Import localhost-sni.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #151: Generate DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #152: Sign localhost-sni.localdomain's DSA Request - PASSED
cert.sh: Import localhost-sni.localdomain's DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #153: Import localhost-sni.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #154: Generate mixed DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #155: Sign localhost-sni.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #156: Import localhost-sni.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #157: Generate EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ec.cert -f ../tests.pw 
cert.sh: #158: Sign localhost-sni.localdomain's EC Request - PASSED
cert.sh: Import localhost-sni.localdomain's EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #159: Import localhost-sni.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #160: Generate mixed EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #161: Sign localhost-sni.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #162: Import localhost-sni.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed EC Cert Created
cert.sh: Modify trust attributes of Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA -t TC,TC,TC -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #163: Modify trust attributes of Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of DSA Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-dsa -t TC,TC,TC -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #164: Modify trust attributes of DSA Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-ec -t TC,TC,TC -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #165: Modify trust attributes of EC Root CA -t TC,TC,TC - PASSED
cert.sh SUCCESS: SSL passed
cert.sh: Creating database for OCSP stapling tests  ===============
cp -r /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/stapling
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -o ../stapling/ca.p12 -n TestCA -k ../tests.pw -w ../tests.pw -d ../CA
pk12util: PKCS12 EXPORT SUCCESSFUL
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -i ../stapling/ca.p12 -k ../tests.pw -w ../tests.pw -d ../stapling
pk12util: PKCS12 IMPORT SUCCESSFUL
cert.sh: Creating Client CA Issued Certificates ==============
cert.sh: Initializing Alice's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw
cert.sh: #166: Initializing Alice's Cert DB - PASSED
cert.sh: Loading root cert module to Alice's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #167: Loading root cert module to Alice's Cert DB - PASSED
cert.sh: Import Root CA for Alice --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -i ../CA/TestCA.ca.cert
cert.sh: #168: Import Root CA for Alice - PASSED
cert.sh: Import DSA Root CA for Alice --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #169: Import DSA Root CA for Alice - PASSED
cert.sh: Import EC Root CA for Alice --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -i ../CA/TestCA-ec.ca.cert
cert.sh: #170: Import EC Root CA for Alice - PASSED
cert.sh: Generate Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #171: Generate Cert Request for Alice - PASSED
cert.sh: Sign Alice's Request --------------------------
certutil -C -c TestCA -m 30 -v 60 -d ../CA -i req -o Alice.cert -f ../tests.pw 
cert.sh: #172: Sign Alice's Request - PASSED
cert.sh: Import Alice's Cert --------------------------
certutil -A -n Alice -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #173: Import Alice's Cert - PASSED
cert.sh SUCCESS: Alice's Cert Created
cert.sh: Generate DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #174: Generate DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 30 -v 60 -d ../CA -i req -o Alice-dsa.cert -f ../tests.pw 
cert.sh: #175: Sign Alice's DSA Request - PASSED
cert.sh: Import Alice's DSA Cert --------------------------
certutil -A -n Alice-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #176: Import Alice's DSA Cert - PASSED
cert.sh SUCCESS: Alice's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #177: Generate mixed DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20030 -v 60 -d ../CA -i req -o Alice-dsamixed.cert -f ../tests.pw 
cert.sh: #178: Sign Alice's DSA Request with RSA - PASSED
cert.sh: Import Alice's mixed DSA Cert --------------------------
certutil -A -n Alice-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #179: Import Alice's mixed DSA Cert - PASSED
cert.sh SUCCESS: Alice's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #180: Generate EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request --------------------------
certutil -C -c TestCA-ec -m 30 -v 60 -d ../CA -i req -o Alice-ec.cert -f ../tests.pw 
cert.sh: #181: Sign Alice's EC Request - PASSED
cert.sh: Import Alice's EC Cert --------------------------
certutil -A -n Alice-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #182: Import Alice's EC Cert - PASSED
cert.sh SUCCESS: Alice's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #183: Generate mixed EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10030 -v 60 -d ../CA -i req -o Alice-ecmixed.cert -f ../tests.pw 
cert.sh: #184: Sign Alice's EC Request with RSA - PASSED
cert.sh: Import Alice's mixed EC Cert --------------------------
certutil -A -n Alice-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #185: Import Alice's mixed EC Cert - PASSED
cert.sh SUCCESS: Alice's mixed EC Cert Created
cert.sh: Initializing Bob's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw
cert.sh: #186: Initializing Bob's Cert DB - PASSED
cert.sh: Loading root cert module to Bob's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #187: Loading root cert module to Bob's Cert DB - PASSED
cert.sh: Import Root CA for Bob --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -i ../CA/TestCA.ca.cert
cert.sh: #188: Import Root CA for Bob - PASSED
cert.sh: Import DSA Root CA for Bob --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #189: Import DSA Root CA for Bob - PASSED
cert.sh: Import EC Root CA for Bob --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -i ../CA/TestCA-ec.ca.cert
cert.sh: #190: Import EC Root CA for Bob - PASSED
cert.sh: Generate Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #191: Generate Cert Request for Bob - PASSED
cert.sh: Sign Bob's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o Bob.cert -f ../tests.pw 
cert.sh: #192: Sign Bob's Request - PASSED
cert.sh: Import Bob's Cert --------------------------
certutil -A -n Bob -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #193: Import Bob's Cert - PASSED
cert.sh SUCCESS: Bob's Cert Created
cert.sh: Generate DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #194: Generate DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o Bob-dsa.cert -f ../tests.pw 
cert.sh: #195: Sign Bob's DSA Request - PASSED
cert.sh: Import Bob's DSA Cert --------------------------
certutil -A -n Bob-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #196: Import Bob's DSA Cert - PASSED
cert.sh SUCCESS: Bob's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #197: Generate mixed DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o Bob-dsamixed.cert -f ../tests.pw 
cert.sh: #198: Sign Bob's DSA Request with RSA - PASSED
cert.sh: Import Bob's mixed DSA Cert --------------------------
certutil -A -n Bob-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #199: Import Bob's mixed DSA Cert - PASSED
cert.sh SUCCESS: Bob's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #200: Generate EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o Bob-ec.cert -f ../tests.pw 
cert.sh: #201: Sign Bob's EC Request - PASSED
cert.sh: Import Bob's EC Cert --------------------------
certutil -A -n Bob-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #202: Import Bob's EC Cert - PASSED
cert.sh SUCCESS: Bob's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #203: Generate mixed EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o Bob-ecmixed.cert -f ../tests.pw 
cert.sh: #204: Sign Bob's EC Request with RSA - PASSED
cert.sh: Import Bob's mixed EC Cert --------------------------
certutil -A -n Bob-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #205: Import Bob's mixed EC Cert - PASSED
cert.sh SUCCESS: Bob's mixed EC Cert Created
cert.sh: Creating Dave's Certificate -------------------------
cert.sh: Initializing Dave's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw
cert.sh: #206: Initializing Dave's Cert DB - PASSED
cert.sh: Loading root cert module to Dave's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #207: Loading root cert module to Dave's Cert DB - PASSED
cert.sh: Import Root CA for Dave --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -i ../CA/TestCA.ca.cert
cert.sh: #208: Import Root CA for Dave - PASSED
cert.sh: Import DSA Root CA for Dave --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -i ../CA/TestCA-dsa.ca.cert
cert.sh: #209: Import DSA Root CA for Dave - PASSED
cert.sh: Import EC Root CA for Dave --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -i ../CA/TestCA-ec.ca.cert
cert.sh: #210: Import EC Root CA for Dave - PASSED
cert.sh: Generate Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #211: Generate Cert Request for Dave - PASSED
cert.sh: Sign Dave's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o Dave.cert -f ../tests.pw 
cert.sh: #212: Sign Dave's Request - PASSED
cert.sh: Import Dave's Cert --------------------------
certutil -A -n Dave -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #213: Import Dave's Cert - PASSED
cert.sh SUCCESS: Dave's Cert Created
cert.sh: Generate DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #214: Generate DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o Dave-dsa.cert -f ../tests.pw 
cert.sh: #215: Sign Dave's DSA Request - PASSED
cert.sh: Import Dave's DSA Cert --------------------------
certutil -A -n Dave-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #216: Import Dave's DSA Cert - PASSED
cert.sh SUCCESS: Dave's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #217: Generate mixed DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o Dave-dsamixed.cert -f ../tests.pw 
cert.sh: #218: Sign Dave's DSA Request with RSA - PASSED
cert.sh: Import Dave's mixed DSA Cert --------------------------
certutil -A -n Dave-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #219: Import Dave's mixed DSA Cert - PASSED
cert.sh SUCCESS: Dave's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #220: Generate EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o Dave-ec.cert -f ../tests.pw 
cert.sh: #221: Sign Dave's EC Request - PASSED
cert.sh: Import Dave's EC Cert --------------------------
certutil -A -n Dave-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #222: Import Dave's EC Cert - PASSED
cert.sh SUCCESS: Dave's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #223: Generate mixed EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o Dave-ecmixed.cert -f ../tests.pw 
cert.sh: #224: Sign Dave's EC Request with RSA - PASSED
cert.sh: Import Dave's mixed EC Cert --------------------------
certutil -A -n Dave-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #225: Import Dave's mixed EC Cert - PASSED
cert.sh SUCCESS: Dave's mixed EC Cert Created
cert.sh: Creating multiEmail's Certificate --------------------
cert.sh: Initializing Eve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw
cert.sh: #226: Initializing Eve's Cert DB - PASSED
cert.sh: Loading root cert module to Eve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #227: Loading root cert module to Eve's Cert DB - PASSED
cert.sh: Import Root CA for Eve --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -i ../CA/TestCA.ca.cert
cert.sh: #228: Import Root CA for Eve - PASSED
cert.sh: Import DSA Root CA for Eve --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -i ../CA/TestCA-dsa.ca.cert
cert.sh: #229: Import DSA Root CA for Eve - PASSED
cert.sh: Import EC Root CA for Eve --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -i ../CA/TestCA-ec.ca.cert
cert.sh: #230: Import EC Root CA for Eve - PASSED
cert.sh: Generate Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #231: Generate Cert Request for Eve - PASSED
cert.sh: Sign Eve's Request --------------------------
certutil -C -c TestCA -m 60 -v 60 -d ../CA -i req -o Eve.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #232: Sign Eve's Request - PASSED
cert.sh: Import Eve's Cert --------------------------
certutil -A -n Eve -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #233: Import Eve's Cert - PASSED
cert.sh SUCCESS: Eve's Cert Created
cert.sh: Generate DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #234: Generate DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 60 -v 60 -d ../CA -i req -o Eve-dsa.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #235: Sign Eve's DSA Request - PASSED
cert.sh: Import Eve's DSA Cert --------------------------
certutil -A -n Eve-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #236: Import Eve's DSA Cert - PASSED
cert.sh SUCCESS: Eve's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #237: Generate mixed DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20060 -v 60 -d ../CA -i req -o Eve-dsamixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #238: Sign Eve's DSA Request with RSA - PASSED
cert.sh: Import Eve's mixed DSA Cert --------------------------
certutil -A -n Eve-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #239: Import Eve's mixed DSA Cert - PASSED
cert.sh SUCCESS: Eve's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #240: Generate EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request --------------------------
certutil -C -c TestCA-ec -m 60 -v 60 -d ../CA -i req -o Eve-ec.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #241: Sign Eve's EC Request - PASSED
cert.sh: Import Eve's EC Cert --------------------------
certutil -A -n Eve-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #242: Import Eve's EC Cert - PASSED
cert.sh SUCCESS: Eve's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #243: Generate mixed EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10060 -v 60 -d ../CA -i req -o Eve-ecmixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #244: Sign Eve's EC Request with RSA - PASSED
cert.sh: Import Eve's mixed EC Cert --------------------------
certutil -A -n Eve-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #245: Import Eve's mixed EC Cert - PASSED
cert.sh SUCCESS: Eve's mixed EC Cert Created
cert.sh: Importing Certificates ==============================
cert.sh: Import Bob's cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob.cert
cert.sh: #246: Import Bob's cert into Alice's db - PASSED
cert.sh: Import Dave's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #247: Import Dave's cert into Alice's DB - PASSED
cert.sh: Import Dave's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #248: Import Dave's cert into Bob's DB - PASSED
cert.sh: Import Eve's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #249: Import Eve's cert into Alice's DB - PASSED
cert.sh: Import Eve's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #250: Import Eve's cert into Bob's DB - PASSED
cert.sh: Importing EC Certificates ==============================
cert.sh: Import Bob's EC cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob-ec.cert
cert.sh: #251: Import Bob's EC cert into Alice's db - PASSED
cert.sh: Import Dave's EC cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #252: Import Dave's EC cert into Alice's DB - PASSED
cert.sh: Import Dave's EC cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #253: Import Dave's EC cert into Bob's DB - PASSED
cert.sh SUCCESS: SMIME passed
cert.sh: Creating FIPS 140 DSA Certificates ==============
cert.sh: Initializing FIPS PUB 140 Test Certificate's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips -f ../tests.fipspw
cert.sh: #254: Initializing FIPS PUB 140 Test Certificate's Cert DB - PASSED
cert.sh: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #255: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) - PASSED
cert.sh: Enable FIPS mode on database -----------------------
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips -fips true 
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
FIPS mode enabled.
cert.sh: #256: Enable FIPS mode on database for FIPS PUB 140 Test Certificate - PASSED
cert.sh: Generate Certificate for FIPS PUB 140 Test Certificate --------------------------
certutil -s "CN=FIPS PUB 140 Test Certificate, E=fips@bogus.com, O=BOGUS NSS, OU=FIPS PUB 140, L=Mountain View, ST=California, C=US" -S -n FIPS_PUB_140_Test_Certificate -x -t Cu,Cu,Cu -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips -f ../tests.fipspw -k dsa -v 600 -m 500 -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #257: Generate Certificate for FIPS PUB 140 Test Certificate - PASSED
cert.sh SUCCESS: FIPS passed
cert.sh: Creating Server CA Issued Certificate for 
             EC Curves Test Certificates ------------------------------------
cert.sh: Initializing EC Curve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eccurves -f ../tests.pw
cert.sh: #258: Initializing EC Curve's Cert DB - PASSED
cert.sh: Loading root cert module to EC Curve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eccurves
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #259: Loading root cert module to EC Curve's Cert DB - PASSED
cert.sh: Import EC Root CA for EC Curves Test Certificates --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eccurves -i ../CA/TestCA-ec.ca.cert
cert.sh: #260: Import EC Root CA for EC Curves Test Certificates - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp256 --------------------------
certutil -s "CN=Curve-nistp256, E=Curve-nistp256-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp256 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #261: Generate EC Cert Request for Curve-nistp256 - PASSED
cert.sh: Sign Curve-nistp256's EC Request --------------------------
certutil -C -c TestCA-ec -m 2001 -v 60 -d ../CA -i req -o Curve-nistp256-ec.cert -f ../tests.pw 
cert.sh: #262: Sign Curve-nistp256's EC Request - PASSED
cert.sh: Import Curve-nistp256's EC Cert --------------------------
certutil -A -n Curve-nistp256-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eccurves -f ../tests.pw -i Curve-nistp256-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #263: Import Curve-nistp256's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp384 --------------------------
certutil -s "CN=Curve-nistp384, E=Curve-nistp384-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp384 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #264: Generate EC Cert Request for Curve-nistp384 - PASSED
cert.sh: Sign Curve-nistp384's EC Request --------------------------
certutil -C -c TestCA-ec -m 2002 -v 60 -d ../CA -i req -o Curve-nistp384-ec.cert -f ../tests.pw 
cert.sh: #265: Sign Curve-nistp384's EC Request - PASSED
cert.sh: Import Curve-nistp384's EC Cert --------------------------
certutil -A -n Curve-nistp384-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eccurves -f ../tests.pw -i Curve-nistp384-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #266: Import Curve-nistp384's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp521 --------------------------
certutil -s "CN=Curve-nistp521, E=Curve-nistp521-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp521 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #267: Generate EC Cert Request for Curve-nistp521 - PASSED
cert.sh: Sign Curve-nistp521's EC Request --------------------------
certutil -C -c TestCA-ec -m 2003 -v 60 -d ../CA -i req -o Curve-nistp521-ec.cert -f ../tests.pw 
cert.sh: #268: Sign Curve-nistp521's EC Request - PASSED
cert.sh: Import Curve-nistp521's EC Cert --------------------------
certutil -A -n Curve-nistp521-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/eccurves -f ../tests.pw -i Curve-nistp521-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #269: Import Curve-nistp521's EC Cert - PASSED
cert.sh: Initializing TestExt's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw
cert.sh: #270: Initializing TestExt's Cert DB - PASSED
cert.sh: Loading root cert module to TestExt's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #271: Loading root cert module to TestExt's Cert DB - PASSED
cert.sh: Import Root CA for TestExt --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -i ../CA/TestCA.ca.cert
cert.sh: #272: Import Root CA for TestExt - PASSED
cert.sh: Import DSA Root CA for TestExt --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -i ../CA/TestCA-dsa.ca.cert
cert.sh: #273: Import DSA Root CA for TestExt - PASSED
cert.sh: Import EC Root CA for TestExt --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -i ../CA/TestCA-ec.ca.cert
cert.sh: #274: Import EC Root CA for TestExt - PASSED
cert.sh: Generate Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #275: Generate Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's Request --------------------------
certutil -C -c TestCA -m 90 -v 60 -d ../CA -i req -o TestExt.cert -f ../tests.pw 
cert.sh: #276: Sign TestExt's Request - PASSED
cert.sh: Import TestExt's Cert --------------------------
certutil -A -n TestExt -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #277: Import TestExt's Cert - PASSED
cert.sh SUCCESS: TestExt's Cert Created
cert.sh: Generate DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #278: Generate DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 90 -v 60 -d ../CA -i req -o TestExt-dsa.cert -f ../tests.pw 
cert.sh: #279: Sign TestExt's DSA Request - PASSED
cert.sh: Import TestExt's DSA Cert --------------------------
certutil -A -n TestExt-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #280: Import TestExt's DSA Cert - PASSED
cert.sh SUCCESS: TestExt's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #281: Generate mixed DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20090 -v 60 -d ../CA -i req -o TestExt-dsamixed.cert -f ../tests.pw 
cert.sh: #282: Sign TestExt's DSA Request with RSA - PASSED
cert.sh: Import TestExt's mixed DSA Cert --------------------------
certutil -A -n TestExt-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #283: Import TestExt's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestExt's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #284: Generate EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request --------------------------
certutil -C -c TestCA-ec -m 90 -v 60 -d ../CA -i req -o TestExt-ec.cert -f ../tests.pw 
cert.sh: #285: Sign TestExt's EC Request - PASSED
cert.sh: Import TestExt's EC Cert --------------------------
certutil -A -n TestExt-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #286: Import TestExt's EC Cert - PASSED
cert.sh SUCCESS: TestExt's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #287: Generate mixed EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10090 -v 60 -d ../CA -i req -o TestExt-ecmixed.cert -f ../tests.pw 
cert.sh: #288: Sign TestExt's EC Request with RSA - PASSED
cert.sh: Import TestExt's mixed EC Cert --------------------------
certutil -A -n TestExt-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #289: Import TestExt's mixed EC Cert - PASSED
cert.sh SUCCESS: TestExt's mixed EC Cert Created
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt1 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt1, E=TestExt1@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:81:d0:bb
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 13:25:31 2017
            Not After : Sun Jan 21 13:25:31 2018
        Subject: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ee:b8:94:48:04:10:23:b0:db:b3:1f:5b:f4:4a:ae:13:
                    9f:7a:4f:dd:8f:b8:74:86:d4:17:50:04:e3:54:e4:15:
                    b7:82:d0:f1:da:fb:d6:6e:31:90:0f:40:f2:7f:c3:26:
                    84:60:eb:fd:21:44:4f:06:ce:fb:fd:e8:1e:51:a3:f0:
                    c1:27:d8:f5:bd:5c:1a:41:7b:78:de:f4:f3:fc:65:ca:
                    9f:1d:b7:93:96:7a:4c:69:02:13:d6:7f:61:5f:d8:4a:
                    7a:62:d7:13:09:5c:ee:4d:d6:3b:3b:97:84:bf:a6:52:
                    94:e0:85:2b:d8:8e:a3:ee:c0:d6:33:03:dd:fb:83:fb:
                    ff:5c:8a:8f:6e:95:08:ff:83:73:74:11:0d:fe:d1:aa:
                    ea:40:19:9d:eb:4d:38:ef:77:58:06:e4:5d:49:da:53:
                    43:a7:70:3d:57:cb:55:be:95:8e:53:6e:f4:53:df:1b:
                    39:9b:e1:45:51:61:88:11:57:64:93:cf:c8:b9:6e:d2:
                    a1:4c:76:cd:87:b9:9b:47:a8:b2:6b:c0:19:5e:4d:20:
                    8d:5e:1a:fb:85:f1:fc:bd:e9:4a:43:44:e4:56:d0:ff:
                    ae:93:0a:c4:18:81:9f:46:aa:6b:61:63:bd:cd:ef:d9:
                    34:05:d5:f8:8f:d1:3e:92:1d:38:bb:1e:7f:37:42:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:7f:aa:f9:44:e8:00:de:44:63:c4:56:f8:e5:94:00:
        72:cf:3e:1e:30:c8:86:08:bf:a8:fa:08:7f:a4:d3:7a:
        47:da:2b:f6:4b:d1:9b:aa:9a:22:4b:80:e3:f0:8e:42:
        a6:18:c0:b1:50:13:7f:42:34:ce:d9:ed:d8:59:0b:bc:
        44:9e:77:a8:f7:83:60:19:62:a4:67:24:64:ef:b1:87:
        47:2c:7f:a4:90:09:18:1a:5d:a5:5d:12:4c:49:17:71:
        e7:07:fe:cc:99:af:8d:36:a4:3c:cc:1c:70:81:d8:db:
        09:d1:32:9c:ec:fc:e0:a7:29:7d:21:68:92:3e:5a:ad:
        6c:1b:ec:ea:d0:ce:c1:5e:c5:0f:64:14:3b:01:68:b7:
        77:86:d8:93:a1:b1:6a:58:28:50:2e:d9:97:11:2d:93:
        5f:ca:cb:6b:12:3b:1c:4c:75:ba:ef:c3:8e:c8:ea:d4:
        8b:c9:ca:cd:a9:e4:bf:5c:96:30:69:0d:b9:aa:06:11:
        e9:03:ff:26:01:2d:db:c9:83:70:59:04:5a:4c:bc:bd:
        d8:bc:84:60:8d:1d:f5:ec:49:e2:1c:31:0c:71:03:88:
        c0:43:49:96:3a:82:a1:42:64:a6:54:d3:f6:3a:a1:21:
        78:1d:31:fb:b3:e0:4e:a2:3b:9b:01:74:23:f7:e4:77
    Fingerprint (SHA-256):
        C9:E4:AF:BE:CE:D2:24:16:7A:4B:6A:B1:82:B2:E7:72:73:15:DE:80:A7:4F:42:0A:F3:26:A3:2E:72:89:AA:8E
    Fingerprint (SHA1):
        CE:DF:4C:C3:D2:59:01:55:F1:44:08:0C:6E:E5:FF:53:6E:81:B2:F3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #290: Certificate Key Usage Extension (1) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt2 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt2, E=TestExt2@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:81:d0:c5
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 13:25:37 2017
            Not After : Sun Jan 21 13:25:37 2018
        Subject: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:8d:e4:a5:dc:b7:8e:bc:54:48:a6:bd:8d:03:6a:d2:
                    63:84:aa:90:bb:ad:45:47:8b:6f:39:9b:5e:d4:78:af:
                    9d:8f:a7:ca:86:7a:d4:cf:02:72:fd:0e:d9:1f:02:e6:
                    ef:11:6e:f7:91:e1:ac:12:cd:32:36:f5:99:74:6a:fa:
                    fa:e4:7c:91:8f:ff:bf:bf:c5:06:4a:28:af:73:b6:2e:
                    39:58:d3:0a:a8:ea:f3:e7:62:a8:d5:1e:cc:dc:ba:d2:
                    d7:f0:17:c9:56:78:98:3a:c4:b2:87:b7:c1:7b:45:c3:
                    d4:39:b7:d0:41:7c:fc:48:21:9d:2d:ca:23:ab:f2:38:
                    69:31:35:39:e0:4b:83:fd:da:75:22:df:67:ec:f2:cc:
                    6b:2a:93:c2:23:af:68:29:db:43:2a:e9:45:11:d7:9a:
                    d2:e4:cf:31:2c:62:9d:da:46:e0:a4:e6:1b:6f:2b:a1:
                    2a:09:48:e9:e0:fe:d5:02:3c:aa:39:54:67:5e:41:f3:
                    ac:cb:b8:f9:91:49:f7:de:06:00:00:d0:64:d6:c7:53:
                    36:91:4e:93:07:ab:74:2c:f3:74:b7:1d:17:c3:0a:81:
                    9c:3f:96:24:f1:bb:78:7e:24:3f:f1:20:7f:f1:eb:f3:
                    8c:57:e5:b7:23:52:6f:db:c0:ac:31:4d:7e:a6:19:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        32:fd:4b:fe:89:f7:b2:f1:c4:15:86:bc:b1:06:40:a7:
        33:fa:72:29:9f:77:30:af:dd:42:55:bf:ac:16:4a:53:
        5e:51:dc:0a:2f:dd:e8:e7:63:69:28:52:9a:70:35:9c:
        ba:8b:ab:2c:12:9d:ed:3b:74:fc:05:a8:81:d4:4d:95:
        8a:aa:b8:99:88:df:11:53:27:ae:7b:d1:d4:52:e7:7e:
        a9:b7:83:c4:31:61:45:01:b1:e6:b8:26:a3:09:c3:fb:
        3a:14:db:48:e5:07:f7:3a:52:b5:38:3d:c0:67:ff:c0:
        18:cf:ce:c2:1d:4b:ca:b3:28:34:7d:ab:9d:b2:e7:b6:
        85:6a:94:82:8f:0d:54:be:56:cc:47:60:60:b6:f5:93:
        ba:82:c7:3d:1d:7b:d0:fc:84:77:dc:ef:b5:31:11:b6:
        cb:89:6a:b5:ba:eb:73:fc:80:c8:37:f1:29:19:39:2c:
        d2:ca:8b:c7:ca:15:fa:b7:e0:2b:63:25:bc:9d:3f:96:
        e0:9d:38:5e:21:1a:93:da:82:15:40:e8:bc:40:de:53:
        37:ce:09:f7:f6:67:9f:a9:4b:43:0e:c6:b0:4d:8d:6b:
        fa:b3:f2:82:99:45:c7:24:d4:fb:c9:0e:81:09:6e:54:
        48:d9:13:64:e9:b0:1a:14:16:fa:c9:68:16:e9:3c:bf
    Fingerprint (SHA-256):
        D4:3C:25:04:89:E3:1A:E6:5D:DF:E4:03:89:9B:CD:F3:0A:54:D2:D0:8B:66:DC:9C:4F:41:77:F6:46:AD:DF:30
    Fingerprint (SHA1):
        A9:82:CE:44:2E:7C:CC:A5:60:2A:12:54:62:12:FB:1C:D6:77:1C:59
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #291: Certificate Key Usage Extension (2) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt3 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt3, E=TestExt3@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
y
-1
n
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:81:d0:ce
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 13:25:40 2017
            Not After : Sun Jan 21 13:25:40 2018
        Subject: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:99:21:dc:e2:5e:13:bb:2e:bf:6d:40:d9:0c:a4:be:
                    76:39:89:4b:67:76:47:53:58:05:d7:05:5f:c4:a0:6c:
                    5a:02:48:52:10:de:3d:2a:f4:de:98:4b:aa:8b:b3:8b:
                    ab:4b:32:7c:64:e8:c6:37:10:68:de:3a:23:d3:eb:29:
                    04:3c:16:5e:c8:03:4d:4f:33:1e:8a:6a:6c:16:a6:02:
                    b7:3a:ce:31:b0:55:1c:25:0b:fb:ae:fc:42:97:d9:48:
                    28:ab:19:55:77:24:1c:e5:0b:28:15:62:bf:c5:1a:7d:
                    fe:0c:2d:71:77:9f:c3:eb:43:10:f8:e9:52:03:fb:ac:
                    51:f7:1f:64:dc:e3:8a:e1:6b:26:9a:51:4d:c9:bf:02:
                    a2:7f:6b:e8:0e:08:e5:db:9d:5c:00:cc:4f:87:d6:a8:
                    f3:5a:d9:57:2d:28:b9:48:5c:6f:65:58:49:f6:10:97:
                    11:da:88:68:66:75:6a:20:a0:f5:c9:a2:b3:8d:fd:0f:
                    e3:df:8d:36:df:ca:df:a6:36:cc:f4:4e:5c:dc:a5:b4:
                    d1:cf:83:2a:4a:d8:b8:54:b2:c9:7b:52:b2:42:52:fa:
                    66:0e:bc:ca:2c:78:d0:24:3d:6b:b9:52:36:c0:44:80:
                    e5:cb:95:5a:80:f0:b2:d1:2c:f0:a4:01:0c:59:ea:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:9c:f2:0c:69:25:a2:07:f6:7b:7b:bb:c9:1a:32:e8:
        a0:5e:10:7f:a6:55:ed:c4:a1:81:3a:37:35:36:26:cc:
        e4:df:ba:d6:97:ce:7e:8d:d4:43:f1:d2:a9:23:91:aa:
        5d:45:e4:5b:b9:a1:1c:80:35:0e:42:2e:0d:e1:d7:30:
        c2:00:81:c4:92:34:23:37:28:5d:68:82:d6:8e:1a:32:
        95:3c:c0:f9:b2:b1:08:df:f7:78:dc:18:2e:aa:0f:bc:
        93:30:30:45:1f:ee:3e:c3:7d:6f:a2:da:10:38:15:cf:
        7a:e8:85:34:1f:31:35:60:86:e0:69:59:85:f6:94:e3:
        9c:b1:c1:92:7e:c4:ee:25:f9:11:41:96:46:ad:d4:d1:
        ef:e4:ec:38:5e:20:ce:d8:da:de:86:b1:8a:6d:79:2c:
        6a:ea:81:ab:ea:65:dd:20:72:b6:0b:d9:af:de:50:ef:
        dd:82:41:56:9b:bb:ab:34:b1:6d:97:d8:e1:84:06:48:
        58:6d:4f:46:ba:ab:20:2d:00:2e:3d:b0:ba:e4:a6:d2:
        2d:c3:cf:f4:87:1e:bc:6a:6b:ac:3d:05:06:79:b0:03:
        fc:b6:55:ed:f9:cb:45:49:4b:5e:00:89:42:08:06:91:
        d5:ba:40:e7:91:ef:89:01:1b:e3:6f:7a:87:9f:70:08
    Fingerprint (SHA-256):
        4A:69:E2:C3:98:5A:0D:B0:9F:5F:39:23:E6:09:9E:DC:04:B0:04:41:26:EC:65:98:6E:07:85:59:3B:8B:98:66
    Fingerprint (SHA1):
        7C:08:0B:11:63:5A:5A:7A:25:CF:F7:D8:F2:5D:2F:45:92:9F:DD:5B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #292: Certificate Basic Constraints Extension (3) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt4 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt4, E=TestExt4@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
n
-1
y
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:81:d0:d4
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 13:25:46 2017
            Not After : Sun Jan 21 13:25:46 2018
        Subject: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:94:36:38:3d:ee:89:02:87:b3:16:f4:f1:a3:b0:77:
                    7e:20:a4:d8:6a:af:06:ed:9e:a9:fa:21:2b:97:f9:2a:
                    30:86:f9:6d:04:86:1a:07:3c:e3:a9:32:f4:26:3a:27:
                    ac:30:b6:d8:3c:2d:88:a4:00:95:bb:a7:46:7b:4a:e0:
                    ff:b9:8f:63:2f:0a:a6:96:91:96:b2:84:e6:92:09:96:
                    10:2e:ca:67:2c:bf:81:85:11:e7:32:a1:dc:0b:64:06:
                    e3:e0:f8:31:cb:90:22:9c:89:30:31:5f:46:b2:71:e1:
                    e9:c7:c4:b2:a9:89:14:d0:ec:32:0a:44:81:72:ef:2f:
                    1a:79:b3:85:f2:4b:d5:4b:bb:af:6f:ec:89:cd:5c:a5:
                    4e:b7:e6:4d:3d:97:68:3c:37:a9:be:72:a0:bb:dc:de:
                    7a:5e:61:b6:5f:34:29:9a:c0:b5:12:77:77:c4:31:45:
                    04:10:71:fa:c5:a1:73:dc:2b:94:cf:7a:e5:3b:4f:3c:
                    64:6d:c7:b7:06:27:eb:e9:ac:b2:34:47:6d:ab:0f:f0:
                    28:e1:55:c0:9c:e5:35:bb:e3:b7:b6:14:fd:03:ff:9e:
                    71:17:1c:62:72:92:a0:25:10:79:8a:c4:b0:ef:cf:42:
                    25:da:7b:27:3a:1c:89:a3:0a:07:4f:8d:f1:18:e6:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is not a CA.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        29:cc:a2:65:51:32:81:d9:0e:0f:3c:3a:4d:fc:fc:24:
        43:e5:ea:91:9f:a5:17:50:c0:21:4a:01:e8:7f:31:de:
        3c:27:9c:42:e5:c2:2f:fa:95:ca:9c:b5:bc:01:f3:a3:
        8e:57:3d:a9:dc:60:21:fb:78:fe:4a:cf:18:f0:76:04:
        4e:e9:7c:69:6c:96:f7:65:fd:27:d7:89:a3:e5:4f:50:
        2f:d4:a5:df:a5:d0:0c:e6:f4:2e:5b:f0:46:7d:47:0b:
        ee:a7:84:8b:26:c3:a6:c2:95:00:04:8d:60:5a:2d:2a:
        e2:75:d7:3c:f9:7e:99:ef:23:81:b3:ed:16:8a:c7:1d:
        7e:bc:bf:23:00:5e:2a:30:60:5c:c3:82:08:66:c1:44:
        05:1a:0c:0f:4a:22:94:60:8f:83:75:69:ed:96:48:5d:
        1b:d8:80:31:21:7c:08:c3:64:34:5e:fd:9a:d5:91:fb:
        17:45:5c:43:b2:87:ad:66:c2:15:ca:12:97:e4:db:97:
        e0:36:fa:4a:b4:88:c9:c0:ea:62:87:fc:7c:db:87:7a:
        a3:1d:a4:d3:ca:de:cc:36:b3:7e:db:e6:b1:d9:2a:e5:
        bf:f6:70:a8:73:87:0f:ed:6c:90:5b:4c:50:63:0a:50:
        78:26:e0:ce:76:59:1c:4c:fe:c8:d3:41:e7:3b:af:7a
    Fingerprint (SHA-256):
        7F:06:FF:9C:60:83:F3:D9:9C:B5:93:25:E2:07:16:16:9F:82:2D:5F:75:9F:E1:77:CF:CA:27:F0:24:DD:03:34
    Fingerprint (SHA1):
        63:A1:B7:05:8D:99:70:54:13:CA:71:D8:5D:B4:51:7E:24:14:D1:60
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #293: Certificate Basic Constraints Extension (4) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt5 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt5, E=TestExt5@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
y
12341235123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:81:d0:e0
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 13:25:51 2017
            Not After : Sun Jan 21 13:25:51 2018
        Subject: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fb:2d:65:97:21:eb:9b:63:12:4d:2a:63:37:60:32:d4:
                    38:7e:d9:6a:40:98:06:4f:bd:53:4a:2e:01:ee:ac:e6:
                    2b:a0:8a:92:52:36:fc:30:fb:e5:2f:62:8e:36:4b:9a:
                    79:40:df:6f:21:f0:25:65:41:36:61:21:d7:94:cd:c2:
                    f5:ce:36:f3:7b:49:bc:cf:72:49:15:01:cb:24:0c:4f:
                    3d:9a:09:f5:54:4a:13:33:7f:4d:60:0f:56:66:52:2d:
                    17:b6:b3:4a:8a:5f:ea:8f:d0:73:a2:50:79:d6:22:a0:
                    80:59:e6:f7:0d:3b:fb:e3:77:d6:09:9d:f3:1d:d8:fc:
                    57:58:fb:31:b4:ab:d0:53:4c:c1:13:66:10:e0:19:55:
                    4e:ba:2a:5f:60:9d:3c:21:94:3b:c2:fa:ee:62:e7:6f:
                    05:2e:0e:5e:a5:fd:b0:0e:57:e2:12:86:27:4f:37:02:
                    df:d1:c1:ef:7b:71:43:d5:69:1c:d4:27:10:35:34:48:
                    b0:20:78:8a:24:41:a3:5b:a3:f0:56:e4:cd:2a:c5:54:
                    4e:18:6b:a1:3b:f9:1c:a5:aa:73:62:d6:29:14:12:85:
                    ef:67:d6:ad:a7:56:b9:45:f2:7c:27:ce:ba:3f:86:4f:
                    24:1a:60:f3:1e:66:ac:58:b6:63:af:f3:f6:47:0c:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Key ID:
                12341235123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8b:f7:c7:f8:39:06:0f:28:b4:ed:ee:47:69:da:7a:95:
        ea:64:2a:c5:75:36:8c:61:4b:cb:83:c8:99:0d:ce:47:
        d9:c9:ff:d0:53:5d:16:98:b8:e8:47:a5:fd:5e:b6:b6:
        98:5b:af:19:d7:e4:65:ec:b3:6c:07:6e:3e:9b:22:96:
        bd:73:72:70:5e:de:bd:5e:11:e6:b1:dd:ce:7a:63:b9:
        e5:f7:ec:77:59:a4:c6:39:36:88:07:96:28:00:69:76:
        1c:7b:8f:d2:8b:2d:93:bc:eb:ef:4b:0c:95:ce:42:86:
        64:e2:66:31:14:7e:b4:de:29:6f:49:38:0e:88:14:cb:
        6f:72:56:46:6a:98:0a:f8:99:e4:cd:d3:8d:94:54:b0:
        86:00:80:ad:85:31:56:f3:43:cc:c9:63:5f:f2:f4:3c:
        91:7d:8b:95:d6:98:9f:a5:14:50:f9:37:8d:21:22:8a:
        ec:76:15:6e:4d:98:ff:d4:b8:44:da:07:69:95:05:7c:
        ec:9a:bb:61:a9:8f:2b:c7:3c:e3:c1:63:68:96:bf:9e:
        9b:01:72:36:0d:62:95:64:57:0e:ab:bc:68:77:97:a6:
        d0:85:88:aa:44:12:1a:ff:03:69:75:34:88:8b:25:99:
        95:43:80:d9:47:4c:1b:8d:1d:2f:bd:eb:bb:9c:e7:96
    Fingerprint (SHA-256):
        47:3A:90:51:D1:EB:90:F2:7C:3F:BB:2E:DB:DB:63:67:E4:AD:2A:6A:1F:91:0D:C9:CE:48:30:51:9A:02:A3:B8
    Fingerprint (SHA1):
        C6:0A:37:95:63:B5:65:1E:C6:8E:B1:3A:E7:51:DE:5E:B7:74:8B:AF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #294: Certificate Authority Key Identifier Extension (5) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt6 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt6, E=TestExt6@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
y
3
test.com
214123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:81:d0:e9
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 13:25:55 2017
            Not After : Sun Jan 21 13:25:55 2018
        Subject: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:4c:57:4d:ed:e5:55:a2:64:6d:e3:80:3f:3a:4b:f8:
                    07:03:ff:9e:6e:70:ae:a4:2d:c3:ba:5b:14:eb:8e:ea:
                    ce:65:01:5b:4e:db:b7:bc:8c:ca:9f:9a:a4:fd:ba:0c:
                    b9:18:5a:35:08:4b:12:f0:78:2f:fc:e9:8b:73:2a:eb:
                    79:7e:65:1e:bb:ab:19:b1:1e:1e:d4:d7:5d:f8:e3:a4:
                    62:1d:07:ce:23:aa:01:e2:7b:8e:c8:ec:75:55:ca:65:
                    fc:3f:d8:27:81:59:6b:44:8e:48:cd:a8:56:39:30:70:
                    53:64:65:26:8d:b1:7f:be:f5:bc:89:b2:b5:e9:66:cc:
                    2d:6c:ae:ec:56:58:6f:96:00:bf:8b:73:b4:a8:4b:ec:
                    e6:88:22:cf:39:b0:f2:d6:95:08:04:55:a4:2c:c1:d1:
                    35:83:33:f4:90:87:76:23:4f:4e:aa:ac:4e:4a:f4:de:
                    37:4a:68:21:1c:fa:44:3f:56:bc:35:c6:dc:cd:68:6e:
                    94:b5:a6:e2:0b:e7:47:62:6c:ae:9c:ae:ba:1b:0a:f1:
                    b5:2b:51:bc:50:10:1f:b0:05:e0:96:67:c9:7e:be:5b:
                    bb:1c:dd:e7:72:85:c7:e3:5d:c2:03:1b:1a:d3:c0:45:
                    23:0e:bd:8a:e9:6f:35:bb:a1:c4:14:cc:ae:05:da:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Issuer: 
                DNS name: "test.com"
            Serial Number:
                214123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:5f:ee:82:90:2a:86:1b:16:e2:90:e9:05:cd:3a:5b:
        ff:03:4c:bf:28:2b:aa:27:bc:dd:55:78:40:8a:7d:df:
        e1:e9:01:6b:85:b7:19:2f:1a:ba:c6:e5:91:d5:07:7e:
        fc:0a:10:df:79:72:3f:42:73:ef:1a:16:6f:cd:73:46:
        0f:f3:16:8b:50:4a:c1:14:a6:79:56:f9:7b:e0:9d:e6:
        34:f8:46:47:00:9c:f6:5b:4c:16:bb:9a:e7:63:9a:39:
        c4:75:65:2d:d1:cc:29:bc:4e:22:5b:76:aa:c0:0a:ce:
        2e:a7:22:16:1e:72:60:21:be:f0:d4:13:05:5c:1a:7b:
        2e:99:a9:92:6d:02:27:5e:ed:0a:1a:c2:16:48:e8:c1:
        50:f6:a9:f5:f5:2f:77:8d:f7:05:e5:5c:e7:b9:f4:ad:
        27:2c:17:3a:65:f6:7d:fb:30:79:50:71:43:a4:92:35:
        dd:26:74:3b:09:56:89:e2:0d:95:21:9f:81:4c:74:0a:
        cd:f8:33:71:86:bd:35:e1:f4:97:c1:e8:99:1c:25:34:
        1b:71:a0:de:89:df:b8:01:d6:c8:4a:fb:50:1a:fe:b8:
        1d:0e:c0:4e:4a:87:65:a8:9f:bf:68:a9:18:2a:09:e7:
        c8:53:bb:88:65:ba:43:2d:39:83:99:59:5c:0d:cd:7f
    Fingerprint (SHA-256):
        7A:C7:23:69:B0:DA:03:E1:D2:A3:D8:10:84:B5:4D:7D:3E:B7:1D:DC:AB:29:FE:18:B6:17:E7:D8:BF:38:56:01
    Fingerprint (SHA1):
        31:19:B2:0A:72:E3:07:FF:0B:3B:05:D4:C8:F9:6A:64:B3:4A:F5:9A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #295: Certificate Authority Key Identifier Extension (6) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt7 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt7, E=TestExt7@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
1
2
rfc822@name.tld
3
test.com
8
1.2.3.4
9
OID.0.2.213
10
0
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:81:d0:f2
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 13:25:59 2017
            Not After : Sun Jan 21 13:25:59 2018
        Subject: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:50:cd:bf:e9:ed:3d:ea:18:66:b2:8d:61:65:5e:60:
                    52:a1:58:ed:ab:0a:b3:57:b6:83:6e:1e:52:59:f5:a2:
                    c4:2b:50:0d:ba:3a:9c:5f:44:46:a3:5f:ad:a4:2b:0d:
                    77:80:4f:6c:1b:d9:a1:fd:11:f7:8e:4d:90:f7:95:a3:
                    9d:72:c9:51:77:e0:8c:88:7c:27:c2:bc:ec:f5:35:4a:
                    51:b8:8e:55:51:dc:04:31:98:f0:86:ba:56:54:ca:d8:
                    19:cd:97:8f:8d:eb:36:03:99:19:b6:65:fe:74:1b:18:
                    0a:97:06:77:de:43:2a:74:0c:4d:6b:d3:65:78:82:9c:
                    d9:91:7c:b4:fe:20:e9:15:62:e6:25:58:03:1d:24:49:
                    da:c0:a4:fd:31:d1:ba:3d:c1:9a:b4:41:3e:82:f9:6f:
                    e1:29:53:e2:1b:e7:e9:21:91:8c:a8:40:3c:6d:ca:74:
                    48:86:14:a6:e9:f3:19:c2:30:38:3c:0d:96:eb:07:cb:
                    04:2f:df:3e:6e:dd:5d:df:91:c0:86:dd:8d:34:60:9b:
                    ab:8f:67:66:9e:26:83:e2:8e:e7:a6:ef:02:0b:b8:84:
                    3d:42:e3:5a:26:f3:b5:f0:40:18:fa:6c:dc:d0:20:30:
                    be:8a:39:51:26:8c:3c:e9:65:01:61:ae:93:5b:81:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RFC822 Name: "rfc822@name.tld"
                DNS name: "test.com"
                IP Address:
                    87:07:31:2e:32:2e:33:2e:34
                Registered ID: OID.2.955.79.73.68.46.48.46.50.46.50.49.51
                Reasons:
                    80
                    (7 least significant bits unused)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:b9:6e:6f:fc:90:e9:27:2c:14:5e:45:72:96:00:8b:
        0b:cb:8c:cb:66:41:a5:dc:e1:c7:0f:46:aa:29:b5:35:
        84:80:77:bd:7f:34:28:c8:64:cb:81:79:44:b6:11:94:
        5b:e9:98:7f:3c:68:48:14:b5:72:27:82:f3:d2:f3:2d:
        43:a8:1a:86:17:24:cd:6d:36:f6:22:0d:61:27:79:f9:
        9b:40:a8:fa:25:00:35:b5:a6:c8:c7:31:f5:74:a9:db:
        5a:61:76:ad:54:de:71:07:50:0d:e5:f7:5e:24:01:d3:
        43:a9:ec:fe:6a:2a:1d:03:31:a6:cd:df:f2:64:61:d2:
        e6:f0:8a:3c:77:36:cc:25:1b:83:56:2a:70:2d:4d:8e:
        97:6f:95:83:18:80:da:e8:0b:ad:39:1c:67:4f:81:e4:
        4b:30:0b:40:58:9d:73:ac:c3:8b:30:97:bd:f1:9e:10:
        9a:0b:5f:c3:30:6b:de:b8:f3:d4:88:eb:76:6b:39:c7:
        f5:b4:d1:6d:7a:6c:99:aa:79:8a:92:03:a2:cf:9c:51:
        03:db:d4:30:da:dc:d9:6a:f7:91:2a:7a:85:3c:fb:6c:
        0a:e1:94:04:5d:d2:0e:a4:51:0a:1f:37:dd:6d:05:ed:
        30:27:7e:9e:42:e1:89:24:a9:3f:82:95:1a:8c:8a:d0
    Fingerprint (SHA-256):
        18:E0:02:2D:02:BF:2E:E7:53:82:37:A5:2C:97:A5:40:C2:AA:9B:65:90:86:03:7B:93:C1:1C:D0:60:A2:2C:ED
    Fingerprint (SHA1):
        02:40:BB:52:91:EF:EB:79:B9:B4:1B:02:17:F6:E7:6A:53:97:59:81
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #296: CRL Distribution Points Extension (7) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt8 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt8, E=TestExt8@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
2
SN=asdfsdf
4
3
test.com
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > Enter the relative name: 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:81:d0:f8
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 13:26:04 2017
            Not After : Sun Jan 21 13:26:04 2018
        Subject: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e8:d5:39:51:e8:5c:c8:89:37:3b:ed:79:52:88:2d:00:
                    a2:9a:74:a7:40:a6:97:f6:ca:8c:f8:50:3d:a7:71:71:
                    a8:aa:88:3b:50:85:9d:76:ac:be:4a:9c:0b:26:a5:c3:
                    13:d8:88:36:42:22:d8:e5:cf:8a:51:10:2b:01:a7:6c:
                    8a:c4:28:55:52:b3:a1:fa:cc:63:18:c4:9e:20:b1:be:
                    49:5b:56:15:60:60:3c:63:82:2e:fe:a7:9e:cc:51:9c:
                    97:0b:8c:71:a5:39:5f:59:21:cd:3a:4b:e8:6b:2e:83:
                    02:bf:c8:ef:e9:1a:6c:31:4c:60:9c:d7:db:1c:cd:49:
                    ea:04:a2:93:a2:ed:56:7e:f2:00:5b:69:c0:7f:de:ab:
                    f2:ab:d0:ba:89:85:e3:89:42:55:85:96:47:7e:e2:62:
                    d2:23:f8:98:c2:bb:af:79:e6:3d:d1:2f:97:c6:e6:17:
                    9f:f7:10:8b:30:ee:07:15:0d:6c:a1:a5:93:00:3e:1f:
                    33:35:3f:fb:ad:5f:24:40:ea:86:21:b1:7b:e1:5d:49:
                    63:89:34:f8:82:52:0a:23:08:15:1f:d4:7f:cd:f4:b8:
                    eb:e9:78:90:8a:4a:c0:8e:5d:db:f5:86:52:d3:02:74:
                    b3:8a:cc:b9:60:78:50:91:23:f3:46:7f:ff:1c:21:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RDN: "SN=asdfsdf"
                Reasons:
                    08
                    (7 least significant bits unused)
                CRL issuer: 
                    DNS name: "test.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2f:3f:b5:c9:c9:64:0d:54:17:32:ed:75:30:7d:a5:c2:
        88:36:74:36:6f:85:b2:27:b3:18:10:8b:98:ab:42:0c:
        3d:17:ac:20:f9:a8:52:d8:8b:25:85:f2:66:da:61:da:
        b0:88:c3:46:2f:5e:f3:0e:d8:d7:6f:64:21:d8:4c:26:
        b1:a5:06:e3:18:7b:14:3c:f8:eb:1c:fd:60:ab:61:56:
        0f:b5:47:b8:33:4e:02:1a:af:76:b4:57:76:25:42:ab:
        71:f7:f5:13:88:33:01:81:d9:0b:a6:0d:4d:d8:52:aa:
        89:94:37:63:61:43:35:2f:6d:33:0b:e8:77:76:00:a0:
        dd:9a:26:4f:b4:01:10:16:0c:8f:6c:96:6c:0a:d2:f3:
        0d:29:dd:e8:32:de:87:29:07:fc:cb:ef:2d:76:47:6e:
        33:00:4b:ca:e9:8d:9a:ed:ec:e9:76:69:e0:1b:d3:fc:
        97:05:44:cd:5f:d6:9b:d3:e1:d9:24:5f:95:2e:78:6b:
        11:05:3d:1e:8b:36:f0:b4:69:1f:7d:82:0a:56:3a:be:
        54:26:40:d8:e7:34:51:bb:32:ac:f0:a8:23:6c:19:94:
        20:9c:bf:37:4a:a2:1e:63:af:9a:f4:59:a7:2f:eb:16:
        06:ec:31:53:9a:cb:78:56:ea:66:48:29:19:14:4b:20
    Fingerprint (SHA-256):
        51:58:E6:A3:61:FC:7F:F6:9B:91:6F:0A:7F:D9:ED:CB:F7:62:A7:FC:8E:9A:92:B5:7C:C0:8D:43:22:FA:3B:E4
    Fingerprint (SHA1):
        18:AE:91:1B:CB:62:43:14:37:52:F1:AC:AA:5A:9C:0A:E5:DE:32:96
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #297: CRL Distribution Points Extension (8) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt9 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt9, E=TestExt9@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -5 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
10
n
Generating key.  This may take a few moments...
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:81:d1:02
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 13:26:08 2017
            Not After : Sun Jan 21 13:26:08 2018
        Subject: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:a6:4c:5b:7f:ac:3f:a4:c5:1a:b2:83:5b:ef:63:94:
                    43:aa:88:3f:24:0e:e7:b7:19:7d:41:1a:fd:53:c1:e6:
                    c7:25:a2:09:2a:ed:03:92:7e:24:03:97:59:99:99:0c:
                    6e:82:fe:46:3a:04:68:78:7f:2f:b7:05:32:00:e2:16:
                    8a:14:e5:cf:f7:35:58:91:4a:e4:27:62:4f:09:1b:64:
                    79:49:51:e0:70:4b:14:2a:1d:4f:e6:56:f4:4e:e6:75:
                    84:7d:98:4a:2c:2a:82:d8:fd:99:7d:e1:a9:90:e3:18:
                    b7:b8:a6:f5:97:ba:85:47:b0:93:cc:ba:e9:70:44:94:
                    7e:b1:c6:aa:44:b9:64:a0:73:89:4a:00:4f:61:bd:c5:
                    a5:52:cc:64:37:64:12:0c:ce:db:b1:e2:5f:02:8c:09:
                    3a:00:e0:94:aa:d0:aa:be:82:98:40:3c:a1:e4:6f:51:
                    08:85:e7:17:cc:78:64:8f:6a:b4:12:e3:4d:e7:66:e7:
                    7a:d8:76:6a:33:eb:e1:84:54:82:8c:72:15:cb:d5:e1:
                    85:8f:8b:78:ab:25:d1:6f:e1:2b:66:29:7c:1b:a1:d4:
                    ad:61:c1:17:7b:9c:d7:82:d7:98:c1:5a:b6:a7:23:05:
                    79:3e:c0:6b:13:82:f7:01:1d:9e:c7:ff:db:75:53:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL Client,SSL Server,S/MIME>
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:9f:f1:e2:ad:e9:15:a7:ac:c0:88:c4:55:d7:3c:d9:
        a3:82:6a:52:55:dc:00:ca:ab:46:7d:a1:a8:fb:9c:f0:
        cc:b0:2b:cc:2e:05:6e:c7:dd:27:a8:02:89:13:9e:7d:
        cd:3b:1a:5b:4e:b1:db:40:54:6c:be:df:fd:7e:62:c9:
        c5:bf:d9:c8:26:ad:1f:cf:b1:99:14:92:d1:8a:82:f6:
        7b:65:1a:ae:e0:1f:66:b5:52:59:3d:e9:74:1d:7b:a6:
        30:87:c6:fe:4e:71:2c:28:4a:3f:b0:2b:e7:e8:0f:96:
        97:ff:96:ae:7d:25:49:3b:e1:36:9b:6b:19:3d:b2:f1:
        7c:e6:5a:6e:5b:dd:2f:ad:b1:45:f4:08:00:78:ab:5f:
        da:78:31:24:6b:52:28:44:84:f1:1a:b7:53:64:6d:cf:
        c9:05:01:ae:f8:4c:3b:0b:90:8f:fd:7a:19:cb:bf:a1:
        b7:63:12:31:36:e5:a4:fd:e0:52:cb:31:95:50:9b:c3:
        72:43:af:53:b4:7a:4e:32:9b:ad:1f:56:67:99:f1:85:
        9b:88:27:fd:d5:dc:fb:f7:fb:f3:70:10:c1:e3:3a:7a:
        a3:1d:a2:83:ff:2f:0d:3f:0d:cd:e8:02:85:2d:58:26:
        e8:ce:9b:e1:59:2f:d7:00:85:8c:90:10:a2:0f:50:5e
    Fingerprint (SHA-256):
        8B:7E:A6:2F:AD:6A:80:84:CF:4E:82:17:3A:85:7A:EC:C1:B1:2B:03:87:E7:89:A4:50:D7:31:5C:29:5A:AE:1D
    Fingerprint (SHA1):
        A9:38:7C:80:91:C9:52:1D:9D:92:1F:B7:BE:AC:2D:2E:B3:27:80:9A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #298: Certificate Type Extension (9) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt10 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt10, E=TestExt10@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -6 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt10
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:81:d1:0a
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 13:26:12 2017
            Not After : Sun Jan 21 13:26:12 2018
        Subject: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:31:c6:5a:67:22:ee:ed:c2:71:7a:4a:19:7b:ea:0b:
                    33:10:df:2a:a7:ac:53:06:c9:88:c4:1c:75:4b:45:78:
                    79:60:33:5d:31:6b:8f:72:1a:96:1c:77:03:88:d4:cf:
                    6b:14:46:fe:4a:71:69:8e:5f:de:6d:8d:4f:65:da:41:
                    97:ba:73:51:1c:4c:b8:d4:c6:c3:78:1a:cb:52:ad:8a:
                    34:b7:5a:f9:80:87:aa:8a:99:62:16:e2:41:db:74:bb:
                    78:50:32:63:9f:2f:3a:aa:a7:00:67:65:0d:56:88:52:
                    90:e8:63:64:b0:e7:2e:98:da:89:d9:99:b3:6b:16:b3:
                    cc:1d:14:cd:3e:7a:90:95:65:f5:1a:0d:d8:8c:60:61:
                    f5:40:fe:9c:a5:3d:45:0a:85:bb:6c:b2:ff:bd:33:92:
                    21:ac:4f:d0:f0:96:ba:7d:46:7d:ef:34:17:69:ea:5f:
                    31:33:36:77:e5:10:41:91:ce:e5:f3:57:41:b9:25:c5:
                    59:68:dc:04:47:a1:57:fd:03:2b:6a:90:ae:36:95:04:
                    3a:ef:94:3a:2d:76:38:3d:b2:f1:a6:e0:8d:90:a2:29:
                    7c:af:7a:8e:36:33:cd:f2:fe:90:e9:b0:23:fd:6f:14:
                    ef:ea:cd:2e:4f:5b:19:c3:62:be:cc:7c:d4:7a:94:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Extended Key Usage
            Critical: True
                TLS Web Server Authentication Certificate
                TLS Web Client Authentication Certificate
                Code Signing Certificate
                E-Mail Protection Certificate
                Time Stamping Certifcate
                OCSP Responder Certificate
                Strong Crypto Export Approved
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:b1:28:56:64:e3:2a:40:ac:92:7f:4d:d1:74:b9:3c:
        21:cb:13:67:c6:2f:8c:9a:50:9f:b5:6c:bc:2e:57:e7:
        15:9b:bb:e0:44:f9:e3:17:1b:43:82:b9:c5:a0:01:fb:
        26:65:cd:68:4b:ab:2b:69:71:2f:d4:3c:f7:e4:29:79:
        4e:ac:a2:44:fc:8c:c4:d6:1e:bf:47:8e:28:e8:84:ce:
        a2:a9:a6:fd:42:90:6d:2e:28:fb:c6:57:0f:72:21:4a:
        98:99:bb:14:7d:4f:4a:76:75:f4:36:45:1b:33:2f:6a:
        b4:77:04:e6:11:89:64:84:e3:18:96:6b:f5:91:f2:a8:
        70:5c:6d:2a:b2:91:71:77:5d:b3:71:b3:22:ff:66:76:
        0b:3f:fd:c1:e3:40:be:3c:d6:0e:a3:62:75:27:ff:8d:
        08:b1:ac:f1:7c:b5:27:4c:a0:59:52:e5:20:49:68:ea:
        d3:b5:1a:f5:57:85:d6:89:9c:c5:4d:12:27:4b:20:d8:
        25:4a:59:9d:42:bb:af:47:b5:29:14:f4:f3:5b:12:41:
        e5:3a:6b:37:dc:a1:ae:43:60:d0:92:51:91:3b:ed:ed:
        c4:05:c8:e6:d9:22:07:19:7a:14:67:16:ce:db:43:37:
        eb:5c:61:1a:f6:c8:49:ad:07:ee:28:fd:7b:5a:ca:40
    Fingerprint (SHA-256):
        E2:95:6E:A4:AE:4F:D1:AE:90:19:F1:3D:B6:8E:30:D8:03:69:B2:82:AB:B6:60:0A:F8:2B:1D:04:3F:AD:E0:8F
    Fingerprint (SHA1):
        82:FD:21:5D:72:AF:C2:03:BC:0F:69:4A:90:96:76:ED:28:D9:E8:ED
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #299: Extended Key Usage Extension (10) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -S -n TestExt11 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -L -n TestExt11
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:81:d1:13
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 13:26:17 2017
            Not After : Sun Jan 21 13:26:17 2018
        Subject: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a0:a7:64:b0:cb:32:8f:ae:c0:c7:f1:a4:46:02:26:7e:
                    b9:ad:90:31:8f:9a:41:ce:8a:e2:ef:3d:03:b3:67:0f:
                    cd:4c:e3:37:ad:56:3c:8c:4f:3f:39:30:4c:c4:ac:2e:
                    42:8a:0d:7a:95:75:93:a0:75:b5:55:a7:46:62:26:ae:
                    cd:45:d9:07:91:a5:ad:e8:a4:25:cb:c5:c0:fb:9e:4d:
                    db:1a:15:1f:49:76:63:6e:48:5c:0e:ec:5e:08:40:74:
                    e2:f7:c1:34:9b:17:1a:aa:59:a9:ae:d6:b9:c7:89:e9:
                    68:87:83:36:65:ef:aa:af:86:59:42:19:9f:17:5b:a1:
                    02:71:94:d8:95:eb:18:58:17:e0:6f:ac:c9:2b:4c:5d:
                    a6:91:c0:35:e1:ec:69:d8:13:08:e0:f7:d5:38:33:32:
                    21:38:c4:00:f4:f7:78:c9:5c:e1:35:d0:45:c8:e3:ca:
                    b0:43:6c:47:6f:75:03:54:3e:d5:2a:3c:96:e9:5e:07:
                    74:be:ec:d4:02:1c:a3:a7:08:29:7a:87:d1:76:66:ec:
                    9f:a2:1b:57:2d:df:03:a8:fa:0d:b0:01:0e:87:dd:37:
                    f8:80:8f:c1:b3:68:05:ff:2a:27:66:2e:d3:8c:d7:10:
                    ea:87:cd:c8:2c:c0:8f:81:e1:81:cc:0c:1f:4f:fd:49
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        68:87:dc:c9:d2:6b:b6:60:4e:f4:ee:9a:0a:a5:d2:34:
        11:9a:93:a8:18:ba:26:77:dc:66:1a:e6:fe:69:15:1e:
        29:22:a4:5a:7c:2c:8a:2d:15:4c:13:4f:89:9b:b1:a0:
        89:db:14:a1:da:d6:ef:60:18:be:83:d8:d0:67:7a:14:
        42:b3:0d:5c:ff:25:d5:b9:11:8d:fa:99:e6:18:e9:44:
        2f:bf:9f:30:6d:42:6d:93:5e:a5:38:52:87:5f:69:3b:
        8a:b0:85:75:63:6c:b8:c6:b2:69:a0:b2:6c:79:cc:a8:
        9a:6c:4a:ca:a5:c3:9b:dc:0b:bb:da:a9:cd:21:e5:49:
        f4:ba:4d:4c:54:d8:32:e5:4c:89:e2:e9:2e:25:d5:b9:
        ae:dd:df:e6:5d:f2:45:36:10:f0:1e:a7:09:5e:a8:d3:
        66:65:7f:20:9f:79:52:48:68:a3:37:5a:eb:e1:6c:e2:
        ff:a6:d4:13:4b:fa:74:d8:71:3a:3f:4c:a9:e9:2e:9f:
        de:2d:40:e8:62:cd:6d:20:e7:e9:1a:2c:46:14:00:35:
        6c:5e:d9:e2:8c:db:c6:83:ad:d0:57:81:39:38:0d:67:
        1d:cd:71:56:06:08:f7:68:dd:7c:d1:03:02:14:83:41:
        f2:60:49:0e:24:f9:1d:bd:04:0f:c4:30:9d:96:75:4e
    Fingerprint (SHA-256):
        14:CD:9F:F8:0F:47:E2:82:5A:0E:FE:5D:18:11:3B:F1:F7:83:F5:50:73:14:16:55:75:DB:8F:E9:38:BE:2F:6E
    Fingerprint (SHA1):
        21:2A:29:D9:70:92:F8:29:E2:54:6F:30:28:D6:07:DA:CA:9A:89:FD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #300: Certificate Key Usage Extension (11) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #301: create cert with invalid SAN parameter (12) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com,dns:www.example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #302: create cert with invalid SAN parameter (13) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN dns:example.com,dns:www.example.com
Generating key.  This may take a few moments...
cert.sh: #303: create cert with valid SAN parameter (14) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:81:d1:27
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Sat Oct 21 13:26:27 2017
            Not After : Sun Jan 21 13:26:27 2018
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:b0:ec:0e:d9:29:1b:9d:f0:e9:ee:09:4b:0c:aa:30:
                    1f:4a:81:e1:7c:44:4c:1b:e5:9b:2f:f1:1c:cd:8a:4b:
                    9b:ea:75:fd:cc:36:76:4b:a7:e0:0b:da:58:91:67:0b:
                    1f:38:42:1e:61:37:f9:48:c3:4b:11:24:cc:f6:a4:53:
                    3c:b9:2e:42:01:38:4d:c9:2c:f6:12:b0:33:54:d7:bb:
                    17:b0:01:db:d0:0c:c1:3a:1e:6a:80:28:1a:9f:2e:52:
                    7e:bd:ac:a3:48:a2:b7:e3:44:d5:f6:51:4c:1d:75:0c:
                    51:04:7e:40:27:4d:e1:d3:dc:f0:4e:c3:a6:bb:99:8c:
                    eb:85:82:08:cf:02:1a:25:ee:9f:fb:d1:53:bc:49:ef:
                    77:a8:97:25:bd:90:10:b9:bd:27:49:4f:6b:ad:a0:17:
                    60:1c:60:63:00:50:b0:9a:96:1e:9f:4c:95:42:79:c2:
                    e6:5b:81:79:c7:15:67:ed:58:63:62:75:25:b9:d6:30:
                    fe:5d:82:40:b4:cc:86:52:4c:9f:ca:72:4b:7f:24:7a:
                    69:34:90:8a:92:dd:fa:fc:2d:d0:08:b1:5f:de:39:ba:
                    3c:a3:98:8a:1c:04:65:f7:7e:8f:10:17:6c:4f:1a:20:
                    b1:a9:df:46:33:cc:c9:3f:7b:33:b0:e6:26:ab:83:a1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5f:d9:6a:3e:e4:53:bc:54:bf:ee:46:e5:5c:db:da:24:
        86:45:95:9b:66:63:44:d2:d8:ef:ca:3d:ca:30:7e:2b:
        19:47:42:0d:f4:4f:e2:bf:b7:aa:90:7a:93:c3:6f:ce:
        67:98:55:2d:d9:41:04:58:20:67:2f:27:c1:e8:21:b3:
        d0:ad:5f:a4:39:b3:dd:71:59:e3:ee:05:c6:23:b8:3b:
        a0:66:94:b6:93:b8:d4:c1:77:51:dd:7d:60:c7:2b:07:
        9f:a8:b1:ba:44:e0:70:b3:99:7f:fe:ff:e8:98:91:11:
        d5:76:5a:85:b4:0e:a2:9f:25:25:3d:2a:1e:48:1f:97:
        d4:1f:60:dd:3b:e1:96:a8:02:13:7d:09:dd:cf:6c:dd:
        43:ee:ba:00:ba:c6:67:cf:c9:24:74:1c:d3:c3:be:cc:
        ed:87:f4:d4:7d:e0:29:6b:34:d3:08:8a:80:da:06:c8:
        be:f2:ba:20:b2:6e:a3:75:8c:a0:74:4a:aa:f0:93:e9:
        b1:9c:3a:bb:fa:94:f9:85:e2:32:ba:ba:fa:c2:d4:19:
        02:94:ba:3c:d4:8c:19:02:50:24:af:86:a6:75:ef:27:
        c2:2c:59:83:f6:2b:29:e2:81:e5:1d:26:f4:39:b1:68:
        b0:60:7d:4b:d6:bc:e4:5b:47:14:fe:e8:88:84:08:50
    Fingerprint (SHA-256):
        A2:B0:14:F4:19:81:EC:56:CB:2A:78:49:C1:59:FF:37:E5:75:5C:AB:6C:42:3A:05:60:AC:39:30:EE:2C:BA:93
    Fingerprint (SHA1):
        DE:57:14:CB:C7:24:BB:FB:C7:54:77:12:03:65:83:55:7A:97:59:E0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #304: create cert with valid SAN parameter (15) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN --dump-ext-val 2.5.29.17
writing output to /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der
cert.sh: #305: dump extension 2.5.29.17 to file /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der (16) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #306: create cert with valid SAN parameter (17) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #307: expect failure to list cert, because we deleted it (18) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der: error 0: Success
cert.sh: #308: create cert with invalid generic ext parameter (19) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der: error 0: Success
cert.sh: #309: create cert with invalid generic ext parameter (20) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der: error 0: Success
cert.sh: #310: create cert with invalid generic ext parameter (21) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric 2.5.29.17:not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
cert.sh: #311: create cert with valid generic ext parameter (22) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:81:d1:43
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Sat Oct 21 13:26:43 2017
            Not After : Sun Jan 21 13:26:43 2018
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:b9:f1:50:5a:0b:4b:72:c9:ac:fd:00:6a:3e:66:b5:
                    1e:c8:40:34:88:b8:8d:e3:b6:78:af:c0:80:25:13:1c:
                    54:01:1c:61:cd:15:71:2d:12:35:ed:a9:6f:5e:e0:03:
                    51:2b:f5:25:e0:5e:c1:3c:6a:c8:77:91:b1:24:ae:28:
                    f5:03:f4:33:33:f0:23:df:93:8a:2c:1a:c3:27:0d:09:
                    97:65:4f:49:a1:91:49:10:26:d3:07:de:9f:11:af:18:
                    b2:32:ed:48:32:2b:45:66:2d:8f:ca:7c:33:47:43:1a:
                    1f:bf:22:4c:f6:ee:7b:a9:10:90:88:e3:5a:69:b8:99:
                    a3:59:4d:a8:b4:b6:30:e7:f1:c7:d3:7b:4b:d3:60:4f:
                    46:0b:40:e8:0c:a9:9e:d4:e5:99:86:3e:5d:21:5e:ca:
                    ee:51:ec:41:33:95:b4:71:4a:3c:09:18:ba:0e:db:98:
                    b9:ce:b3:7d:16:7d:78:50:88:4b:10:30:e0:0d:02:a1:
                    75:16:ec:ed:b4:3b:49:10:7a:0c:c1:ef:0f:6c:1f:6e:
                    1d:d7:75:bf:75:72:aa:36:53:4f:af:f8:cd:89:b1:ec:
                    b9:38:13:56:51:1c:f3:28:3e:4f:b2:db:0f:39:bb:dd:
                    a3:5b:38:30:a3:5e:9b:42:80:37:cc:e8:02:7d:ae:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        aa:ec:4c:3a:32:ae:bb:b9:e6:67:6c:6a:85:26:1c:5a:
        58:78:82:a5:6c:8d:55:b1:ed:68:57:63:e7:af:a0:9b:
        c6:a9:37:9e:f3:ff:65:98:d0:0a:8e:a0:92:07:9d:cd:
        d8:50:9c:11:22:b4:ba:c1:17:7d:02:a5:a1:56:23:b5:
        2f:0a:e1:ff:81:48:45:39:ba:d8:a7:56:f6:49:e7:d2:
        8f:0b:ff:11:fa:16:08:90:2a:9f:14:bd:4e:5c:19:19:
        8f:0d:a5:e5:74:2f:6e:49:b3:cd:57:7d:c8:76:e1:1b:
        29:d8:16:3d:0e:58:14:27:67:03:c5:b1:07:c3:28:45:
        68:64:62:9c:e1:c7:b5:66:da:a1:4e:77:0a:76:f8:fa:
        0d:fd:1f:28:c1:f7:ee:1a:76:2b:0b:42:2b:9e:7f:5e:
        8d:a7:ef:3c:81:e8:64:40:49:1f:e2:64:22:98:c1:91:
        db:b0:fe:21:71:92:e4:e1:86:a6:03:d8:31:5a:5f:72:
        30:36:e1:cb:9c:77:4b:c3:4f:47:ad:79:fb:8f:51:b6:
        fb:8f:12:38:1a:85:f9:6b:e7:05:f4:d8:33:a0:f9:46:
        b8:bd:31:91:7f:65:60:3d:b3:aa:e2:bb:b3:8d:c0:8b:
        96:21:73:82:b2:82:17:06:22:d3:c3:58:3a:70:ab:92
    Fingerprint (SHA-256):
        D9:93:12:BF:35:C3:6E:AE:5F:C7:18:FD:C3:59:5B:1A:AF:85:F6:00:CB:3B:55:31:61:A9:F0:F4:EA:B1:29:73
    Fingerprint (SHA1):
        6C:28:07:BA:CA:E8:28:8E:88:47:ED:72:1A:73:E4:DF:69:6D:D2:2A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #312: create cert with valid generic ext parameter (23) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #313: create cert with valid generic ext parameter (24) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #314: expect failure to list cert, because we deleted it (25) - PASSED
cert.sh: Create A Password Test Cert  ==============
cert.sh: Create A Password Test Ca  --------
cert.sh: Creating a CA Certificate PasswordCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dbpass
cert.sh: Creating CA Cert DB --------------------------
certutil -s "CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dbpass -f ../tests.pw
cert.sh: #315: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dbpass
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #316: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert PasswordCA  --------------------------
certutil -s "CN=NSS Password Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dbpass -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #317: Creating CA Cert PasswordCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n PasswordCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dbpass -o root.cert
cert.sh: #318: Exporting Root Cert - PASSED
cert.sh: Changing password on Password Test Cert's Cert DB --------------------------
certutil -W -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dbpass -f ../tests.pw -@ ../tests.fipspw
Password changed successfully.
cert.sh: #319: Changing password on Password Test Cert's Cert DB - PASSED
cert.sh: Generate Certificate for Password Test Cert with new password --------------------------
certutil -s "CN=Password Test Cert, E=password@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCert -c PasswordCA -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dbpass -f ../tests.fipspw -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #320: Generate Certificate for Password Test Cert with new password - PASSED
cert.sh SUCCESS: PASSWORD passed
cert.sh: Verify Certificate for Password Test Cert with new password --------------------------
certutil -V -n PasswordCert -u S -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/dbpass -f ../tests.fipspw
certutil: certificate is valid
cert.sh: #321: Verify Certificate for Password Test Cert with new password - PASSED
cert.sh: Creating Distrusted Certificate
cert.sh: Initializing Distrusted's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
cert.sh: #322: Initializing Distrusted's Cert DB - PASSED
cert.sh: Loading root cert module to Distrusted's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #323: Loading root cert module to Distrusted's Cert DB - PASSED
cert.sh: Import Root CA for Distrusted --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -i ../CA/TestCA.ca.cert
cert.sh: #324: Import Root CA for Distrusted - PASSED
cert.sh: Import DSA Root CA for Distrusted --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -i ../CA/TestCA-dsa.ca.cert
cert.sh: #325: Import DSA Root CA for Distrusted - PASSED
cert.sh: Import EC Root CA for Distrusted --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -i ../CA/TestCA-ec.ca.cert
cert.sh: #326: Import EC Root CA for Distrusted - PASSED
cert.sh: Generate Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #327: Generate Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's Request --------------------------
certutil -C -c TestCA -m 2000 -v 60 -d ../CA -i req -o Distrusted.cert -f ../tests.pw 
cert.sh: #328: Sign Distrusted's Request - PASSED
cert.sh: Import Distrusted's Cert --------------------------
certutil -A -n Distrusted -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #329: Import Distrusted's Cert - PASSED
cert.sh SUCCESS: Distrusted's Cert Created
cert.sh: Generate DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #330: Generate DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 2000 -v 60 -d ../CA -i req -o Distrusted-dsa.cert -f ../tests.pw 
cert.sh: #331: Sign Distrusted's DSA Request - PASSED
cert.sh: Import Distrusted's DSA Cert --------------------------
certutil -A -n Distrusted-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #332: Import Distrusted's DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #333: Generate mixed DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 22000 -v 60 -d ../CA -i req -o Distrusted-dsamixed.cert -f ../tests.pw 
cert.sh: #334: Sign Distrusted's DSA Request with RSA - PASSED
cert.sh: Import Distrusted's mixed DSA Cert --------------------------
certutil -A -n Distrusted-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #335: Import Distrusted's mixed DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #336: Generate EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request --------------------------
certutil -C -c TestCA-ec -m 2000 -v 60 -d ../CA -i req -o Distrusted-ec.cert -f ../tests.pw 
cert.sh: #337: Sign Distrusted's EC Request - PASSED
cert.sh: Import Distrusted's EC Cert --------------------------
certutil -A -n Distrusted-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #338: Import Distrusted's EC Cert - PASSED
cert.sh SUCCESS: Distrusted's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #339: Generate mixed EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request with RSA --------------------------
certutil -C -c TestCA -m 12000 -v 60 -d ../CA -i req -o Distrusted-ecmixed.cert -f ../tests.pw 
cert.sh: #340: Sign Distrusted's EC Request with RSA - PASSED
cert.sh: Import Distrusted's mixed EC Cert --------------------------
certutil -A -n Distrusted-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #341: Import Distrusted's mixed EC Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed EC Cert Created
cert.sh: Mark CERT as unstrusted --------------------------
certutil -M -n Distrusted -t p,p,p -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
cert.sh: #342: Mark CERT as unstrusted - PASSED
cert.sh: Creating Distrusted Intermediate
cert.sh: Creating a CA Certificate DistrustedCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA
cert.sh: Creating CA Cert DistrustedCA  --------------------------
certutil -s "CN=DistrustedCA, E=DistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n DistrustedCA -t ,, -v 600 -c TestCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2010
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Is this a critical extension [y/N]?
cert.sh: #343: Creating CA Cert DistrustedCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n DistrustedCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -o root.cert
cert.sh: #344: Exporting Root Cert - PASSED
cert.sh: Import Distrusted Intermediate --------------------------
certutil -A -n DistrustedCA -t p,p,p -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -i ../CA/DistrustedCA.ca.cert
cert.sh: #345: Import Distrusted Intermediate - PASSED
cert.sh: Generate Cert Request for Leaf Chained to Distrusted CA --------------------------
certutil -s "CN=LeafChainedToDistrustedCA, E=LeafChainedToDistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #346: Generate Cert Request for Leaf Chained to Distrusted CA - PASSED
cp: './req' and '/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA/req' are the same file
cert.sh: Sign LeafChainedToDistrustedCA's Request --------------------------
certutil -C -c DistrustedCA -m 100 -v 60 -d ../CA -i req -o LeafChainedToDistrustedCA.cert -f ../tests.pw
cert.sh: #347: Sign LeafChainedToDistrustedCA's Request - PASSED
cert.sh: Import LeafChainedToDistrustedCA's Cert  -t u,u,u --------------------------
certutil -A -n LeafChainedToDistrustedCA -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw -i LeafChainedToDistrustedCA.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #348: Import LeafChainedToDistrustedCA's Cert  -t u,u,u - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Server --------------------------
certutil -V -n LeafChainedToDistrustedCA -u V -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #349: Verify LeafChainedToDistrustedCA Cert for SSL Server - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Client --------------------------
certutil -V -n LeafChainedToDistrustedCA -u C -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #350: Verify LeafChainedToDistrustedCA Cert for SSL Client - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u S -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #351: Verify LeafChainedToDistrustedCA Cert for Email signer - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email recipient --------------------------
certutil -V -n LeafChainedToDistrustedCA -u R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #352: Verify LeafChainedToDistrustedCA Cert for Email recipient - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for OCSP responder --------------------------
certutil -V -n LeafChainedToDistrustedCA -u O -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #353: Verify LeafChainedToDistrustedCA Cert for OCSP responder - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Object Signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u J -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #354: Verify LeafChainedToDistrustedCA Cert for Object Signer - PASSED
cert.sh: Verify Distrusted Cert for SSL Server --------------------------
certutil -V -n Distrusted -u V -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #355: Verify Distrusted Cert for SSL Server - PASSED
cert.sh: Verify Distrusted Cert for SSL Client --------------------------
certutil -V -n Distrusted -u C -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #356: Verify Distrusted Cert for SSL Client - PASSED
cert.sh: Verify Distrusted Cert for Email signer --------------------------
certutil -V -n Distrusted -u S -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #357: Verify Distrusted Cert for Email signer - PASSED
cert.sh: Verify Distrusted Cert for Email recipient --------------------------
certutil -V -n Distrusted -u R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #358: Verify Distrusted Cert for Email recipient - PASSED
cert.sh: Verify Distrusted Cert for OCSP responder --------------------------
certutil -V -n Distrusted -u O -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #359: Verify Distrusted Cert for OCSP responder - PASSED
cert.sh: Verify Distrusted Cert for Object Signer --------------------------
certutil -V -n Distrusted -u J -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #360: Verify Distrusted Cert for Object Signer - PASSED
cert.sh: OCSP response creation selftest
cert.sh: perform selftest --------------------------
ocspresp /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/serverCA serverCA chain-1-serverCA -f ../tests.pw
cert.sh: #361: perform selftest - PASSED
cert.sh: Creating Client CA Issued Certificates Range 40 - 52 ===
cert.sh: Generate Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #362: Generate Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o TestUser40.cert -f ../tests.pw 
cert.sh: #363: Sign TestUser40's Request - PASSED
cert.sh: Import TestUser40's Cert --------------------------
certutil -A -n TestUser40 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #364: Import TestUser40's Cert - PASSED
cert.sh SUCCESS: TestUser40's Cert Created
cert.sh: Generate DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #365: Generate DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o TestUser40-dsa.cert -f ../tests.pw 
cert.sh: #366: Sign TestUser40's DSA Request - PASSED
cert.sh: Import TestUser40's DSA Cert --------------------------
certutil -A -n TestUser40-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #367: Import TestUser40's DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #368: Generate mixed DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o TestUser40-dsamixed.cert -f ../tests.pw 
cert.sh: #369: Sign TestUser40's DSA Request with RSA - PASSED
cert.sh: Import TestUser40's mixed DSA Cert --------------------------
certutil -A -n TestUser40-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #370: Import TestUser40's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #371: Generate EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o TestUser40-ec.cert -f ../tests.pw 
cert.sh: #372: Sign TestUser40's EC Request - PASSED
cert.sh: Import TestUser40's EC Cert --------------------------
certutil -A -n TestUser40-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #373: Import TestUser40's EC Cert - PASSED
cert.sh SUCCESS: TestUser40's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #374: Generate mixed EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o TestUser40-ecmixed.cert -f ../tests.pw 
cert.sh: #375: Sign TestUser40's EC Request with RSA - PASSED
cert.sh: Import TestUser40's mixed EC Cert --------------------------
certutil -A -n TestUser40-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #376: Import TestUser40's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #377: Generate Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's Request --------------------------
certutil -C -c TestCA -m 41 -v 60 -d ../CA -i req -o TestUser41.cert -f ../tests.pw 
cert.sh: #378: Sign TestUser41's Request - PASSED
cert.sh: Import TestUser41's Cert --------------------------
certutil -A -n TestUser41 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #379: Import TestUser41's Cert - PASSED
cert.sh SUCCESS: TestUser41's Cert Created
cert.sh: Generate DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #380: Generate DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 41 -v 60 -d ../CA -i req -o TestUser41-dsa.cert -f ../tests.pw 
cert.sh: #381: Sign TestUser41's DSA Request - PASSED
cert.sh: Import TestUser41's DSA Cert --------------------------
certutil -A -n TestUser41-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #382: Import TestUser41's DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #383: Generate mixed DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20041 -v 60 -d ../CA -i req -o TestUser41-dsamixed.cert -f ../tests.pw 
cert.sh: #384: Sign TestUser41's DSA Request with RSA - PASSED
cert.sh: Import TestUser41's mixed DSA Cert --------------------------
certutil -A -n TestUser41-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #385: Import TestUser41's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #386: Generate EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request --------------------------
certutil -C -c TestCA-ec -m 41 -v 60 -d ../CA -i req -o TestUser41-ec.cert -f ../tests.pw 
cert.sh: #387: Sign TestUser41's EC Request - PASSED
cert.sh: Import TestUser41's EC Cert --------------------------
certutil -A -n TestUser41-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #388: Import TestUser41's EC Cert - PASSED
cert.sh SUCCESS: TestUser41's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #389: Generate mixed EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10041 -v 60 -d ../CA -i req -o TestUser41-ecmixed.cert -f ../tests.pw 
cert.sh: #390: Sign TestUser41's EC Request with RSA - PASSED
cert.sh: Import TestUser41's mixed EC Cert --------------------------
certutil -A -n TestUser41-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #391: Import TestUser41's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #392: Generate Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's Request --------------------------
certutil -C -c TestCA -m 42 -v 60 -d ../CA -i req -o TestUser42.cert -f ../tests.pw 
cert.sh: #393: Sign TestUser42's Request - PASSED
cert.sh: Import TestUser42's Cert --------------------------
certutil -A -n TestUser42 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #394: Import TestUser42's Cert - PASSED
cert.sh SUCCESS: TestUser42's Cert Created
cert.sh: Generate DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #395: Generate DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 42 -v 60 -d ../CA -i req -o TestUser42-dsa.cert -f ../tests.pw 
cert.sh: #396: Sign TestUser42's DSA Request - PASSED
cert.sh: Import TestUser42's DSA Cert --------------------------
certutil -A -n TestUser42-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #397: Import TestUser42's DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #398: Generate mixed DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20042 -v 60 -d ../CA -i req -o TestUser42-dsamixed.cert -f ../tests.pw 
cert.sh: #399: Sign TestUser42's DSA Request with RSA - PASSED
cert.sh: Import TestUser42's mixed DSA Cert --------------------------
certutil -A -n TestUser42-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #400: Import TestUser42's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #401: Generate EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request --------------------------
certutil -C -c TestCA-ec -m 42 -v 60 -d ../CA -i req -o TestUser42-ec.cert -f ../tests.pw 
cert.sh: #402: Sign TestUser42's EC Request - PASSED
cert.sh: Import TestUser42's EC Cert --------------------------
certutil -A -n TestUser42-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #403: Import TestUser42's EC Cert - PASSED
cert.sh SUCCESS: TestUser42's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #404: Generate mixed EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10042 -v 60 -d ../CA -i req -o TestUser42-ecmixed.cert -f ../tests.pw 
cert.sh: #405: Sign TestUser42's EC Request with RSA - PASSED
cert.sh: Import TestUser42's mixed EC Cert --------------------------
certutil -A -n TestUser42-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #406: Import TestUser42's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #407: Generate Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's Request --------------------------
certutil -C -c TestCA -m 43 -v 60 -d ../CA -i req -o TestUser43.cert -f ../tests.pw 
cert.sh: #408: Sign TestUser43's Request - PASSED
cert.sh: Import TestUser43's Cert --------------------------
certutil -A -n TestUser43 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #409: Import TestUser43's Cert - PASSED
cert.sh SUCCESS: TestUser43's Cert Created
cert.sh: Generate DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #410: Generate DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 43 -v 60 -d ../CA -i req -o TestUser43-dsa.cert -f ../tests.pw 
cert.sh: #411: Sign TestUser43's DSA Request - PASSED
cert.sh: Import TestUser43's DSA Cert --------------------------
certutil -A -n TestUser43-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #412: Import TestUser43's DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #413: Generate mixed DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20043 -v 60 -d ../CA -i req -o TestUser43-dsamixed.cert -f ../tests.pw 
cert.sh: #414: Sign TestUser43's DSA Request with RSA - PASSED
cert.sh: Import TestUser43's mixed DSA Cert --------------------------
certutil -A -n TestUser43-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #415: Import TestUser43's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #416: Generate EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request --------------------------
certutil -C -c TestCA-ec -m 43 -v 60 -d ../CA -i req -o TestUser43-ec.cert -f ../tests.pw 
cert.sh: #417: Sign TestUser43's EC Request - PASSED
cert.sh: Import TestUser43's EC Cert --------------------------
certutil -A -n TestUser43-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #418: Import TestUser43's EC Cert - PASSED
cert.sh SUCCESS: TestUser43's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #419: Generate mixed EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10043 -v 60 -d ../CA -i req -o TestUser43-ecmixed.cert -f ../tests.pw 
cert.sh: #420: Sign TestUser43's EC Request with RSA - PASSED
cert.sh: Import TestUser43's mixed EC Cert --------------------------
certutil -A -n TestUser43-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #421: Import TestUser43's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #422: Generate Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's Request --------------------------
certutil -C -c TestCA -m 44 -v 60 -d ../CA -i req -o TestUser44.cert -f ../tests.pw 
cert.sh: #423: Sign TestUser44's Request - PASSED
cert.sh: Import TestUser44's Cert --------------------------
certutil -A -n TestUser44 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #424: Import TestUser44's Cert - PASSED
cert.sh SUCCESS: TestUser44's Cert Created
cert.sh: Generate DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #425: Generate DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 44 -v 60 -d ../CA -i req -o TestUser44-dsa.cert -f ../tests.pw 
cert.sh: #426: Sign TestUser44's DSA Request - PASSED
cert.sh: Import TestUser44's DSA Cert --------------------------
certutil -A -n TestUser44-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #427: Import TestUser44's DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #428: Generate mixed DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20044 -v 60 -d ../CA -i req -o TestUser44-dsamixed.cert -f ../tests.pw 
cert.sh: #429: Sign TestUser44's DSA Request with RSA - PASSED
cert.sh: Import TestUser44's mixed DSA Cert --------------------------
certutil -A -n TestUser44-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #430: Import TestUser44's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #431: Generate EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request --------------------------
certutil -C -c TestCA-ec -m 44 -v 60 -d ../CA -i req -o TestUser44-ec.cert -f ../tests.pw 
cert.sh: #432: Sign TestUser44's EC Request - PASSED
cert.sh: Import TestUser44's EC Cert --------------------------
certutil -A -n TestUser44-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #433: Import TestUser44's EC Cert - PASSED
cert.sh SUCCESS: TestUser44's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #434: Generate mixed EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10044 -v 60 -d ../CA -i req -o TestUser44-ecmixed.cert -f ../tests.pw 
cert.sh: #435: Sign TestUser44's EC Request with RSA - PASSED
cert.sh: Import TestUser44's mixed EC Cert --------------------------
certutil -A -n TestUser44-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #436: Import TestUser44's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #437: Generate Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's Request --------------------------
certutil -C -c TestCA -m 45 -v 60 -d ../CA -i req -o TestUser45.cert -f ../tests.pw 
cert.sh: #438: Sign TestUser45's Request - PASSED
cert.sh: Import TestUser45's Cert --------------------------
certutil -A -n TestUser45 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #439: Import TestUser45's Cert - PASSED
cert.sh SUCCESS: TestUser45's Cert Created
cert.sh: Generate DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #440: Generate DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 45 -v 60 -d ../CA -i req -o TestUser45-dsa.cert -f ../tests.pw 
cert.sh: #441: Sign TestUser45's DSA Request - PASSED
cert.sh: Import TestUser45's DSA Cert --------------------------
certutil -A -n TestUser45-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #442: Import TestUser45's DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #443: Generate mixed DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20045 -v 60 -d ../CA -i req -o TestUser45-dsamixed.cert -f ../tests.pw 
cert.sh: #444: Sign TestUser45's DSA Request with RSA - PASSED
cert.sh: Import TestUser45's mixed DSA Cert --------------------------
certutil -A -n TestUser45-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #445: Import TestUser45's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #446: Generate EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request --------------------------
certutil -C -c TestCA-ec -m 45 -v 60 -d ../CA -i req -o TestUser45-ec.cert -f ../tests.pw 
cert.sh: #447: Sign TestUser45's EC Request - PASSED
cert.sh: Import TestUser45's EC Cert --------------------------
certutil -A -n TestUser45-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #448: Import TestUser45's EC Cert - PASSED
cert.sh SUCCESS: TestUser45's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #449: Generate mixed EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10045 -v 60 -d ../CA -i req -o TestUser45-ecmixed.cert -f ../tests.pw 
cert.sh: #450: Sign TestUser45's EC Request with RSA - PASSED
cert.sh: Import TestUser45's mixed EC Cert --------------------------
certutil -A -n TestUser45-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #451: Import TestUser45's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #452: Generate Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's Request --------------------------
certutil -C -c TestCA -m 46 -v 60 -d ../CA -i req -o TestUser46.cert -f ../tests.pw 
cert.sh: #453: Sign TestUser46's Request - PASSED
cert.sh: Import TestUser46's Cert --------------------------
certutil -A -n TestUser46 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #454: Import TestUser46's Cert - PASSED
cert.sh SUCCESS: TestUser46's Cert Created
cert.sh: Generate DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #455: Generate DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 46 -v 60 -d ../CA -i req -o TestUser46-dsa.cert -f ../tests.pw 
cert.sh: #456: Sign TestUser46's DSA Request - PASSED
cert.sh: Import TestUser46's DSA Cert --------------------------
certutil -A -n TestUser46-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #457: Import TestUser46's DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #458: Generate mixed DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20046 -v 60 -d ../CA -i req -o TestUser46-dsamixed.cert -f ../tests.pw 
cert.sh: #459: Sign TestUser46's DSA Request with RSA - PASSED
cert.sh: Import TestUser46's mixed DSA Cert --------------------------
certutil -A -n TestUser46-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #460: Import TestUser46's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #461: Generate EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request --------------------------
certutil -C -c TestCA-ec -m 46 -v 60 -d ../CA -i req -o TestUser46-ec.cert -f ../tests.pw 
cert.sh: #462: Sign TestUser46's EC Request - PASSED
cert.sh: Import TestUser46's EC Cert --------------------------
certutil -A -n TestUser46-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #463: Import TestUser46's EC Cert - PASSED
cert.sh SUCCESS: TestUser46's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #464: Generate mixed EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10046 -v 60 -d ../CA -i req -o TestUser46-ecmixed.cert -f ../tests.pw 
cert.sh: #465: Sign TestUser46's EC Request with RSA - PASSED
cert.sh: Import TestUser46's mixed EC Cert --------------------------
certutil -A -n TestUser46-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #466: Import TestUser46's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #467: Generate Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's Request --------------------------
certutil -C -c TestCA -m 47 -v 60 -d ../CA -i req -o TestUser47.cert -f ../tests.pw 
cert.sh: #468: Sign TestUser47's Request - PASSED
cert.sh: Import TestUser47's Cert --------------------------
certutil -A -n TestUser47 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #469: Import TestUser47's Cert - PASSED
cert.sh SUCCESS: TestUser47's Cert Created
cert.sh: Generate DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #470: Generate DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 47 -v 60 -d ../CA -i req -o TestUser47-dsa.cert -f ../tests.pw 
cert.sh: #471: Sign TestUser47's DSA Request - PASSED
cert.sh: Import TestUser47's DSA Cert --------------------------
certutil -A -n TestUser47-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #472: Import TestUser47's DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #473: Generate mixed DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20047 -v 60 -d ../CA -i req -o TestUser47-dsamixed.cert -f ../tests.pw 
cert.sh: #474: Sign TestUser47's DSA Request with RSA - PASSED
cert.sh: Import TestUser47's mixed DSA Cert --------------------------
certutil -A -n TestUser47-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #475: Import TestUser47's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #476: Generate EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request --------------------------
certutil -C -c TestCA-ec -m 47 -v 60 -d ../CA -i req -o TestUser47-ec.cert -f ../tests.pw 
cert.sh: #477: Sign TestUser47's EC Request - PASSED
cert.sh: Import TestUser47's EC Cert --------------------------
certutil -A -n TestUser47-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #478: Import TestUser47's EC Cert - PASSED
cert.sh SUCCESS: TestUser47's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #479: Generate mixed EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10047 -v 60 -d ../CA -i req -o TestUser47-ecmixed.cert -f ../tests.pw 
cert.sh: #480: Sign TestUser47's EC Request with RSA - PASSED
cert.sh: Import TestUser47's mixed EC Cert --------------------------
certutil -A -n TestUser47-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #481: Import TestUser47's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #482: Generate Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's Request --------------------------
certutil -C -c TestCA -m 48 -v 60 -d ../CA -i req -o TestUser48.cert -f ../tests.pw 
cert.sh: #483: Sign TestUser48's Request - PASSED
cert.sh: Import TestUser48's Cert --------------------------
certutil -A -n TestUser48 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #484: Import TestUser48's Cert - PASSED
cert.sh SUCCESS: TestUser48's Cert Created
cert.sh: Generate DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #485: Generate DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 48 -v 60 -d ../CA -i req -o TestUser48-dsa.cert -f ../tests.pw 
cert.sh: #486: Sign TestUser48's DSA Request - PASSED
cert.sh: Import TestUser48's DSA Cert --------------------------
certutil -A -n TestUser48-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #487: Import TestUser48's DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #488: Generate mixed DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20048 -v 60 -d ../CA -i req -o TestUser48-dsamixed.cert -f ../tests.pw 
cert.sh: #489: Sign TestUser48's DSA Request with RSA - PASSED
cert.sh: Import TestUser48's mixed DSA Cert --------------------------
certutil -A -n TestUser48-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #490: Import TestUser48's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #491: Generate EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request --------------------------
certutil -C -c TestCA-ec -m 48 -v 60 -d ../CA -i req -o TestUser48-ec.cert -f ../tests.pw 
cert.sh: #492: Sign TestUser48's EC Request - PASSED
cert.sh: Import TestUser48's EC Cert --------------------------
certutil -A -n TestUser48-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #493: Import TestUser48's EC Cert - PASSED
cert.sh SUCCESS: TestUser48's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #494: Generate mixed EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10048 -v 60 -d ../CA -i req -o TestUser48-ecmixed.cert -f ../tests.pw 
cert.sh: #495: Sign TestUser48's EC Request with RSA - PASSED
cert.sh: Import TestUser48's mixed EC Cert --------------------------
certutil -A -n TestUser48-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #496: Import TestUser48's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #497: Generate Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's Request --------------------------
certutil -C -c TestCA -m 49 -v 60 -d ../CA -i req -o TestUser49.cert -f ../tests.pw 
cert.sh: #498: Sign TestUser49's Request - PASSED
cert.sh: Import TestUser49's Cert --------------------------
certutil -A -n TestUser49 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #499: Import TestUser49's Cert - PASSED
cert.sh SUCCESS: TestUser49's Cert Created
cert.sh: Generate DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #500: Generate DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 49 -v 60 -d ../CA -i req -o TestUser49-dsa.cert -f ../tests.pw 
cert.sh: #501: Sign TestUser49's DSA Request - PASSED
cert.sh: Import TestUser49's DSA Cert --------------------------
certutil -A -n TestUser49-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #502: Import TestUser49's DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #503: Generate mixed DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20049 -v 60 -d ../CA -i req -o TestUser49-dsamixed.cert -f ../tests.pw 
cert.sh: #504: Sign TestUser49's DSA Request with RSA - PASSED
cert.sh: Import TestUser49's mixed DSA Cert --------------------------
certutil -A -n TestUser49-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #505: Import TestUser49's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #506: Generate EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request --------------------------
certutil -C -c TestCA-ec -m 49 -v 60 -d ../CA -i req -o TestUser49-ec.cert -f ../tests.pw 
cert.sh: #507: Sign TestUser49's EC Request - PASSED
cert.sh: Import TestUser49's EC Cert --------------------------
certutil -A -n TestUser49-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #508: Import TestUser49's EC Cert - PASSED
cert.sh SUCCESS: TestUser49's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #509: Generate mixed EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10049 -v 60 -d ../CA -i req -o TestUser49-ecmixed.cert -f ../tests.pw 
cert.sh: #510: Sign TestUser49's EC Request with RSA - PASSED
cert.sh: Import TestUser49's mixed EC Cert --------------------------
certutil -A -n TestUser49-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #511: Import TestUser49's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #512: Generate Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o TestUser50.cert -f ../tests.pw 
cert.sh: #513: Sign TestUser50's Request - PASSED
cert.sh: Import TestUser50's Cert --------------------------
certutil -A -n TestUser50 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #514: Import TestUser50's Cert - PASSED
cert.sh SUCCESS: TestUser50's Cert Created
cert.sh: Generate DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #515: Generate DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o TestUser50-dsa.cert -f ../tests.pw 
cert.sh: #516: Sign TestUser50's DSA Request - PASSED
cert.sh: Import TestUser50's DSA Cert --------------------------
certutil -A -n TestUser50-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #517: Import TestUser50's DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #518: Generate mixed DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o TestUser50-dsamixed.cert -f ../tests.pw 
cert.sh: #519: Sign TestUser50's DSA Request with RSA - PASSED
cert.sh: Import TestUser50's mixed DSA Cert --------------------------
certutil -A -n TestUser50-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #520: Import TestUser50's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #521: Generate EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o TestUser50-ec.cert -f ../tests.pw 
cert.sh: #522: Sign TestUser50's EC Request - PASSED
cert.sh: Import TestUser50's EC Cert --------------------------
certutil -A -n TestUser50-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #523: Import TestUser50's EC Cert - PASSED
cert.sh SUCCESS: TestUser50's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #524: Generate mixed EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o TestUser50-ecmixed.cert -f ../tests.pw 
cert.sh: #525: Sign TestUser50's EC Request with RSA - PASSED
cert.sh: Import TestUser50's mixed EC Cert --------------------------
certutil -A -n TestUser50-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #526: Import TestUser50's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #527: Generate Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's Request --------------------------
certutil -C -c TestCA -m 51 -v 60 -d ../CA -i req -o TestUser51.cert -f ../tests.pw 
cert.sh: #528: Sign TestUser51's Request - PASSED
cert.sh: Import TestUser51's Cert --------------------------
certutil -A -n TestUser51 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #529: Import TestUser51's Cert - PASSED
cert.sh SUCCESS: TestUser51's Cert Created
cert.sh: Generate DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #530: Generate DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 51 -v 60 -d ../CA -i req -o TestUser51-dsa.cert -f ../tests.pw 
cert.sh: #531: Sign TestUser51's DSA Request - PASSED
cert.sh: Import TestUser51's DSA Cert --------------------------
certutil -A -n TestUser51-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #532: Import TestUser51's DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #533: Generate mixed DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20051 -v 60 -d ../CA -i req -o TestUser51-dsamixed.cert -f ../tests.pw 
cert.sh: #534: Sign TestUser51's DSA Request with RSA - PASSED
cert.sh: Import TestUser51's mixed DSA Cert --------------------------
certutil -A -n TestUser51-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #535: Import TestUser51's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #536: Generate EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request --------------------------
certutil -C -c TestCA-ec -m 51 -v 60 -d ../CA -i req -o TestUser51-ec.cert -f ../tests.pw 
cert.sh: #537: Sign TestUser51's EC Request - PASSED
cert.sh: Import TestUser51's EC Cert --------------------------
certutil -A -n TestUser51-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #538: Import TestUser51's EC Cert - PASSED
cert.sh SUCCESS: TestUser51's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #539: Generate mixed EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10051 -v 60 -d ../CA -i req -o TestUser51-ecmixed.cert -f ../tests.pw 
cert.sh: #540: Sign TestUser51's EC Request with RSA - PASSED
cert.sh: Import TestUser51's mixed EC Cert --------------------------
certutil -A -n TestUser51-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #541: Import TestUser51's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #542: Generate Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's Request --------------------------
certutil -C -c TestCA -m 52 -v 60 -d ../CA -i req -o TestUser52.cert -f ../tests.pw 
cert.sh: #543: Sign TestUser52's Request - PASSED
cert.sh: Import TestUser52's Cert --------------------------
certutil -A -n TestUser52 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #544: Import TestUser52's Cert - PASSED
cert.sh SUCCESS: TestUser52's Cert Created
cert.sh: Generate DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #545: Generate DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 52 -v 60 -d ../CA -i req -o TestUser52-dsa.cert -f ../tests.pw 
cert.sh: #546: Sign TestUser52's DSA Request - PASSED
cert.sh: Import TestUser52's DSA Cert --------------------------
certutil -A -n TestUser52-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #547: Import TestUser52's DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #548: Generate mixed DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20052 -v 60 -d ../CA -i req -o TestUser52-dsamixed.cert -f ../tests.pw 
cert.sh: #549: Sign TestUser52's DSA Request with RSA - PASSED
cert.sh: Import TestUser52's mixed DSA Cert --------------------------
certutil -A -n TestUser52-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #550: Import TestUser52's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #551: Generate EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request --------------------------
certutil -C -c TestCA-ec -m 52 -v 60 -d ../CA -i req -o TestUser52-ec.cert -f ../tests.pw 
cert.sh: #552: Sign TestUser52's EC Request - PASSED
cert.sh: Import TestUser52's EC Cert --------------------------
certutil -A -n TestUser52-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #553: Import TestUser52's EC Cert - PASSED
cert.sh SUCCESS: TestUser52's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #554: Generate mixed EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10052 -v 60 -d ../CA -i req -o TestUser52-ecmixed.cert -f ../tests.pw 
cert.sh: #555: Sign TestUser52's EC Request with RSA - PASSED
cert.sh: Import TestUser52's mixed EC Cert --------------------------
certutil -A -n TestUser52-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #556: Import TestUser52's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed EC Cert Created
cert.sh: Creating CA CRL =====================================
cert.sh: Generating CRL for range 40-42 TestCA authority --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -G -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or
cert.sh: #557: Generating CRL for range 40-42 TestCA authority - PASSED
cert.sh: Generating CRL (DSA) for range 40-42 TestCA-dsa authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -G -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or-dsa
cert.sh: #558: Generating CRL (DSA) for range 40-42 TestCA-dsa authority - PASSED
cert.sh: Generating CRL (ECC) for range 40-42 TestCA-ec authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -G -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or-ec
cert.sh: #559: Generating CRL (ECC) for range 40-42 TestCA-ec authority - PASSED
cert.sh: Modifying CA CRL by adding one more cert ============
cert.sh: Modify CRL by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or1 -i ../server/root.crl_40-42_or
cert.sh: #560: Modify CRL by adding one more cert - PASSED
cert.sh: Modify CRL (DSA) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or1-dsa -i ../server/root.crl_40-42_or-dsa
cert.sh: #561: Modify CRL (DSA) by adding one more cert - PASSED
cert.sh: Modify CRL (ECC) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or1-ec -i ../server/root.crl_40-42_or-ec
cert.sh: #562: Modify CRL (ECC) by adding one more cert - PASSED
cert.sh: Modifying CA CRL by removing one cert ===============
cert.sh: Modify CRL by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #563: Modify CRL by removing one cert - PASSED
cert.sh: Modify CRL (DSA) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #564: Modify CRL (DSA) by removing one cert - PASSED
cert.sh: Modify CRL (ECC) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42-ec -i ../server/root.crl_40-42_or1-ec
cert.sh: #565: Modify CRL (ECC) by removing one cert - PASSED
cert.sh: Creating CA CRL for groups 1 and 2  ===============
cert.sh: Creating CRL for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_43-48 -i ../server/root.crl_40-42
cert.sh: #566: Creating CRL for groups 1 and 2 - PASSED
cert.sh: Creating CRL (ECC) for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_43-48-ec -i ../server/root.crl_40-42-ec
cert.sh: #567: Creating CRL (ECC) for groups 1 and 2 - PASSED
cert.sh: Creating CA CRL for groups 1, 2 and 3  ===============
cert.sh: Creating CRL for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_49-52 -i ../server/root.crl_43-48
cert.sh: #568: Creating CRL for groups 1, 2 and 3 - PASSED
cert.sh: Creating CRL (ECC) for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_49-52-ec -i ../server/root.crl_43-48-ec
cert.sh: #569: Creating CRL (ECC) for groups 1, 2 and 3 - PASSED
cert.sh: Importing Server CA Issued CRL for certs  trough 52
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -D -n TestCA -f ../tests.pw -d ../server
crlutil: could not find TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #570: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42 -n TestCA -f ../tests.pw -d ../server
cert.sh: #571: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -D -n TestCA-ec -f ../tests.pw -d ../server
crlutil: could not find TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #572: Importing CRL (ECC) for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42-ec -n TestCA-ec -f ../tests.pw -d ../server
cert.sh: #573: Importing CRL (ECC) for groups 1 - PASSED
cert.sh SUCCESS: SSL CRL prep passed
cert.sh cert.sh: finished cert.sh
TIMESTAMP cert END: Sat Oct 21 13:30:36 UTC 2017
Running tests for dbtests
TIMESTAMP dbtests BEGIN: Sat Oct 21 13:30:36 UTC 2017
dbtests.sh: CERT and Key DB Tests ===============================
---------------------------------------------------------------
| test opening the database read/write in a nonexisting directory
---------------------------------------------------------------
certutil: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #574: Certutil didn't work in a nonexisting dir 255 - PASSED
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtest: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #575: Dbtest readonly didn't work in a nonexisting dir 46 - PASSED
---------------------------------------------------------------
| test force opening the database in a nonexisting directory
---------------------------------------------------------------
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtests.sh: #576: Dbtest force succeeded in a nonexisting dir 0 - PASSED
---------------------------------------------------------------
| test opening the database readonly in an empty directory
---------------------------------------------------------------
tstclnt: unable to open cert database: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #577: Tstclnt didn't work in an empty dir 1 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/key3.db" does not exist.
dbtest: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #578: Dbtest readonly didn't work in an empty dir 46 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir
dbtests.sh: #579: Dbtest logout after empty DB Init has key - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir
dbtests.sh: #580: Dbtest password DB Init maintains needlogin state - PASSED
certutil: could not find certificate named "xxxx": SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #581: Certutil didn't work in an empty dir 255 - PASSED
---------------------------------------------------------------
| test force opening the database  readonly in a empty directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/emptydir/key3.db" does not exist.
dbtests.sh: #582: Dbtest force readonly succeeded in an empty dir 0 - PASSED
---------------------------------------------------------------
| test opening the database r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/secmod.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/cert8.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/key3.db" is not writeable.
dbtest: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #583: Dbtest r/w didn't work in an readonly dir 46 - PASSED
certutil: could not find certificate named "TestUser": SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #584: Certutil didn't work in an readonly dir 255 - PASSED
---------------------------------------------------------------
| test opening the database ronly in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/secmod.db
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/cert8.db
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/key3.db
dbtests.sh: #585: Dbtest readonly succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| test force opening the database  r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/secmod.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/cert8.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/key3.db" is not writeable.
dbtests.sh: #586: Dbtest force succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| ls -l /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir
---------------------------------------------------------------
dr-xr-xr-x. 2 mockbuild mockbuild   4096 Oct 21 13:30 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir
-r--r-----. 1 mockbuild mockbuild   1224 Oct 21 13:30 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/TestUser-dsa.cert
-r--r-----. 1 mockbuild mockbuild   1425 Oct 21 13:30 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/TestUser-dsamixed.cert
-r--r-----. 1 mockbuild mockbuild    581 Oct 21 13:30 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/TestUser-ec.cert
-r--r-----. 1 mockbuild mockbuild    705 Oct 21 13:30 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/TestUser-ecmixed.cert
-r--r-----. 1 mockbuild mockbuild    870 Oct 21 13:30 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/TestUser.cert
-r--------. 1 mockbuild mockbuild 229376 Oct 21 13:30 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/cert8.db
-r--------. 1 mockbuild mockbuild 110592 Oct 21 13:30 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/key3.db
-r--r-----. 1 mockbuild mockbuild    395 Oct 21 13:30 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/req
-r--------. 1 mockbuild mockbuild  16384 Oct 21 13:30 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ronlydir/secmod.db
---------------------------------------------------------------
| test creating a new cert with a conflicting nickname
---------------------------------------------------------------
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/conflictdir
certutil: could not add certificate to token or database: SEC_ERROR_ADDING_CERT: Error adding certificate to database.
dbtests.sh: #587: Nicknane conflict test, could not import conflict nickname 255 - PASSED
---------------------------------------------------------------
| test importing an old cert to a conflicting nickname
---------------------------------------------------------------
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 40 (0x28)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:24:11 2017
            Not After : Fri Oct 21 13:24:11 2022
        Subject: "CN=Bob,E=Bob@bogus.com,O=BOGUS NSS,L=Mountain View,ST=Calif
            ornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ee:3d:7b:6e:ca:16:a2:12:da:8a:a0:41:f0:13:6f:c5:
                    dc:54:f3:cf:05:0f:ac:c4:4b:a6:ca:28:85:c3:97:a0:
                    76:20:fa:1d:db:e5:7f:1e:54:e3:7f:fd:ed:f0:3c:19:
                    80:6c:52:24:3e:e7:c3:16:91:7a:55:2e:ac:00:2f:06:
                    c4:38:f6:45:a2:09:b0:2d:e1:2b:6a:f1:59:fc:51:ca:
                    d4:d1:72:9a:06:7e:01:03:f5:04:ae:33:60:0f:74:39:
                    37:04:c1:a7:17:96:91:a2:a5:b2:8f:f2:47:0d:6b:38:
                    c5:c8:0c:0e:45:25:2f:7f:2d:7e:fc:7e:0d:9d:b7:ec:
                    8c:bf:f1:95:a1:8a:1b:eb:8b:7d:88:0e:a5:c3:94:e1:
                    37:ee:6f:ad:87:17:99:af:81:e3:8a:8f:8d:d6:1c:d9:
                    1e:d2:d3:61:c3:0d:0f:ae:ff:bc:c0:e2:a9:8e:2e:3c:
                    a7:2e:95:e8:86:04:4c:b7:94:a3:0c:19:0a:7c:58:b9:
                    4a:9e:1b:94:66:1e:af:53:74:3b:8d:44:bf:59:ca:95:
                    ad:a4:35:78:a5:61:b4:b8:d7:dd:0d:61:a6:fb:54:33:
                    0b:70:4f:38:5e:f1:27:1d:84:f3:be:fd:70:a7:8a:a5:
                    ad:b1:6e:14:91:06:cc:67:37:b1:3f:a8:bf:fe:56:e5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6f:e8:36:40:86:1e:c9:b0:20:e9:43:37:96:9f:34:f5:
        e0:04:4a:c9:4e:99:9f:62:e5:e5:eb:e0:35:97:24:8f:
        95:7b:cb:e9:5e:fb:ff:1b:c1:82:57:b9:7d:95:ba:73:
        8a:bd:4d:57:83:70:2e:26:27:0d:43:e9:38:23:cb:5f:
        e3:52:3c:49:47:65:87:d3:17:b8:f4:62:33:d7:52:ac:
        ec:81:a1:2c:13:20:21:e5:1a:b4:8d:f0:ab:f1:8a:0b:
        30:f5:be:2a:c6:76:a0:d3:67:a9:17:04:23:18:17:35:
        d0:d0:52:9d:ab:56:52:35:a3:24:f4:e7:c5:24:58:3a:
        cc:88:56:1d:ad:5a:b5:09:1e:08:62:ac:dd:e3:95:28:
        ce:d8:76:eb:b0:e6:f9:f4:1c:d8:37:31:d8:09:e8:61:
        01:06:5b:64:2a:d9:39:b0:44:f9:2c:d2:54:4c:bd:87:
        17:de:c5:7d:53:db:32:a2:9a:3d:11:94:7e:02:bd:c3:
        8e:7b:6f:a1:60:48:00:27:7b:35:c6:c9:cd:6d:ce:cd:
        88:0e:5a:15:eb:dc:6f:8e:32:85:39:36:75:e0:a3:7d:
        0f:51:92:14:04:e1:08:1b:d6:9f:64:fc:71:71:bc:63:
        35:4d:2a:eb:98:24:b5:43:66:f8:35:86:e4:85:48:7f
    Fingerprint (SHA-256):
        C8:1C:3D:CE:B9:C8:16:A6:9F:F3:C0:54:73:2E:7B:1C:59:A9:A3:29:FE:7B:CE:2C:D1:38:B1:22:61:3D:94:80
    Fingerprint (SHA1):
        CD:60:67:99:EC:B3:0E:8F:E8:F4:76:BA:08:81:F1:D2:92:CA:A5:15
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
dbtests.sh: #588: Nicknane conflict test-setting nickname conflict was correctly rejected - PASSED
TIMESTAMP dbtests END: Sat Oct 21 13:30:47 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Sat Oct 21 13:30:47 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #589: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                9a:31:4c:2a:68:05:f2:d1:a9:53:97:12:94:4b:35:83
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #590: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #591: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #592: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #593: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                80:05:94:95:49:3c:63:cf:35:ce:89:1a:d6:08:86:5e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA256
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Sat Oct 21 13:22:07 2017
            Not After : Fri Oct 21 13:22:07 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:01:ec:93:71:03:83:c8:a5:c4:09:04:43:7f:0a:42:
                    1b:97:2d:b5:36:7e:8a:87:bd:30:eb:2e:9b:19:24:ae:
                    30:f2:d4:21:06:e9:fe:05:dd:70:3b:46:23:d0:e5:36:
                    aa:99:28:93:43:92:3f:17:81:22:57:3e:ab:67:a9:c9:
                    99:4b:0a:00:aa:24:b6:07:3c:de:53:3a:26:af:ec:82:
                    1d:dc:5e:9e:44:53:93:b6:a3:e0:3b:a4:b7:28:04:d7:
                    d1:89:4e:06:2d:fe:e4:b5:c4:40:b1:d4:91:56:b7:83:
                    bd:e8:aa:bd:a6:8a:72:7e:98:38:6e:42:bb:66:84:cc:
                    cc:b5:1a:f9:32
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA256
    Signature:
        30:81:88:02:42:01:a1:0f:b4:b2:f0:29:68:18:8d:52:
        e5:8a:47:31:f2:1d:45:2b:39:b0:25:32:08:c0:1f:27:
        2b:61:20:67:93:fd:ee:2f:dc:a1:62:45:6c:31:1d:91:
        b9:23:4e:5e:7e:f2:88:d6:c2:da:63:7a:e7:90:f6:8f:
        25:a7:20:67:5f:5c:57:02:42:00:e7:be:73:60:5b:d2:
        8a:de:7f:8d:cd:ac:34:54:23:4c:8d:a8:4b:bd:98:d4:
        cf:1c:15:52:ff:f4:83:2a:7b:80:5d:2c:97:28:c8:4c:
        58:c7:eb:10:7e:f7:7a:95:2b:c0:46:6b:d5:07:05:8d:
        96:a7:aa:5f:ca:0e:60:93:3a:ac:2c
    Fingerprint (SHA-256):
        E4:D7:77:17:90:B5:03:49:12:EF:C1:56:DF:F4:07:15:F8:1E:6F:12:5D:64:B2:E4:76:E6:AB:79:64:7F:90:37
    Fingerprint (SHA1):
        1B:FF:87:AB:DD:20:33:F6:F6:C9:67:5C:F5:EF:B4:28:FB:FC:69:3E
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA256
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Sat Oct 21 13:24:01 2017
            Not After : Fri Oct 21 13:24:01 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:3f:ed:5f:e0:fc:3d:b9:1f:70:a6:bb:04:c5:ab:58:
                    83:93:25:00:b3:29:79:46:df:24:47:81:0d:46:53:2b:
                    5d:47:52:b6:82:56:31:41:34:0a:6d:51:7a:96:3d:46:
                    04:72:a5:42:a8:8c:a0:02:79:d2:a5:17:e0:59:0d:89:
                    26:77:34:8b:fc:aa:e0:81:6e:c7:69:27:80:92:02:c5:
                    e2:aa:03:4b:be:a9:09:63:49:1a:4b:79:c1:c1:6f:73:
                    eb
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA256
    Signature:
        30:81:88:02:42:00:dd:cf:d5:fb:ff:f8:2c:04:c2:a1:
        f4:fc:11:d9:8b:bf:1f:d8:8a:db:dc:7e:98:9a:64:01:
        ac:81:d5:22:dc:9f:1a:cf:9b:62:e9:39:5c:e2:75:7e:
        0a:51:09:20:11:97:ee:43:af:91:cf:18:41:0d:aa:15:
        b6:10:c9:46:06:50:e4:02:42:00:ab:56:e8:9c:30:b9:
        6c:45:8c:15:53:0c:68:56:d9:a4:16:fb:f6:14:e1:91:
        6d:c0:a0:9f:d5:23:b5:65:e2:38:80:e5:06:83:fd:de:
        4a:34:53:5f:ee:4f:5b:03:80:d7:bf:5d:9a:4b:76:03:
        41:04:99:b7:a6:df:bb:f1:e9:d9:da
    Fingerprint (SHA-256):
        69:07:E6:98:D2:A9:32:33:5F:56:67:B4:C2:B1:C0:5A:75:3A:11:D6:E5:72:7F:01:D8:55:E3:EC:68:7B:04:2C
    Fingerprint (SHA1):
        26:B5:45:D4:1A:D8:49:46:1F:B2:56:83:BF:B6:9A:65:06:3F:06:5C
    Friendly Name: Alice-ec
tools.sh: #594: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #595: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                84:72:16:8a:85:06:d6:f8:33:1a:44:60:03:f4:da:9f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #596: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #597: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #598: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                2f:f7:09:d7:a8:bc:c1:96:bf:15:1a:30:eb:62:85:55
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #599: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #600: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #601: Exporting with [RC2-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                89:4c:7a:31:42:e7:72:f8:a7:65:86:9a:cc:82:c5:57
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #602: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #603: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #604: Exporting with [RC2-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                77:26:f3:66:a0:40:e9:e6:2a:65:d1:63:ec:4d:66:e6
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #605: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #606: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #607: Exporting with [RC2-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                38:9e:75:c6:cb:57:a2:e4:c1:57:a2:e9:5c:d7:ef:11
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #608: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #609: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #610: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                21:43:ce:b6:1b:0a:05:a9:10:fd:a5:c6:0f:c3:49:72
            Iteration Count: 2000 (0x7d0)
tools.sh: #611: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #612: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #613: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                fc:86:6d:81:9b:a2:92:31:b4:74:b6:23:79:9d:eb:e3
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #614: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #615: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #616: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                7a:d4:d5:c5:4f:2d:15:22:c4:39:5c:2b:27:9e:42:9e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #617: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #618: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #619: Exporting with [DES-EDE3-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                26:fb:e9:a2:a1:69:47:b0:c8:e4:fc:06:2d:f4:2d:bf
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #620: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #621: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #622: Exporting with [DES-EDE3-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                43:0e:47:0a:f7:57:2e:02:be:52:e8:4e:cb:4d:bf:f7
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #623: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #624: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #625: Exporting with [DES-EDE3-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                44:3b:28:a9:fc:23:7c:34:d8:46:ad:ff:2b:a3:fb:23
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #626: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #627: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #628: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                88:41:ad:eb:7f:b1:e7:87:7f:67:92:ad:33:29:93:ee
            Iteration Count: 2000 (0x7d0)
tools.sh: #629: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #630: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #631: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        3d:c1:6c:c5:8c:34:c3:8d:c7:ad:fc:6d:05:a5:a5:d8
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:76:22:33:3f:a3:8c:76:9d:5c:77:49:89:0e:58:
                    52:bb
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #632: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #633: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #634: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        79:08:c2:c1:6e:a0:c0:78:97:d3:19:f5:e0:36:cb:7e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:23:d9:1a:5e:2e:34:72:b2:3f:05:47:56:10:d6:
                    bd:ea
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #635: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #636: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #637: Exporting with [AES-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        29:ef:bf:1b:14:5d:e1:7b:6b:d9:dd:09:0d:0d:47:6e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:d6:49:bc:a7:d2:81:5f:d4:72:c3:93:7f:31:1e:
                    60:30
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #638: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #639: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #640: Exporting with [AES-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        3e:bb:66:99:c5:23:ca:b9:18:1c:b6:99:83:ee:c8:f3
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:e1:58:6c:fc:33:24:17:72:56:93:fb:01:57:21:
                    d7:8c
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #641: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #642: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #643: Exporting with [AES-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f8:5f:e3:1b:51:4e:67:5c:00:ba:5a:b8:29:0a:df:5d
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:57:82:15:28:11:ff:55:07:6a:72:68:ae:c5:e3:
                    41:46
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #644: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #645: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #646: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        95:1c:e0:4f:a9:f6:1c:e8:38:c3:6c:c0:cb:2b:5d:d7
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:45:24:ce:39:2c:37:08:51:60:4c:1b:4e:5b:bb:
                    51:57
tools.sh: #647: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #648: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #649: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        42:04:46:03:8f:bd:1e:e3:cd:f3:93:47:eb:92:d6:6f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:c0:0e:9c:b6:9c:e9:a8:a2:54:2a:7c:d7:f1:1f:
                    af:84
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #650: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #651: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #652: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c9:50:6c:9b:cb:2c:3e:73:98:87:c4:1c:c0:00:c1:13
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:7b:34:fb:51:ae:62:3a:55:e4:88:bb:24:63:f5:
                    d6:e5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #653: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #654: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #655: Exporting with [AES-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        fc:89:c1:c7:f9:7c:57:e4:05:32:1f:5a:55:6b:eb:97
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:e0:36:27:8a:ac:c9:4f:82:a5:17:ed:11:05:e1:
                    5e:0e
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #656: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #657: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #658: Exporting with [AES-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        9d:b9:50:9b:8c:ec:42:a4:e0:9e:d2:a1:13:7b:ea:1d
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:23:96:f3:7c:d1:f6:67:cc:76:f6:56:6c:19:cb:
                    4f:aa
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #659: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #660: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #661: Exporting with [AES-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        47:97:93:33:ba:dc:e0:a2:da:10:2f:dd:e1:39:df:ea
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:2e:57:dc:11:73:28:cc:46:72:ea:a2:22:e6:89:
                    de:84
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #662: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #663: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #664: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e6:a6:36:b0:7d:dc:bb:21:97:3b:52:c7:6e:88:6a:9e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:fd:2d:e4:57:05:17:d6:03:30:de:13:cf:3a:ba:
                    3b:e3
tools.sh: #665: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #666: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #667: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        43:6b:1b:87:cf:08:af:cd:35:24:fa:75:94:10:c6:75
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:fd:7e:f3:5a:6a:18:91:a8:ab:0d:8a:2e:9f:e1:
                    e8:cc
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #668: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #669: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #670: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        7d:18:b6:13:24:19:10:e0:aa:a2:80:33:07:e5:7c:f3
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:78:e8:7c:17:36:ea:44:2f:b4:eb:e3:cc:65:55:
                    da:9d
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #671: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #672: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #673: Exporting with [AES-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        fc:71:3d:e0:d0:43:0d:42:84:8c:74:95:bc:8f:13:8e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:5a:35:8f:a4:71:71:ad:9f:c2:13:4f:10:b8:a5:
                    5e:34
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #674: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #675: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #676: Exporting with [AES-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        63:9b:39:38:dc:8a:79:01:f4:e1:ef:fd:e8:89:c5:67
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:74:01:9e:8c:22:b0:d9:8e:63:a0:04:08:f9:46:
                    32:77
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #677: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #678: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #679: Exporting with [AES-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        38:c5:44:7d:79:e2:8a:04:13:a0:0a:07:d7:9a:28:7e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:88:0d:6a:5d:e7:f1:60:55:8f:a9:61:ff:c8:40:
                    92:03
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #680: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #681: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #682: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c6:fd:e7:a2:b2:cd:19:90:15:d0:b4:94:6e:dc:25:62
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:92:ba:78:1c:1f:dd:55:63:7f:5f:3a:4b:a2:e0:
                    f9:cb
tools.sh: #683: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #684: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #685: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        04:61:6f:51:0c:53:26:20:c7:91:25:bb:d1:09:23:39
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:4e:41:96:f2:1d:cd:22:ae:b8:6c:c2:29:f8:02:
                    04:56
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #686: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #687: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #688: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        1b:85:f0:06:eb:46:30:7f:c6:20:4b:98:f6:a7:66:e5
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:17:58:79:63:9f:49:c9:74:3e:25:7e:b9:dd:ef:
                    f2:81
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #689: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #690: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #691: Exporting with [CAMELLIA-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c5:e6:ad:c6:69:97:c2:4e:2a:63:20:af:cc:b8:98:6e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:d5:38:98:37:c1:83:4e:da:12:b7:46:4f:da:83:
                    b8:f0
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #692: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #693: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #694: Exporting with [CAMELLIA-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        22:8c:40:36:22:01:2c:9d:d3:9a:5a:b1:29:ea:61:58
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:1d:c7:2f:86:bc:33:d3:5c:cd:b7:95:8c:66:96:
                    d9:2e
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #695: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #696: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #697: Exporting with [CAMELLIA-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f1:d7:60:6f:ec:fe:8f:8b:2b:f6:05:9c:c8:a4:94:40
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:f3:ce:5e:55:8a:8a:05:31:28:4f:45:19:36:76:
                    27:fb
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #698: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #699: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #700: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        0f:6a:55:ae:74:08:34:e3:84:56:38:b5:fc:07:5f:ea
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:6f:7c:0f:c2:14:63:c2:8b:ee:93:d3:19:03:c2:
                    44:89
tools.sh: #701: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #702: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #703: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        92:87:0a:2d:f9:d9:4c:39:69:6f:e0:cb:04:55:5f:ba
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:7f:17:fc:81:e7:60:9f:96:62:8a:64:a4:f2:88:
                    a7:b4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #704: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #705: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #706: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        49:bd:25:7a:77:6e:32:25:61:45:0d:45:86:0c:86:fa
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:16:43:d5:8f:a2:5a:b5:4f:61:50:57:62:34:a3:
                    46:1b
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #707: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #708: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #709: Exporting with [CAMELLIA-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        42:87:90:73:8d:fa:b4:eb:37:7d:9d:df:7b:31:01:b0
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:7d:d7:da:bb:dd:92:d8:fd:68:63:b1:47:4a:56:
                    19:f1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #710: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #711: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #712: Exporting with [CAMELLIA-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e4:6e:f4:eb:3b:b7:3b:1d:77:be:59:35:53:03:c7:a2
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:39:80:37:5d:17:95:d1:2c:62:68:1d:bb:3e:ed:
                    5c:ac
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #713: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #714: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #715: Exporting with [CAMELLIA-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        1e:5b:36:c7:6d:2a:b3:a4:8a:84:b9:37:37:2a:26:56
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:d5:2c:bb:6d:b6:4d:d1:87:ea:22:c2:aa:c4:f7:
                    82:d6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #716: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #717: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #718: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        5f:8b:5e:23:8f:2f:c2:7a:4c:71:3f:6d:5d:2e:54:87
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:5c:40:c9:41:84:e7:9c:31:90:ec:ec:64:5d:d3:
                    0e:06
tools.sh: #719: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #720: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #721: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        1d:a5:27:20:4f:36:ae:b6:e9:d1:e0:47:15:3e:20:46
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:fb:f3:15:db:a8:88:3c:74:b6:5a:9d:17:72:b8:
                    3c:7d
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #722: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #723: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #724: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        72:c0:72:30:0c:07:1c:6f:bb:00:df:f4:bc:29:87:25
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:6b:2e:ae:52:cd:4f:c2:bd:6f:9f:75:8b:06:c7:
                    1d:7c
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #725: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #726: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #727: Exporting with [CAMELLIA-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c8:9d:c3:fb:c3:3b:5a:1e:08:55:b3:f7:03:27:b6:54
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:8f:4a:04:64:86:fe:52:3f:f3:ac:47:49:3c:1e:
                    e6:6a
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #728: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #729: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #730: Exporting with [CAMELLIA-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        71:b4:b2:de:55:ba:78:d6:eb:3e:2c:1a:3d:4c:2f:0b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:b1:f5:33:f6:f6:72:59:a6:8d:e3:88:36:87:6a:
                    8d:bc
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #731: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #732: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #733: Exporting with [CAMELLIA-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f2:e9:7d:2f:2a:2c:fe:0b:8e:41:08:dd:8d:77:d7:3b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:aa:16:3a:89:69:ff:73:a4:89:da:e6:c6:33:23:
                    97:6c
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #734: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #735: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #736: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        9e:3e:e4:25:93:d0:70:7d:a0:22:64:14:28:24:54:86
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:0e:38:0b:03:12:0b:18:0b:c0:92:26:cc:37:20:
                    e0:76
tools.sh: #737: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #738: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #739: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                d7:0a:78:4c:33:11:50:c6:fb:d7:5d:f4:e5:ab:84:26
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #740: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #741: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #742: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                c1:6e:a3:bd:e4:06:e2:d7:c1:d3:a5:06:f6:ae:e1:8b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #743: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #744: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #745: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                ac:3f:eb:95:98:64:0d:6f:03:df:14:fe:f0:d2:75:ce
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #746: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #747: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #748: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                5c:6e:26:0f:be:5d:c4:5f:29:bf:d6:68:a9:d1:8d:e4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #749: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #750: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #751: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                61:14:c4:9a:55:32:de:6e:5f:2e:a9:90:aa:13:6e:46
            Iteration Count: 2000 (0x7d0)
tools.sh: #752: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #753: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #754: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                10:b2:bb:21:50:35:c2:e0:ef:58:18:8a:5d:64:55:ea
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #755: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #756: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #757: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                ac:bf:1d:cf:55:84:bd:b2:b3:a2:e9:96:4a:e7:c0:54
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #758: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #759: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #760: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                86:c0:74:8a:51:3d:51:e7:e8:f8:4a:9e:ee:d8:32:78
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #761: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #762: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #763: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                f6:a5:f2:66:26:77:e5:89:8c:9e:a9:65:a1:ef:d5:5c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #764: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #765: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #766: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                08:b6:a3:d4:3b:40:4a:3e:74:e5:e1:90:2a:5f:76:ff
            Iteration Count: 2000 (0x7d0)
tools.sh: #767: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #768: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #769: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                d7:f9:3f:82:41:89:d2:89:de:bb:a9:ee:01:01:c4:35
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #770: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #771: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #772: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                8d:b1:8f:a1:21:4f:48:ec:00:15:b1:bb:db:5f:4d:a8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #773: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #774: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #775: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                bf:c4:ca:3e:5b:37:b6:f3:26:ed:61:50:26:fd:44:9b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #776: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #777: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #778: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                36:d8:70:d0:f3:ba:4e:cd:0a:fc:75:c7:a5:a5:75:ad
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #779: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #780: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #781: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                36:22:fd:d0:0e:37:b5:54:f7:63:f9:41:2d:4a:20:a1
            Iteration Count: 2000 (0x7d0)
tools.sh: #782: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #783: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #784: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a5:b8:99:4a:c0:fe:c0:44:53:d7:38:1c:9e:c0:98:10
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #785: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #786: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #787: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                1e:b7:6e:36:bf:9c:28:66:fc:23:99:cb:15:82:18:36
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #788: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #789: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #790: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ef:fe:1a:0c:1c:f9:66:db:37:65:36:36:bc:cb:ec:0d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #791: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #792: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #793: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                44:a7:9a:32:79:93:2f:08:e3:2e:93:06:9b:03:f7:e1
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #794: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #795: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #796: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                f9:05:0e:7f:01:9f:86:e8:d2:69:02:0c:ca:1e:10:bd
            Iteration Count: 2000 (0x7d0)
tools.sh: #797: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #798: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #799: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                c9:ae:8f:0c:c0:37:90:d5:61:e4:62:42:cc:f7:a4:ff
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #800: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #801: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #802: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                40:cd:d4:eb:45:9f:91:52:05:fb:ad:47:99:d3:a2:20
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #803: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #804: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #805: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                0b:fb:11:c3:03:5c:9a:a9:b9:4d:85:55:3b:78:43:13
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #806: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #807: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #808: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ec:22:d4:6c:c9:39:d9:52:07:ff:ba:50:8d:e5:7d:27
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #809: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #810: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #811: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ef:1b:6f:ec:a6:0d:a6:68:df:4e:b3:41:36:58:62:50
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #812: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #813: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #814: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a0:83:56:24:11:ce:f6:c1:f5:f3:19:4a:ac:1a:fb:3e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #815: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #816: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #817: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                50:7e:e6:98:de:d7:86:c4:35:7e:80:ae:ab:d3:99:38
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #818: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #819: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #820: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                01:4a:c5:43:07:66:8d:0a:11:46:f4:2b:fd:38:4d:c3
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #821: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #822: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #823: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a7:76:f1:4f:3e:9c:f2:76:a1:6c:c9:bf:c5:a8:46:f0
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #824: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #825: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #826: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                24:6e:48:8e:2c:ec:cd:c3:1f:68:3c:a5:cc:de:09:51
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #827: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #828: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #829: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #830: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Importing CA cert & key created with NSS 3.21 --------------
pk12util -i TestOldCA.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #831: Importing CA cert & key created with NSS 3.21  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #832: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 36%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 32%)
tree "../tools/html" signed successfully
tools.sh: #833: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   signjs.html
        verified   sign.html
tools.sh: #834: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #835: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> signjs.html
--> sign.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 32%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 36%)
tree "../tools/html" signed successfully
tools.sh: #836: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   signjs.html
        verified   sign.html
tools.sh: #837: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #838: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Sat Oct 21 13:33:14 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Sat Oct 21 13:33:14 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #839: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #840: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      4e51e9c6fcf645bb5ccd3faaa4706f9a676d9ddc   NSS FIPS 140-2 Certificate DB:FIPS_PUB_140_Test_Certificate
fips.sh: #841: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #842: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #843: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #844: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #845: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #846: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #847: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #848: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #849: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #850: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #851: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      4e51e9c6fcf645bb5ccd3faaa4706f9a676d9ddc   FIPS_PUB_140_Test_Certificate
fips.sh: #852: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #853: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #854: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #855: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #856: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      4e51e9c6fcf645bb5ccd3faaa4706f9a676d9ddc   FIPS_PUB_140_Test_Certificate
fips.sh: #857: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #858: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #859: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle/libsoftokn3.so -o -8 -b 5
cp /usr/lib/libsoftokn3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle
Changing byte 0x00033998 (211352): from 01 (1) to 21 (33)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/fips/mangle dbtest -r -d ../fips
fips.sh: #860: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Sat Oct 21 13:34:04 UTC 2017
Running tests for sdr
TIMESTAMP sdr BEGIN: Sat Oct 21 13:34:04 UTC 2017
sdr.sh: SDR Tests ===============================
sdr.sh: Creating an SDR key/SDR Encrypt - Value 1
sdrtest -d . -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.v1.3868 -t "Test1"
sdr.sh: #861: Creating SDR Key/Encrypt - Value 1  - PASSED
sdr.sh: SDR Encrypt - Value 2
sdrtest -d . -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.v2.3868 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #862: Encrypt - Value 2  - PASSED
sdr.sh: SDR Encrypt - Value 3
sdrtest -d . -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.v3.3868 -t "1234567"
sdr.sh: #863: Encrypt - Value 3  - PASSED
sdr.sh: SDR Decrypt - Value 1
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.v1.3868 -t "Test1"
sdr.sh: #864: Decrypt - Value 1  - PASSED
sdr.sh: SDR Decrypt - Value 2
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.v2.3868 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #865: Decrypt - Value 2  - PASSED
sdr.sh: SDR Decrypt - Value 3
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.v3.3868 -t "1234567"
sdr.sh: #866: Decrypt - Value 3  - PASSED
TIMESTAMP sdr END: Sat Oct 21 13:34:08 UTC 2017
Running tests for crmf
TIMESTAMP crmf BEGIN: Sat Oct 21 13:34:08 UTC 2017
crmf.sh: CRMF/CMMF Tests ===============================
crmf.sh: CRMF/CMMF Tests ------------------------------
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss crmf decode
crmftest v1.0
Generating CRMF request
Decoding CRMF request
crmftest: Processing cert request 0
crmftest: Processing cert request 1
Exiting successfully!!!
crmf.sh: #867: CRMF test . - PASSED
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss cmmf
crmftest v1.0
Doing CMMF Stuff
Exiting successfully!!!
crmf.sh: #868: CMMF test . - PASSED
TIMESTAMP crmf END: Sat Oct 21 13:34:09 UTC 2017
Running tests for smime
TIMESTAMP smime BEGIN: Sat Oct 21 13:34:09 UTC 2017
smime.sh: S/MIME Tests with ECC ===============================
smime.sh: Signing Detached Message {SHA1} ------------------
cmsutil -S -T -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA1
smime.sh: #869: Create Detached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #870: Verifying Alice's Detached Signature (SHA1) . - PASSED
smime.sh: Signing Attached Message (SHA1) ------------------
cmsutil -S -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA1
smime.sh: #871: Create Attached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.sig.SHA1 -d ../bobdir -o alice.data.SHA1
smime.sh: #872: Decode Alice's Attached Signature (SHA1) . - PASSED
diff alice.txt alice.data.SHA1
smime.sh: #873: Compare Attached Signed Data and Original (SHA1) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA1} ------------------
cmsutil -S -T -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA1
smime.sh: #874: Create Detached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #875: Verifying Alice's Detached Signature (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA1) ------------------
cmsutil -S -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA1
smime.sh: #876: Create Attached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.sig.SHA1 -d ../bobdir -o alice-ec.data.SHA1
smime.sh: #877: Decode Alice's Attached Signature (ECDSA w/ SHA1) . - PASSED
diff alice.txt alice-ec.data.SHA1
smime.sh: #878: Compare Attached Signed Data and Original (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Detached Message {SHA256} ------------------
cmsutil -S -T -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA256
smime.sh: #879: Create Detached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #880: Verifying Alice's Detached Signature (SHA256) . - PASSED
smime.sh: Signing Attached Message (SHA256) ------------------
cmsutil -S -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA256
smime.sh: #881: Create Attached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.sig.SHA256 -d ../bobdir -o alice.data.SHA256
smime.sh: #882: Decode Alice's Attached Signature (SHA256) . - PASSED
diff alice.txt alice.data.SHA256
smime.sh: #883: Compare Attached Signed Data and Original (SHA256) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA256} ------------------
cmsutil -S -T -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA256
smime.sh: #884: Create Detached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #885: Verifying Alice's Detached Signature (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA256) ------------------
cmsutil -S -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA256
smime.sh: #886: Create Attached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.sig.SHA256 -d ../bobdir -o alice-ec.data.SHA256
smime.sh: #887: Decode Alice's Attached Signature (ECDSA w/ SHA256) . - PASSED
diff alice.txt alice-ec.data.SHA256
smime.sh: #888: Compare Attached Signed Data and Original (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Detached Message {SHA384} ------------------
cmsutil -S -T -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA384
smime.sh: #889: Create Detached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #890: Verifying Alice's Detached Signature (SHA384) . - PASSED
smime.sh: Signing Attached Message (SHA384) ------------------
cmsutil -S -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA384
smime.sh: #891: Create Attached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.sig.SHA384 -d ../bobdir -o alice.data.SHA384
smime.sh: #892: Decode Alice's Attached Signature (SHA384) . - PASSED
diff alice.txt alice.data.SHA384
smime.sh: #893: Compare Attached Signed Data and Original (SHA384) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA384} ------------------
cmsutil -S -T -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA384
smime.sh: #894: Create Detached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #895: Verifying Alice's Detached Signature (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA384) ------------------
cmsutil -S -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA384
smime.sh: #896: Create Attached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.sig.SHA384 -d ../bobdir -o alice-ec.data.SHA384
smime.sh: #897: Decode Alice's Attached Signature (ECDSA w/ SHA384) . - PASSED
diff alice.txt alice-ec.data.SHA384
smime.sh: #898: Compare Attached Signed Data and Original (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Detached Message {SHA512} ------------------
cmsutil -S -T -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA512
smime.sh: #899: Create Detached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #900: Verifying Alice's Detached Signature (SHA512) . - PASSED
smime.sh: Signing Attached Message (SHA512) ------------------
cmsutil -S -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA512
smime.sh: #901: Create Attached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.sig.SHA512 -d ../bobdir -o alice.data.SHA512
smime.sh: #902: Decode Alice's Attached Signature (SHA512) . - PASSED
diff alice.txt alice.data.SHA512
smime.sh: #903: Compare Attached Signed Data and Original (SHA512) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA512} ------------------
cmsutil -S -T -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA512
smime.sh: #904: Create Detached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #905: Verifying Alice's Detached Signature (ECDSA w/ SHA512) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA512) ------------------
cmsutil -S -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA512
smime.sh: #906: Create Attached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.sig.SHA512 -d ../bobdir -o alice-ec.data.SHA512
smime.sh: #907: Decode Alice's Attached Signature (ECDSA w/ SHA512) . - PASSED
diff alice.txt alice-ec.data.SHA512
smime.sh: #908: Compare Attached Signed Data and Original (ECDSA w/ SHA512) . - PASSED
smime.sh: Enveloped Data Tests ------------------------------
cmsutil -E -r bob@bogus.com -i alice.txt -d ../alicedir -p nss \
        -o alice.env
smime.sh: #909: Create Enveloped Data Alice . - PASSED
cmsutil -D -i alice.env -d ../bobdir -p nss -o alice.data1
smime.sh: #910: Decode Enveloped Data Alice . - PASSED
diff alice.txt alice.data1
smime.sh: #911: Compare Decoded Enveloped Data and Original . - PASSED
smime.sh: Testing multiple recipients ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o alicecc.env \
        -r bob@bogus.com,dave@bogus.com
smime.sh: #912: Create Multiple Recipients Enveloped Data Alice . - PASSED
smime.sh: Testing multiple email addrs ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o aliceve.env \
        -r eve@bogus.net
smime.sh: #913: Encrypt to a Multiple Email cert . - PASSED
cmsutil -D -i alicecc.env -d ../bobdir -p nss -o alice.data2
smime.sh: #914: Decode Multiple Recipients Enveloped Data Alice by Bob . - PASSED
cmsutil -D -i alicecc.env -d ../dave -p nss -o alice.data3
smime.sh: #915: Decode Multiple Recipients Enveloped Data Alice by Dave . - PASSED
cmsutil -D -i aliceve.env -d ../eve -p nss -o alice.data4
smime.sh: #916: Decrypt with a Multiple Email cert . - PASSED
smime.sh: #917: Compare Decoded Mult. Recipients Enveloped Data Alice/Bob . - PASSED
smime.sh: #918: Compare Decoded Mult. Recipients Enveloped Data Alice/Dave . - PASSED
smime.sh: #919: Compare Decoded with Multiple Email cert . - PASSED
smime.sh: Sending CERTS-ONLY Message ------------------------------
cmsutil -O -r "Alice,bob@bogus.com,dave@bogus.com" \
        -d ../alicedir > co.der
smime.sh: #920: Create Certs-Only Alice . - PASSED
cmsutil -D -i co.der -d ../bobdir
smime.sh: #921: Verify Certs-Only by CA . - PASSED
smime.sh: Encrypted-Data Message ---------------------------------
cmsutil -C -i alice.txt -e alicehello.env -d ../alicedir \
        -r "bob@bogus.com" > alice.enc
smime.sh: #922: Create Encrypted-Data . - PASSED
cmsutil -D -i alice.enc -d ../bobdir -e alicehello.env -p nss \
        -o alice.data2
smime.sh: #923: Decode Encrypted-Data . - PASSED
smime.sh: #924: Compare Decoded and Original Data . - PASSED
smime.sh: p7 util Data Tests ------------------------------
p7env -d ../alicedir -r Alice -i alice.txt -o alice_p7.env
smime.sh: #925: Creating envelope for user Alice . - PASSED
p7content -d ../alicedir -i alice.env -o alice_p7.data
smime.sh: #926: Verifying file delivered to user Alice . - PASSED
diff alice.txt alice_p7.data.sed
smime.sh: #927: Compare Decoded Enveloped Data and Original . - PASSED
p7sign -d ../alicedir -k Alice -i alice.txt -o alice.sig -p nss -e
smime.sh: #928: Signing file for user Alice . - PASSED
p7verify -d ../alicedir -c alice.txt -s alice.sig
Signature is valid.
smime.sh: #929: Verifying file delivered to user Alice . - PASSED
TIMESTAMP smime END: Sat Oct 21 13:34:42 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Sat Oct 21 13:34:42 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:34:42 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:34:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14517 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14517 found at Sat Oct 21 13:34:43 UTC 2017
selfserv_9183 with PID 14517 started at Sat Oct 21 13:34:43 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #930: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 14517 at Sat Oct 21 13:34:44 UTC 2017
kill -USR1 14517
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 14517 killed at Sat Oct 21 13:34:44 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:34:44 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:34:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14574 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14574 found at Sat Oct 21 13:34:45 UTC 2017
selfserv_9183 with PID 14574 started at Sat Oct 21 13:34:45 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #931: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 14574 at Sat Oct 21 13:34:46 UTC 2017
kill -USR1 14574
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 14574 killed at Sat Oct 21 13:34:46 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:34:47 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:34:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14630 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14630 found at Sat Oct 21 13:34:47 UTC 2017
selfserv_9183 with PID 14630 started at Sat Oct 21 13:34:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #932: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 14630 at Sat Oct 21 13:34:48 UTC 2017
kill -USR1 14630
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 14630 killed at Sat Oct 21 13:34:49 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:34:49 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:34:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14698 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14698 found at Sat Oct 21 13:34:49 UTC 2017
selfserv_9183 with PID 14698 started at Sat Oct 21 13:34:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #933: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 14698 at Sat Oct 21 13:34:50 UTC 2017
kill -USR1 14698
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 14698 killed at Sat Oct 21 13:34:51 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:34:51 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:34:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14754 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14754 found at Sat Oct 21 13:34:51 UTC 2017
selfserv_9183 with PID 14754 started at Sat Oct 21 13:34:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #934: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 14754 at Sat Oct 21 13:34:53 UTC 2017
kill -USR1 14754
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 14754 killed at Sat Oct 21 13:34:53 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:34:53 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:34:53 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14810 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14810 found at Sat Oct 21 13:34:54 UTC 2017
selfserv_9183 with PID 14810 started at Sat Oct 21 13:34:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #935: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 14810 at Sat Oct 21 13:34:55 UTC 2017
kill -USR1 14810
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 14810 killed at Sat Oct 21 13:34:55 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:34:55 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:34:55 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14878 found at Sat Oct 21 13:34:56 UTC 2017
selfserv_9183 with PID 14878 started at Sat Oct 21 13:34:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #936: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 14878 at Sat Oct 21 13:34:57 UTC 2017
kill -USR1 14878
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 14878 killed at Sat Oct 21 13:34:57 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:34:57 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:34:57 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14934 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14934 found at Sat Oct 21 13:34:58 UTC 2017
selfserv_9183 with PID 14934 started at Sat Oct 21 13:34:58 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #937: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 14934 at Sat Oct 21 13:34:59 UTC 2017
kill -USR1 14934
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 14934 killed at Sat Oct 21 13:35:00 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:35:00 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14990 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14990 found at Sat Oct 21 13:35:00 UTC 2017
selfserv_9183 with PID 14990 started at Sat Oct 21 13:35:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #938: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 14990 at Sat Oct 21 13:35:01 UTC 2017
kill -USR1 14990
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 14990 killed at Sat Oct 21 13:35:02 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:35:02 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:02 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15070 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15070 found at Sat Oct 21 13:35:02 UTC 2017
selfserv_9183 with PID 15070 started at Sat Oct 21 13:35:02 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #939: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 15070 at Sat Oct 21 13:35:03 UTC 2017
kill -USR1 15070
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 15070 killed at Sat Oct 21 13:35:04 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:35:04 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:04 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15127 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15127 found at Sat Oct 21 13:35:04 UTC 2017
selfserv_9183 with PID 15127 started at Sat Oct 21 13:35:04 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #940: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 15127 at Sat Oct 21 13:35:05 UTC 2017
kill -USR1 15127
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 15127 killed at Sat Oct 21 13:35:06 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:35:06 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15183 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15183 found at Sat Oct 21 13:35:06 UTC 2017
selfserv_9183 with PID 15183 started at Sat Oct 21 13:35:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #941: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 15183 at Sat Oct 21 13:35:07 UTC 2017
kill -USR1 15183
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 15183 killed at Sat Oct 21 13:35:08 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:35:08 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15251 found at Sat Oct 21 13:35:09 UTC 2017
selfserv_9183 with PID 15251 started at Sat Oct 21 13:35:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #942: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 15251 at Sat Oct 21 13:35:10 UTC 2017
kill -USR1 15251
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 15251 killed at Sat Oct 21 13:35:10 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:35:10 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:10 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15307 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15307 found at Sat Oct 21 13:35:11 UTC 2017
selfserv_9183 with PID 15307 started at Sat Oct 21 13:35:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #943: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 15307 at Sat Oct 21 13:35:12 UTC 2017
kill -USR1 15307
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 15307 killed at Sat Oct 21 13:35:12 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:35:12 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15363 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15363 found at Sat Oct 21 13:35:13 UTC 2017
selfserv_9183 with PID 15363 started at Sat Oct 21 13:35:13 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #944: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 15363 at Sat Oct 21 13:35:14 UTC 2017
kill -USR1 15363
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 15363 killed at Sat Oct 21 13:35:14 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:35:14 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:14 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15431 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15431 found at Sat Oct 21 13:35:15 UTC 2017
selfserv_9183 with PID 15431 started at Sat Oct 21 13:35:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #945: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 15431 at Sat Oct 21 13:35:16 UTC 2017
kill -USR1 15431
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 15431 killed at Sat Oct 21 13:35:16 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:35:16 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:16 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15487 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15487 found at Sat Oct 21 13:35:17 UTC 2017
selfserv_9183 with PID 15487 started at Sat Oct 21 13:35:17 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #946: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 15487 at Sat Oct 21 13:35:18 UTC 2017
kill -USR1 15487
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 15487 killed at Sat Oct 21 13:35:18 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:35:19 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15543 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15543 found at Sat Oct 21 13:35:19 UTC 2017
selfserv_9183 with PID 15543 started at Sat Oct 21 13:35:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #947: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 15543 at Sat Oct 21 13:35:20 UTC 2017
kill -USR1 15543
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 15543 killed at Sat Oct 21 13:35:21 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:35:21 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15611 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15611 found at Sat Oct 21 13:35:21 UTC 2017
selfserv_9183 with PID 15611 started at Sat Oct 21 13:35:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #948: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 15611 at Sat Oct 21 13:35:22 UTC 2017
kill -USR1 15611
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 15611 killed at Sat Oct 21 13:35:23 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:35:23 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:23 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15667 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15667 found at Sat Oct 21 13:35:23 UTC 2017
selfserv_9183 with PID 15667 started at Sat Oct 21 13:35:23 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #949: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 15667 at Sat Oct 21 13:35:24 UTC 2017
kill -USR1 15667
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 15667 killed at Sat Oct 21 13:35:24 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:35:25 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15724 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15724 found at Sat Oct 21 13:35:25 UTC 2017
selfserv_9183 with PID 15724 started at Sat Oct 21 13:35:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #950: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 15724 at Sat Oct 21 13:35:26 UTC 2017
kill -USR1 15724
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 15724 killed at Sat Oct 21 13:35:26 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:35:27 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15792 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15792 found at Sat Oct 21 13:35:27 UTC 2017
selfserv_9183 with PID 15792 started at Sat Oct 21 13:35:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #951: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 15792 at Sat Oct 21 13:35:28 UTC 2017
kill -USR1 15792
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 15792 killed at Sat Oct 21 13:35:28 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:35:28 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:28 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15848 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15848 found at Sat Oct 21 13:35:29 UTC 2017
selfserv_9183 with PID 15848 started at Sat Oct 21 13:35:29 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #952: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 15848 at Sat Oct 21 13:35:30 UTC 2017
kill -USR1 15848
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 15848 killed at Sat Oct 21 13:35:30 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:35:30 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15904 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15904 found at Sat Oct 21 13:35:31 UTC 2017
selfserv_9183 with PID 15904 started at Sat Oct 21 13:35:31 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #953: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 15904 at Sat Oct 21 13:35:32 UTC 2017
kill -USR1 15904
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 15904 killed at Sat Oct 21 13:35:32 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:35:32 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:32 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15972 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15972 found at Sat Oct 21 13:35:33 UTC 2017
selfserv_9183 with PID 15972 started at Sat Oct 21 13:35:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #954: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 15972 at Sat Oct 21 13:35:34 UTC 2017
kill -USR1 15972
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 15972 killed at Sat Oct 21 13:35:34 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:35:34 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:34 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16031 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16031 found at Sat Oct 21 13:35:35 UTC 2017
selfserv_9183 with PID 16031 started at Sat Oct 21 13:35:35 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #955: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 16031 at Sat Oct 21 13:35:36 UTC 2017
kill -USR1 16031
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 16031 killed at Sat Oct 21 13:35:36 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:35:36 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16087 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16087 found at Sat Oct 21 13:35:37 UTC 2017
selfserv_9183 with PID 16087 started at Sat Oct 21 13:35:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #956: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 16087 at Sat Oct 21 13:35:38 UTC 2017
kill -USR1 16087
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 16087 killed at Sat Oct 21 13:35:38 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:35:38 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16155 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16155 found at Sat Oct 21 13:35:39 UTC 2017
selfserv_9183 with PID 16155 started at Sat Oct 21 13:35:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #957: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 16155 at Sat Oct 21 13:35:40 UTC 2017
kill -USR1 16155
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 16155 killed at Sat Oct 21 13:35:40 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:35:40 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16211 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16211 found at Sat Oct 21 13:35:41 UTC 2017
selfserv_9183 with PID 16211 started at Sat Oct 21 13:35:41 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #958: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 16211 at Sat Oct 21 13:35:41 UTC 2017
kill -USR1 16211
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 16211 killed at Sat Oct 21 13:35:42 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:35:42 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16267 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16267 found at Sat Oct 21 13:35:42 UTC 2017
selfserv_9183 with PID 16267 started at Sat Oct 21 13:35:43 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #959: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 16267 at Sat Oct 21 13:35:43 UTC 2017
kill -USR1 16267
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 16267 killed at Sat Oct 21 13:35:44 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:35:44 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16335 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16335 found at Sat Oct 21 13:35:44 UTC 2017
selfserv_9183 with PID 16335 started at Sat Oct 21 13:35:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #960: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 16335 at Sat Oct 21 13:35:45 UTC 2017
kill -USR1 16335
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 16335 killed at Sat Oct 21 13:35:46 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:35:46 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:46 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16392 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16392 found at Sat Oct 21 13:35:46 UTC 2017
selfserv_9183 with PID 16392 started at Sat Oct 21 13:35:46 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #961: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 16392 at Sat Oct 21 13:35:47 UTC 2017
kill -USR1 16392
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 16392 killed at Sat Oct 21 13:35:48 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:35:48 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:48 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16448 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16448 found at Sat Oct 21 13:35:48 UTC 2017
selfserv_9183 with PID 16448 started at Sat Oct 21 13:35:48 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #962: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 16448 at Sat Oct 21 13:35:49 UTC 2017
kill -USR1 16448
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 16448 killed at Sat Oct 21 13:35:49 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:35:50 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:50 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16516 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16516 found at Sat Oct 21 13:35:50 UTC 2017
selfserv_9183 with PID 16516 started at Sat Oct 21 13:35:50 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #963: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 16516 at Sat Oct 21 13:35:51 UTC 2017
kill -USR1 16516
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 16516 killed at Sat Oct 21 13:35:51 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:35:52 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:52 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16572 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16572 found at Sat Oct 21 13:35:52 UTC 2017
selfserv_9183 with PID 16572 started at Sat Oct 21 13:35:52 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #964: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 16572 at Sat Oct 21 13:35:53 UTC 2017
kill -USR1 16572
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 16572 killed at Sat Oct 21 13:35:53 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:35:54 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16628 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16628 found at Sat Oct 21 13:35:54 UTC 2017
selfserv_9183 with PID 16628 started at Sat Oct 21 13:35:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #965: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 16628 at Sat Oct 21 13:35:55 UTC 2017
kill -USR1 16628
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 16628 killed at Sat Oct 21 13:35:55 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:35:56 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16696 found at Sat Oct 21 13:35:56 UTC 2017
selfserv_9183 with PID 16696 started at Sat Oct 21 13:35:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #966: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 16696 at Sat Oct 21 13:35:57 UTC 2017
kill -USR1 16696
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 16696 killed at Sat Oct 21 13:35:58 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:35:58 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:35:58 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16752 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16752 found at Sat Oct 21 13:35:58 UTC 2017
selfserv_9183 with PID 16752 started at Sat Oct 21 13:35:58 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #967: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 16752 at Sat Oct 21 13:36:00 UTC 2017
kill -USR1 16752
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 16752 killed at Sat Oct 21 13:36:00 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:36:00 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:36:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16808 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16808 found at Sat Oct 21 13:36:01 UTC 2017
selfserv_9183 with PID 16808 started at Sat Oct 21 13:36:01 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #968: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 16808 at Sat Oct 21 13:36:02 UTC 2017
kill -USR1 16808
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 16808 killed at Sat Oct 21 13:36:03 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:36:03 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:36:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16889 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16889 found at Sat Oct 21 13:36:03 UTC 2017
selfserv_9183 with PID 16889 started at Sat Oct 21 13:36:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #969: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 16889 at Sat Oct 21 13:36:05 UTC 2017
kill -USR1 16889
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 16889 killed at Sat Oct 21 13:36:05 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:36:05 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:36:05 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16945 found at Sat Oct 21 13:36:06 UTC 2017
selfserv_9183 with PID 16945 started at Sat Oct 21 13:36:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #970: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 16945 at Sat Oct 21 13:36:07 UTC 2017
kill -USR1 16945
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 16945 killed at Sat Oct 21 13:36:08 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:36:08 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:36:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17002 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17002 found at Sat Oct 21 13:36:08 UTC 2017
selfserv_9183 with PID 17002 started at Sat Oct 21 13:36:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #971: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 17002 at Sat Oct 21 13:36:10 UTC 2017
kill -USR1 17002
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17002 killed at Sat Oct 21 13:36:10 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:36:10 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:36:10 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17070 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17070 found at Sat Oct 21 13:36:11 UTC 2017
selfserv_9183 with PID 17070 started at Sat Oct 21 13:36:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #972: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 17070 at Sat Oct 21 13:36:12 UTC 2017
kill -USR1 17070
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17070 killed at Sat Oct 21 13:36:13 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:36:13 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:36:13 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17126 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17126 found at Sat Oct 21 13:36:13 UTC 2017
selfserv_9183 with PID 17126 started at Sat Oct 21 13:36:13 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #973: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 17126 at Sat Oct 21 13:36:15 UTC 2017
kill -USR1 17126
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17126 killed at Sat Oct 21 13:36:15 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:36:15 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:36:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17182 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17182 found at Sat Oct 21 13:36:16 UTC 2017
selfserv_9183 with PID 17182 started at Sat Oct 21 13:36:16 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #974: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 17182 at Sat Oct 21 13:36:17 UTC 2017
kill -USR1 17182
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17182 killed at Sat Oct 21 13:36:17 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:36:18 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:36:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17250 found at Sat Oct 21 13:36:18 UTC 2017
selfserv_9183 with PID 17250 started at Sat Oct 21 13:36:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #975: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 17250 at Sat Oct 21 13:36:19 UTC 2017
kill -USR1 17250
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17250 killed at Sat Oct 21 13:36:20 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:36:20 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:36:20 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17306 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17306 found at Sat Oct 21 13:36:20 UTC 2017
selfserv_9183 with PID 17306 started at Sat Oct 21 13:36:20 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #976: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 17306 at Sat Oct 21 13:36:22 UTC 2017
kill -USR1 17306
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17306 killed at Sat Oct 21 13:36:22 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:36:22 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:36:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17362 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17362 found at Sat Oct 21 13:36:23 UTC 2017
selfserv_9183 with PID 17362 started at Sat Oct 21 13:36:23 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #977: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 17362 at Sat Oct 21 13:36:24 UTC 2017
kill -USR1 17362
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17362 killed at Sat Oct 21 13:36:25 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:36:25 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:36:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17430 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17430 found at Sat Oct 21 13:36:25 UTC 2017
selfserv_9183 with PID 17430 started at Sat Oct 21 13:36:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #978: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 17430 at Sat Oct 21 13:36:26 UTC 2017
kill -USR1 17430
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17430 killed at Sat Oct 21 13:36:27 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:36:27 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:36:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17486 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17486 found at Sat Oct 21 13:36:28 UTC 2017
selfserv_9183 with PID 17486 started at Sat Oct 21 13:36:28 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #979: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 17486 at Sat Oct 21 13:36:29 UTC 2017
kill -USR1 17486
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17486 killed at Sat Oct 21 13:36:29 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:36:29 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:36:29 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17543 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17543 found at Sat Oct 21 13:36:30 UTC 2017
selfserv_9183 with PID 17543 started at Sat Oct 21 13:36:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #980: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 17543 at Sat Oct 21 13:36:31 UTC 2017
kill -USR1 17543
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17543 killed at Sat Oct 21 13:36:32 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:36:32 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:36:32 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17611 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17611 found at Sat Oct 21 13:36:32 UTC 2017
selfserv_9183 with PID 17611 started at Sat Oct 21 13:36:32 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #981: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 17611 at Sat Oct 21 13:36:34 UTC 2017
kill -USR1 17611
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17611 killed at Sat Oct 21 13:36:34 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:36:34 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:36:34 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17670 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17670 found at Sat Oct 21 13:36:35 UTC 2017
selfserv_9183 with PID 17670 started at Sat Oct 21 13:36:35 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #982: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 17670 at Sat Oct 21 13:36:36 UTC 2017
kill -USR1 17670
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17670 killed at Sat Oct 21 13:36:37 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:36:37 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:36:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17726 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17726 found at Sat Oct 21 13:36:37 UTC 2017
selfserv_9183 with PID 17726 started at Sat Oct 21 13:36:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #983: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 17726 at Sat Oct 21 13:36:39 UTC 2017
kill -USR1 17726
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17726 killed at Sat Oct 21 13:36:39 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:36:39 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:36:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17794 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17794 found at Sat Oct 21 13:36:40 UTC 2017
selfserv_9183 with PID 17794 started at Sat Oct 21 13:36:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #984: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 17794 at Sat Oct 21 13:36:41 UTC 2017
kill -USR1 17794
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17794 killed at Sat Oct 21 13:36:41 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:36:42 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:36:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17850 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17850 found at Sat Oct 21 13:36:42 UTC 2017
selfserv_9183 with PID 17850 started at Sat Oct 21 13:36:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #985: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 17850 at Sat Oct 21 13:36:43 UTC 2017
kill -USR1 17850
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17850 killed at Sat Oct 21 13:36:44 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:36:44 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:36:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17906 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17906 found at Sat Oct 21 13:36:44 UTC 2017
selfserv_9183 with PID 17906 started at Sat Oct 21 13:36:45 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #986: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 17906 at Sat Oct 21 13:36:46 UTC 2017
kill -USR1 17906
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17906 killed at Sat Oct 21 13:36:46 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:36:46 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:36:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17974 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17974 found at Sat Oct 21 13:36:47 UTC 2017
selfserv_9183 with PID 17974 started at Sat Oct 21 13:36:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #987: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 17974 at Sat Oct 21 13:36:48 UTC 2017
kill -USR1 17974
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17974 killed at Sat Oct 21 13:36:49 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:36:49 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:36:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18031 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18031 found at Sat Oct 21 13:36:49 UTC 2017
selfserv_9183 with PID 18031 started at Sat Oct 21 13:36:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #988: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 18031 at Sat Oct 21 13:36:51 UTC 2017
kill -USR1 18031
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18031 killed at Sat Oct 21 13:36:51 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:36:51 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:36:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18087 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18087 found at Sat Oct 21 13:36:52 UTC 2017
selfserv_9183 with PID 18087 started at Sat Oct 21 13:36:52 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #989: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 18087 at Sat Oct 21 13:36:53 UTC 2017
kill -USR1 18087
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18087 killed at Sat Oct 21 13:36:54 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:36:54 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:36:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18155 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18155 found at Sat Oct 21 13:36:54 UTC 2017
selfserv_9183 with PID 18155 started at Sat Oct 21 13:36:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #990: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 18155 at Sat Oct 21 13:36:56 UTC 2017
kill -USR1 18155
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18155 killed at Sat Oct 21 13:36:56 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:36:56 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:36:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18211 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18211 found at Sat Oct 21 13:36:57 UTC 2017
selfserv_9183 with PID 18211 started at Sat Oct 21 13:36:57 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #991: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 18211 at Sat Oct 21 13:36:58 UTC 2017
kill -USR1 18211
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18211 killed at Sat Oct 21 13:36:59 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:36:59 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:36:59 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18267 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18267 found at Sat Oct 21 13:36:59 UTC 2017
selfserv_9183 with PID 18267 started at Sat Oct 21 13:36:59 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #992: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 18267 at Sat Oct 21 13:37:01 UTC 2017
kill -USR1 18267
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18267 killed at Sat Oct 21 13:37:01 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:37:01 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:37:01 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18335 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18335 found at Sat Oct 21 13:37:02 UTC 2017
selfserv_9183 with PID 18335 started at Sat Oct 21 13:37:02 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #993: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 18335 at Sat Oct 21 13:37:03 UTC 2017
kill -USR1 18335
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18335 killed at Sat Oct 21 13:37:04 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:37:04 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:37:04 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18404 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18404 found at Sat Oct 21 13:37:04 UTC 2017
selfserv_9183 with PID 18404 started at Sat Oct 21 13:37:04 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #994: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 18404 at Sat Oct 21 13:37:05 UTC 2017
kill -USR1 18404
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18404 killed at Sat Oct 21 13:37:06 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:37:06 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:37:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18460 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18460 found at Sat Oct 21 13:37:07 UTC 2017
selfserv_9183 with PID 18460 started at Sat Oct 21 13:37:07 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #995: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 18460 at Sat Oct 21 13:37:08 UTC 2017
kill -USR1 18460
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18460 killed at Sat Oct 21 13:37:08 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:37:08 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:37:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18528 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18528 found at Sat Oct 21 13:37:09 UTC 2017
selfserv_9183 with PID 18528 started at Sat Oct 21 13:37:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #996: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 18528 at Sat Oct 21 13:37:10 UTC 2017
kill -USR1 18528
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18528 killed at Sat Oct 21 13:37:11 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:37:11 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:37:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18585 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18585 found at Sat Oct 21 13:37:11 UTC 2017
selfserv_9183 with PID 18585 started at Sat Oct 21 13:37:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #997: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 18585 at Sat Oct 21 13:37:13 UTC 2017
kill -USR1 18585
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18585 killed at Sat Oct 21 13:37:13 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:37:13 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:37:13 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18641 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18641 found at Sat Oct 21 13:37:14 UTC 2017
selfserv_9183 with PID 18641 started at Sat Oct 21 13:37:14 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #998: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 18641 at Sat Oct 21 13:37:15 UTC 2017
kill -USR1 18641
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18641 killed at Sat Oct 21 13:37:15 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:37:16 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:37:16 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18709 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18709 found at Sat Oct 21 13:37:16 UTC 2017
selfserv_9183 with PID 18709 started at Sat Oct 21 13:37:16 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #999: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 18709 at Sat Oct 21 13:37:17 UTC 2017
kill -USR1 18709
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18709 killed at Sat Oct 21 13:37:18 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:37:18 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:37:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18765 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18765 found at Sat Oct 21 13:37:18 UTC 2017
selfserv_9183 with PID 18765 started at Sat Oct 21 13:37:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1000: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 18765 at Sat Oct 21 13:37:20 UTC 2017
kill -USR1 18765
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18765 killed at Sat Oct 21 13:37:20 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:37:21 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:37:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18821 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18821 found at Sat Oct 21 13:37:21 UTC 2017
selfserv_9183 with PID 18821 started at Sat Oct 21 13:37:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1001: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 18821 at Sat Oct 21 13:37:22 UTC 2017
kill -USR1 18821
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18821 killed at Sat Oct 21 13:37:23 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:37:23 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:37:23 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18889 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18889 found at Sat Oct 21 13:37:23 UTC 2017
selfserv_9183 with PID 18889 started at Sat Oct 21 13:37:24 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1002: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 18889 at Sat Oct 21 13:37:24 UTC 2017
kill -USR1 18889
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18889 killed at Sat Oct 21 13:37:25 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:37:25 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:37:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18945 found at Sat Oct 21 13:37:26 UTC 2017
selfserv_9183 with PID 18945 started at Sat Oct 21 13:37:26 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1003: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 18945 at Sat Oct 21 13:37:27 UTC 2017
kill -USR1 18945
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18945 killed at Sat Oct 21 13:37:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:37:27 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:37:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19001 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19001 found at Sat Oct 21 13:37:28 UTC 2017
selfserv_9183 with PID 19001 started at Sat Oct 21 13:37:28 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1004: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 19001 at Sat Oct 21 13:37:29 UTC 2017
kill -USR1 19001
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19001 killed at Sat Oct 21 13:37:29 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:37:29 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:37:29 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19069 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19069 found at Sat Oct 21 13:37:30 UTC 2017
selfserv_9183 with PID 19069 started at Sat Oct 21 13:37:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1005: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 19069 at Sat Oct 21 13:37:31 UTC 2017
kill -USR1 19069
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19069 killed at Sat Oct 21 13:37:31 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:37:31 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:37:31 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19126 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19126 found at Sat Oct 21 13:37:32 UTC 2017
selfserv_9183 with PID 19126 started at Sat Oct 21 13:37:32 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1006: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 19126 at Sat Oct 21 13:37:33 UTC 2017
kill -USR1 19126
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19126 killed at Sat Oct 21 13:37:33 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:37:34 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:37:34 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19185 found at Sat Oct 21 13:37:34 UTC 2017
selfserv_9183 with PID 19185 started at Sat Oct 21 13:37:34 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1007: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 19185 at Sat Oct 21 13:37:35 UTC 2017
kill -USR1 19185
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19185 killed at Sat Oct 21 13:37:35 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:37:36 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:37:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19253 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19253 found at Sat Oct 21 13:37:36 UTC 2017
selfserv_9183 with PID 19253 started at Sat Oct 21 13:37:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1008: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 19253 at Sat Oct 21 13:37:37 UTC 2017
kill -USR1 19253
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19253 killed at Sat Oct 21 13:37:38 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:37:38 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:37:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19309 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19309 found at Sat Oct 21 13:37:38 UTC 2017
selfserv_9183 with PID 19309 started at Sat Oct 21 13:37:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1009: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 19309 at Sat Oct 21 13:37:39 UTC 2017
kill -USR1 19309
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19309 killed at Sat Oct 21 13:37:40 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:37:40 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:37:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19365 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19365 found at Sat Oct 21 13:37:40 UTC 2017
selfserv_9183 with PID 19365 started at Sat Oct 21 13:37:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1010: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 19365 at Sat Oct 21 13:37:42 UTC 2017
kill -USR1 19365
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19365 killed at Sat Oct 21 13:37:42 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:37:42 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:37:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19433 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19433 found at Sat Oct 21 13:37:43 UTC 2017
selfserv_9183 with PID 19433 started at Sat Oct 21 13:37:43 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1011: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 19433 at Sat Oct 21 13:37:44 UTC 2017
kill -USR1 19433
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19433 killed at Sat Oct 21 13:37:44 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:37:44 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:37:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19489 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19489 found at Sat Oct 21 13:37:45 UTC 2017
selfserv_9183 with PID 19489 started at Sat Oct 21 13:37:45 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1012: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 19489 at Sat Oct 21 13:37:46 UTC 2017
kill -USR1 19489
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19489 killed at Sat Oct 21 13:37:46 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:37:46 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:37:46 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19546 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19546 found at Sat Oct 21 13:37:47 UTC 2017
selfserv_9183 with PID 19546 started at Sat Oct 21 13:37:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1013: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 19546 at Sat Oct 21 13:37:48 UTC 2017
kill -USR1 19546
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19546 killed at Sat Oct 21 13:37:48 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:37:48 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:37:48 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19614 found at Sat Oct 21 13:37:49 UTC 2017
selfserv_9183 with PID 19614 started at Sat Oct 21 13:37:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1014: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 19614 at Sat Oct 21 13:37:50 UTC 2017
kill -USR1 19614
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19614 killed at Sat Oct 21 13:37:50 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:37:50 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:37:50 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19670 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19670 found at Sat Oct 21 13:37:51 UTC 2017
selfserv_9183 with PID 19670 started at Sat Oct 21 13:37:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1015: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 19670 at Sat Oct 21 13:37:52 UTC 2017
kill -USR1 19670
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19670 killed at Sat Oct 21 13:37:52 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:37:52 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:37:52 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19727 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19727 found at Sat Oct 21 13:37:53 UTC 2017
selfserv_9183 with PID 19727 started at Sat Oct 21 13:37:53 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1016: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 19727 at Sat Oct 21 13:37:54 UTC 2017
kill -USR1 19727
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19727 killed at Sat Oct 21 13:37:54 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:37:55 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:37:55 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19795 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19795 found at Sat Oct 21 13:37:55 UTC 2017
selfserv_9183 with PID 19795 started at Sat Oct 21 13:37:55 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1017: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 19795 at Sat Oct 21 13:37:56 UTC 2017
kill -USR1 19795
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19795 killed at Sat Oct 21 13:37:57 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:37:57 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:37:57 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19851 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19851 found at Sat Oct 21 13:37:57 UTC 2017
selfserv_9183 with PID 19851 started at Sat Oct 21 13:37:57 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1018: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 19851 at Sat Oct 21 13:37:58 UTC 2017
kill -USR1 19851
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19851 killed at Sat Oct 21 13:37:59 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:37:59 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:37:59 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19907 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19907 found at Sat Oct 21 13:37:59 UTC 2017
selfserv_9183 with PID 19907 started at Sat Oct 21 13:37:59 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1019: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 19907 at Sat Oct 21 13:38:00 UTC 2017
kill -USR1 19907
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19907 killed at Sat Oct 21 13:38:01 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:38:01 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:38:01 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 13:38:02 UTC 2017
selfserv_9183 with PID 19996 started at Sat Oct 21 13:38:02 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1020: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 19996 at Sat Oct 21 13:38:03 UTC 2017
kill -USR1 19996
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19996 killed at Sat Oct 21 13:38:03 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:38:03 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:38:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20052 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20052 found at Sat Oct 21 13:38:04 UTC 2017
selfserv_9183 with PID 20052 started at Sat Oct 21 13:38:04 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1021: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 20052 at Sat Oct 21 13:38:05 UTC 2017
kill -USR1 20052
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20052 killed at Sat Oct 21 13:38:05 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:38:06 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:38:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20108 found at Sat Oct 21 13:38:06 UTC 2017
selfserv_9183 with PID 20108 started at Sat Oct 21 13:38:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1022: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 20108 at Sat Oct 21 13:38:07 UTC 2017
kill -USR1 20108
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20108 killed at Sat Oct 21 13:38:08 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:38:08 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:38:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20176 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20176 found at Sat Oct 21 13:38:08 UTC 2017
selfserv_9183 with PID 20176 started at Sat Oct 21 13:38:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1023: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 20176 at Sat Oct 21 13:38:09 UTC 2017
kill -USR1 20176
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20176 killed at Sat Oct 21 13:38:10 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:38:10 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:38:10 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20232 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20232 found at Sat Oct 21 13:38:10 UTC 2017
selfserv_9183 with PID 20232 started at Sat Oct 21 13:38:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1024: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 20232 at Sat Oct 21 13:38:12 UTC 2017
kill -USR1 20232
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20232 killed at Sat Oct 21 13:38:12 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:38:12 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:38:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20288 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20288 found at Sat Oct 21 13:38:13 UTC 2017
selfserv_9183 with PID 20288 started at Sat Oct 21 13:38:13 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1025: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 20288 at Sat Oct 21 13:38:14 UTC 2017
kill -USR1 20288
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20288 killed at Sat Oct 21 13:38:15 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:38:15 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:38:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20357 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20357 found at Sat Oct 21 13:38:15 UTC 2017
selfserv_9183 with PID 20357 started at Sat Oct 21 13:38:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1026: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 20357 at Sat Oct 21 13:38:16 UTC 2017
kill -USR1 20357
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20357 killed at Sat Oct 21 13:38:17 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:38:17 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:38:17 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20413 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20413 found at Sat Oct 21 13:38:17 UTC 2017
selfserv_9183 with PID 20413 started at Sat Oct 21 13:38:17 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1027: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 20413 at Sat Oct 21 13:38:18 UTC 2017
kill -USR1 20413
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20413 killed at Sat Oct 21 13:38:19 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:38:19 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:38:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20469 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20469 found at Sat Oct 21 13:38:19 UTC 2017
selfserv_9183 with PID 20469 started at Sat Oct 21 13:38:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1028: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 20469 at Sat Oct 21 13:38:20 UTC 2017
kill -USR1 20469
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20469 killed at Sat Oct 21 13:38:21 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:38:21 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:38:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20537 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20537 found at Sat Oct 21 13:38:21 UTC 2017
selfserv_9183 with PID 20537 started at Sat Oct 21 13:38:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1029: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 20537 at Sat Oct 21 13:38:22 UTC 2017
kill -USR1 20537
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20537 killed at Sat Oct 21 13:38:23 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:38:23 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:38:23 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20593 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20593 found at Sat Oct 21 13:38:24 UTC 2017
selfserv_9183 with PID 20593 started at Sat Oct 21 13:38:24 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1030: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 20593 at Sat Oct 21 13:38:25 UTC 2017
kill -USR1 20593
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20593 killed at Sat Oct 21 13:38:25 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:38:25 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:38:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20649 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20649 found at Sat Oct 21 13:38:26 UTC 2017
selfserv_9183 with PID 20649 started at Sat Oct 21 13:38:26 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1031: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 20649 at Sat Oct 21 13:38:27 UTC 2017
kill -USR1 20649
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20649 killed at Sat Oct 21 13:38:28 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:38:28 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:38:28 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20717 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20717 found at Sat Oct 21 13:38:28 UTC 2017
selfserv_9183 with PID 20717 started at Sat Oct 21 13:38:28 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1032: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 20717 at Sat Oct 21 13:38:29 UTC 2017
kill -USR1 20717
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20717 killed at Sat Oct 21 13:38:30 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:38:30 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:38:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20773 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20773 found at Sat Oct 21 13:38:30 UTC 2017
selfserv_9183 with PID 20773 started at Sat Oct 21 13:38:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1033: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 20773 at Sat Oct 21 13:38:31 UTC 2017
kill -USR1 20773
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20773 killed at Sat Oct 21 13:38:31 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:38:32 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:38:32 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20829 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20829 found at Sat Oct 21 13:38:32 UTC 2017
selfserv_9183 with PID 20829 started at Sat Oct 21 13:38:32 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1034: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 20829 at Sat Oct 21 13:38:33 UTC 2017
kill -USR1 20829
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20829 killed at Sat Oct 21 13:38:33 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:38:34 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:38:34 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20900 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20900 found at Sat Oct 21 13:38:34 UTC 2017
selfserv_9183 with PID 20900 started at Sat Oct 21 13:38:34 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1035: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 20900 at Sat Oct 21 13:38:35 UTC 2017
kill -USR1 20900
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20900 killed at Sat Oct 21 13:38:35 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:38:36 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:38:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20957 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20957 found at Sat Oct 21 13:38:36 UTC 2017
selfserv_9183 with PID 20957 started at Sat Oct 21 13:38:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1036: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 20957 at Sat Oct 21 13:38:37 UTC 2017
kill -USR1 20957
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20957 killed at Sat Oct 21 13:38:38 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:38:38 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:38:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21013 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21013 found at Sat Oct 21 13:38:38 UTC 2017
selfserv_9183 with PID 21013 started at Sat Oct 21 13:38:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1037: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 21013 at Sat Oct 21 13:38:39 UTC 2017
kill -USR1 21013
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21013 killed at Sat Oct 21 13:38:40 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:38:40 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:38:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21081 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21081 found at Sat Oct 21 13:38:40 UTC 2017
selfserv_9183 with PID 21081 started at Sat Oct 21 13:38:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1038: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 21081 at Sat Oct 21 13:38:41 UTC 2017
kill -USR1 21081
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21081 killed at Sat Oct 21 13:38:42 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:38:42 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:38:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21137 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21137 found at Sat Oct 21 13:38:42 UTC 2017
selfserv_9183 with PID 21137 started at Sat Oct 21 13:38:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1039: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 21137 at Sat Oct 21 13:38:43 UTC 2017
kill -USR1 21137
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21137 killed at Sat Oct 21 13:38:43 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:38:44 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:38:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21193 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21193 found at Sat Oct 21 13:38:44 UTC 2017
selfserv_9183 with PID 21193 started at Sat Oct 21 13:38:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1040: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 21193 at Sat Oct 21 13:38:45 UTC 2017
kill -USR1 21193
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21193 killed at Sat Oct 21 13:38:45 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:38:46 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:38:46 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21261 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21261 found at Sat Oct 21 13:38:46 UTC 2017
selfserv_9183 with PID 21261 started at Sat Oct 21 13:38:46 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1041: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 21261 at Sat Oct 21 13:38:47 UTC 2017
kill -USR1 21261
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21261 killed at Sat Oct 21 13:38:47 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:38:48 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:38:48 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21317 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21317 found at Sat Oct 21 13:38:48 UTC 2017
selfserv_9183 with PID 21317 started at Sat Oct 21 13:38:48 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1042: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 21317 at Sat Oct 21 13:38:49 UTC 2017
kill -USR1 21317
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21317 killed at Sat Oct 21 13:38:50 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:38:50 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:38:50 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21373 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21373 found at Sat Oct 21 13:38:50 UTC 2017
selfserv_9183 with PID 21373 started at Sat Oct 21 13:38:50 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1043: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 21373 at Sat Oct 21 13:38:51 UTC 2017
kill -USR1 21373
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21373 killed at Sat Oct 21 13:38:52 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:38:52 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:38:52 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21441 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21441 found at Sat Oct 21 13:38:52 UTC 2017
selfserv_9183 with PID 21441 started at Sat Oct 21 13:38:52 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1044: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 21441 at Sat Oct 21 13:38:54 UTC 2017
kill -USR1 21441
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21441 killed at Sat Oct 21 13:38:54 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:38:54 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:38:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21497 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21497 found at Sat Oct 21 13:38:55 UTC 2017
selfserv_9183 with PID 21497 started at Sat Oct 21 13:38:55 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1045: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 21497 at Sat Oct 21 13:38:56 UTC 2017
kill -USR1 21497
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21497 killed at Sat Oct 21 13:38:57 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:38:57 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:38:57 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21554 found at Sat Oct 21 13:38:57 UTC 2017
selfserv_9183 with PID 21554 started at Sat Oct 21 13:38:57 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1046: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 21554 at Sat Oct 21 13:38:58 UTC 2017
kill -USR1 21554
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21554 killed at Sat Oct 21 13:38:59 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:38:59 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:38:59 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21622 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21622 found at Sat Oct 21 13:39:00 UTC 2017
selfserv_9183 with PID 21622 started at Sat Oct 21 13:39:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1047: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 21622 at Sat Oct 21 13:39:01 UTC 2017
kill -USR1 21622
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21622 killed at Sat Oct 21 13:39:02 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:39:02 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:39:02 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21691 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21691 found at Sat Oct 21 13:39:02 UTC 2017
selfserv_9183 with PID 21691 started at Sat Oct 21 13:39:02 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1048: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 21691 at Sat Oct 21 13:39:04 UTC 2017
kill -USR1 21691
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21691 killed at Sat Oct 21 13:39:04 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:39:04 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:39:04 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21747 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21747 found at Sat Oct 21 13:39:05 UTC 2017
selfserv_9183 with PID 21747 started at Sat Oct 21 13:39:05 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1049: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 21747 at Sat Oct 21 13:39:06 UTC 2017
kill -USR1 21747
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21747 killed at Sat Oct 21 13:39:07 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:39:07 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:39:07 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21815 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21815 found at Sat Oct 21 13:39:07 UTC 2017
selfserv_9183 with PID 21815 started at Sat Oct 21 13:39:07 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1050: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 21815 at Sat Oct 21 13:39:09 UTC 2017
kill -USR1 21815
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21815 killed at Sat Oct 21 13:39:09 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:39:09 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:39:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21871 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21871 found at Sat Oct 21 13:39:10 UTC 2017
selfserv_9183 with PID 21871 started at Sat Oct 21 13:39:10 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1051: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 21871 at Sat Oct 21 13:39:11 UTC 2017
kill -USR1 21871
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21871 killed at Sat Oct 21 13:39:12 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:39:12 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:39:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21927 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21927 found at Sat Oct 21 13:39:12 UTC 2017
selfserv_9183 with PID 21927 started at Sat Oct 21 13:39:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1052: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 21927 at Sat Oct 21 13:39:13 UTC 2017
kill -USR1 21927
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21927 killed at Sat Oct 21 13:39:14 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:39:14 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:39:14 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21995 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21995 found at Sat Oct 21 13:39:15 UTC 2017
selfserv_9183 with PID 21995 started at Sat Oct 21 13:39:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1053: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 21995 at Sat Oct 21 13:39:16 UTC 2017
kill -USR1 21995
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21995 killed at Sat Oct 21 13:39:17 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:39:17 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:39:17 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22052 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22052 found at Sat Oct 21 13:39:17 UTC 2017
selfserv_9183 with PID 22052 started at Sat Oct 21 13:39:17 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1054: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 22052 at Sat Oct 21 13:39:19 UTC 2017
kill -USR1 22052
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22052 killed at Sat Oct 21 13:39:19 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:39:19 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:39:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22108 found at Sat Oct 21 13:39:20 UTC 2017
selfserv_9183 with PID 22108 started at Sat Oct 21 13:39:20 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1055: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 22108 at Sat Oct 21 13:39:21 UTC 2017
kill -USR1 22108
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22108 killed at Sat Oct 21 13:39:22 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:39:22 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:39:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22176 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22176 found at Sat Oct 21 13:39:22 UTC 2017
selfserv_9183 with PID 22176 started at Sat Oct 21 13:39:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1056: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 22176 at Sat Oct 21 13:39:24 UTC 2017
kill -USR1 22176
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22176 killed at Sat Oct 21 13:39:24 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:39:24 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:39:24 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22232 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22232 found at Sat Oct 21 13:39:25 UTC 2017
selfserv_9183 with PID 22232 started at Sat Oct 21 13:39:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1057: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 22232 at Sat Oct 21 13:39:26 UTC 2017
kill -USR1 22232
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22232 killed at Sat Oct 21 13:39:27 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:39:27 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:39:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22288 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22288 found at Sat Oct 21 13:39:27 UTC 2017
selfserv_9183 with PID 22288 started at Sat Oct 21 13:39:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1058: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 22288 at Sat Oct 21 13:39:28 UTC 2017
kill -USR1 22288
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22288 killed at Sat Oct 21 13:39:29 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:39:29 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:39:29 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22356 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22356 found at Sat Oct 21 13:39:30 UTC 2017
selfserv_9183 with PID 22356 started at Sat Oct 21 13:39:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1059: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 22356 at Sat Oct 21 13:39:31 UTC 2017
kill -USR1 22356
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22356 killed at Sat Oct 21 13:39:32 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:39:32 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:39:32 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22412 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22412 found at Sat Oct 21 13:39:32 UTC 2017
selfserv_9183 with PID 22412 started at Sat Oct 21 13:39:32 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1060: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 22412 at Sat Oct 21 13:39:34 UTC 2017
kill -USR1 22412
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22412 killed at Sat Oct 21 13:39:34 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:39:34 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:39:34 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22471 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22471 found at Sat Oct 21 13:39:35 UTC 2017
selfserv_9183 with PID 22471 started at Sat Oct 21 13:39:35 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1061: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 22471 at Sat Oct 21 13:39:36 UTC 2017
kill -USR1 22471
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22471 killed at Sat Oct 21 13:39:37 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:39:37 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:39:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22540 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22540 found at Sat Oct 21 13:39:37 UTC 2017
selfserv_9183 with PID 22540 started at Sat Oct 21 13:39:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1062: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 22540 at Sat Oct 21 13:39:39 UTC 2017
kill -USR1 22540
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22540 killed at Sat Oct 21 13:39:39 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:39:39 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:39:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22596 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22596 found at Sat Oct 21 13:39:40 UTC 2017
selfserv_9183 with PID 22596 started at Sat Oct 21 13:39:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1063: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 22596 at Sat Oct 21 13:39:41 UTC 2017
kill -USR1 22596
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22596 killed at Sat Oct 21 13:39:41 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:39:42 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:39:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22652 found at Sat Oct 21 13:39:42 UTC 2017
selfserv_9183 with PID 22652 started at Sat Oct 21 13:39:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1064: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 22652 at Sat Oct 21 13:39:43 UTC 2017
kill -USR1 22652
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22652 killed at Sat Oct 21 13:39:44 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:39:44 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:39:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22720 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22720 found at Sat Oct 21 13:39:44 UTC 2017
selfserv_9183 with PID 22720 started at Sat Oct 21 13:39:45 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1065: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 22720 at Sat Oct 21 13:39:46 UTC 2017
kill -USR1 22720
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22720 killed at Sat Oct 21 13:39:46 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:39:47 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:39:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22776 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22776 found at Sat Oct 21 13:39:47 UTC 2017
selfserv_9183 with PID 22776 started at Sat Oct 21 13:39:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1066: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 22776 at Sat Oct 21 13:39:49 UTC 2017
kill -USR1 22776
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22776 killed at Sat Oct 21 13:39:49 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:39:49 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:39:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22832 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22832 found at Sat Oct 21 13:39:50 UTC 2017
selfserv_9183 with PID 22832 started at Sat Oct 21 13:39:50 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1067: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 22832 at Sat Oct 21 13:39:51 UTC 2017
kill -USR1 22832
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22832 killed at Sat Oct 21 13:39:52 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:39:52 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:39:52 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22900 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22900 found at Sat Oct 21 13:39:52 UTC 2017
selfserv_9183 with PID 22900 started at Sat Oct 21 13:39:52 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1068: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 22900 at Sat Oct 21 13:39:53 UTC 2017
kill -USR1 22900
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22900 killed at Sat Oct 21 13:39:54 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:39:54 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:39:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22956 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22956 found at Sat Oct 21 13:39:54 UTC 2017
selfserv_9183 with PID 22956 started at Sat Oct 21 13:39:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1069: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 22956 at Sat Oct 21 13:39:55 UTC 2017
kill -USR1 22956
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22956 killed at Sat Oct 21 13:39:56 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:39:56 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:39:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23012 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23012 found at Sat Oct 21 13:39:56 UTC 2017
selfserv_9183 with PID 23012 started at Sat Oct 21 13:39:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1070: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 23012 at Sat Oct 21 13:39:57 UTC 2017
kill -USR1 23012
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23012 killed at Sat Oct 21 13:39:58 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:39:58 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:39:58 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23081 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23081 found at Sat Oct 21 13:39:59 UTC 2017
selfserv_9183 with PID 23081 started at Sat Oct 21 13:39:59 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1071: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 23081 at Sat Oct 21 13:40:00 UTC 2017
kill -USR1 23081
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23081 killed at Sat Oct 21 13:40:00 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:40:00 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:40:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23137 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23137 found at Sat Oct 21 13:40:01 UTC 2017
selfserv_9183 with PID 23137 started at Sat Oct 21 13:40:01 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1072: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 23137 at Sat Oct 21 13:40:02 UTC 2017
kill -USR1 23137
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23137 killed at Sat Oct 21 13:40:03 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:40:03 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:40:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23212 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23212 found at Sat Oct 21 13:40:03 UTC 2017
selfserv_9183 with PID 23212 started at Sat Oct 21 13:40:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1073: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 23212 at Sat Oct 21 13:40:04 UTC 2017
kill -USR1 23212
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23212 killed at Sat Oct 21 13:40:05 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:40:05 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:40:05 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23280 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23280 found at Sat Oct 21 13:40:06 UTC 2017
selfserv_9183 with PID 23280 started at Sat Oct 21 13:40:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1074: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 23280 at Sat Oct 21 13:40:07 UTC 2017
kill -USR1 23280
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23280 killed at Sat Oct 21 13:40:07 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:40:07 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:40:07 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23336 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23336 found at Sat Oct 21 13:40:08 UTC 2017
selfserv_9183 with PID 23336 started at Sat Oct 21 13:40:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1075: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 23336 at Sat Oct 21 13:40:09 UTC 2017
kill -USR1 23336
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23336 killed at Sat Oct 21 13:40:09 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:40:09 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:40:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23394 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23394 found at Sat Oct 21 13:40:10 UTC 2017
selfserv_9183 with PID 23394 started at Sat Oct 21 13:40:10 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1076: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 23394 at Sat Oct 21 13:40:11 UTC 2017
kill -USR1 23394
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23394 killed at Sat Oct 21 13:40:11 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:40:11 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:40:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23462 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23462 found at Sat Oct 21 13:40:12 UTC 2017
selfserv_9183 with PID 23462 started at Sat Oct 21 13:40:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1077: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 23462 at Sat Oct 21 13:40:13 UTC 2017
kill -USR1 23462
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23462 killed at Sat Oct 21 13:40:13 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:40:14 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:40:14 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23518 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23518 found at Sat Oct 21 13:40:14 UTC 2017
selfserv_9183 with PID 23518 started at Sat Oct 21 13:40:14 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1078: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 23518 at Sat Oct 21 13:40:15 UTC 2017
kill -USR1 23518
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23518 killed at Sat Oct 21 13:40:16 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:40:16 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:40:16 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23574 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23574 found at Sat Oct 21 13:40:16 UTC 2017
selfserv_9183 with PID 23574 started at Sat Oct 21 13:40:16 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1079: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 23574 at Sat Oct 21 13:40:17 UTC 2017
kill -USR1 23574
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23574 killed at Sat Oct 21 13:40:18 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/authin.tl.tmp
0
selfserv_9183 starting at Sat Oct 21 13:40:18 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:40:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:19 UTC 2017
selfserv_9183 with PID 23637 started at Sat Oct 21 13:40:19 UTC 2017
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:20 UTC 2017
ssl.sh: #1080: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:21 UTC 2017
ssl.sh: #1081: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:22 UTC 2017
ssl.sh: #1082: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:23 UTC 2017
ssl.sh: #1083: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:24 UTC 2017
ssl.sh: #1084: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:25 UTC 2017
ssl.sh: #1085: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:26 UTC 2017
ssl.sh: #1086: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:28 UTC 2017
ssl.sh: #1087: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:29 UTC 2017
ssl.sh: #1088: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:30 UTC 2017
ssl.sh: #1089: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:31 UTC 2017
ssl.sh: #1090: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:32 UTC 2017
ssl.sh: #1091: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:33 UTC 2017
ssl.sh: #1092: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:34 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1093: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:36 UTC 2017
ssl.sh: #1094: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:37 UTC 2017
ssl.sh: #1095: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:38 UTC 2017
ssl.sh: #1096: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:39 UTC 2017
ssl.sh: #1097: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:40 UTC 2017
ssl.sh: #1098: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:41 UTC 2017
ssl.sh: #1099: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:42 UTC 2017
ssl.sh: #1100: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:43 UTC 2017
ssl.sh: #1101: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:44 UTC 2017
ssl.sh: #1102: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:45 UTC 2017
ssl.sh: #1103: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:47 UTC 2017
ssl.sh: #1104: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:48 UTC 2017
ssl.sh: #1105: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:49 UTC 2017
ssl.sh: #1106: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:50 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1107: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:51 UTC 2017
ssl.sh: #1108: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:52 UTC 2017
ssl.sh: #1109: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:53 UTC 2017
ssl.sh: #1110: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:54 UTC 2017
ssl.sh: #1111: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:55 UTC 2017
ssl.sh: #1112: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:56 UTC 2017
ssl.sh: #1113: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:57 UTC 2017
ssl.sh: #1114: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:40:59 UTC 2017
ssl.sh: #1115: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:41:00 UTC 2017
ssl.sh: #1116: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:41:01 UTC 2017
ssl.sh: #1117: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:41:02 UTC 2017
ssl.sh: #1118: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:41:03 UTC 2017
ssl.sh: #1119: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23637 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23637 found at Sat Oct 21 13:41:04 UTC 2017
ssl.sh: #1120: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 23637 at Sat Oct 21 13:41:04 UTC 2017
kill -USR1 23637
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23637 killed at Sat Oct 21 13:41:05 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:41:05 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:41:05 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:05 UTC 2017
selfserv_9183 with PID 25077 started at Sat Oct 21 13:41:05 UTC 2017
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:06 UTC 2017
ssl.sh: #1121: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:07 UTC 2017
ssl.sh: #1122: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:08 UTC 2017
ssl.sh: #1123: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:09 UTC 2017
ssl.sh: #1124: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:10 UTC 2017
ssl.sh: #1125: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:11 UTC 2017
ssl.sh: #1126: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:12 UTC 2017
ssl.sh: #1127: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:13 UTC 2017
ssl.sh: #1128: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:14 UTC 2017
ssl.sh: #1129: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:15 UTC 2017
ssl.sh: #1130: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:16 UTC 2017
ssl.sh: #1131: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:17 UTC 2017
ssl.sh: #1132: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:18 UTC 2017
ssl.sh: #1133: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:20 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1134: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:20 UTC 2017
ssl.sh: #1135: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:21 UTC 2017
ssl.sh: #1136: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:22 UTC 2017
ssl.sh: #1137: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:23 UTC 2017
ssl.sh: #1138: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:24 UTC 2017
ssl.sh: #1139: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:25 UTC 2017
ssl.sh: #1140: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:26 UTC 2017
ssl.sh: #1141: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:27 UTC 2017
ssl.sh: #1142: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:28 UTC 2017
ssl.sh: #1143: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:29 UTC 2017
ssl.sh: #1144: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:30 UTC 2017
ssl.sh: #1145: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:31 UTC 2017
ssl.sh: #1146: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:32 UTC 2017
ssl.sh: #1147: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:34 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1148: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:34 UTC 2017
ssl.sh: #1149: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:35 UTC 2017
ssl.sh: #1150: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:36 UTC 2017
ssl.sh: #1151: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:37 UTC 2017
ssl.sh: #1152: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:38 UTC 2017
ssl.sh: #1153: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:39 UTC 2017
ssl.sh: #1154: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:40 UTC 2017
ssl.sh: #1155: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:41 UTC 2017
ssl.sh: #1156: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:42 UTC 2017
ssl.sh: #1157: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:43 UTC 2017
ssl.sh: #1158: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:44 UTC 2017
ssl.sh: #1159: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:45 UTC 2017
ssl.sh: #1160: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25077 found at Sat Oct 21 13:41:46 UTC 2017
ssl.sh: #1161: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 25077 at Sat Oct 21 13:41:46 UTC 2017
kill -USR1 25077
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 25077 killed at Sat Oct 21 13:41:47 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:41:47 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:41:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:41:47 UTC 2017
selfserv_9183 with PID 26504 started at Sat Oct 21 13:41:47 UTC 2017
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:41:49 UTC 2017
ssl.sh: #1162: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:41:50 UTC 2017
ssl.sh: #1163: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:41:51 UTC 2017
ssl.sh: #1164: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:41:52 UTC 2017
ssl.sh: #1165: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:41:53 UTC 2017
ssl.sh: #1166: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:41:55 UTC 2017
ssl.sh: #1167: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:41:56 UTC 2017
ssl.sh: #1168: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:41:57 UTC 2017
ssl.sh: #1169: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:41:58 UTC 2017
ssl.sh: #1170: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:41:59 UTC 2017
ssl.sh: #1171: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:01 UTC 2017
ssl.sh: #1172: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:02 UTC 2017
ssl.sh: #1173: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:03 UTC 2017
ssl.sh: #1174: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:04 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1175: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:06 UTC 2017
ssl.sh: #1176: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:07 UTC 2017
ssl.sh: #1177: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:08 UTC 2017
ssl.sh: #1178: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:09 UTC 2017
ssl.sh: #1179: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:10 UTC 2017
ssl.sh: #1180: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:11 UTC 2017
ssl.sh: #1181: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:12 UTC 2017
ssl.sh: #1182: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:14 UTC 2017
ssl.sh: #1183: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:15 UTC 2017
ssl.sh: #1184: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:16 UTC 2017
ssl.sh: #1185: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:17 UTC 2017
ssl.sh: #1186: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:18 UTC 2017
ssl.sh: #1187: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:20 UTC 2017
ssl.sh: #1188: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:21 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1189: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:22 UTC 2017
ssl.sh: #1190: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:23 UTC 2017
ssl.sh: #1191: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:24 UTC 2017
ssl.sh: #1192: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:25 UTC 2017
ssl.sh: #1193: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:26 UTC 2017
ssl.sh: #1194: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:28 UTC 2017
ssl.sh: #1195: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:29 UTC 2017
ssl.sh: #1196: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:30 UTC 2017
ssl.sh: #1197: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:31 UTC 2017
ssl.sh: #1198: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:32 UTC 2017
ssl.sh: #1199: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:33 UTC 2017
ssl.sh: #1200: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:34 UTC 2017
ssl.sh: #1201: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26504 found at Sat Oct 21 13:42:36 UTC 2017
ssl.sh: #1202: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 26504 at Sat Oct 21 13:42:36 UTC 2017
kill -USR1 26504
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 26504 killed at Sat Oct 21 13:42:36 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:42:36 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:42:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:42:37 UTC 2017
selfserv_9183 with PID 27945 started at Sat Oct 21 13:42:37 UTC 2017
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:42:38 UTC 2017
ssl.sh: #1203: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:42:39 UTC 2017
ssl.sh: #1204: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:42:40 UTC 2017
ssl.sh: #1205: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:42:41 UTC 2017
ssl.sh: #1206: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:42:42 UTC 2017
ssl.sh: #1207: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:42:43 UTC 2017
ssl.sh: #1208: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:42:44 UTC 2017
ssl.sh: #1209: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:42:45 UTC 2017
ssl.sh: #1210: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:42:46 UTC 2017
ssl.sh: #1211: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:42:47 UTC 2017
ssl.sh: #1212: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:42:49 UTC 2017
ssl.sh: #1213: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:42:50 UTC 2017
ssl.sh: #1214: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:42:51 UTC 2017
ssl.sh: #1215: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:42:52 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1216: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:42:53 UTC 2017
ssl.sh: #1217: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:42:54 UTC 2017
ssl.sh: #1218: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:42:55 UTC 2017
ssl.sh: #1219: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:42:56 UTC 2017
ssl.sh: #1220: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:42:57 UTC 2017
ssl.sh: #1221: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:42:58 UTC 2017
ssl.sh: #1222: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:42:59 UTC 2017
ssl.sh: #1223: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:43:00 UTC 2017
ssl.sh: #1224: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:43:01 UTC 2017
ssl.sh: #1225: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:43:02 UTC 2017
ssl.sh: #1226: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:43:04 UTC 2017
ssl.sh: #1227: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:43:05 UTC 2017
ssl.sh: #1228: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:43:06 UTC 2017
ssl.sh: #1229: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:43:07 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1230: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:43:08 UTC 2017
ssl.sh: #1231: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:43:09 UTC 2017
ssl.sh: #1232: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:43:10 UTC 2017
ssl.sh: #1233: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:43:11 UTC 2017
ssl.sh: #1234: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:43:12 UTC 2017
ssl.sh: #1235: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:43:13 UTC 2017
ssl.sh: #1236: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:43:14 UTC 2017
ssl.sh: #1237: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:43:15 UTC 2017
ssl.sh: #1238: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:43:16 UTC 2017
ssl.sh: #1239: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:43:17 UTC 2017
ssl.sh: #1240: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:43:18 UTC 2017
ssl.sh: #1241: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:43:19 UTC 2017
ssl.sh: #1242: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27945 found at Sat Oct 21 13:43:20 UTC 2017
ssl.sh: #1243: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 27945 at Sat Oct 21 13:43:20 UTC 2017
kill -USR1 27945
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27945 killed at Sat Oct 21 13:43:21 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:43:21 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:43:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29382 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29382 found at Sat Oct 21 13:43:22 UTC 2017
selfserv_9183 with PID 29382 started at Sat Oct 21 13:43:22 UTC 2017
trying to kill selfserv_9183 with PID 29382 at Sat Oct 21 13:43:22 UTC 2017
kill -USR1 29382
./ssl.sh: line 197: 29382 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9183 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29382 killed at Sat Oct 21 13:43:22 UTC 2017
selfserv_9183 starting at Sat Oct 21 13:43:22 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:43:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:43:23 UTC 2017
selfserv_9183 with PID 29416 started at Sat Oct 21 13:43:23 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:43:24 UTC 2017
ssl.sh: #1244: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:43:25 UTC 2017
ssl.sh: #1245: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:43:27 UTC 2017
ssl.sh: #1246: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:43:28 UTC 2017
ssl.sh: #1247: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:43:29 UTC 2017
ssl.sh: #1248: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:43:31 UTC 2017
ssl.sh: #1249: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:43:32 UTC 2017
ssl.sh: #1250: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:43:34 UTC 2017
ssl.sh: #1251: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:43:35 UTC 2017
ssl.sh: #1252: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:43:36 UTC 2017
ssl.sh: #1253: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:43:38 UTC 2017
ssl.sh: #1254: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:43:39 UTC 2017
ssl.sh: #1255: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:43:41 UTC 2017
ssl.sh: #1256: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:43:42 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1257: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:43:43 UTC 2017
ssl.sh: #1258: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:43:45 UTC 2017
ssl.sh: #1259: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:43:46 UTC 2017
ssl.sh: #1260: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:43:47 UTC 2017
ssl.sh: #1261: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:43:49 UTC 2017
ssl.sh: #1262: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:43:50 UTC 2017
ssl.sh: #1263: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:43:51 UTC 2017
ssl.sh: #1264: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:43:53 UTC 2017
ssl.sh: #1265: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:43:54 UTC 2017
ssl.sh: #1266: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:43:56 UTC 2017
ssl.sh: #1267: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:43:57 UTC 2017
ssl.sh: #1268: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:43:58 UTC 2017
ssl.sh: #1269: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:44:00 UTC 2017
ssl.sh: #1270: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:44:01 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1271: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:44:02 UTC 2017
ssl.sh: #1272: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:44:04 UTC 2017
ssl.sh: #1273: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:44:05 UTC 2017
ssl.sh: #1274: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:44:06 UTC 2017
ssl.sh: #1275: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:44:08 UTC 2017
ssl.sh: #1276: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:44:09 UTC 2017
ssl.sh: #1277: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:44:11 UTC 2017
ssl.sh: #1278: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:44:12 UTC 2017
ssl.sh: #1279: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:44:13 UTC 2017
ssl.sh: #1280: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:44:15 UTC 2017
ssl.sh: #1281: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:44:16 UTC 2017
ssl.sh: #1282: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:44:17 UTC 2017
ssl.sh: #1283: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29416 found at Sat Oct 21 13:44:19 UTC 2017
ssl.sh: #1284: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 29416 at Sat Oct 21 13:44:19 UTC 2017
kill -USR1 29416
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29416 killed at Sat Oct 21 13:44:19 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:44:19 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:44:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:44:20 UTC 2017
selfserv_9183 with PID 30856 started at Sat Oct 21 13:44:20 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:44:21 UTC 2017
ssl.sh: #1285: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:44:23 UTC 2017
ssl.sh: #1286: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:44:24 UTC 2017
ssl.sh: #1287: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:44:25 UTC 2017
ssl.sh: #1288: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:44:27 UTC 2017
ssl.sh: #1289: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:44:28 UTC 2017
ssl.sh: #1290: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:44:30 UTC 2017
ssl.sh: #1291: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:44:31 UTC 2017
ssl.sh: #1292: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:44:32 UTC 2017
ssl.sh: #1293: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:44:34 UTC 2017
ssl.sh: #1294: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:44:35 UTC 2017
ssl.sh: #1295: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:44:37 UTC 2017
ssl.sh: #1296: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:44:38 UTC 2017
ssl.sh: #1297: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:44:39 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1298: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:44:41 UTC 2017
ssl.sh: #1299: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:44:42 UTC 2017
ssl.sh: #1300: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:44:43 UTC 2017
ssl.sh: #1301: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:44:45 UTC 2017
ssl.sh: #1302: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:44:46 UTC 2017
ssl.sh: #1303: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:44:47 UTC 2017
ssl.sh: #1304: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:44:49 UTC 2017
ssl.sh: #1305: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:44:50 UTC 2017
ssl.sh: #1306: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:44:51 UTC 2017
ssl.sh: #1307: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:44:53 UTC 2017
ssl.sh: #1308: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:44:54 UTC 2017
ssl.sh: #1309: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:44:56 UTC 2017
ssl.sh: #1310: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:44:57 UTC 2017
ssl.sh: #1311: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:44:58 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1312: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:45:00 UTC 2017
ssl.sh: #1313: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:45:01 UTC 2017
ssl.sh: #1314: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:45:02 UTC 2017
ssl.sh: #1315: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:45:04 UTC 2017
ssl.sh: #1316: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:45:05 UTC 2017
ssl.sh: #1317: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:45:06 UTC 2017
ssl.sh: #1318: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:45:08 UTC 2017
ssl.sh: #1319: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:45:09 UTC 2017
ssl.sh: #1320: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:45:11 UTC 2017
ssl.sh: #1321: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:45:12 UTC 2017
ssl.sh: #1322: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:45:13 UTC 2017
ssl.sh: #1323: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:45:15 UTC 2017
ssl.sh: #1324: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30856 found at Sat Oct 21 13:45:16 UTC 2017
ssl.sh: #1325: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 30856 at Sat Oct 21 13:45:16 UTC 2017
kill -USR1 30856
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30856 killed at Sat Oct 21 13:45:17 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:45:17 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:45:17 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:17 UTC 2017
selfserv_9183 with PID 32299 started at Sat Oct 21 13:45:17 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:18 UTC 2017
ssl.sh: #1326: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:20 UTC 2017
ssl.sh: #1327: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:21 UTC 2017
ssl.sh: #1328: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:22 UTC 2017
ssl.sh: #1329: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:23 UTC 2017
ssl.sh: #1330: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:24 UTC 2017
ssl.sh: #1331: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:25 UTC 2017
ssl.sh: #1332: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:27 UTC 2017
ssl.sh: #1333: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:28 UTC 2017
ssl.sh: #1334: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:29 UTC 2017
ssl.sh: #1335: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:30 UTC 2017
ssl.sh: #1336: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:31 UTC 2017
ssl.sh: #1337: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:33 UTC 2017
ssl.sh: #1338: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:34 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1339: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:35 UTC 2017
ssl.sh: #1340: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:36 UTC 2017
ssl.sh: #1341: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:37 UTC 2017
ssl.sh: #1342: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:39 UTC 2017
ssl.sh: #1343: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:40 UTC 2017
ssl.sh: #1344: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:41 UTC 2017
ssl.sh: #1345: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:42 UTC 2017
ssl.sh: #1346: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:43 UTC 2017
ssl.sh: #1347: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:44 UTC 2017
ssl.sh: #1348: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:45 UTC 2017
ssl.sh: #1349: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:47 UTC 2017
ssl.sh: #1350: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:48 UTC 2017
ssl.sh: #1351: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:49 UTC 2017
ssl.sh: #1352: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:50 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1353: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:52 UTC 2017
ssl.sh: #1354: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:53 UTC 2017
ssl.sh: #1355: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:54 UTC 2017
ssl.sh: #1356: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:55 UTC 2017
ssl.sh: #1357: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:56 UTC 2017
ssl.sh: #1358: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:57 UTC 2017
ssl.sh: #1359: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:45:58 UTC 2017
ssl.sh: #1360: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:46:00 UTC 2017
ssl.sh: #1361: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:46:01 UTC 2017
ssl.sh: #1362: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:46:02 UTC 2017
ssl.sh: #1363: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:46:03 UTC 2017
ssl.sh: #1364: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:46:04 UTC 2017
ssl.sh: #1365: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32299 found at Sat Oct 21 13:46:06 UTC 2017
ssl.sh: #1366: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 32299 at Sat Oct 21 13:46:06 UTC 2017
kill -USR1 32299
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 32299 killed at Sat Oct 21 13:46:06 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:46:06 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:46:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:07 UTC 2017
selfserv_9183 with PID 1300 started at Sat Oct 21 13:46:07 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:08 UTC 2017
ssl.sh: #1367: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:10 UTC 2017
ssl.sh: #1368: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:11 UTC 2017
ssl.sh: #1369: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:13 UTC 2017
ssl.sh: #1370: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:14 UTC 2017
ssl.sh: #1371: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:15 UTC 2017
ssl.sh: #1372: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:17 UTC 2017
ssl.sh: #1373: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:18 UTC 2017
ssl.sh: #1374: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:20 UTC 2017
ssl.sh: #1375: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:21 UTC 2017
ssl.sh: #1376: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:23 UTC 2017
ssl.sh: #1377: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:24 UTC 2017
ssl.sh: #1378: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:26 UTC 2017
ssl.sh: #1379: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:27 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1380: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:29 UTC 2017
ssl.sh: #1381: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:30 UTC 2017
ssl.sh: #1382: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:31 UTC 2017
ssl.sh: #1383: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:33 UTC 2017
ssl.sh: #1384: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:34 UTC 2017
ssl.sh: #1385: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:36 UTC 2017
ssl.sh: #1386: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:37 UTC 2017
ssl.sh: #1387: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:38 UTC 2017
ssl.sh: #1388: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:40 UTC 2017
ssl.sh: #1389: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:41 UTC 2017
ssl.sh: #1390: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:43 UTC 2017
ssl.sh: #1391: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:44 UTC 2017
ssl.sh: #1392: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:46 UTC 2017
ssl.sh: #1393: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:47 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1394: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:49 UTC 2017
ssl.sh: #1395: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:50 UTC 2017
ssl.sh: #1396: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:51 UTC 2017
ssl.sh: #1397: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:53 UTC 2017
ssl.sh: #1398: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:54 UTC 2017
ssl.sh: #1399: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:55 UTC 2017
ssl.sh: #1400: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:57 UTC 2017
ssl.sh: #1401: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:46:58 UTC 2017
ssl.sh: #1402: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:47:00 UTC 2017
ssl.sh: #1403: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:47:01 UTC 2017
ssl.sh: #1404: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:47:03 UTC 2017
ssl.sh: #1405: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:47:04 UTC 2017
ssl.sh: #1406: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1300 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1300 found at Sat Oct 21 13:47:05 UTC 2017
ssl.sh: #1407: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 1300 at Sat Oct 21 13:47:06 UTC 2017
kill -USR1 1300
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 1300 killed at Sat Oct 21 13:47:06 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:47:06 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:47:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:07 UTC 2017
selfserv_9183 with PID 2753 started at Sat Oct 21 13:47:07 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:08 UTC 2017
ssl.sh: #1408: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:10 UTC 2017
ssl.sh: #1409: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:11 UTC 2017
ssl.sh: #1410: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:12 UTC 2017
ssl.sh: #1411: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:14 UTC 2017
ssl.sh: #1412: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:15 UTC 2017
ssl.sh: #1413: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:17 UTC 2017
ssl.sh: #1414: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:18 UTC 2017
ssl.sh: #1415: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:20 UTC 2017
ssl.sh: #1416: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:21 UTC 2017
ssl.sh: #1417: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:23 UTC 2017
ssl.sh: #1418: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:24 UTC 2017
ssl.sh: #1419: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:26 UTC 2017
ssl.sh: #1420: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:27 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1421: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:29 UTC 2017
ssl.sh: #1422: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:30 UTC 2017
ssl.sh: #1423: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:31 UTC 2017
ssl.sh: #1424: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:33 UTC 2017
ssl.sh: #1425: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:34 UTC 2017
ssl.sh: #1426: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:35 UTC 2017
ssl.sh: #1427: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:37 UTC 2017
ssl.sh: #1428: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:38 UTC 2017
ssl.sh: #1429: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:40 UTC 2017
ssl.sh: #1430: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:41 UTC 2017
ssl.sh: #1431: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:43 UTC 2017
ssl.sh: #1432: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:44 UTC 2017
ssl.sh: #1433: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:46 UTC 2017
ssl.sh: #1434: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:47 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1435: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:49 UTC 2017
ssl.sh: #1436: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:50 UTC 2017
ssl.sh: #1437: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:51 UTC 2017
ssl.sh: #1438: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:53 UTC 2017
ssl.sh: #1439: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:54 UTC 2017
ssl.sh: #1440: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:55 UTC 2017
ssl.sh: #1441: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:57 UTC 2017
ssl.sh: #1442: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:47:58 UTC 2017
ssl.sh: #1443: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:48:00 UTC 2017
ssl.sh: #1444: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:48:01 UTC 2017
ssl.sh: #1445: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:48:03 UTC 2017
ssl.sh: #1446: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:48:04 UTC 2017
ssl.sh: #1447: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2753 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2753 found at Sat Oct 21 13:48:06 UTC 2017
ssl.sh: #1448: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 2753 at Sat Oct 21 13:48:06 UTC 2017
kill -USR1 2753
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2753 killed at Sat Oct 21 13:48:06 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:48:06 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:48:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:07 UTC 2017
selfserv_9183 with PID 4250 started at Sat Oct 21 13:48:07 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:08 UTC 2017
ssl.sh: #1449: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:09 UTC 2017
ssl.sh: #1450: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:10 UTC 2017
ssl.sh: #1451: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:12 UTC 2017
ssl.sh: #1452: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:13 UTC 2017
ssl.sh: #1453: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:14 UTC 2017
ssl.sh: #1454: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:15 UTC 2017
ssl.sh: #1455: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:17 UTC 2017
ssl.sh: #1456: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:18 UTC 2017
ssl.sh: #1457: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:19 UTC 2017
ssl.sh: #1458: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:20 UTC 2017
ssl.sh: #1459: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:22 UTC 2017
ssl.sh: #1460: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:23 UTC 2017
ssl.sh: #1461: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:25 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1462: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:26 UTC 2017
ssl.sh: #1463: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:27 UTC 2017
ssl.sh: #1464: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:28 UTC 2017
ssl.sh: #1465: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:29 UTC 2017
ssl.sh: #1466: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:31 UTC 2017
ssl.sh: #1467: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:32 UTC 2017
ssl.sh: #1468: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:33 UTC 2017
ssl.sh: #1469: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:34 UTC 2017
ssl.sh: #1470: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:35 UTC 2017
ssl.sh: #1471: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:37 UTC 2017
ssl.sh: #1472: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:38 UTC 2017
ssl.sh: #1473: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:39 UTC 2017
ssl.sh: #1474: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:41 UTC 2017
ssl.sh: #1475: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:42 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1476: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:43 UTC 2017
ssl.sh: #1477: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:44 UTC 2017
ssl.sh: #1478: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:45 UTC 2017
ssl.sh: #1479: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:47 UTC 2017
ssl.sh: #1480: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:48 UTC 2017
ssl.sh: #1481: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:49 UTC 2017
ssl.sh: #1482: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:50 UTC 2017
ssl.sh: #1483: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:51 UTC 2017
ssl.sh: #1484: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:53 UTC 2017
ssl.sh: #1485: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:54 UTC 2017
ssl.sh: #1486: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:55 UTC 2017
ssl.sh: #1487: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:56 UTC 2017
ssl.sh: #1488: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4250 found at Sat Oct 21 13:48:58 UTC 2017
ssl.sh: #1489: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 4250 at Sat Oct 21 13:48:58 UTC 2017
kill -USR1 4250
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4250 killed at Sat Oct 21 13:48:58 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:48:58 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:48:58 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5677 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5677 found at Sat Oct 21 13:48:59 UTC 2017
selfserv_9183 with PID 5677 started at Sat Oct 21 13:48:59 UTC 2017
trying to kill selfserv_9183 with PID 5677 at Sat Oct 21 13:48:59 UTC 2017
kill -USR1 5677
./ssl.sh: line 197:  5677 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9183 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5677 killed at Sat Oct 21 13:48:59 UTC 2017
selfserv_9183 starting at Sat Oct 21 13:48:59 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:48:59 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:00 UTC 2017
selfserv_9183 with PID 5712 started at Sat Oct 21 13:49:00 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:01 UTC 2017
ssl.sh: #1490: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:03 UTC 2017
ssl.sh: #1491: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:04 UTC 2017
ssl.sh: #1492: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:05 UTC 2017
ssl.sh: #1493: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:07 UTC 2017
ssl.sh: #1494: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:08 UTC 2017
ssl.sh: #1495: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:10 UTC 2017
ssl.sh: #1496: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:11 UTC 2017
ssl.sh: #1497: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:12 UTC 2017
ssl.sh: #1498: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:14 UTC 2017
ssl.sh: #1499: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:15 UTC 2017
ssl.sh: #1500: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:17 UTC 2017
ssl.sh: #1501: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:18 UTC 2017
ssl.sh: #1502: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:19 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1503: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:21 UTC 2017
ssl.sh: #1504: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:22 UTC 2017
ssl.sh: #1505: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:23 UTC 2017
ssl.sh: #1506: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:25 UTC 2017
ssl.sh: #1507: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:26 UTC 2017
ssl.sh: #1508: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:27 UTC 2017
ssl.sh: #1509: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:29 UTC 2017
ssl.sh: #1510: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:30 UTC 2017
ssl.sh: #1511: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:31 UTC 2017
ssl.sh: #1512: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:33 UTC 2017
ssl.sh: #1513: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:34 UTC 2017
ssl.sh: #1514: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:36 UTC 2017
ssl.sh: #1515: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:37 UTC 2017
ssl.sh: #1516: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:38 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1517: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:40 UTC 2017
ssl.sh: #1518: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:41 UTC 2017
ssl.sh: #1519: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:42 UTC 2017
ssl.sh: #1520: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:44 UTC 2017
ssl.sh: #1521: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:45 UTC 2017
ssl.sh: #1522: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:46 UTC 2017
ssl.sh: #1523: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:48 UTC 2017
ssl.sh: #1524: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:49 UTC 2017
ssl.sh: #1525: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:51 UTC 2017
ssl.sh: #1526: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:52 UTC 2017
ssl.sh: #1527: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:53 UTC 2017
ssl.sh: #1528: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:55 UTC 2017
ssl.sh: #1529: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5712 found at Sat Oct 21 13:49:56 UTC 2017
ssl.sh: #1530: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 5712 at Sat Oct 21 13:49:56 UTC 2017
kill -USR1 5712
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5712 killed at Sat Oct 21 13:49:57 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:49:57 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:49:57 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:49:57 UTC 2017
selfserv_9183 with PID 7153 started at Sat Oct 21 13:49:57 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:49:59 UTC 2017
ssl.sh: #1531: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:00 UTC 2017
ssl.sh: #1532: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:01 UTC 2017
ssl.sh: #1533: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:03 UTC 2017
ssl.sh: #1534: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:04 UTC 2017
ssl.sh: #1535: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:06 UTC 2017
ssl.sh: #1536: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:07 UTC 2017
ssl.sh: #1537: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:08 UTC 2017
ssl.sh: #1538: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:10 UTC 2017
ssl.sh: #1539: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:11 UTC 2017
ssl.sh: #1540: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:13 UTC 2017
ssl.sh: #1541: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:14 UTC 2017
ssl.sh: #1542: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:15 UTC 2017
ssl.sh: #1543: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:17 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1544: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:18 UTC 2017
ssl.sh: #1545: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:19 UTC 2017
ssl.sh: #1546: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:21 UTC 2017
ssl.sh: #1547: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:22 UTC 2017
ssl.sh: #1548: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:23 UTC 2017
ssl.sh: #1549: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:25 UTC 2017
ssl.sh: #1550: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:26 UTC 2017
ssl.sh: #1551: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:28 UTC 2017
ssl.sh: #1552: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:29 UTC 2017
ssl.sh: #1553: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:30 UTC 2017
ssl.sh: #1554: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:32 UTC 2017
ssl.sh: #1555: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:33 UTC 2017
ssl.sh: #1556: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:35 UTC 2017
ssl.sh: #1557: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:36 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1558: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:37 UTC 2017
ssl.sh: #1559: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:39 UTC 2017
ssl.sh: #1560: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:40 UTC 2017
ssl.sh: #1561: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:41 UTC 2017
ssl.sh: #1562: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:43 UTC 2017
ssl.sh: #1563: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:44 UTC 2017
ssl.sh: #1564: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:45 UTC 2017
ssl.sh: #1565: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:47 UTC 2017
ssl.sh: #1566: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:48 UTC 2017
ssl.sh: #1567: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:49 UTC 2017
ssl.sh: #1568: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:51 UTC 2017
ssl.sh: #1569: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:52 UTC 2017
ssl.sh: #1570: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 13:50:54 UTC 2017
ssl.sh: #1571: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 7153 at Sat Oct 21 13:50:54 UTC 2017
kill -USR1 7153
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 7153 killed at Sat Oct 21 13:50:54 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:50:54 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:50:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:50:55 UTC 2017
selfserv_9183 with PID 8598 started at Sat Oct 21 13:50:55 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:50:56 UTC 2017
ssl.sh: #1572: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:50:57 UTC 2017
ssl.sh: #1573: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:50:58 UTC 2017
ssl.sh: #1574: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:50:59 UTC 2017
ssl.sh: #1575: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:00 UTC 2017
ssl.sh: #1576: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:02 UTC 2017
ssl.sh: #1577: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:03 UTC 2017
ssl.sh: #1578: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:04 UTC 2017
ssl.sh: #1579: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:05 UTC 2017
ssl.sh: #1580: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:06 UTC 2017
ssl.sh: #1581: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:08 UTC 2017
ssl.sh: #1582: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:09 UTC 2017
ssl.sh: #1583: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:10 UTC 2017
ssl.sh: #1584: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:12 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1585: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:13 UTC 2017
ssl.sh: #1586: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:14 UTC 2017
ssl.sh: #1587: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:15 UTC 2017
ssl.sh: #1588: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:16 UTC 2017
ssl.sh: #1589: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:17 UTC 2017
ssl.sh: #1590: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:18 UTC 2017
ssl.sh: #1591: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:20 UTC 2017
ssl.sh: #1592: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:21 UTC 2017
ssl.sh: #1593: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:22 UTC 2017
ssl.sh: #1594: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:23 UTC 2017
ssl.sh: #1595: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:24 UTC 2017
ssl.sh: #1596: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:26 UTC 2017
ssl.sh: #1597: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:27 UTC 2017
ssl.sh: #1598: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:28 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1599: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:29 UTC 2017
ssl.sh: #1600: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:30 UTC 2017
ssl.sh: #1601: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:32 UTC 2017
ssl.sh: #1602: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:33 UTC 2017
ssl.sh: #1603: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:34 UTC 2017
ssl.sh: #1604: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:35 UTC 2017
ssl.sh: #1605: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:36 UTC 2017
ssl.sh: #1606: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:37 UTC 2017
ssl.sh: #1607: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:38 UTC 2017
ssl.sh: #1608: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:40 UTC 2017
ssl.sh: #1609: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:41 UTC 2017
ssl.sh: #1610: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:42 UTC 2017
ssl.sh: #1611: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8598 found at Sat Oct 21 13:51:43 UTC 2017
ssl.sh: #1612: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 8598 at Sat Oct 21 13:51:43 UTC 2017
kill -USR1 8598
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 8598 killed at Sat Oct 21 13:51:44 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:51:44 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:51:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:51:44 UTC 2017
selfserv_9183 with PID 10041 started at Sat Oct 21 13:51:44 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:51:46 UTC 2017
ssl.sh: #1613: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:51:47 UTC 2017
ssl.sh: #1614: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:51:49 UTC 2017
ssl.sh: #1615: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:51:50 UTC 2017
ssl.sh: #1616: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:51:52 UTC 2017
ssl.sh: #1617: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:51:53 UTC 2017
ssl.sh: #1618: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:51:55 UTC 2017
ssl.sh: #1619: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:51:56 UTC 2017
ssl.sh: #1620: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:51:58 UTC 2017
ssl.sh: #1621: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:51:59 UTC 2017
ssl.sh: #1622: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:01 UTC 2017
ssl.sh: #1623: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:02 UTC 2017
ssl.sh: #1624: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:04 UTC 2017
ssl.sh: #1625: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:05 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1626: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:07 UTC 2017
ssl.sh: #1627: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:08 UTC 2017
ssl.sh: #1628: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:09 UTC 2017
ssl.sh: #1629: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:11 UTC 2017
ssl.sh: #1630: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:12 UTC 2017
ssl.sh: #1631: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:13 UTC 2017
ssl.sh: #1632: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:15 UTC 2017
ssl.sh: #1633: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:16 UTC 2017
ssl.sh: #1634: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:18 UTC 2017
ssl.sh: #1635: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:19 UTC 2017
ssl.sh: #1636: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:21 UTC 2017
ssl.sh: #1637: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:22 UTC 2017
ssl.sh: #1638: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:24 UTC 2017
ssl.sh: #1639: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:25 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1640: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:26 UTC 2017
ssl.sh: #1641: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:28 UTC 2017
ssl.sh: #1642: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:29 UTC 2017
ssl.sh: #1643: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:31 UTC 2017
ssl.sh: #1644: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:32 UTC 2017
ssl.sh: #1645: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:33 UTC 2017
ssl.sh: #1646: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:35 UTC 2017
ssl.sh: #1647: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:36 UTC 2017
ssl.sh: #1648: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:38 UTC 2017
ssl.sh: #1649: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:39 UTC 2017
ssl.sh: #1650: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:40 UTC 2017
ssl.sh: #1651: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:42 UTC 2017
ssl.sh: #1652: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10041 found at Sat Oct 21 13:52:43 UTC 2017
ssl.sh: #1653: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 10041 at Sat Oct 21 13:52:43 UTC 2017
kill -USR1 10041
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10041 killed at Sat Oct 21 13:52:44 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:52:44 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:52:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:52:44 UTC 2017
selfserv_9183 with PID 11481 started at Sat Oct 21 13:52:44 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:52:46 UTC 2017
ssl.sh: #1654: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:52:47 UTC 2017
ssl.sh: #1655: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:52:49 UTC 2017
ssl.sh: #1656: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:52:50 UTC 2017
ssl.sh: #1657: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:52:52 UTC 2017
ssl.sh: #1658: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:52:53 UTC 2017
ssl.sh: #1659: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:52:55 UTC 2017
ssl.sh: #1660: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:52:56 UTC 2017
ssl.sh: #1661: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:52:58 UTC 2017
ssl.sh: #1662: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:52:59 UTC 2017
ssl.sh: #1663: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:01 UTC 2017
ssl.sh: #1664: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:02 UTC 2017
ssl.sh: #1665: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:04 UTC 2017
ssl.sh: #1666: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:05 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1667: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:07 UTC 2017
ssl.sh: #1668: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:08 UTC 2017
ssl.sh: #1669: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:09 UTC 2017
ssl.sh: #1670: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:11 UTC 2017
ssl.sh: #1671: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:12 UTC 2017
ssl.sh: #1672: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:14 UTC 2017
ssl.sh: #1673: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:15 UTC 2017
ssl.sh: #1674: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:16 UTC 2017
ssl.sh: #1675: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:18 UTC 2017
ssl.sh: #1676: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:19 UTC 2017
ssl.sh: #1677: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:21 UTC 2017
ssl.sh: #1678: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:22 UTC 2017
ssl.sh: #1679: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:24 UTC 2017
ssl.sh: #1680: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:25 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1681: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:27 UTC 2017
ssl.sh: #1682: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:28 UTC 2017
ssl.sh: #1683: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:29 UTC 2017
ssl.sh: #1684: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:31 UTC 2017
ssl.sh: #1685: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:32 UTC 2017
ssl.sh: #1686: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:33 UTC 2017
ssl.sh: #1687: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:35 UTC 2017
ssl.sh: #1688: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:36 UTC 2017
ssl.sh: #1689: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:38 UTC 2017
ssl.sh: #1690: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:39 UTC 2017
ssl.sh: #1691: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:41 UTC 2017
ssl.sh: #1692: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:42 UTC 2017
ssl.sh: #1693: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11481 found at Sat Oct 21 13:53:43 UTC 2017
ssl.sh: #1694: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 11481 at Sat Oct 21 13:53:44 UTC 2017
kill -USR1 11481
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 11481 killed at Sat Oct 21 13:53:44 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:53:44 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:53:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:53:45 UTC 2017
selfserv_9183 with PID 12921 started at Sat Oct 21 13:53:45 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:53:46 UTC 2017
ssl.sh: #1695: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:53:47 UTC 2017
ssl.sh: #1696: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:53:48 UTC 2017
ssl.sh: #1697: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:53:49 UTC 2017
ssl.sh: #1698: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:53:51 UTC 2017
ssl.sh: #1699: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:53:52 UTC 2017
ssl.sh: #1700: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:53:53 UTC 2017
ssl.sh: #1701: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:53:55 UTC 2017
ssl.sh: #1702: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:53:56 UTC 2017
ssl.sh: #1703: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:53:57 UTC 2017
ssl.sh: #1704: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:53:58 UTC 2017
ssl.sh: #1705: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:00 UTC 2017
ssl.sh: #1706: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:01 UTC 2017
ssl.sh: #1707: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:03 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1708: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:04 UTC 2017
ssl.sh: #1709: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:05 UTC 2017
ssl.sh: #1710: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:06 UTC 2017
ssl.sh: #1711: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:07 UTC 2017
ssl.sh: #1712: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:09 UTC 2017
ssl.sh: #1713: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:10 UTC 2017
ssl.sh: #1714: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:11 UTC 2017
ssl.sh: #1715: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:12 UTC 2017
ssl.sh: #1716: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:13 UTC 2017
ssl.sh: #1717: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:15 UTC 2017
ssl.sh: #1718: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:16 UTC 2017
ssl.sh: #1719: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:17 UTC 2017
ssl.sh: #1720: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:19 UTC 2017
ssl.sh: #1721: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:20 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1722: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:21 UTC 2017
ssl.sh: #1723: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:22 UTC 2017
ssl.sh: #1724: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:24 UTC 2017
ssl.sh: #1725: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:25 UTC 2017
ssl.sh: #1726: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:26 UTC 2017
ssl.sh: #1727: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:27 UTC 2017
ssl.sh: #1728: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:28 UTC 2017
ssl.sh: #1729: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:30 UTC 2017
ssl.sh: #1730: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:31 UTC 2017
ssl.sh: #1731: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:32 UTC 2017
ssl.sh: #1732: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:33 UTC 2017
ssl.sh: #1733: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:35 UTC 2017
ssl.sh: #1734: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12921 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12921 found at Sat Oct 21 13:54:36 UTC 2017
ssl.sh: #1735: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 12921 at Sat Oct 21 13:54:36 UTC 2017
kill -USR1 12921
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 12921 killed at Sat Oct 21 13:54:36 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:54:36 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:54:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14363 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14363 found at Sat Oct 21 13:54:37 UTC 2017
selfserv_9183 with PID 14363 started at Sat Oct 21 13:54:37 UTC 2017
trying to kill selfserv_9183 with PID 14363 at Sat Oct 21 13:54:37 UTC 2017
kill -USR1 14363
./ssl.sh: line 197: 14363 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9183 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 14363 killed at Sat Oct 21 13:54:37 UTC 2017
ssl.sh: SSL - FIPS mode on for server ===============================
ssl.sh: Turning FIPS on for the  server
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -fips true -force
FIPS mode enabled.
ssl.sh: #1736:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -list
ssl.sh: #1737:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #1738:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: Turning FIPS on for the extended  server
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -fips true -force
FIPS mode enabled.
ssl.sh: #1739:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -list
ssl.sh: #1740:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #1741:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: SSL Cipher Coverage  - server fips/client normal  - with ECC ===============================
selfserv_9183 starting at Sat Oct 21 13:54:40 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:54:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14474 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14474 found at Sat Oct 21 13:54:41 UTC 2017
selfserv_9183 with PID 14474 started at Sat Oct 21 13:54:41 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1742: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1743: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1744: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1745: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1746: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1747: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1748: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1749: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1750: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1751: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1752: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1753: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1754: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1755: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1756: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1757: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1758: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1759: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1760: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1761: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1762: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1763: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1764: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1765: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1766: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1767: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1768: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1769: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1770: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1771: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1772: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1773: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1774: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1775: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1776: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1777: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1778: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1779: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1780: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1781: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1782: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1783: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1784: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1785: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1786: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1787: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1788: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1789: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1790: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1791: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1792: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1793: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1794: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1795: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1796: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1797: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1798: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1799: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1800: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1801: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1802: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1803: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1804: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1805: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1806: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1807: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1808: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1809: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1810: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1811: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1812: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1813: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1814: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1815: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1816: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1817: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1818: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1819: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1820: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1821: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1822: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1823: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1824: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1825: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1826: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1827: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1828: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1829: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1830: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1831: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1832: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1833: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1834: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1835: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1836: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1837: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1838: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1839: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1840: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1841: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1842: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1843: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1844: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1845: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1846: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1847: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1848: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1849: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1850: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1851: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1852: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1853: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1854: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1855: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1856: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1857: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1858: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1859: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1860: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1861: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1862: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 14474 at Sat Oct 21 13:56:16 UTC 2017
kill -USR1 14474
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 14474 killed at Sat Oct 21 13:56:16 UTC 2017
ssl.sh: SSL Client Authentication  - server fips/client normal  - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:56:17 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:56:17 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16770 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16770 found at Sat Oct 21 13:56:17 UTC 2017
selfserv_9183 with PID 16770 started at Sat Oct 21 13:56:17 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1863: TLS Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 16770 at Sat Oct 21 13:56:18 UTC 2017
kill -USR1 16770
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 16770 killed at Sat Oct 21 13:56:19 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:56:19 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:56:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16827 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16827 found at Sat Oct 21 13:56:19 UTC 2017
selfserv_9183 with PID 16827 started at Sat Oct 21 13:56:20 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1864: TLS Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 16827 at Sat Oct 21 13:56:21 UTC 2017
kill -USR1 16827
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 16827 killed at Sat Oct 21 13:56:21 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:56:21 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:56:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16885 found at Sat Oct 21 13:56:22 UTC 2017
selfserv_9183 with PID 16885 started at Sat Oct 21 13:56:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1865: TLS Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 16885 at Sat Oct 21 13:56:23 UTC 2017
kill -USR1 16885
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 16885 killed at Sat Oct 21 13:56:23 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:56:23 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:56:23 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16942 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16942 found at Sat Oct 21 13:56:24 UTC 2017
selfserv_9183 with PID 16942 started at Sat Oct 21 13:56:24 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1866: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 16942 at Sat Oct 21 13:56:25 UTC 2017
kill -USR1 16942
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 16942 killed at Sat Oct 21 13:56:25 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:56:25 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:56:26 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16999 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16999 found at Sat Oct 21 13:56:26 UTC 2017
selfserv_9183 with PID 16999 started at Sat Oct 21 13:56:26 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1867: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 16999 at Sat Oct 21 13:56:27 UTC 2017
kill -USR1 16999
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 16999 killed at Sat Oct 21 13:56:27 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:56:28 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:56:28 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17057 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17057 found at Sat Oct 21 13:56:28 UTC 2017
selfserv_9183 with PID 17057 started at Sat Oct 21 13:56:28 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1868: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 17057 at Sat Oct 21 13:56:29 UTC 2017
kill -USR1 17057
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17057 killed at Sat Oct 21 13:56:30 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:56:30 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:56:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17114 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17114 found at Sat Oct 21 13:56:30 UTC 2017
selfserv_9183 with PID 17114 started at Sat Oct 21 13:56:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1869: SSL3 Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 17114 at Sat Oct 21 13:56:31 UTC 2017
kill -USR1 17114
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17114 killed at Sat Oct 21 13:56:32 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:56:32 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:56:32 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17171 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17171 found at Sat Oct 21 13:56:32 UTC 2017
selfserv_9183 with PID 17171 started at Sat Oct 21 13:56:32 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1870: SSL3 Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 17171 at Sat Oct 21 13:56:33 UTC 2017
kill -USR1 17171
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17171 killed at Sat Oct 21 13:56:34 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:56:34 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:56:34 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17228 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17228 found at Sat Oct 21 13:56:34 UTC 2017
selfserv_9183 with PID 17228 started at Sat Oct 21 13:56:34 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1871: SSL3 Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 17228 at Sat Oct 21 13:56:35 UTC 2017
kill -USR1 17228
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17228 killed at Sat Oct 21 13:56:36 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:56:36 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:56:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17288 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17288 found at Sat Oct 21 13:56:36 UTC 2017
selfserv_9183 with PID 17288 started at Sat Oct 21 13:56:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1872: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 17288 at Sat Oct 21 13:56:37 UTC 2017
kill -USR1 17288
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17288 killed at Sat Oct 21 13:56:37 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:56:38 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:56:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17345 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17345 found at Sat Oct 21 13:56:38 UTC 2017
selfserv_9183 with PID 17345 started at Sat Oct 21 13:56:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1873: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 17345 at Sat Oct 21 13:56:39 UTC 2017
kill -USR1 17345
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17345 killed at Sat Oct 21 13:56:39 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:56:39 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:56:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17402 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17402 found at Sat Oct 21 13:56:40 UTC 2017
selfserv_9183 with PID 17402 started at Sat Oct 21 13:56:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1874: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 17402 at Sat Oct 21 13:56:41 UTC 2017
kill -USR1 17402
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17402 killed at Sat Oct 21 13:56:41 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:56:41 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:56:41 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17459 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17459 found at Sat Oct 21 13:56:42 UTC 2017
selfserv_9183 with PID 17459 started at Sat Oct 21 13:56:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1875: TLS Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 17459 at Sat Oct 21 13:56:43 UTC 2017
kill -USR1 17459
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17459 killed at Sat Oct 21 13:56:44 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:56:44 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:56:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17516 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17516 found at Sat Oct 21 13:56:44 UTC 2017
selfserv_9183 with PID 17516 started at Sat Oct 21 13:56:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1876: TLS Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 17516 at Sat Oct 21 13:56:46 UTC 2017
kill -USR1 17516
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17516 killed at Sat Oct 21 13:56:46 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:56:46 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:56:46 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17573 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17573 found at Sat Oct 21 13:56:47 UTC 2017
selfserv_9183 with PID 17573 started at Sat Oct 21 13:56:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1877: TLS Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 17573 at Sat Oct 21 13:56:48 UTC 2017
kill -USR1 17573
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17573 killed at Sat Oct 21 13:56:49 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:56:49 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:56:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17631 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17631 found at Sat Oct 21 13:56:49 UTC 2017
selfserv_9183 with PID 17631 started at Sat Oct 21 13:56:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1878: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 17631 at Sat Oct 21 13:56:51 UTC 2017
kill -USR1 17631
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17631 killed at Sat Oct 21 13:56:51 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:56:51 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:56:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17688 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17688 found at Sat Oct 21 13:56:52 UTC 2017
selfserv_9183 with PID 17688 started at Sat Oct 21 13:56:52 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1879: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 17688 at Sat Oct 21 13:56:53 UTC 2017
kill -USR1 17688
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17688 killed at Sat Oct 21 13:56:53 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:56:54 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:56:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17745 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17745 found at Sat Oct 21 13:56:54 UTC 2017
selfserv_9183 with PID 17745 started at Sat Oct 21 13:56:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1880: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 17745 at Sat Oct 21 13:56:55 UTC 2017
kill -USR1 17745
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17745 killed at Sat Oct 21 13:56:56 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:56:56 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:56:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17802 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17802 found at Sat Oct 21 13:56:57 UTC 2017
selfserv_9183 with PID 17802 started at Sat Oct 21 13:56:57 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1881: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 17802 at Sat Oct 21 13:56:58 UTC 2017
kill -USR1 17802
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17802 killed at Sat Oct 21 13:56:58 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:56:58 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:56:58 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17859 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17859 found at Sat Oct 21 13:56:59 UTC 2017
selfserv_9183 with PID 17859 started at Sat Oct 21 13:56:59 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1882: TLS 1.0 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 17859 at Sat Oct 21 13:57:00 UTC 2017
kill -USR1 17859
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17859 killed at Sat Oct 21 13:57:01 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:57:01 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:57:01 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17925 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17925 found at Sat Oct 21 13:57:01 UTC 2017
selfserv_9183 with PID 17925 started at Sat Oct 21 13:57:02 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1883: TLS 1.0 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 17925 at Sat Oct 21 13:57:03 UTC 2017
kill -USR1 17925
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17925 killed at Sat Oct 21 13:57:03 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:57:04 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:57:04 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17985 found at Sat Oct 21 13:57:04 UTC 2017
selfserv_9183 with PID 17985 started at Sat Oct 21 13:57:04 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1884: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 17985 at Sat Oct 21 13:57:05 UTC 2017
kill -USR1 17985
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17985 killed at Sat Oct 21 13:57:06 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:57:06 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:57:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18042 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18042 found at Sat Oct 21 13:57:06 UTC 2017
selfserv_9183 with PID 18042 started at Sat Oct 21 13:57:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1885: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 18042 at Sat Oct 21 13:57:08 UTC 2017
kill -USR1 18042
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18042 killed at Sat Oct 21 13:57:08 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:57:08 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:57:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18100 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18100 found at Sat Oct 21 13:57:09 UTC 2017
selfserv_9183 with PID 18100 started at Sat Oct 21 13:57:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1886: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 18100 at Sat Oct 21 13:57:10 UTC 2017
kill -USR1 18100
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18100 killed at Sat Oct 21 13:57:11 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:57:11 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:57:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18157 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18157 found at Sat Oct 21 13:57:11 UTC 2017
selfserv_9183 with PID 18157 started at Sat Oct 21 13:57:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1887: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 18157 at Sat Oct 21 13:57:12 UTC 2017
kill -USR1 18157
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18157 killed at Sat Oct 21 13:57:13 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:57:13 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:57:13 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18214 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18214 found at Sat Oct 21 13:57:13 UTC 2017
selfserv_9183 with PID 18214 started at Sat Oct 21 13:57:13 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1888: SSL3 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 18214 at Sat Oct 21 13:57:14 UTC 2017
kill -USR1 18214
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18214 killed at Sat Oct 21 13:57:15 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:57:15 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:57:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18271 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18271 found at Sat Oct 21 13:57:15 UTC 2017
selfserv_9183 with PID 18271 started at Sat Oct 21 13:57:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1889: SSL3 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 18271 at Sat Oct 21 13:57:17 UTC 2017
kill -USR1 18271
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18271 killed at Sat Oct 21 13:57:17 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 13:57:17 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:57:17 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18328 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18328 found at Sat Oct 21 13:57:18 UTC 2017
selfserv_9183 with PID 18328 started at Sat Oct 21 13:57:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1890: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 18328 at Sat Oct 21 13:57:19 UTC 2017
kill -USR1 18328
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18328 killed at Sat Oct 21 13:57:19 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:57:19 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:57:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18386 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18386 found at Sat Oct 21 13:57:20 UTC 2017
selfserv_9183 with PID 18386 started at Sat Oct 21 13:57:20 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1891: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 18386 at Sat Oct 21 13:57:21 UTC 2017
kill -USR1 18386
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18386 killed at Sat Oct 21 13:57:21 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:57:21 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:57:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18443 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18443 found at Sat Oct 21 13:57:22 UTC 2017
selfserv_9183 with PID 18443 started at Sat Oct 21 13:57:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1892: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 18443 at Sat Oct 21 13:57:23 UTC 2017
kill -USR1 18443
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18443 killed at Sat Oct 21 13:57:23 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:57:23 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:57:24 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18515 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18515 found at Sat Oct 21 13:57:24 UTC 2017
selfserv_9183 with PID 18515 started at Sat Oct 21 13:57:24 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1893: TLS Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 18515 at Sat Oct 21 13:57:25 UTC 2017
kill -USR1 18515
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18515 killed at Sat Oct 21 13:57:26 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:57:26 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:57:26 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18572 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18572 found at Sat Oct 21 13:57:26 UTC 2017
selfserv_9183 with PID 18572 started at Sat Oct 21 13:57:26 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1894: TLS Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 18572 at Sat Oct 21 13:57:27 UTC 2017
kill -USR1 18572
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18572 killed at Sat Oct 21 13:57:28 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:57:28 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:57:28 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18629 found at Sat Oct 21 13:57:29 UTC 2017
selfserv_9183 with PID 18629 started at Sat Oct 21 13:57:29 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1895: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 18629 at Sat Oct 21 13:57:30 UTC 2017
kill -USR1 18629
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18629 killed at Sat Oct 21 13:57:30 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:57:30 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:57:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18687 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18687 found at Sat Oct 21 13:57:31 UTC 2017
selfserv_9183 with PID 18687 started at Sat Oct 21 13:57:31 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1896: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 18687 at Sat Oct 21 13:57:32 UTC 2017
kill -USR1 18687
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18687 killed at Sat Oct 21 13:57:32 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:57:33 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:57:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18744 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18744 found at Sat Oct 21 13:57:33 UTC 2017
selfserv_9183 with PID 18744 started at Sat Oct 21 13:57:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1897: SSL3 Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 18744 at Sat Oct 21 13:57:34 UTC 2017
kill -USR1 18744
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18744 killed at Sat Oct 21 13:57:34 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:57:34 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:57:34 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18801 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18801 found at Sat Oct 21 13:57:35 UTC 2017
selfserv_9183 with PID 18801 started at Sat Oct 21 13:57:35 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1898: SSL3 Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 18801 at Sat Oct 21 13:57:36 UTC 2017
kill -USR1 18801
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18801 killed at Sat Oct 21 13:57:37 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:57:37 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:57:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18861 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18861 found at Sat Oct 21 13:57:37 UTC 2017
selfserv_9183 with PID 18861 started at Sat Oct 21 13:57:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1899: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 18861 at Sat Oct 21 13:57:38 UTC 2017
kill -USR1 18861
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18861 killed at Sat Oct 21 13:57:38 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:57:39 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:57:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18918 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18918 found at Sat Oct 21 13:57:39 UTC 2017
selfserv_9183 with PID 18918 started at Sat Oct 21 13:57:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1900: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 18918 at Sat Oct 21 13:57:40 UTC 2017
kill -USR1 18918
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18918 killed at Sat Oct 21 13:57:41 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:57:41 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:57:41 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18975 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18975 found at Sat Oct 21 13:57:41 UTC 2017
selfserv_9183 with PID 18975 started at Sat Oct 21 13:57:41 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1901: TLS Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 18975 at Sat Oct 21 13:57:43 UTC 2017
kill -USR1 18975
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18975 killed at Sat Oct 21 13:57:43 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:57:43 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:57:43 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19032 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19032 found at Sat Oct 21 13:57:44 UTC 2017
selfserv_9183 with PID 19032 started at Sat Oct 21 13:57:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1902: TLS Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 19032 at Sat Oct 21 13:57:45 UTC 2017
kill -USR1 19032
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19032 killed at Sat Oct 21 13:57:46 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:57:46 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:57:46 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19089 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19089 found at Sat Oct 21 13:57:46 UTC 2017
selfserv_9183 with PID 19089 started at Sat Oct 21 13:57:46 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1903: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 19089 at Sat Oct 21 13:57:48 UTC 2017
kill -USR1 19089
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19089 killed at Sat Oct 21 13:57:48 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:57:48 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:57:48 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19146 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19146 found at Sat Oct 21 13:57:49 UTC 2017
selfserv_9183 with PID 19146 started at Sat Oct 21 13:57:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1904: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 19146 at Sat Oct 21 13:57:50 UTC 2017
kill -USR1 19146
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19146 killed at Sat Oct 21 13:57:51 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:57:51 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:57:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19204 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19204 found at Sat Oct 21 13:57:51 UTC 2017
selfserv_9183 with PID 19204 started at Sat Oct 21 13:57:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1905: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 19204 at Sat Oct 21 13:57:53 UTC 2017
kill -USR1 19204
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19204 killed at Sat Oct 21 13:57:53 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:57:53 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:57:53 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19261 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19261 found at Sat Oct 21 13:57:54 UTC 2017
selfserv_9183 with PID 19261 started at Sat Oct 21 13:57:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1906: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 19261 at Sat Oct 21 13:57:55 UTC 2017
kill -USR1 19261
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19261 killed at Sat Oct 21 13:57:56 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:57:56 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:57:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19318 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19318 found at Sat Oct 21 13:57:56 UTC 2017
selfserv_9183 with PID 19318 started at Sat Oct 21 13:57:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1907: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 19318 at Sat Oct 21 13:57:58 UTC 2017
kill -USR1 19318
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19318 killed at Sat Oct 21 13:57:58 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:57:58 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:57:58 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19375 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19375 found at Sat Oct 21 13:57:59 UTC 2017
selfserv_9183 with PID 19375 started at Sat Oct 21 13:57:59 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1908: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 19375 at Sat Oct 21 13:58:00 UTC 2017
kill -USR1 19375
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19375 killed at Sat Oct 21 13:58:01 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:58:01 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:58:01 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19432 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19432 found at Sat Oct 21 13:58:01 UTC 2017
selfserv_9183 with PID 19432 started at Sat Oct 21 13:58:01 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1909: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 19432 at Sat Oct 21 13:58:02 UTC 2017
kill -USR1 19432
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19432 killed at Sat Oct 21 13:58:03 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:58:03 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:58:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19502 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19502 found at Sat Oct 21 13:58:04 UTC 2017
selfserv_9183 with PID 19502 started at Sat Oct 21 13:58:04 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1910: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 19502 at Sat Oct 21 13:58:05 UTC 2017
kill -USR1 19502
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19502 killed at Sat Oct 21 13:58:05 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 13:58:05 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:58:05 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19560 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19560 found at Sat Oct 21 13:58:06 UTC 2017
selfserv_9183 with PID 19560 started at Sat Oct 21 13:58:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1911: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 19560 at Sat Oct 21 13:58:07 UTC 2017
kill -USR1 19560
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19560 killed at Sat Oct 21 13:58:07 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 13:58:07 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:58:07 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19617 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19617 found at Sat Oct 21 13:58:08 UTC 2017
selfserv_9183 with PID 19617 started at Sat Oct 21 13:58:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1912: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 19617 at Sat Oct 21 13:58:09 UTC 2017
kill -USR1 19617
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19617 killed at Sat Oct 21 13:58:10 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9183 starting at Sat Oct 21 13:58:10 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:58:10 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19695 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19695 found at Sat Oct 21 13:58:10 UTC 2017
selfserv_9183 with PID 19695 started at Sat Oct 21 13:58:10 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1913: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 19695 at Sat Oct 21 13:58:11 UTC 2017
kill -USR1 19695
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19695 killed at Sat Oct 21 13:58:12 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9183 starting at Sat Oct 21 13:58:12 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:58:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19759 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19759 found at Sat Oct 21 13:58:12 UTC 2017
selfserv_9183 with PID 19759 started at Sat Oct 21 13:58:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1914: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 19759 at Sat Oct 21 13:58:13 UTC 2017
kill -USR1 19759
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19759 killed at Sat Oct 21 13:58:14 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9183 starting at Sat Oct 21 13:58:14 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:58:14 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19822 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19822 found at Sat Oct 21 13:58:14 UTC 2017
selfserv_9183 with PID 19822 started at Sat Oct 21 13:58:14 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #1915: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 19822 at Sat Oct 21 13:58:15 UTC 2017
kill -USR1 19822
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19822 killed at Sat Oct 21 13:58:15 UTC 2017
ssl.sh: SSL3 Server hello response without SNI ----
selfserv_9183 starting at Sat Oct 21 13:58:16 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:58:16 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19885 found at Sat Oct 21 13:58:16 UTC 2017
selfserv_9183 with PID 19885 started at Sat Oct 21 13:58:16 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -c v -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1916: SSL3 Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 19885 at Sat Oct 21 13:58:17 UTC 2017
kill -USR1 19885
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19885 killed at Sat Oct 21 13:58:17 UTC 2017
ssl.sh: SSL3 Server hello response with SNI: SSL don't have SH extensions ----
selfserv_9183 starting at Sat Oct 21 13:58:18 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:58:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19948 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19948 found at Sat Oct 21 13:58:18 UTC 2017
selfserv_9183 with PID 19948 started at Sat Oct 21 13:58:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
tstclnt: authentication of server cert failed: SSL_ERROR_BAD_CERT_DOMAIN: Unable to communicate securely with peer: requested domain name does not match the server's certificate.
ssl.sh: #1917: SSL3 Server hello response with SNI: SSL don't have SH extensions produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 19948 at Sat Oct 21 13:58:19 UTC 2017
kill -USR1 19948
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19948 killed at Sat Oct 21 13:58:19 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9183 starting at Sat Oct 21 13:58:19 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:58:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20011 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20011 found at Sat Oct 21 13:58:20 UTC 2017
selfserv_9183 with PID 20011 started at Sat Oct 21 13:58:20 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1918: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 20011 at Sat Oct 21 13:58:21 UTC 2017
kill -USR1 20011
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20011 killed at Sat Oct 21 13:58:21 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9183 starting at Sat Oct 21 13:58:21 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:58:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20074 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20074 found at Sat Oct 21 13:58:22 UTC 2017
selfserv_9183 with PID 20074 started at Sat Oct 21 13:58:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1919: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 20074 at Sat Oct 21 13:58:23 UTC 2017
kill -USR1 20074
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20074 killed at Sat Oct 21 13:58:23 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name on 2d HS ----
selfserv_9183 starting at Sat Oct 21 13:58:23 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:58:23 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20137 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20137 found at Sat Oct 21 13:58:24 UTC 2017
selfserv_9183 with PID 20137 started at Sat Oct 21 13:58:24 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain -a localhost.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12182:
SSL peer has no certificate for the requested DNS name.
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #1920: TLS Server hello response with SNI: Change name on 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 20137 at Sat Oct 21 13:58:25 UTC 2017
kill -USR1 20137
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20137 killed at Sat Oct 21 13:58:25 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name to invalid 2d HS ----
selfserv_9183 starting at Sat Oct 21 13:58:25 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:58:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20200 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20200 found at Sat Oct 21 13:58:26 UTC 2017
selfserv_9183 with PID 20200 started at Sat Oct 21 13:58:26 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12182:
SSL peer has no certificate for the requested DNS name.
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #1921: TLS Server hello response with SNI: Change name to invalid 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 20200 at Sat Oct 21 13:58:27 UTC 2017
kill -USR1 20200
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20200 killed at Sat Oct 21 13:58:27 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9183 starting at Sat Oct 21 13:58:27 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:58:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20263 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20263 found at Sat Oct 21 13:58:28 UTC 2017
selfserv_9183 with PID 20263 started at Sat Oct 21 13:58:28 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #1922: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 20263 at Sat Oct 21 13:58:28 UTC 2017
kill -USR1 20263
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20263 killed at Sat Oct 21 13:58:29 UTC 2017
ssl.sh: SSL Cert Status (OCSP Stapling)  - server fips/client normal  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, revoked status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, unknown status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, unsigned failure response (non-FIPS only)
ssl.sh: skipping  OCSP stapling, good status, bad signature (non-FIPS only)
ssl.sh: skipping  OCSP stapling, invalid cert status data (non-FIPS only)
ssl.sh: skipping  Valid cert, Server doesn't staple (non-FIPS only)
ssl.sh: skipping  Stress OCSP stapling, server uses random status (non-FIPS only)
ssl.sh: SSL Stress Test  - server fips/client normal  - with ECC ===============================
ssl.sh: Stress SSL3 RC4 128 with MD5 ----
selfserv_9183 starting at Sat Oct 21 13:58:29 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:58:29 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20370 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20370 found at Sat Oct 21 13:58:30 UTC 2017
selfserv_9183 with PID 20370 started at Sat Oct 21 13:58:30 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -c 1000 -C c -V ssl3:ssl3 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 13:58:30 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 13:58:33 UTC 2017
ssl.sh: #1923: Stress SSL3 RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 20370 at Sat Oct 21 13:58:33 UTC 2017
kill -USR1 20370
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20370 killed at Sat Oct 21 13:58:33 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 ----
selfserv_9183 starting at Sat Oct 21 13:58:33 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:58:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20442 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20442 found at Sat Oct 21 13:58:34 UTC 2017
selfserv_9183 with PID 20442 started at Sat Oct 21 13:58:34 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -c 1000 -C c \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 13:58:34 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 13:58:37 UTC 2017
ssl.sh: #1924: Stress TLS  RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 20442 at Sat Oct 21 13:58:37 UTC 2017
kill -USR1 20442
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20442 killed at Sat Oct 21 13:58:37 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (false start) ----
selfserv_9183 starting at Sat Oct 21 13:58:37 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:58:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20516 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20516 found at Sat Oct 21 13:58:38 UTC 2017
selfserv_9183 with PID 20516 started at Sat Oct 21 13:58:38 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -c 1000 -C c -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 13:58:38 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 13:58:41 UTC 2017
ssl.sh: #1925: Stress TLS  RC4 128 with MD5 (false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 20516 at Sat Oct 21 13:58:41 UTC 2017
kill -USR1 20516
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20516 killed at Sat Oct 21 13:58:41 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket) ----
selfserv_9183 starting at Sat Oct 21 13:58:41 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:58:41 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20587 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20587 found at Sat Oct 21 13:58:42 UTC 2017
selfserv_9183 with PID 20587 started at Sat Oct 21 13:58:42 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 13:58:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Sat Oct 21 13:58:45 UTC 2017
ssl.sh: #1926: Stress TLS  RC4 128 with MD5 (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 20587 at Sat Oct 21 13:58:45 UTC 2017
kill -USR1 20587
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20587 killed at Sat Oct 21 13:58:45 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (compression) ----
selfserv_9183 starting at Sat Oct 21 13:58:45 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -z -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:58:45 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20658 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20658 found at Sat Oct 21 13:58:46 UTC 2017
selfserv_9183 with PID 20658 started at Sat Oct 21 13:58:46 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 13:58:46 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 13:58:49 UTC 2017
ssl.sh: #1927: Stress TLS  RC4 128 with MD5 (compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 20658 at Sat Oct 21 13:58:49 UTC 2017
kill -USR1 20658
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20658 killed at Sat Oct 21 13:58:50 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression) ----
selfserv_9183 starting at Sat Oct 21 13:58:50 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:58:50 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20729 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20729 found at Sat Oct 21 13:58:50 UTC 2017
selfserv_9183 with PID 20729 started at Sat Oct 21 13:58:50 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 13:58:50 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Sat Oct 21 13:58:54 UTC 2017
ssl.sh: #1928: Stress TLS  RC4 128 with MD5 (session ticket, compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 20729 at Sat Oct 21 13:58:54 UTC 2017
kill -USR1 20729
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20729 killed at Sat Oct 21 13:58:54 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) ----
selfserv_9183 starting at Sat Oct 21 13:58:54 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:58:55 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20801 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20801 found at Sat Oct 21 13:58:55 UTC 2017
selfserv_9183 with PID 20801 started at Sat Oct 21 13:58:55 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 13:58:55 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Sat Oct 21 13:58:58 UTC 2017
ssl.sh: #1929: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 20801 at Sat Oct 21 13:58:59 UTC 2017
kill -USR1 20801
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20801 killed at Sat Oct 21 13:58:59 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI) ----
selfserv_9183 starting at Sat Oct 21 13:58:59 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -a localhost-sni.localdomain -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:58:59 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20878 found at Sat Oct 21 13:59:00 UTC 2017
selfserv_9183 with PID 20878 started at Sat Oct 21 13:59:00 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 13:59:00 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Sat Oct 21 13:59:03 UTC 2017
ssl.sh: #1930: Stress TLS RC4 128 with MD5 (session ticket, SNI) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 20878 at Sat Oct 21 13:59:03 UTC 2017
kill -USR1 20878
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20878 killed at Sat Oct 21 13:59:03 UTC 2017
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 13:59:04 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:59:04 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20977 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20977 found at Sat Oct 21 13:59:04 UTC 2017
selfserv_9183 with PID 20977 started at Sat Oct 21 13:59:04 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 13:59:04 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 13:59:09 UTC 2017
ssl.sh: #1931: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 20977 at Sat Oct 21 13:59:09 UTC 2017
kill -USR1 20977
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20977 killed at Sat Oct 21 13:59:09 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 13:59:09 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:59:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21047 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21047 found at Sat Oct 21 13:59:10 UTC 2017
selfserv_9183 with PID 21047 started at Sat Oct 21 13:59:10 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -c 100 -C c -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 13:59:10 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 13:59:14 UTC 2017
ssl.sh: #1932: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 21047 at Sat Oct 21 13:59:14 UTC 2017
kill -USR1 21047
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21047 killed at Sat Oct 21 13:59:15 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9183 starting at Sat Oct 21 13:59:15 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:59:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21118 found at Sat Oct 21 13:59:15 UTC 2017
selfserv_9183 with PID 21118 started at Sat Oct 21 13:59:15 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 13:59:15 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sat Oct 21 13:59:16 UTC 2017
ssl.sh: #1933: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 21118 at Sat Oct 21 13:59:16 UTC 2017
kill -USR1 21118
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21118 killed at Sat Oct 21 13:59:17 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9183 starting at Sat Oct 21 13:59:17 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:59:17 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21189 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21189 found at Sat Oct 21 13:59:18 UTC 2017
selfserv_9183 with PID 21189 started at Sat Oct 21 13:59:18 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 13:59:18 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 13:59:19 UTC 2017
ssl.sh: #1934: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 21189 at Sat Oct 21 13:59:19 UTC 2017
kill -USR1 21189
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21189 killed at Sat Oct 21 13:59:19 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9183 starting at Sat Oct 21 13:59:19 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:59:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21260 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21260 found at Sat Oct 21 13:59:20 UTC 2017
selfserv_9183 with PID 21260 started at Sat Oct 21 13:59:20 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 13:59:20 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 13:59:21 UTC 2017
ssl.sh: #1935: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 21260 at Sat Oct 21 13:59:21 UTC 2017
kill -USR1 21260
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21260 killed at Sat Oct 21 13:59:21 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9183 starting at Sat Oct 21 13:59:22 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:59:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21331 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21331 found at Sat Oct 21 13:59:22 UTC 2017
selfserv_9183 with PID 21331 started at Sat Oct 21 13:59:22 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 13:59:22 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sat Oct 21 13:59:23 UTC 2017
ssl.sh: #1936: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 21331 at Sat Oct 21 13:59:23 UTC 2017
kill -USR1 21331
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21331 killed at Sat Oct 21 13:59:24 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9183 starting at Sat Oct 21 13:59:24 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:59:24 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21402 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21402 found at Sat Oct 21 13:59:24 UTC 2017
selfserv_9183 with PID 21402 started at Sat Oct 21 13:59:24 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 13:59:24 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sat Oct 21 13:59:25 UTC 2017
ssl.sh: #1937: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 21402 at Sat Oct 21 13:59:26 UTC 2017
kill -USR1 21402
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21402 killed at Sat Oct 21 13:59:26 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) ----
selfserv_9183 starting at Sat Oct 21 13:59:26 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:59:26 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21479 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21479 found at Sat Oct 21 13:59:27 UTC 2017
selfserv_9183 with PID 21479 started at Sat Oct 21 13:59:27 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 13:59:27 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Sat Oct 21 13:59:30 UTC 2017
ssl.sh: #1938: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 21479 at Sat Oct 21 13:59:30 UTC 2017
kill -USR1 21479
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21479 killed at Sat Oct 21 13:59:31 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) ----
selfserv_9183 starting at Sat Oct 21 13:59:31 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -k localhost-sni.localdomain -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:59:31 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21556 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21556 found at Sat Oct 21 13:59:31 UTC 2017
selfserv_9183 with PID 21556 started at Sat Oct 21 13:59:31 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u -a localhost-sni.localdomain \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 13:59:31 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Sat Oct 21 13:59:35 UTC 2017
ssl.sh: #1939: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 21556 at Sat Oct 21 13:59:35 UTC 2017
kill -USR1 21556
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21556 killed at Sat Oct 21 13:59:35 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) ----
selfserv_9183 starting at Sat Oct 21 13:59:36 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:59:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21643 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21643 found at Sat Oct 21 13:59:36 UTC 2017
selfserv_9183 with PID 21643 started at Sat Oct 21 13:59:36 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 13:59:36 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 13:59:44 UTC 2017
ssl.sh: #1940: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 21643 at Sat Oct 21 13:59:44 UTC 2017
kill -USR1 21643
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21643 killed at Sat Oct 21 13:59:45 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) ----
selfserv_9183 starting at Sat Oct 21 13:59:45 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C023 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:59:45 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21716 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21716 found at Sat Oct 21 13:59:45 UTC 2017
selfserv_9183 with PID 21716 started at Sat Oct 21 13:59:45 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C023 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 13:59:45 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 13:59:53 UTC 2017
ssl.sh: #1941: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 21716 at Sat Oct 21 13:59:54 UTC 2017
kill -USR1 21716
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21716 killed at Sat Oct 21 13:59:54 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) ----
selfserv_9183 starting at Sat Oct 21 13:59:54 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02B -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 13:59:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21786 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21786 found at Sat Oct 21 13:59:55 UTC 2017
selfserv_9183 with PID 21786 started at Sat Oct 21 13:59:55 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C02B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 13:59:55 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:00:03 UTC 2017
ssl.sh: #1942: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 21786 at Sat Oct 21 14:00:03 UTC 2017
kill -USR1 21786
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21786 killed at Sat Oct 21 14:00:04 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) ----
selfserv_9183 starting at Sat Oct 21 14:00:04 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:00:04 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21875 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21875 found at Sat Oct 21 14:00:04 UTC 2017
selfserv_9183 with PID 21875 started at Sat Oct 21 14:00:04 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C004 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:00:04 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:00:13 UTC 2017
ssl.sh: #1943: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 21875 at Sat Oct 21 14:00:13 UTC 2017
kill -USR1 21875
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21875 killed at Sat Oct 21 14:00:14 UTC 2017
ssl.sh: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) ----
selfserv_9183 starting at Sat Oct 21 14:00:14 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C00E -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:00:14 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21945 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21945 found at Sat Oct 21 14:00:14 UTC 2017
selfserv_9183 with PID 21945 started at Sat Oct 21 14:00:14 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C00E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:00:14 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:00:21 UTC 2017
ssl.sh: #1944: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 21945 at Sat Oct 21 14:00:21 UTC 2017
kill -USR1 21945
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21945 killed at Sat Oct 21 14:00:21 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA ----
selfserv_9183 starting at Sat Oct 21 14:00:21 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C013 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:00:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22016 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22016 found at Sat Oct 21 14:00:22 UTC 2017
selfserv_9183 with PID 22016 started at Sat Oct 21 14:00:22 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C013 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:00:22 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:00:25 UTC 2017
ssl.sh: #1945: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 22016 at Sat Oct 21 14:00:25 UTC 2017
kill -USR1 22016
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22016 killed at Sat Oct 21 14:00:26 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 ----
selfserv_9183 starting at Sat Oct 21 14:00:26 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C027 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:00:26 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22087 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22087 found at Sat Oct 21 14:00:26 UTC 2017
selfserv_9183 with PID 22087 started at Sat Oct 21 14:00:26 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C027 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:00:26 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:00:29 UTC 2017
ssl.sh: #1946: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 22087 at Sat Oct 21 14:00:29 UTC 2017
kill -USR1 22087
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22087 killed at Sat Oct 21 14:00:30 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 GCM ----
selfserv_9183 starting at Sat Oct 21 14:00:30 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02F -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:00:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22158 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22158 found at Sat Oct 21 14:00:30 UTC 2017
selfserv_9183 with PID 22158 started at Sat Oct 21 14:00:30 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C02F \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:00:31 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:00:33 UTC 2017
ssl.sh: #1947: Stress TLS  ECDHE-RSA   AES 128 GCM produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 22158 at Sat Oct 21 14:00:34 UTC 2017
kill -USR1 22158
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22158 killed at Sat Oct 21 14:00:34 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) ----
selfserv_9183 starting at Sat Oct 21 14:00:34 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -u -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:00:34 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22229 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22229 found at Sat Oct 21 14:00:35 UTC 2017
selfserv_9183 with PID 22229 started at Sat Oct 21 14:00:35 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C004 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:00:35 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Sat Oct 21 14:00:38 UTC 2017
ssl.sh: #1948: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 22229 at Sat Oct 21 14:00:38 UTC 2017
kill -USR1 22229
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22229 killed at Sat Oct 21 14:00:39 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) ----
selfserv_9183 starting at Sat Oct 21 14:00:39 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -u -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:00:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22304 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22304 found at Sat Oct 21 14:00:39 UTC 2017
selfserv_9183 with PID 22304 started at Sat Oct 21 14:00:39 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:00:39 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sat Oct 21 14:00:40 UTC 2017
ssl.sh: #1949: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 22304 at Sat Oct 21 14:00:41 UTC 2017
kill -USR1 22304
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22304 killed at Sat Oct 21 14:00:41 UTC 2017
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:00:41 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:00:41 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22390 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22390 found at Sat Oct 21 14:00:42 UTC 2017
selfserv_9183 with PID 22390 started at Sat Oct 21 14:00:42 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:00:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Sat Oct 21 14:00:44 UTC 2017
ssl.sh: #1950: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 22390 at Sat Oct 21 14:00:44 UTC 2017
kill -USR1 22390
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22390 killed at Sat Oct 21 14:00:45 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:00:45 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:00:45 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22460 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22460 found at Sat Oct 21 14:00:45 UTC 2017
selfserv_9183 with PID 22460 started at Sat Oct 21 14:00:45 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:00:45 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:00:46 UTC 2017
ssl.sh: #1951: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 22460 at Sat Oct 21 14:00:46 UTC 2017
kill -USR1 22460
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22460 killed at Sat Oct 21 14:00:47 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:00:47 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:00:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22531 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22531 found at Sat Oct 21 14:00:48 UTC 2017
selfserv_9183 with PID 22531 started at Sat Oct 21 14:00:48 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:00:48 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Sat Oct 21 14:00:50 UTC 2017
ssl.sh: #1952: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 22531 at Sat Oct 21 14:00:50 UTC 2017
kill -USR1 22531
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22531 killed at Sat Oct 21 14:00:50 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:00:51 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:00:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22601 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22601 found at Sat Oct 21 14:00:51 UTC 2017
selfserv_9183 with PID 22601 started at Sat Oct 21 14:00:51 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n TestUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:00:51 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Sat Oct 21 14:00:53 UTC 2017
ssl.sh: #1953: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 22601 at Sat Oct 21 14:00:53 UTC 2017
kill -USR1 22601
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22601 killed at Sat Oct 21 14:00:53 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9183 starting at Sat Oct 21 14:00:53 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:00:53 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22671 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22671 found at Sat Oct 21 14:00:54 UTC 2017
selfserv_9183 with PID 22671 started at Sat Oct 21 14:00:54 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:00:54 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:00:55 UTC 2017
ssl.sh: #1954: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 22671 at Sat Oct 21 14:00:55 UTC 2017
kill -USR1 22671
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22671 killed at Sat Oct 21 14:00:56 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:00:56 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:00:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22742 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22742 found at Sat Oct 21 14:00:56 UTC 2017
selfserv_9183 with PID 22742 started at Sat Oct 21 14:00:56 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:00:56 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sat Oct 21 14:00:58 UTC 2017
ssl.sh: #1955: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 22742 at Sat Oct 21 14:00:58 UTC 2017
kill -USR1 22742
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22742 killed at Sat Oct 21 14:00:58 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) ----
selfserv_9183 starting at Sat Oct 21 14:00:58 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0016 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:00:58 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22828 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22828 found at Sat Oct 21 14:00:59 UTC 2017
selfserv_9183 with PID 22828 started at Sat Oct 21 14:00:59 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0016 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:00:59 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 3 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:01:05 UTC 2017
ssl.sh: #1956: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 22828 at Sat Oct 21 14:01:05 UTC 2017
kill -USR1 22828
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22828 killed at Sat Oct 21 14:01:05 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA ----
selfserv_9183 starting at Sat Oct 21 14:01:06 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0033 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:01:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22925 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22925 found at Sat Oct 21 14:01:06 UTC 2017
selfserv_9183 with PID 22925 started at Sat Oct 21 14:01:06 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0033 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:01:06 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:01:09 UTC 2017
ssl.sh: #1957: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 22925 at Sat Oct 21 14:01:09 UTC 2017
kill -USR1 22925
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22925 killed at Sat Oct 21 14:01:10 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9183 starting at Sat Oct 21 14:01:10 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0039 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:01:10 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22996 found at Sat Oct 21 14:01:10 UTC 2017
selfserv_9183 with PID 22996 started at Sat Oct 21 14:01:10 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0039 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:01:10 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 3 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:01:16 UTC 2017
ssl.sh: #1958: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 22996 at Sat Oct 21 14:01:16 UTC 2017
kill -USR1 22996
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22996 killed at Sat Oct 21 14:01:17 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) ----
selfserv_9183 starting at Sat Oct 21 14:01:17 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0040 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:01:17 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23066 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23066 found at Sat Oct 21 14:01:17 UTC 2017
selfserv_9183 with PID 23066 started at Sat Oct 21 14:01:17 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0040 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:01:17 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 7 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:01:25 UTC 2017
ssl.sh: #1959: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 23066 at Sat Oct 21 14:01:25 UTC 2017
kill -USR1 23066
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23066 killed at Sat Oct 21 14:01:25 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9183 starting at Sat Oct 21 14:01:25 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0038 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:01:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23147 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23147 found at Sat Oct 21 14:01:26 UTC 2017
selfserv_9183 with PID 23147 started at Sat Oct 21 14:01:26 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0038 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:01:26 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 3 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Sat Oct 21 14:02:33 UTC 2017
ssl.sh: #1960: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 23147 at Sat Oct 21 14:02:33 UTC 2017
kill -USR1 23147
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23147 killed at Sat Oct 21 14:02:33 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse ----
selfserv_9183 starting at Sat Oct 21 14:02:34 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006A -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:02:34 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23247 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23247 found at Sat Oct 21 14:02:34 UTC 2017
selfserv_9183 with PID 23247 started at Sat Oct 21 14:02:34 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :006A -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:02:34 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Sat Oct 21 14:03:41 UTC 2017
ssl.sh: #1961: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 23247 at Sat Oct 21 14:03:41 UTC 2017
kill -USR1 23247
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23247 killed at Sat Oct 21 14:03:42 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) ----
selfserv_9183 starting at Sat Oct 21 14:03:42 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006B -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:03:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23338 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23338 found at Sat Oct 21 14:03:42 UTC 2017
selfserv_9183 with PID 23338 started at Sat Oct 21 14:03:42 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :006B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:03:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 3 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:03:48 UTC 2017
ssl.sh: #1962: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 23338 at Sat Oct 21 14:03:48 UTC 2017
kill -USR1 23338
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23338 killed at Sat Oct 21 14:03:49 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) ----
selfserv_9183 starting at Sat Oct 21 14:03:49 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009E -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:03:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23411 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23411 found at Sat Oct 21 14:03:49 UTC 2017
selfserv_9183 with PID 23411 started at Sat Oct 21 14:03:49 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :009E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:03:49 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:03:55 UTC 2017
ssl.sh: #1963: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 23411 at Sat Oct 21 14:03:55 UTC 2017
kill -USR1 23411
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23411 killed at Sat Oct 21 14:03:56 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) ----
selfserv_9183 starting at Sat Oct 21 14:03:56 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009F -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:03:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23481 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23481 found at Sat Oct 21 14:03:56 UTC 2017
selfserv_9183 with PID 23481 started at Sat Oct 21 14:03:56 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :009F -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:03:56 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 4 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:04:02 UTC 2017
ssl.sh: #1964: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 23481 at Sat Oct 21 14:04:02 UTC 2017
kill -USR1 23481
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23481 killed at Sat Oct 21 14:04:03 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:04:03 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:04:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23580 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23580 found at Sat Oct 21 14:04:04 UTC 2017
selfserv_9183 with PID 23580 started at Sat Oct 21 14:04:04 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:04:04 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:04:14 UTC 2017
ssl.sh: #1965: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 23580 at Sat Oct 21 14:04:14 UTC 2017
kill -USR1 23580
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23580 killed at Sat Oct 21 14:04:15 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:04:15 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:04:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23651 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23651 found at Sat Oct 21 14:04:15 UTC 2017
selfserv_9183 with PID 23651 started at Sat Oct 21 14:04:15 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n TestUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:04:15 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:04:19 UTC 2017
ssl.sh: #1966: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 23651 at Sat Oct 21 14:04:19 UTC 2017
kill -USR1 23651
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23651 killed at Sat Oct 21 14:04:19 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:04:19 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:04:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23737 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23737 found at Sat Oct 21 14:04:20 UTC 2017
selfserv_9183 with PID 23737 started at Sat Oct 21 14:04:20 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:04:20 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Sat Oct 21 14:05:57 UTC 2017
ssl.sh: #1967: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 23737 at Sat Oct 21 14:05:57 UTC 2017
kill -USR1 23737
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23737 killed at Sat Oct 21 14:05:58 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:05:58 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:05:58 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23830 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23830 found at Sat Oct 21 14:05:58 UTC 2017
selfserv_9183 with PID 23830 started at Sat Oct 21 14:05:58 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:05:58 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Sat Oct 21 14:07:36 UTC 2017
ssl.sh: #1968: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 23830 at Sat Oct 21 14:07:37 UTC 2017
kill -USR1 23830
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23830 killed at Sat Oct 21 14:07:37 UTC 2017
ssl.sh: SSL Cipher Coverage Extended Test - server fips/client normal  - with ECC ===============================
selfserv_9183 starting at Sat Oct 21 14:07:37 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:07:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23929 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23929 found at Sat Oct 21 14:07:38 UTC 2017
selfserv_9183 with PID 23929 started at Sat Oct 21 14:07:38 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1969: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1970: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1971: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1972: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1973: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1974: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1975: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1976: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1977: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1978: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1979: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1980: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1981: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1982: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1983: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1984: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1985: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1986: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1987: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1988: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1989: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1990: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1991: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1992: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1993: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1994: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1995: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1996: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1997: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1998: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1999: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2000: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2001: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2002: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2003: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2004: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2005: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2006: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2007: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2008: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2009: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2010: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2011: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2012: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2013: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2014: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2015: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2016: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2017: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2018: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2019: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2020: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2021: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2022: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2023: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2024: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2025: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2026: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2027: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2028: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2029: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2030: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2031: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2032: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2033: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2034: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2035: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2036: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2037: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2038: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2039: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2040: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2041: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2042: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2043: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2044: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2045: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2046: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2047: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2048: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2049: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2050: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2051: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2052: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2053: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2054: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2055: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2056: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2057: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2058: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2059: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2060: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2061: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2062: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2063: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2064: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2065: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2066: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2067: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2068: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2069: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2070: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2071: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2072: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2073: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2074: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2075: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2076: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2077: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2078: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2079: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2080: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2081: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2082: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2083: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2084: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2085: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2086: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2087: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2088: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2089: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 23929 at Sat Oct 21 14:09:14 UTC 2017
kill -USR1 23929
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23929 killed at Sat Oct 21 14:09:14 UTC 2017
ssl.sh: SSL Client Authentication Extended Test - server fips/client normal  - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 14:09:15 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:09:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26223 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26223 found at Sat Oct 21 14:09:15 UTC 2017
selfserv_9183 with PID 26223 started at Sat Oct 21 14:09:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2090: TLS Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 26223 at Sat Oct 21 14:09:16 UTC 2017
kill -USR1 26223
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 26223 killed at Sat Oct 21 14:09:17 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:09:17 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:09:17 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26280 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26280 found at Sat Oct 21 14:09:17 UTC 2017
selfserv_9183 with PID 26280 started at Sat Oct 21 14:09:17 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2091: TLS Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 26280 at Sat Oct 21 14:09:18 UTC 2017
kill -USR1 26280
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 26280 killed at Sat Oct 21 14:09:19 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:09:19 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:09:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26337 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26337 found at Sat Oct 21 14:09:19 UTC 2017
selfserv_9183 with PID 26337 started at Sat Oct 21 14:09:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2092: TLS Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 26337 at Sat Oct 21 14:09:20 UTC 2017
kill -USR1 26337
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 26337 killed at Sat Oct 21 14:09:21 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 14:09:21 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:09:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26394 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26394 found at Sat Oct 21 14:09:21 UTC 2017
selfserv_9183 with PID 26394 started at Sat Oct 21 14:09:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2093: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 26394 at Sat Oct 21 14:09:22 UTC 2017
kill -USR1 26394
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 26394 killed at Sat Oct 21 14:09:23 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:09:23 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:09:23 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26451 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26451 found at Sat Oct 21 14:09:23 UTC 2017
selfserv_9183 with PID 26451 started at Sat Oct 21 14:09:24 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2094: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 26451 at Sat Oct 21 14:09:24 UTC 2017
kill -USR1 26451
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 26451 killed at Sat Oct 21 14:09:25 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:09:25 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:09:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26509 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26509 found at Sat Oct 21 14:09:26 UTC 2017
selfserv_9183 with PID 26509 started at Sat Oct 21 14:09:26 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2095: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 26509 at Sat Oct 21 14:09:27 UTC 2017
kill -USR1 26509
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 26509 killed at Sat Oct 21 14:09:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 14:09:27 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:09:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26566 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26566 found at Sat Oct 21 14:09:28 UTC 2017
selfserv_9183 with PID 26566 started at Sat Oct 21 14:09:28 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2096: SSL3 Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 26566 at Sat Oct 21 14:09:29 UTC 2017
kill -USR1 26566
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 26566 killed at Sat Oct 21 14:09:29 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:09:29 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:09:29 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26623 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26623 found at Sat Oct 21 14:09:30 UTC 2017
selfserv_9183 with PID 26623 started at Sat Oct 21 14:09:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2097: SSL3 Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 26623 at Sat Oct 21 14:09:30 UTC 2017
kill -USR1 26623
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 26623 killed at Sat Oct 21 14:09:31 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:09:31 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:09:31 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26680 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26680 found at Sat Oct 21 14:09:32 UTC 2017
selfserv_9183 with PID 26680 started at Sat Oct 21 14:09:32 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2098: SSL3 Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 26680 at Sat Oct 21 14:09:32 UTC 2017
kill -USR1 26680
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 26680 killed at Sat Oct 21 14:09:33 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 14:09:33 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:09:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26737 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26737 found at Sat Oct 21 14:09:34 UTC 2017
selfserv_9183 with PID 26737 started at Sat Oct 21 14:09:34 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2099: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 26737 at Sat Oct 21 14:09:34 UTC 2017
kill -USR1 26737
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 26737 killed at Sat Oct 21 14:09:35 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:09:35 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:09:35 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26794 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26794 found at Sat Oct 21 14:09:35 UTC 2017
selfserv_9183 with PID 26794 started at Sat Oct 21 14:09:35 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2100: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 26794 at Sat Oct 21 14:09:36 UTC 2017
kill -USR1 26794
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 26794 killed at Sat Oct 21 14:09:37 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:09:37 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:09:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26851 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26851 found at Sat Oct 21 14:09:37 UTC 2017
selfserv_9183 with PID 26851 started at Sat Oct 21 14:09:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2101: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 26851 at Sat Oct 21 14:09:38 UTC 2017
kill -USR1 26851
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 26851 killed at Sat Oct 21 14:09:39 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 14:09:39 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:09:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26911 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26911 found at Sat Oct 21 14:09:39 UTC 2017
selfserv_9183 with PID 26911 started at Sat Oct 21 14:09:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2102: TLS Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 26911 at Sat Oct 21 14:09:41 UTC 2017
kill -USR1 26911
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 26911 killed at Sat Oct 21 14:09:41 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:09:41 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:09:41 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26968 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26968 found at Sat Oct 21 14:09:42 UTC 2017
selfserv_9183 with PID 26968 started at Sat Oct 21 14:09:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2103: TLS Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 26968 at Sat Oct 21 14:09:43 UTC 2017
kill -USR1 26968
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 26968 killed at Sat Oct 21 14:09:43 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:09:43 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:09:43 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27025 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27025 found at Sat Oct 21 14:09:44 UTC 2017
selfserv_9183 with PID 27025 started at Sat Oct 21 14:09:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2104: TLS Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 27025 at Sat Oct 21 14:09:45 UTC 2017
kill -USR1 27025
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27025 killed at Sat Oct 21 14:09:46 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 14:09:46 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:09:46 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27083 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27083 found at Sat Oct 21 14:09:46 UTC 2017
selfserv_9183 with PID 27083 started at Sat Oct 21 14:09:46 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2105: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 27083 at Sat Oct 21 14:09:48 UTC 2017
kill -USR1 27083
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27083 killed at Sat Oct 21 14:09:48 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:09:48 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:09:48 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27140 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27140 found at Sat Oct 21 14:09:49 UTC 2017
selfserv_9183 with PID 27140 started at Sat Oct 21 14:09:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2106: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 27140 at Sat Oct 21 14:09:50 UTC 2017
kill -USR1 27140
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27140 killed at Sat Oct 21 14:09:50 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:09:50 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:09:50 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27197 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27197 found at Sat Oct 21 14:09:51 UTC 2017
selfserv_9183 with PID 27197 started at Sat Oct 21 14:09:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2107: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 27197 at Sat Oct 21 14:09:52 UTC 2017
kill -USR1 27197
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27197 killed at Sat Oct 21 14:09:53 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 14:09:53 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:09:53 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27254 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27254 found at Sat Oct 21 14:09:53 UTC 2017
selfserv_9183 with PID 27254 started at Sat Oct 21 14:09:53 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2108: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 27254 at Sat Oct 21 14:09:55 UTC 2017
kill -USR1 27254
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27254 killed at Sat Oct 21 14:09:55 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:09:55 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:09:55 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27311 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27311 found at Sat Oct 21 14:09:56 UTC 2017
selfserv_9183 with PID 27311 started at Sat Oct 21 14:09:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2109: TLS 1.0 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 27311 at Sat Oct 21 14:09:57 UTC 2017
kill -USR1 27311
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27311 killed at Sat Oct 21 14:09:57 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:09:57 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:09:57 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27368 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27368 found at Sat Oct 21 14:09:58 UTC 2017
selfserv_9183 with PID 27368 started at Sat Oct 21 14:09:58 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2110: TLS 1.0 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 27368 at Sat Oct 21 14:09:59 UTC 2017
kill -USR1 27368
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27368 killed at Sat Oct 21 14:10:00 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 14:10:00 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:10:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27425 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27425 found at Sat Oct 21 14:10:00 UTC 2017
selfserv_9183 with PID 27425 started at Sat Oct 21 14:10:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2111: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 27425 at Sat Oct 21 14:10:02 UTC 2017
kill -USR1 27425
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27425 killed at Sat Oct 21 14:10:02 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:10:02 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:10:02 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27501 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27501 found at Sat Oct 21 14:10:03 UTC 2017
selfserv_9183 with PID 27501 started at Sat Oct 21 14:10:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2112: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 27501 at Sat Oct 21 14:10:04 UTC 2017
kill -USR1 27501
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27501 killed at Sat Oct 21 14:10:04 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:10:05 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:10:05 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27558 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27558 found at Sat Oct 21 14:10:05 UTC 2017
selfserv_9183 with PID 27558 started at Sat Oct 21 14:10:05 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2113: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 27558 at Sat Oct 21 14:10:06 UTC 2017
kill -USR1 27558
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27558 killed at Sat Oct 21 14:10:07 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 14:10:07 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:10:07 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27616 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27616 found at Sat Oct 21 14:10:07 UTC 2017
selfserv_9183 with PID 27616 started at Sat Oct 21 14:10:07 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2114: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 27616 at Sat Oct 21 14:10:08 UTC 2017
kill -USR1 27616
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27616 killed at Sat Oct 21 14:10:09 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:10:09 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:10:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27675 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27675 found at Sat Oct 21 14:10:10 UTC 2017
selfserv_9183 with PID 27675 started at Sat Oct 21 14:10:10 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2115: SSL3 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 27675 at Sat Oct 21 14:10:11 UTC 2017
kill -USR1 27675
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27675 killed at Sat Oct 21 14:10:11 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:10:11 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:10:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27732 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27732 found at Sat Oct 21 14:10:12 UTC 2017
selfserv_9183 with PID 27732 started at Sat Oct 21 14:10:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2116: SSL3 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 27732 at Sat Oct 21 14:10:13 UTC 2017
kill -USR1 27732
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27732 killed at Sat Oct 21 14:10:13 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 14:10:13 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:10:13 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27789 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27789 found at Sat Oct 21 14:10:14 UTC 2017
selfserv_9183 with PID 27789 started at Sat Oct 21 14:10:14 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2117: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 27789 at Sat Oct 21 14:10:15 UTC 2017
kill -USR1 27789
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27789 killed at Sat Oct 21 14:10:15 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:10:15 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:10:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27846 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27846 found at Sat Oct 21 14:10:16 UTC 2017
selfserv_9183 with PID 27846 started at Sat Oct 21 14:10:16 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2118: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 27846 at Sat Oct 21 14:10:17 UTC 2017
kill -USR1 27846
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27846 killed at Sat Oct 21 14:10:17 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:10:18 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:10:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27903 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27903 found at Sat Oct 21 14:10:18 UTC 2017
selfserv_9183 with PID 27903 started at Sat Oct 21 14:10:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2119: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 27903 at Sat Oct 21 14:10:19 UTC 2017
kill -USR1 27903
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27903 killed at Sat Oct 21 14:10:20 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:10:20 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:10:20 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27976 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27976 found at Sat Oct 21 14:10:20 UTC 2017
selfserv_9183 with PID 27976 started at Sat Oct 21 14:10:20 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2120: TLS Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 27976 at Sat Oct 21 14:10:21 UTC 2017
kill -USR1 27976
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27976 killed at Sat Oct 21 14:10:22 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:10:22 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:10:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28033 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28033 found at Sat Oct 21 14:10:22 UTC 2017
selfserv_9183 with PID 28033 started at Sat Oct 21 14:10:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2121: TLS Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 28033 at Sat Oct 21 14:10:24 UTC 2017
kill -USR1 28033
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28033 killed at Sat Oct 21 14:10:24 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:10:24 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:10:24 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28090 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28090 found at Sat Oct 21 14:10:25 UTC 2017
selfserv_9183 with PID 28090 started at Sat Oct 21 14:10:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2122: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 28090 at Sat Oct 21 14:10:26 UTC 2017
kill -USR1 28090
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28090 killed at Sat Oct 21 14:10:26 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:10:26 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:10:26 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28147 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28147 found at Sat Oct 21 14:10:27 UTC 2017
selfserv_9183 with PID 28147 started at Sat Oct 21 14:10:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2123: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 28147 at Sat Oct 21 14:10:28 UTC 2017
kill -USR1 28147
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28147 killed at Sat Oct 21 14:10:28 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:10:28 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:10:29 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28205 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28205 found at Sat Oct 21 14:10:29 UTC 2017
selfserv_9183 with PID 28205 started at Sat Oct 21 14:10:29 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2124: SSL3 Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 28205 at Sat Oct 21 14:10:30 UTC 2017
kill -USR1 28205
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28205 killed at Sat Oct 21 14:10:30 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:10:30 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:10:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28262 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28262 found at Sat Oct 21 14:10:31 UTC 2017
selfserv_9183 with PID 28262 started at Sat Oct 21 14:10:31 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2125: SSL3 Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 28262 at Sat Oct 21 14:10:32 UTC 2017
kill -USR1 28262
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28262 killed at Sat Oct 21 14:10:32 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:10:33 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:10:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28319 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28319 found at Sat Oct 21 14:10:33 UTC 2017
selfserv_9183 with PID 28319 started at Sat Oct 21 14:10:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2126: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 28319 at Sat Oct 21 14:10:34 UTC 2017
kill -USR1 28319
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28319 killed at Sat Oct 21 14:10:34 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:10:34 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:10:34 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28376 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28376 found at Sat Oct 21 14:10:35 UTC 2017
selfserv_9183 with PID 28376 started at Sat Oct 21 14:10:35 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2127: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 28376 at Sat Oct 21 14:10:36 UTC 2017
kill -USR1 28376
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28376 killed at Sat Oct 21 14:10:37 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:10:37 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:10:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28433 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28433 found at Sat Oct 21 14:10:37 UTC 2017
selfserv_9183 with PID 28433 started at Sat Oct 21 14:10:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2128: TLS Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 28433 at Sat Oct 21 14:10:38 UTC 2017
kill -USR1 28433
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28433 killed at Sat Oct 21 14:10:39 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:10:39 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:10:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28493 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28493 found at Sat Oct 21 14:10:39 UTC 2017
selfserv_9183 with PID 28493 started at Sat Oct 21 14:10:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2129: TLS Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 28493 at Sat Oct 21 14:10:41 UTC 2017
kill -USR1 28493
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28493 killed at Sat Oct 21 14:10:41 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:10:42 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:10:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28550 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28550 found at Sat Oct 21 14:10:42 UTC 2017
selfserv_9183 with PID 28550 started at Sat Oct 21 14:10:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2130: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 28550 at Sat Oct 21 14:10:43 UTC 2017
kill -USR1 28550
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28550 killed at Sat Oct 21 14:10:44 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:10:44 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:10:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28607 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28607 found at Sat Oct 21 14:10:44 UTC 2017
selfserv_9183 with PID 28607 started at Sat Oct 21 14:10:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2131: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 28607 at Sat Oct 21 14:10:46 UTC 2017
kill -USR1 28607
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28607 killed at Sat Oct 21 14:10:46 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:10:46 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:10:46 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28664 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28664 found at Sat Oct 21 14:10:47 UTC 2017
selfserv_9183 with PID 28664 started at Sat Oct 21 14:10:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2132: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 28664 at Sat Oct 21 14:10:48 UTC 2017
kill -USR1 28664
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28664 killed at Sat Oct 21 14:10:49 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:10:49 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:10:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28722 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28722 found at Sat Oct 21 14:10:49 UTC 2017
selfserv_9183 with PID 28722 started at Sat Oct 21 14:10:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2133: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 28722 at Sat Oct 21 14:10:51 UTC 2017
kill -USR1 28722
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28722 killed at Sat Oct 21 14:10:51 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:10:51 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:10:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28779 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28779 found at Sat Oct 21 14:10:52 UTC 2017
selfserv_9183 with PID 28779 started at Sat Oct 21 14:10:52 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2134: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 28779 at Sat Oct 21 14:10:53 UTC 2017
kill -USR1 28779
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28779 killed at Sat Oct 21 14:10:53 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:10:53 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:10:53 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28836 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28836 found at Sat Oct 21 14:10:54 UTC 2017
selfserv_9183 with PID 28836 started at Sat Oct 21 14:10:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2135: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 28836 at Sat Oct 21 14:10:55 UTC 2017
kill -USR1 28836
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28836 killed at Sat Oct 21 14:10:56 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:10:56 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:10:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28893 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28893 found at Sat Oct 21 14:10:56 UTC 2017
selfserv_9183 with PID 28893 started at Sat Oct 21 14:10:57 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2136: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 28893 at Sat Oct 21 14:10:58 UTC 2017
kill -USR1 28893
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28893 killed at Sat Oct 21 14:10:58 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:10:58 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:10:58 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28950 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28950 found at Sat Oct 21 14:10:59 UTC 2017
selfserv_9183 with PID 28950 started at Sat Oct 21 14:10:59 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2137: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 28950 at Sat Oct 21 14:11:00 UTC 2017
kill -USR1 28950
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28950 killed at Sat Oct 21 14:11:00 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:11:00 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:11:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29007 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29007 found at Sat Oct 21 14:11:01 UTC 2017
selfserv_9183 with PID 29007 started at Sat Oct 21 14:11:01 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2138: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 29007 at Sat Oct 21 14:11:02 UTC 2017
kill -USR1 29007
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29007 killed at Sat Oct 21 14:11:03 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:11:03 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:11:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29077 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29077 found at Sat Oct 21 14:11:03 UTC 2017
selfserv_9183 with PID 29077 started at Sat Oct 21 14:11:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2139: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 29077 at Sat Oct 21 14:11:04 UTC 2017
kill -USR1 29077
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29077 killed at Sat Oct 21 14:11:05 UTC 2017
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: skipping  SSL3 Server hello response without SNI for Extended Test
ssl.sh: skipping  SSL3 Server hello response with SNI: SSL don't have SH extensions for Extended Test
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name on 2d HS for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name to invalid 2d HS for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: SSL Cert Status (OCSP Stapling) Extended Test - server fips/client normal  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, revoked status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, unknown status for Extended Test
ssl.sh: skipping  OCSP stapling, unsigned failure response for Extended Test
ssl.sh: skipping  OCSP stapling, good status, bad signature for Extended Test
ssl.sh: skipping  OCSP stapling, invalid cert status data for Extended Test
ssl.sh: skipping  Valid cert, Server doesn't staple for Extended Test
ssl.sh: skipping  Stress OCSP stapling, server uses random status for Extended Test
ssl.sh: SSL Stress Test Extended Test - server fips/client normal  - with ECC ===============================
ssl.sh: Stress SSL3 RC4 128 with MD5 ----
selfserv_9183 starting at Sat Oct 21 14:11:06 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:11:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29219 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29219 found at Sat Oct 21 14:11:06 UTC 2017
selfserv_9183 with PID 29219 started at Sat Oct 21 14:11:06 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -c 1000 -C c -V ssl3:ssl3 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:11:06 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:11:09 UTC 2017
ssl.sh: #2140: Stress SSL3 RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 29219 at Sat Oct 21 14:11:09 UTC 2017
kill -USR1 29219
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29219 killed at Sat Oct 21 14:11:09 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 ----
selfserv_9183 starting at Sat Oct 21 14:11:10 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:11:10 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29291 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29291 found at Sat Oct 21 14:11:10 UTC 2017
selfserv_9183 with PID 29291 started at Sat Oct 21 14:11:10 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -c 1000 -C c \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:11:10 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:11:13 UTC 2017
ssl.sh: #2141: Stress TLS  RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 29291 at Sat Oct 21 14:11:13 UTC 2017
kill -USR1 29291
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29291 killed at Sat Oct 21 14:11:13 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (false start) ----
selfserv_9183 starting at Sat Oct 21 14:11:14 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:11:14 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29362 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29362 found at Sat Oct 21 14:11:14 UTC 2017
selfserv_9183 with PID 29362 started at Sat Oct 21 14:11:14 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -c 1000 -C c -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:11:14 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:11:17 UTC 2017
ssl.sh: #2142: Stress TLS  RC4 128 with MD5 (false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 29362 at Sat Oct 21 14:11:17 UTC 2017
kill -USR1 29362
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29362 killed at Sat Oct 21 14:11:17 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket) ----
selfserv_9183 starting at Sat Oct 21 14:11:18 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:11:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29433 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29433 found at Sat Oct 21 14:11:18 UTC 2017
selfserv_9183 with PID 29433 started at Sat Oct 21 14:11:18 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:11:18 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Sat Oct 21 14:11:21 UTC 2017
ssl.sh: #2143: Stress TLS  RC4 128 with MD5 (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 29433 at Sat Oct 21 14:11:21 UTC 2017
kill -USR1 29433
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29433 killed at Sat Oct 21 14:11:22 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (compression) ----
selfserv_9183 starting at Sat Oct 21 14:11:22 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -z -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:11:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29504 found at Sat Oct 21 14:11:22 UTC 2017
selfserv_9183 with PID 29504 started at Sat Oct 21 14:11:22 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:11:22 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:11:26 UTC 2017
ssl.sh: #2144: Stress TLS  RC4 128 with MD5 (compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 29504 at Sat Oct 21 14:11:26 UTC 2017
kill -USR1 29504
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29504 killed at Sat Oct 21 14:11:26 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression) ----
selfserv_9183 starting at Sat Oct 21 14:11:26 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:11:26 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29575 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29575 found at Sat Oct 21 14:11:27 UTC 2017
selfserv_9183 with PID 29575 started at Sat Oct 21 14:11:27 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:11:27 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Sat Oct 21 14:11:30 UTC 2017
ssl.sh: #2145: Stress TLS  RC4 128 with MD5 (session ticket, compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 29575 at Sat Oct 21 14:11:30 UTC 2017
kill -USR1 29575
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29575 killed at Sat Oct 21 14:11:31 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) ----
selfserv_9183 starting at Sat Oct 21 14:11:31 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:11:31 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29647 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29647 found at Sat Oct 21 14:11:32 UTC 2017
selfserv_9183 with PID 29647 started at Sat Oct 21 14:11:32 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:11:32 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Sat Oct 21 14:11:35 UTC 2017
ssl.sh: #2146: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 29647 at Sat Oct 21 14:11:35 UTC 2017
kill -USR1 29647
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29647 killed at Sat Oct 21 14:11:36 UTC 2017
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI) for Extended Test
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:11:36 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:11:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29735 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29735 found at Sat Oct 21 14:11:36 UTC 2017
selfserv_9183 with PID 29735 started at Sat Oct 21 14:11:36 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:11:36 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:11:41 UTC 2017
ssl.sh: #2147: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 29735 at Sat Oct 21 14:11:41 UTC 2017
kill -USR1 29735
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29735 killed at Sat Oct 21 14:11:42 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:11:42 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:11:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29808 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29808 found at Sat Oct 21 14:11:43 UTC 2017
selfserv_9183 with PID 29808 started at Sat Oct 21 14:11:43 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -c 100 -C c -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:11:43 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:11:47 UTC 2017
ssl.sh: #2148: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 29808 at Sat Oct 21 14:11:47 UTC 2017
kill -USR1 29808
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29808 killed at Sat Oct 21 14:11:48 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:11:48 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:11:48 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29878 found at Sat Oct 21 14:11:49 UTC 2017
selfserv_9183 with PID 29878 started at Sat Oct 21 14:11:49 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:11:49 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sat Oct 21 14:11:50 UTC 2017
ssl.sh: #2149: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 29878 at Sat Oct 21 14:11:50 UTC 2017
kill -USR1 29878
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29878 killed at Sat Oct 21 14:11:50 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:11:50 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:11:50 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29949 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29949 found at Sat Oct 21 14:11:51 UTC 2017
selfserv_9183 with PID 29949 started at Sat Oct 21 14:11:51 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:11:51 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:11:52 UTC 2017
ssl.sh: #2150: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 29949 at Sat Oct 21 14:11:52 UTC 2017
kill -USR1 29949
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29949 killed at Sat Oct 21 14:11:52 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9183 starting at Sat Oct 21 14:11:53 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:11:53 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30021 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30021 found at Sat Oct 21 14:11:53 UTC 2017
selfserv_9183 with PID 30021 started at Sat Oct 21 14:11:53 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:11:53 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:11:54 UTC 2017
ssl.sh: #2151: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 30021 at Sat Oct 21 14:11:54 UTC 2017
kill -USR1 30021
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30021 killed at Sat Oct 21 14:11:55 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:11:55 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:11:55 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30092 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30092 found at Sat Oct 21 14:11:55 UTC 2017
selfserv_9183 with PID 30092 started at Sat Oct 21 14:11:55 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:11:55 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sat Oct 21 14:11:56 UTC 2017
ssl.sh: #2152: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 30092 at Sat Oct 21 14:11:57 UTC 2017
kill -USR1 30092
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30092 killed at Sat Oct 21 14:11:57 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9183 starting at Sat Oct 21 14:11:57 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:11:57 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30163 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30163 found at Sat Oct 21 14:11:58 UTC 2017
selfserv_9183 with PID 30163 started at Sat Oct 21 14:11:58 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:11:58 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sat Oct 21 14:11:59 UTC 2017
ssl.sh: #2153: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 30163 at Sat Oct 21 14:11:59 UTC 2017
kill -USR1 30163
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30163 killed at Sat Oct 21 14:11:59 UTC 2017
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) for Extended Test
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) for Extended Test
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) ----
selfserv_9183 starting at Sat Oct 21 14:12:00 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:12:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30253 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30253 found at Sat Oct 21 14:12:00 UTC 2017
selfserv_9183 with PID 30253 started at Sat Oct 21 14:12:00 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:12:00 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:12:12 UTC 2017
ssl.sh: #2154: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 30253 at Sat Oct 21 14:12:12 UTC 2017
kill -USR1 30253
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30253 killed at Sat Oct 21 14:12:12 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) ----
selfserv_9183 starting at Sat Oct 21 14:12:12 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C023 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:12:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30336 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30336 found at Sat Oct 21 14:12:13 UTC 2017
selfserv_9183 with PID 30336 started at Sat Oct 21 14:12:13 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C023 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:12:13 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:12:24 UTC 2017
ssl.sh: #2155: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 30336 at Sat Oct 21 14:12:25 UTC 2017
kill -USR1 30336
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30336 killed at Sat Oct 21 14:12:25 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) ----
selfserv_9183 starting at Sat Oct 21 14:12:25 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02B -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:12:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30406 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30406 found at Sat Oct 21 14:12:26 UTC 2017
selfserv_9183 with PID 30406 started at Sat Oct 21 14:12:26 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C02B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:12:26 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:12:37 UTC 2017
ssl.sh: #2156: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 30406 at Sat Oct 21 14:12:37 UTC 2017
kill -USR1 30406
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30406 killed at Sat Oct 21 14:12:38 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) ----
selfserv_9183 starting at Sat Oct 21 14:12:38 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:12:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30477 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30477 found at Sat Oct 21 14:12:38 UTC 2017
selfserv_9183 with PID 30477 started at Sat Oct 21 14:12:38 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C004 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:12:38 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:12:48 UTC 2017
ssl.sh: #2157: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 30477 at Sat Oct 21 14:12:49 UTC 2017
kill -USR1 30477
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30477 killed at Sat Oct 21 14:12:49 UTC 2017
ssl.sh: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) ----
selfserv_9183 starting at Sat Oct 21 14:12:49 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C00E -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:12:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30550 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30550 found at Sat Oct 21 14:12:50 UTC 2017
selfserv_9183 with PID 30550 started at Sat Oct 21 14:12:50 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C00E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:12:50 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:12:52 UTC 2017
ssl.sh: #2158: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 30550 at Sat Oct 21 14:12:52 UTC 2017
kill -USR1 30550
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30550 killed at Sat Oct 21 14:12:52 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA ----
selfserv_9183 starting at Sat Oct 21 14:12:52 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C013 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:12:52 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30620 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30620 found at Sat Oct 21 14:12:53 UTC 2017
selfserv_9183 with PID 30620 started at Sat Oct 21 14:12:53 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C013 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:12:53 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:12:56 UTC 2017
ssl.sh: #2159: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 30620 at Sat Oct 21 14:12:56 UTC 2017
kill -USR1 30620
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30620 killed at Sat Oct 21 14:12:57 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 ----
selfserv_9183 starting at Sat Oct 21 14:12:57 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C027 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:12:57 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30692 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30692 found at Sat Oct 21 14:12:57 UTC 2017
selfserv_9183 with PID 30692 started at Sat Oct 21 14:12:57 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C027 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:12:57 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:13:00 UTC 2017
ssl.sh: #2160: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 30692 at Sat Oct 21 14:13:00 UTC 2017
kill -USR1 30692
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30692 killed at Sat Oct 21 14:13:01 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 GCM ----
selfserv_9183 starting at Sat Oct 21 14:13:01 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02F -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:13:01 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30776 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30776 found at Sat Oct 21 14:13:02 UTC 2017
selfserv_9183 with PID 30776 started at Sat Oct 21 14:13:02 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C02F \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:13:02 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:13:05 UTC 2017
ssl.sh: #2161: Stress TLS  ECDHE-RSA   AES 128 GCM produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 30776 at Sat Oct 21 14:13:05 UTC 2017
kill -USR1 30776
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30776 killed at Sat Oct 21 14:13:05 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) ----
selfserv_9183 starting at Sat Oct 21 14:13:05 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -u -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:13:05 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30847 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30847 found at Sat Oct 21 14:13:06 UTC 2017
selfserv_9183 with PID 30847 started at Sat Oct 21 14:13:06 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C004 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:13:06 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Sat Oct 21 14:13:09 UTC 2017
ssl.sh: #2162: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 30847 at Sat Oct 21 14:13:09 UTC 2017
kill -USR1 30847
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30847 killed at Sat Oct 21 14:13:10 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) ----
selfserv_9183 starting at Sat Oct 21 14:13:10 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -u -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:13:10 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30918 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30918 found at Sat Oct 21 14:13:10 UTC 2017
selfserv_9183 with PID 30918 started at Sat Oct 21 14:13:10 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:13:10 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sat Oct 21 14:13:12 UTC 2017
ssl.sh: #2163: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 30918 at Sat Oct 21 14:13:12 UTC 2017
kill -USR1 30918
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30918 killed at Sat Oct 21 14:13:12 UTC 2017
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:13:12 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:13:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31004 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31004 found at Sat Oct 21 14:13:13 UTC 2017
selfserv_9183 with PID 31004 started at Sat Oct 21 14:13:13 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:13:13 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Sat Oct 21 14:13:16 UTC 2017
ssl.sh: #2164: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 31004 at Sat Oct 21 14:13:16 UTC 2017
kill -USR1 31004
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31004 killed at Sat Oct 21 14:13:16 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:13:16 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:13:16 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31075 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31075 found at Sat Oct 21 14:13:17 UTC 2017
selfserv_9183 with PID 31075 started at Sat Oct 21 14:13:17 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:13:17 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:13:18 UTC 2017
ssl.sh: #2165: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 31075 at Sat Oct 21 14:13:18 UTC 2017
kill -USR1 31075
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31075 killed at Sat Oct 21 14:13:19 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:13:19 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:13:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31146 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31146 found at Sat Oct 21 14:13:19 UTC 2017
selfserv_9183 with PID 31146 started at Sat Oct 21 14:13:19 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:13:19 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Sat Oct 21 14:13:22 UTC 2017
ssl.sh: #2166: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 31146 at Sat Oct 21 14:13:22 UTC 2017
kill -USR1 31146
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31146 killed at Sat Oct 21 14:13:23 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:13:23 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:13:23 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31216 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31216 found at Sat Oct 21 14:13:23 UTC 2017
selfserv_9183 with PID 31216 started at Sat Oct 21 14:13:23 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n ExtendedSSLUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:13:23 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Sat Oct 21 14:13:24 UTC 2017
ssl.sh: #2167: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 31216 at Sat Oct 21 14:13:24 UTC 2017
kill -USR1 31216
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31216 killed at Sat Oct 21 14:13:25 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9183 starting at Sat Oct 21 14:13:25 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:13:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31286 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31286 found at Sat Oct 21 14:13:25 UTC 2017
selfserv_9183 with PID 31286 started at Sat Oct 21 14:13:25 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:13:25 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:13:27 UTC 2017
ssl.sh: #2168: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 31286 at Sat Oct 21 14:13:27 UTC 2017
kill -USR1 31286
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31286 killed at Sat Oct 21 14:13:27 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:13:27 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:13:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31357 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31357 found at Sat Oct 21 14:13:28 UTC 2017
selfserv_9183 with PID 31357 started at Sat Oct 21 14:13:28 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:13:28 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sat Oct 21 14:13:29 UTC 2017
ssl.sh: #2169: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 31357 at Sat Oct 21 14:13:29 UTC 2017
kill -USR1 31357
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31357 killed at Sat Oct 21 14:13:30 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) ----
selfserv_9183 starting at Sat Oct 21 14:13:30 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0016 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:13:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31443 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31443 found at Sat Oct 21 14:13:30 UTC 2017
selfserv_9183 with PID 31443 started at Sat Oct 21 14:13:30 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0016 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:13:30 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 3 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:13:36 UTC 2017
ssl.sh: #2170: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 31443 at Sat Oct 21 14:13:36 UTC 2017
kill -USR1 31443
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31443 killed at Sat Oct 21 14:13:37 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA ----
selfserv_9183 starting at Sat Oct 21 14:13:37 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0033 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:13:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31514 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31514 found at Sat Oct 21 14:13:37 UTC 2017
selfserv_9183 with PID 31514 started at Sat Oct 21 14:13:37 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0033 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:13:37 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:13:41 UTC 2017
ssl.sh: #2171: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 31514 at Sat Oct 21 14:13:41 UTC 2017
kill -USR1 31514
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31514 killed at Sat Oct 21 14:13:41 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9183 starting at Sat Oct 21 14:13:41 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0039 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:13:41 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31588 found at Sat Oct 21 14:13:42 UTC 2017
selfserv_9183 with PID 31588 started at Sat Oct 21 14:13:42 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0039 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:13:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 3 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:13:48 UTC 2017
ssl.sh: #2172: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 31588 at Sat Oct 21 14:13:48 UTC 2017
kill -USR1 31588
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31588 killed at Sat Oct 21 14:13:48 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) ----
selfserv_9183 starting at Sat Oct 21 14:13:48 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0040 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:13:48 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31658 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31658 found at Sat Oct 21 14:13:49 UTC 2017
selfserv_9183 with PID 31658 started at Sat Oct 21 14:13:49 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0040 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:13:49 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:13:59 UTC 2017
ssl.sh: #2173: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 31658 at Sat Oct 21 14:13:59 UTC 2017
kill -USR1 31658
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31658 killed at Sat Oct 21 14:13:59 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9183 starting at Sat Oct 21 14:14:00 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0038 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:14:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31739 found at Sat Oct 21 14:14:00 UTC 2017
selfserv_9183 with PID 31739 started at Sat Oct 21 14:14:00 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0038 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:14:00 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Sat Oct 21 14:15:33 UTC 2017
ssl.sh: #2174: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 31739 at Sat Oct 21 14:15:33 UTC 2017
kill -USR1 31739
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31739 killed at Sat Oct 21 14:15:33 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse ----
selfserv_9183 starting at Sat Oct 21 14:15:33 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006A -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:15:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31851 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31851 found at Sat Oct 21 14:15:34 UTC 2017
selfserv_9183 with PID 31851 started at Sat Oct 21 14:15:34 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :006A -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:15:34 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Sat Oct 21 14:17:06 UTC 2017
ssl.sh: #2175: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 31851 at Sat Oct 21 14:17:07 UTC 2017
kill -USR1 31851
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31851 killed at Sat Oct 21 14:17:07 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) ----
selfserv_9183 starting at Sat Oct 21 14:17:07 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006B -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:17:07 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31958 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31958 found at Sat Oct 21 14:17:08 UTC 2017
selfserv_9183 with PID 31958 started at Sat Oct 21 14:17:08 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :006B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:17:08 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 3 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:17:14 UTC 2017
ssl.sh: #2176: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 31958 at Sat Oct 21 14:17:14 UTC 2017
kill -USR1 31958
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31958 killed at Sat Oct 21 14:17:14 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) ----
selfserv_9183 starting at Sat Oct 21 14:17:14 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009E -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:17:14 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32028 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32028 found at Sat Oct 21 14:17:15 UTC 2017
selfserv_9183 with PID 32028 started at Sat Oct 21 14:17:15 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :009E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:17:15 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 5 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:17:21 UTC 2017
ssl.sh: #2177: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 32028 at Sat Oct 21 14:17:21 UTC 2017
kill -USR1 32028
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 32028 killed at Sat Oct 21 14:17:21 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) ----
selfserv_9183 starting at Sat Oct 21 14:17:21 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009F -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:17:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32098 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32098 found at Sat Oct 21 14:17:22 UTC 2017
selfserv_9183 with PID 32098 started at Sat Oct 21 14:17:22 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :009F -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:17:22 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 4 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:17:28 UTC 2017
ssl.sh: #2178: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 32098 at Sat Oct 21 14:17:28 UTC 2017
kill -USR1 32098
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 32098 killed at Sat Oct 21 14:17:28 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:17:29 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:17:29 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32184 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32184 found at Sat Oct 21 14:17:29 UTC 2017
selfserv_9183 with PID 32184 started at Sat Oct 21 14:17:29 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:17:29 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:17:45 UTC 2017
ssl.sh: #2179: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 32184 at Sat Oct 21 14:17:45 UTC 2017
kill -USR1 32184
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 32184 killed at Sat Oct 21 14:17:46 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:17:46 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:17:46 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32257 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32257 found at Sat Oct 21 14:17:46 UTC 2017
selfserv_9183 with PID 32257 started at Sat Oct 21 14:17:46 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n ExtendedSSLUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:17:46 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:17:50 UTC 2017
ssl.sh: #2180: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 32257 at Sat Oct 21 14:17:50 UTC 2017
kill -USR1 32257
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 32257 killed at Sat Oct 21 14:17:50 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:17:50 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:17:50 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32344 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32344 found at Sat Oct 21 14:17:51 UTC 2017
selfserv_9183 with PID 32344 started at Sat Oct 21 14:17:51 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:17:51 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Sat Oct 21 14:20:22 UTC 2017
ssl.sh: #2181: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 32344 at Sat Oct 21 14:20:22 UTC 2017
kill -USR1 32344
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 32344 killed at Sat Oct 21 14:20:22 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:20:22 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:20:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32470 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32470 found at Sat Oct 21 14:20:23 UTC 2017
selfserv_9183 with PID 32470 started at Sat Oct 21 14:20:23 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:20:23 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Sat Oct 21 14:22:54 UTC 2017
ssl.sh: #2182: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 32470 at Sat Oct 21 14:22:54 UTC 2017
kill -USR1 32470
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 32470 killed at Sat Oct 21 14:22:54 UTC 2017
ssl.sh: SSL - FIPS mode off for server ===============================
ssl.sh: Turning FIPS off for the  server
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -fips false -force
FIPS mode disabled.
ssl.sh: #2183:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/server -list
ssl.sh: #2184:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2185:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
ssl.sh: Turning FIPS off for the extended  server
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -fips false -force
FIPS mode disabled.
ssl.sh: #2186:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_server -list
ssl.sh: #2187:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2188:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
ssl.sh: SSL - FIPS mode on for client ===============================
ssl.sh: Turning FIPS on for the  client
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -fips true -force
FIPS mode enabled.
ssl.sh: #2189:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -list
ssl.sh: #2190:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #2191:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: Turning FIPS on for the extended  client
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -fips true -force
FIPS mode enabled.
ssl.sh: #2192:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -list
ssl.sh: #2193:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #2194:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: SSL Cipher Coverage  - server normal/client fips  - with ECC ===============================
selfserv_9183 starting at Sat Oct 21 14:23:00 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:23:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32704 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32704 found at Sat Oct 21 14:23:00 UTC 2017
selfserv_9183 with PID 32704 started at Sat Oct 21 14:23:00 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2195: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2196: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2197: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2198: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2199: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2200: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2201: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2202: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2203: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2204: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2205: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2206: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2207: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2208: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2209: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2210: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2211: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2212: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2213: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2214: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2215: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2216: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2217: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2218: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2219: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2220: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2221: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2222: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2223: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2224: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2225: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2226: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2227: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2228: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2229: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2230: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2231: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2232: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2233: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2234: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2235: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2236: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2237: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2238: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2239: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2240: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2241: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2242: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2243: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2244: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2245: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2246: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2247: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2248: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2249: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2250: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2251: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2252: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2253: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2254: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2255: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2256: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2257: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2258: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2259: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2260: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2261: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2262: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2263: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2264: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2265: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2266: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2267: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2268: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2269: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2270: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2271: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2272: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2273: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2274: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2275: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2276: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2277: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2278: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2279: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2280: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2281: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2282: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2283: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2284: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2285: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2286: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2287: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2288: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2289: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2290: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2291: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2292: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2293: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2294: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2295: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2296: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2297: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2298: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2299: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2300: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2301: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2302: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2303: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2304: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2305: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2306: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2307: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2308: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2309: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2310: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2311: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2312: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2313: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2314: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2315: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 32704 at Sat Oct 21 14:24:35 UTC 2017
kill -USR1 32704
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 32704 killed at Sat Oct 21 14:24:36 UTC 2017
ssl.sh: SSL Client Authentication  - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  TLS Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 14:24:36 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:24:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2576 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2576 found at Sat Oct 21 14:24:37 UTC 2017
selfserv_9183 with PID 2576 started at Sat Oct 21 14:24:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2316: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 2576 at Sat Oct 21 14:24:38 UTC 2017
kill -USR1 2576
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2576 killed at Sat Oct 21 14:24:38 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:24:38 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:24:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2633 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2633 found at Sat Oct 21 14:24:39 UTC 2017
selfserv_9183 with PID 2633 started at Sat Oct 21 14:24:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2317: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 2633 at Sat Oct 21 14:25:06 UTC 2017
kill -USR1 2633
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2633 killed at Sat Oct 21 14:25:06 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:25:06 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:25:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2706 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2706 found at Sat Oct 21 14:25:07 UTC 2017
selfserv_9183 with PID 2706 started at Sat Oct 21 14:25:07 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2318: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 2706 at Sat Oct 21 14:25:08 UTC 2017
kill -USR1 2706
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2706 killed at Sat Oct 21 14:25:08 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 14:25:09 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:25:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2769 found at Sat Oct 21 14:25:09 UTC 2017
selfserv_9183 with PID 2769 started at Sat Oct 21 14:25:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2319: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 2769 at Sat Oct 21 14:25:10 UTC 2017
kill -USR1 2769
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2769 killed at Sat Oct 21 14:25:10 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:25:10 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:25:10 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2827 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2827 found at Sat Oct 21 14:25:11 UTC 2017
selfserv_9183 with PID 2827 started at Sat Oct 21 14:25:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2320: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 2827 at Sat Oct 21 14:25:35 UTC 2017
kill -USR1 2827
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2827 killed at Sat Oct 21 14:25:35 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:25:35 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:25:35 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2885 found at Sat Oct 21 14:25:36 UTC 2017
selfserv_9183 with PID 2885 started at Sat Oct 21 14:25:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2321: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 2885 at Sat Oct 21 14:25:37 UTC 2017
kill -USR1 2885
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2885 killed at Sat Oct 21 14:25:37 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 14:25:37 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:25:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2948 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2948 found at Sat Oct 21 14:25:38 UTC 2017
selfserv_9183 with PID 2948 started at Sat Oct 21 14:25:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2322: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 2948 at Sat Oct 21 14:25:39 UTC 2017
kill -USR1 2948
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2948 killed at Sat Oct 21 14:25:40 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:25:40 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:25:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3005 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3005 found at Sat Oct 21 14:25:40 UTC 2017
selfserv_9183 with PID 3005 started at Sat Oct 21 14:25:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2323: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 3005 at Sat Oct 21 14:26:07 UTC 2017
kill -USR1 3005
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3005 killed at Sat Oct 21 14:26:07 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:26:08 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:26:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3078 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3078 found at Sat Oct 21 14:26:08 UTC 2017
selfserv_9183 with PID 3078 started at Sat Oct 21 14:26:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2324: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 3078 at Sat Oct 21 14:26:09 UTC 2017
kill -USR1 3078
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3078 killed at Sat Oct 21 14:26:10 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 14:26:10 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:26:10 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3141 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3141 found at Sat Oct 21 14:26:11 UTC 2017
selfserv_9183 with PID 3141 started at Sat Oct 21 14:26:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2325: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 3141 at Sat Oct 21 14:26:12 UTC 2017
kill -USR1 3141
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3141 killed at Sat Oct 21 14:26:12 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:26:12 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:26:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3198 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3198 found at Sat Oct 21 14:26:13 UTC 2017
selfserv_9183 with PID 3198 started at Sat Oct 21 14:26:13 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2326: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 3198 at Sat Oct 21 14:26:40 UTC 2017
kill -USR1 3198
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3198 killed at Sat Oct 21 14:26:40 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:26:40 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:26:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3257 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3257 found at Sat Oct 21 14:26:41 UTC 2017
selfserv_9183 with PID 3257 started at Sat Oct 21 14:26:41 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2327: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 3257 at Sat Oct 21 14:26:42 UTC 2017
kill -USR1 3257
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3257 killed at Sat Oct 21 14:26:43 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 14:26:43 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:26:43 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3322 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3322 found at Sat Oct 21 14:26:43 UTC 2017
selfserv_9183 with PID 3322 started at Sat Oct 21 14:26:43 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2328: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 3322 at Sat Oct 21 14:26:44 UTC 2017
kill -USR1 3322
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3322 killed at Sat Oct 21 14:26:45 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:26:45 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:26:45 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3397 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3397 found at Sat Oct 21 14:26:45 UTC 2017
selfserv_9183 with PID 3397 started at Sat Oct 21 14:26:45 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2329: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 3397 at Sat Oct 21 14:27:09 UTC 2017
kill -USR1 3397
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3397 killed at Sat Oct 21 14:27:10 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:27:10 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:27:10 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3482 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3482 found at Sat Oct 21 14:27:10 UTC 2017
selfserv_9183 with PID 3482 started at Sat Oct 21 14:27:10 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2330: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 3482 at Sat Oct 21 14:27:11 UTC 2017
kill -USR1 3482
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3482 killed at Sat Oct 21 14:27:12 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:27:12 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:27:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3570 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3570 found at Sat Oct 21 14:27:13 UTC 2017
selfserv_9183 with PID 3570 started at Sat Oct 21 14:27:13 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2331: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 3570 at Sat Oct 21 14:27:39 UTC 2017
kill -USR1 3570
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3570 killed at Sat Oct 21 14:27:40 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:27:40 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:27:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3635 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3635 found at Sat Oct 21 14:27:40 UTC 2017
selfserv_9183 with PID 3635 started at Sat Oct 21 14:27:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2332: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 3635 at Sat Oct 21 14:27:42 UTC 2017
kill -USR1 3635
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3635 killed at Sat Oct 21 14:27:42 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:27:42 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:27:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3698 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3698 found at Sat Oct 21 14:27:43 UTC 2017
selfserv_9183 with PID 3698 started at Sat Oct 21 14:27:43 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2333: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 3698 at Sat Oct 21 14:28:07 UTC 2017
kill -USR1 3698
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3698 killed at Sat Oct 21 14:28:07 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:28:07 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:28:07 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3772 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3772 found at Sat Oct 21 14:28:08 UTC 2017
selfserv_9183 with PID 3772 started at Sat Oct 21 14:28:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2334: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 3772 at Sat Oct 21 14:28:09 UTC 2017
kill -USR1 3772
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3772 killed at Sat Oct 21 14:28:09 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:28:09 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:28:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3833 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3833 found at Sat Oct 21 14:28:10 UTC 2017
selfserv_9183 with PID 3833 started at Sat Oct 21 14:28:10 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2335: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 3833 at Sat Oct 21 14:28:37 UTC 2017
kill -USR1 3833
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3833 killed at Sat Oct 21 14:28:37 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:28:37 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:28:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3893 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3893 found at Sat Oct 21 14:28:38 UTC 2017
selfserv_9183 with PID 3893 started at Sat Oct 21 14:28:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2336: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 3893 at Sat Oct 21 14:28:39 UTC 2017
kill -USR1 3893
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3893 killed at Sat Oct 21 14:28:40 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:28:40 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:28:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3954 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3954 found at Sat Oct 21 14:28:40 UTC 2017
selfserv_9183 with PID 3954 started at Sat Oct 21 14:28:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2337: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 3954 at Sat Oct 21 14:29:07 UTC 2017
kill -USR1 3954
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3954 killed at Sat Oct 21 14:29:07 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:29:08 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:29:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4030 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4030 found at Sat Oct 21 14:29:08 UTC 2017
selfserv_9183 with PID 4030 started at Sat Oct 21 14:29:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2338: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 4030 at Sat Oct 21 14:29:10 UTC 2017
kill -USR1 4030
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4030 killed at Sat Oct 21 14:29:10 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:29:10 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:29:10 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4091 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4091 found at Sat Oct 21 14:29:11 UTC 2017
selfserv_9183 with PID 4091 started at Sat Oct 21 14:29:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2339: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 4091 at Sat Oct 21 14:29:35 UTC 2017
kill -USR1 4091
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4091 killed at Sat Oct 21 14:29:35 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:29:35 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:29:35 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4149 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4149 found at Sat Oct 21 14:29:36 UTC 2017
selfserv_9183 with PID 4149 started at Sat Oct 21 14:29:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2340: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 4149 at Sat Oct 21 14:29:37 UTC 2017
kill -USR1 4149
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4149 killed at Sat Oct 21 14:29:37 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9183 starting at Sat Oct 21 14:29:38 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:29:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4227 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4227 found at Sat Oct 21 14:29:38 UTC 2017
selfserv_9183 with PID 4227 started at Sat Oct 21 14:29:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2341: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 4227 at Sat Oct 21 14:29:39 UTC 2017
kill -USR1 4227
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4227 killed at Sat Oct 21 14:29:39 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9183 starting at Sat Oct 21 14:29:40 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:29:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4290 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4290 found at Sat Oct 21 14:29:40 UTC 2017
selfserv_9183 with PID 4290 started at Sat Oct 21 14:29:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2342: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 4290 at Sat Oct 21 14:29:41 UTC 2017
kill -USR1 4290
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4290 killed at Sat Oct 21 14:29:41 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9183 starting at Sat Oct 21 14:29:42 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:29:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4353 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4353 found at Sat Oct 21 14:29:42 UTC 2017
selfserv_9183 with PID 4353 started at Sat Oct 21 14:29:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #2343: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 4353 at Sat Oct 21 14:29:43 UTC 2017
kill -USR1 4353
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4353 killed at Sat Oct 21 14:29:43 UTC 2017
ssl.sh: SSL3 Server hello response without SNI ----
selfserv_9183 starting at Sat Oct 21 14:29:43 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:29:43 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4417 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4417 found at Sat Oct 21 14:29:44 UTC 2017
selfserv_9183 with PID 4417 started at Sat Oct 21 14:29:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -c v -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2344: SSL3 Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 4417 at Sat Oct 21 14:29:45 UTC 2017
kill -USR1 4417
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4417 killed at Sat Oct 21 14:29:45 UTC 2017
ssl.sh: SSL3 Server hello response with SNI: SSL don't have SH extensions ----
selfserv_9183 starting at Sat Oct 21 14:29:45 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:29:45 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4480 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4480 found at Sat Oct 21 14:29:46 UTC 2017
selfserv_9183 with PID 4480 started at Sat Oct 21 14:29:46 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
tstclnt: authentication of server cert failed: SSL_ERROR_BAD_CERT_DOMAIN: Unable to communicate securely with peer: requested domain name does not match the server's certificate.
ssl.sh: #2345: SSL3 Server hello response with SNI: SSL don't have SH extensions produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 4480 at Sat Oct 21 14:29:46 UTC 2017
kill -USR1 4480
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4480 killed at Sat Oct 21 14:29:47 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9183 starting at Sat Oct 21 14:29:47 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:29:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4546 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4546 found at Sat Oct 21 14:29:48 UTC 2017
selfserv_9183 with PID 4546 started at Sat Oct 21 14:29:48 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2346: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 4546 at Sat Oct 21 14:29:48 UTC 2017
kill -USR1 4546
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4546 killed at Sat Oct 21 14:29:49 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9183 starting at Sat Oct 21 14:29:49 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:29:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4609 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4609 found at Sat Oct 21 14:29:50 UTC 2017
selfserv_9183 with PID 4609 started at Sat Oct 21 14:29:50 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2347: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 4609 at Sat Oct 21 14:29:51 UTC 2017
kill -USR1 4609
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4609 killed at Sat Oct 21 14:29:51 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name on 2d HS ----
selfserv_9183 starting at Sat Oct 21 14:29:51 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:29:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4672 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4672 found at Sat Oct 21 14:29:52 UTC 2017
selfserv_9183 with PID 4672 started at Sat Oct 21 14:29:52 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain -a localhost.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12182:
SSL peer has no certificate for the requested DNS name.
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2348: TLS Server hello response with SNI: Change name on 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 4672 at Sat Oct 21 14:29:52 UTC 2017
kill -USR1 4672
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4672 killed at Sat Oct 21 14:29:53 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name to invalid 2d HS ----
selfserv_9183 starting at Sat Oct 21 14:29:53 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:29:53 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4735 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4735 found at Sat Oct 21 14:29:54 UTC 2017
selfserv_9183 with PID 4735 started at Sat Oct 21 14:29:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12182:
SSL peer has no certificate for the requested DNS name.
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #2349: TLS Server hello response with SNI: Change name to invalid 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 4735 at Sat Oct 21 14:29:54 UTC 2017
kill -USR1 4735
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4735 killed at Sat Oct 21 14:29:55 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9183 starting at Sat Oct 21 14:29:55 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:29:55 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4798 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4798 found at Sat Oct 21 14:29:55 UTC 2017
selfserv_9183 with PID 4798 started at Sat Oct 21 14:29:55 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #2350: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 4798 at Sat Oct 21 14:29:56 UTC 2017
kill -USR1 4798
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4798 killed at Sat Oct 21 14:29:57 UTC 2017
ssl.sh: SSL Cert Status (OCSP Stapling)  - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, revoked status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, unknown status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, unsigned failure response (non-FIPS only)
ssl.sh: skipping  OCSP stapling, good status, bad signature (non-FIPS only)
ssl.sh: skipping  OCSP stapling, invalid cert status data (non-FIPS only)
ssl.sh: skipping  Valid cert, Server doesn't staple (non-FIPS only)
ssl.sh: skipping  Stress OCSP stapling, server uses random status (non-FIPS only)
ssl.sh: SSL Stress Test  - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  Form is subject to the terms of the Mozilla Public (non-FIPS only)
ssl.sh: skipping  If a copy of the MPL was not distributed with this (non-FIPS only)
ssl.sh: skipping  obtain one at http://mozilla.org/MPL/2.0/. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  the stress tests for SSL/TLS. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  client                         Test Case name (non-FIPS only)
ssl.sh: skipping  params (non-FIPS only)
ssl.sh: skipping  ------                         --------------- (non-FIPS only)
ssl.sh: skipping  Stress SSL3 RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:29:57 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:29:57 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4897 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4897 found at Sat Oct 21 14:29:58 UTC 2017
selfserv_9183 with PID 4897 started at Sat Oct 21 14:29:58 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:29:58 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:30:02 UTC 2017
ssl.sh: #2351: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 4897 at Sat Oct 21 14:30:02 UTC 2017
kill -USR1 4897
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4897 killed at Sat Oct 21 14:30:03 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:30:03 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:30:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4985 found at Sat Oct 21 14:30:03 UTC 2017
selfserv_9183 with PID 4985 started at Sat Oct 21 14:30:03 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -c 100 -C c -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:30:03 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:30:08 UTC 2017
ssl.sh: #2352: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 4985 at Sat Oct 21 14:30:08 UTC 2017
kill -USR1 4985
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4985 killed at Sat Oct 21 14:30:08 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:30:08 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:30:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5056 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5056 found at Sat Oct 21 14:30:09 UTC 2017
selfserv_9183 with PID 5056 started at Sat Oct 21 14:30:09 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:30:09 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sat Oct 21 14:30:10 UTC 2017
ssl.sh: #2353: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 5056 at Sat Oct 21 14:30:10 UTC 2017
kill -USR1 5056
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5056 killed at Sat Oct 21 14:30:11 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:30:11 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:30:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5127 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5127 found at Sat Oct 21 14:30:11 UTC 2017
selfserv_9183 with PID 5127 started at Sat Oct 21 14:30:11 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:30:11 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:30:12 UTC 2017
ssl.sh: #2354: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 5127 at Sat Oct 21 14:30:12 UTC 2017
kill -USR1 5127
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5127 killed at Sat Oct 21 14:30:13 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9183 starting at Sat Oct 21 14:30:13 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:30:13 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5198 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5198 found at Sat Oct 21 14:30:13 UTC 2017
selfserv_9183 with PID 5198 started at Sat Oct 21 14:30:13 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:30:13 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:30:15 UTC 2017
ssl.sh: #2355: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 5198 at Sat Oct 21 14:30:15 UTC 2017
kill -USR1 5198
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5198 killed at Sat Oct 21 14:30:15 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:30:15 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:30:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5269 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5269 found at Sat Oct 21 14:30:16 UTC 2017
selfserv_9183 with PID 5269 started at Sat Oct 21 14:30:16 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:30:16 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sat Oct 21 14:30:17 UTC 2017
ssl.sh: #2356: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 5269 at Sat Oct 21 14:30:17 UTC 2017
kill -USR1 5269
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5269 killed at Sat Oct 21 14:30:17 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9183 starting at Sat Oct 21 14:30:18 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:30:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5340 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5340 found at Sat Oct 21 14:30:18 UTC 2017
selfserv_9183 with PID 5340 started at Sat Oct 21 14:30:18 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:30:18 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sat Oct 21 14:30:19 UTC 2017
ssl.sh: #2357: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 5340 at Sat Oct 21 14:30:19 UTC 2017
kill -USR1 5340
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5340 killed at Sat Oct 21 14:30:20 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) ----
selfserv_9183 starting at Sat Oct 21 14:30:20 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:30:20 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5417 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5417 found at Sat Oct 21 14:30:20 UTC 2017
selfserv_9183 with PID 5417 started at Sat Oct 21 14:30:20 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:30:20 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Sat Oct 21 14:30:24 UTC 2017
ssl.sh: #2358: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 5417 at Sat Oct 21 14:30:24 UTC 2017
kill -USR1 5417
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5417 killed at Sat Oct 21 14:30:24 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) ----
selfserv_9183 starting at Sat Oct 21 14:30:25 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -k localhost-sni.localdomain -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:30:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5494 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5494 found at Sat Oct 21 14:30:25 UTC 2017
selfserv_9183 with PID 5494 started at Sat Oct 21 14:30:25 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u -a localhost-sni.localdomain \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:30:25 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Sat Oct 21 14:30:28 UTC 2017
ssl.sh: #2359: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 5494 at Sat Oct 21 14:30:29 UTC 2017
kill -USR1 5494
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5494 killed at Sat Oct 21 14:30:29 UTC 2017
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 GCM (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:30:29 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:30:29 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5598 found at Sat Oct 21 14:30:30 UTC 2017
selfserv_9183 with PID 5598 started at Sat Oct 21 14:30:30 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:30:30 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Sat Oct 21 14:30:32 UTC 2017
ssl.sh: #2360: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 5598 at Sat Oct 21 14:30:32 UTC 2017
kill -USR1 5598
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5598 killed at Sat Oct 21 14:30:33 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:30:33 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:30:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5668 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5668 found at Sat Oct 21 14:30:33 UTC 2017
selfserv_9183 with PID 5668 started at Sat Oct 21 14:30:33 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:30:33 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:30:35 UTC 2017
ssl.sh: #2361: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 5668 at Sat Oct 21 14:30:35 UTC 2017
kill -USR1 5668
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5668 killed at Sat Oct 21 14:30:35 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:30:35 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:30:35 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5739 found at Sat Oct 21 14:30:36 UTC 2017
selfserv_9183 with PID 5739 started at Sat Oct 21 14:30:36 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:30:36 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Sat Oct 21 14:30:38 UTC 2017
ssl.sh: #2362: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 5739 at Sat Oct 21 14:30:38 UTC 2017
kill -USR1 5739
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5739 killed at Sat Oct 21 14:30:39 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:30:39 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:30:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5809 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5809 found at Sat Oct 21 14:30:39 UTC 2017
selfserv_9183 with PID 5809 started at Sat Oct 21 14:30:39 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n TestUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:30:39 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Sat Oct 21 14:30:41 UTC 2017
ssl.sh: #2363: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 5809 at Sat Oct 21 14:30:41 UTC 2017
kill -USR1 5809
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5809 killed at Sat Oct 21 14:30:42 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9183 starting at Sat Oct 21 14:30:42 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:30:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5879 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5879 found at Sat Oct 21 14:30:42 UTC 2017
selfserv_9183 with PID 5879 started at Sat Oct 21 14:30:42 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:30:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:30:43 UTC 2017
ssl.sh: #2364: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 5879 at Sat Oct 21 14:30:44 UTC 2017
kill -USR1 5879
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5879 killed at Sat Oct 21 14:30:44 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:30:44 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:30:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5950 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5950 found at Sat Oct 21 14:30:45 UTC 2017
selfserv_9183 with PID 5950 started at Sat Oct 21 14:30:45 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:30:45 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sat Oct 21 14:30:46 UTC 2017
ssl.sh: #2365: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 5950 at Sat Oct 21 14:30:46 UTC 2017
kill -USR1 5950
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5950 killed at Sat Oct 21 14:30:46 UTC 2017
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:0038_-u Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:006A    Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (non-FIPS only)
ssl.sh: skipping  reuse test, once the session cache with DHE_DSS is working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:30:47 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:30:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6060 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6060 found at Sat Oct 21 14:30:47 UTC 2017
selfserv_9183 with PID 6060 started at Sat Oct 21 14:30:47 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:30:47 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:30:58 UTC 2017
ssl.sh: #2366: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 6060 at Sat Oct 21 14:30:58 UTC 2017
kill -USR1 6060
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 6060 killed at Sat Oct 21 14:30:58 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:30:59 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:30:59 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6133 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6133 found at Sat Oct 21 14:30:59 UTC 2017
selfserv_9183 with PID 6133 started at Sat Oct 21 14:30:59 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n TestUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:30:59 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:31:03 UTC 2017
ssl.sh: #2367: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 6133 at Sat Oct 21 14:31:03 UTC 2017
kill -USR1 6133
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 6133 killed at Sat Oct 21 14:31:03 UTC 2017
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:31:03 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:31:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6228 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6228 found at Sat Oct 21 14:31:04 UTC 2017
selfserv_9183 with PID 6228 started at Sat Oct 21 14:31:04 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:31:04 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Sat Oct 21 14:32:43 UTC 2017
ssl.sh: #2368: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 6228 at Sat Oct 21 14:32:43 UTC 2017
kill -USR1 6228
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 6228 killed at Sat Oct 21 14:32:43 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:32:43 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:32:43 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6318 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6318 found at Sat Oct 21 14:32:44 UTC 2017
selfserv_9183 with PID 6318 started at Sat Oct 21 14:32:44 UTC 2017
strsclnt -q -p 9183 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:32:44 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Sat Oct 21 14:34:23 UTC 2017
ssl.sh: #2369: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 6318 at Sat Oct 21 14:34:23 UTC 2017
kill -USR1 6318
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 6318 killed at Sat Oct 21 14:34:23 UTC 2017
ssl.sh: SSL Cipher Coverage Extended Test - server normal/client fips  - with ECC ===============================
selfserv_9183 starting at Sat Oct 21 14:34:23 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:34:23 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6415 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6415 found at Sat Oct 21 14:34:24 UTC 2017
selfserv_9183 with PID 6415 started at Sat Oct 21 14:34:24 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2370: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2371: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2372: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2373: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2374: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2375: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2376: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2377: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2378: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2379: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2380: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2381: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2382: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2383: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2384: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2385: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2386: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2387: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2388: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2389: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2390: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2391: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2392: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2393: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2394: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2395: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2396: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2397: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2398: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2399: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2400: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2401: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2402: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2403: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2404: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2405: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2406: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2407: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2408: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2409: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2410: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2411: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2412: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2413: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2414: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2415: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2416: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2417: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2418: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2419: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2420: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2421: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2422: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2423: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2424: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2425: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2426: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2427: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2428: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2429: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2430: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2431: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2432: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2433: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2434: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2435: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2436: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2437: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2438: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2439: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2440: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2441: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2442: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2443: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2444: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2445: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2446: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2447: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2448: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2449: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2450: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2451: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2452: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2453: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2454: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2455: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2456: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2457: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2458: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2459: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2460: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2461: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2462: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2463: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2464: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2465: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2466: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2467: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2468: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2469: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2470: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2471: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2472: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2473: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2474: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2475: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2476: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2477: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2478: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2479: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2480: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2481: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2482: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2483: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2484: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2485: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2486: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2487: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2488: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2489: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9183 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2490: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 6415 at Sat Oct 21 14:36:00 UTC 2017
kill -USR1 6415
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 6415 killed at Sat Oct 21 14:36:00 UTC 2017
ssl.sh: SSL Client Authentication Extended Test - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  TLS Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 14:36:01 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:36:01 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8719 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8719 found at Sat Oct 21 14:36:02 UTC 2017
selfserv_9183 with PID 8719 started at Sat Oct 21 14:36:02 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2491: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 8719 at Sat Oct 21 14:36:03 UTC 2017
kill -USR1 8719
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 8719 killed at Sat Oct 21 14:36:03 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:36:03 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:36:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8780 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8780 found at Sat Oct 21 14:36:04 UTC 2017
selfserv_9183 with PID 8780 started at Sat Oct 21 14:36:04 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2492: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 8780 at Sat Oct 21 14:36:31 UTC 2017
kill -USR1 8780
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 8780 killed at Sat Oct 21 14:36:32 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:36:32 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:36:32 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8838 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8838 found at Sat Oct 21 14:36:32 UTC 2017
selfserv_9183 with PID 8838 started at Sat Oct 21 14:36:32 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2493: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 8838 at Sat Oct 21 14:36:34 UTC 2017
kill -USR1 8838
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 8838 killed at Sat Oct 21 14:36:34 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 14:36:34 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:36:34 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8901 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8901 found at Sat Oct 21 14:36:35 UTC 2017
selfserv_9183 with PID 8901 started at Sat Oct 21 14:36:35 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2494: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 8901 at Sat Oct 21 14:36:35 UTC 2017
kill -USR1 8901
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 8901 killed at Sat Oct 21 14:36:36 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:36:36 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:36:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8958 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8958 found at Sat Oct 21 14:36:37 UTC 2017
selfserv_9183 with PID 8958 started at Sat Oct 21 14:36:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2495: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 8958 at Sat Oct 21 14:37:00 UTC 2017
kill -USR1 8958
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 8958 killed at Sat Oct 21 14:37:01 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:37:01 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:37:01 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9021 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9021 found at Sat Oct 21 14:37:02 UTC 2017
selfserv_9183 with PID 9021 started at Sat Oct 21 14:37:02 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2496: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 9021 at Sat Oct 21 14:37:03 UTC 2017
kill -USR1 9021
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9021 killed at Sat Oct 21 14:37:03 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 14:37:03 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:37:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9098 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9098 found at Sat Oct 21 14:37:04 UTC 2017
selfserv_9183 with PID 9098 started at Sat Oct 21 14:37:04 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2497: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 9098 at Sat Oct 21 14:37:05 UTC 2017
kill -USR1 9098
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9098 killed at Sat Oct 21 14:37:05 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:37:05 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:37:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9156 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9156 found at Sat Oct 21 14:37:06 UTC 2017
selfserv_9183 with PID 9156 started at Sat Oct 21 14:37:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2498: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 9156 at Sat Oct 21 14:37:34 UTC 2017
kill -USR1 9156
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9156 killed at Sat Oct 21 14:37:34 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:37:34 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:37:34 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9214 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9214 found at Sat Oct 21 14:37:35 UTC 2017
selfserv_9183 with PID 9214 started at Sat Oct 21 14:37:35 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2499: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 9214 at Sat Oct 21 14:37:36 UTC 2017
kill -USR1 9214
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9214 killed at Sat Oct 21 14:37:37 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 14:37:37 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:37:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9277 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9277 found at Sat Oct 21 14:37:37 UTC 2017
selfserv_9183 with PID 9277 started at Sat Oct 21 14:37:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2500: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 9277 at Sat Oct 21 14:37:38 UTC 2017
kill -USR1 9277
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9277 killed at Sat Oct 21 14:37:39 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:37:39 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:37:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9334 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9334 found at Sat Oct 21 14:37:39 UTC 2017
selfserv_9183 with PID 9334 started at Sat Oct 21 14:37:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2501: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 9334 at Sat Oct 21 14:38:07 UTC 2017
kill -USR1 9334
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9334 killed at Sat Oct 21 14:38:08 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:38:08 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:38:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9409 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9409 found at Sat Oct 21 14:38:08 UTC 2017
selfserv_9183 with PID 9409 started at Sat Oct 21 14:38:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2502: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 9409 at Sat Oct 21 14:38:10 UTC 2017
kill -USR1 9409
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9409 killed at Sat Oct 21 14:38:10 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 14:38:10 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:38:10 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9472 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9472 found at Sat Oct 21 14:38:11 UTC 2017
selfserv_9183 with PID 9472 started at Sat Oct 21 14:38:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2503: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 9472 at Sat Oct 21 14:38:12 UTC 2017
kill -USR1 9472
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9472 killed at Sat Oct 21 14:38:12 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:38:12 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:38:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9529 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9529 found at Sat Oct 21 14:38:13 UTC 2017
selfserv_9183 with PID 9529 started at Sat Oct 21 14:38:13 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2504: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 9529 at Sat Oct 21 14:38:37 UTC 2017
kill -USR1 9529
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9529 killed at Sat Oct 21 14:38:37 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:38:37 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:38:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9587 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9587 found at Sat Oct 21 14:38:38 UTC 2017
selfserv_9183 with PID 9587 started at Sat Oct 21 14:38:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2505: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 9587 at Sat Oct 21 14:38:39 UTC 2017
kill -USR1 9587
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9587 killed at Sat Oct 21 14:38:39 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:38:40 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:38:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9663 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9663 found at Sat Oct 21 14:38:40 UTC 2017
selfserv_9183 with PID 9663 started at Sat Oct 21 14:38:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2506: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 9663 at Sat Oct 21 14:39:08 UTC 2017
kill -USR1 9663
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9663 killed at Sat Oct 21 14:39:08 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:39:08 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:39:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9736 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9736 found at Sat Oct 21 14:39:09 UTC 2017
selfserv_9183 with PID 9736 started at Sat Oct 21 14:39:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2507: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 9736 at Sat Oct 21 14:39:10 UTC 2017
kill -USR1 9736
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9736 killed at Sat Oct 21 14:39:11 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:39:11 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:39:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9797 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9797 found at Sat Oct 21 14:39:11 UTC 2017
selfserv_9183 with PID 9797 started at Sat Oct 21 14:39:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2508: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 9797 at Sat Oct 21 14:39:35 UTC 2017
kill -USR1 9797
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9797 killed at Sat Oct 21 14:39:35 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:39:36 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:39:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9856 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9856 found at Sat Oct 21 14:39:36 UTC 2017
selfserv_9183 with PID 9856 started at Sat Oct 21 14:39:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2509: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 9856 at Sat Oct 21 14:39:37 UTC 2017
kill -USR1 9856
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9856 killed at Sat Oct 21 14:39:38 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:39:38 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:39:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9917 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9917 found at Sat Oct 21 14:39:38 UTC 2017
selfserv_9183 with PID 9917 started at Sat Oct 21 14:39:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2510: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 9917 at Sat Oct 21 14:40:06 UTC 2017
kill -USR1 9917
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9917 killed at Sat Oct 21 14:40:06 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:40:07 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:40:07 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9996 found at Sat Oct 21 14:40:07 UTC 2017
selfserv_9183 with PID 9996 started at Sat Oct 21 14:40:07 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2511: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 9996 at Sat Oct 21 14:40:09 UTC 2017
kill -USR1 9996
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9996 killed at Sat Oct 21 14:40:09 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:40:09 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:40:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10057 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10057 found at Sat Oct 21 14:40:10 UTC 2017
selfserv_9183 with PID 10057 started at Sat Oct 21 14:40:10 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2512: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 10057 at Sat Oct 21 14:40:37 UTC 2017
kill -USR1 10057
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10057 killed at Sat Oct 21 14:40:38 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:40:38 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:40:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10116 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10116 found at Sat Oct 21 14:40:38 UTC 2017
selfserv_9183 with PID 10116 started at Sat Oct 21 14:40:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2513: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 10116 at Sat Oct 21 14:40:40 UTC 2017
kill -USR1 10116
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10116 killed at Sat Oct 21 14:40:40 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 14:40:41 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:40:41 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10177 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10177 found at Sat Oct 21 14:40:41 UTC 2017
selfserv_9183 with PID 10177 started at Sat Oct 21 14:40:41 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2514: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 10177 at Sat Oct 21 14:41:05 UTC 2017
kill -USR1 10177
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10177 killed at Sat Oct 21 14:41:05 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:41:05 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:41:05 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10250 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10250 found at Sat Oct 21 14:41:06 UTC 2017
selfserv_9183 with PID 10250 started at Sat Oct 21 14:41:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2515: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 10250 at Sat Oct 21 14:41:07 UTC 2017
kill -USR1 10250
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10250 killed at Sat Oct 21 14:41:08 UTC 2017
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: skipping  SSL3 Server hello response without SNI for Extended Test
ssl.sh: skipping  SSL3 Server hello response with SNI: SSL don't have SH extensions for Extended Test
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name on 2d HS for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name to invalid 2d HS for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: SSL Cert Status (OCSP Stapling) Extended Test - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, revoked status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, unknown status for Extended Test
ssl.sh: skipping  OCSP stapling, unsigned failure response for Extended Test
ssl.sh: skipping  OCSP stapling, good status, bad signature for Extended Test
ssl.sh: skipping  OCSP stapling, invalid cert status data for Extended Test
ssl.sh: skipping  Valid cert, Server doesn't staple for Extended Test
ssl.sh: skipping  Stress OCSP stapling, server uses random status for Extended Test
ssl.sh: SSL Stress Test Extended Test - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  Form is subject to the terms of the Mozilla Public (non-FIPS only)
ssl.sh: skipping  If a copy of the MPL was not distributed with this (non-FIPS only)
ssl.sh: skipping  obtain one at http://mozilla.org/MPL/2.0/. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  the stress tests for SSL/TLS. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  client                         Test Case name (non-FIPS only)
ssl.sh: skipping  params (non-FIPS only)
ssl.sh: skipping  ------                         --------------- (non-FIPS only)
ssl.sh: skipping  Stress SSL3 RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI) for Extended Test
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:41:08 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:41:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10384 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10384 found at Sat Oct 21 14:41:09 UTC 2017
selfserv_9183 with PID 10384 started at Sat Oct 21 14:41:09 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:41:09 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:41:14 UTC 2017
ssl.sh: #2516: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 10384 at Sat Oct 21 14:41:14 UTC 2017
kill -USR1 10384
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10384 killed at Sat Oct 21 14:41:14 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:41:14 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:41:14 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10455 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10455 found at Sat Oct 21 14:41:15 UTC 2017
selfserv_9183 with PID 10455 started at Sat Oct 21 14:41:15 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -c 100 -C c -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:41:15 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:41:20 UTC 2017
ssl.sh: #2517: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 10455 at Sat Oct 21 14:41:20 UTC 2017
kill -USR1 10455
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10455 killed at Sat Oct 21 14:41:20 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:41:21 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:41:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10526 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10526 found at Sat Oct 21 14:41:21 UTC 2017
selfserv_9183 with PID 10526 started at Sat Oct 21 14:41:21 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:41:21 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sat Oct 21 14:41:22 UTC 2017
ssl.sh: #2518: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 10526 at Sat Oct 21 14:41:22 UTC 2017
kill -USR1 10526
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10526 killed at Sat Oct 21 14:41:23 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:41:23 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:41:23 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10597 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10597 found at Sat Oct 21 14:41:23 UTC 2017
selfserv_9183 with PID 10597 started at Sat Oct 21 14:41:23 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:41:23 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:41:24 UTC 2017
ssl.sh: #2519: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 10597 at Sat Oct 21 14:41:24 UTC 2017
kill -USR1 10597
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10597 killed at Sat Oct 21 14:41:25 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9183 starting at Sat Oct 21 14:41:25 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:41:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10668 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10668 found at Sat Oct 21 14:41:26 UTC 2017
selfserv_9183 with PID 10668 started at Sat Oct 21 14:41:26 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:41:26 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:41:27 UTC 2017
ssl.sh: #2520: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 10668 at Sat Oct 21 14:41:27 UTC 2017
kill -USR1 10668
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10668 killed at Sat Oct 21 14:41:27 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:41:27 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:41:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10739 found at Sat Oct 21 14:41:28 UTC 2017
selfserv_9183 with PID 10739 started at Sat Oct 21 14:41:28 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:41:28 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sat Oct 21 14:41:29 UTC 2017
ssl.sh: #2521: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 10739 at Sat Oct 21 14:41:29 UTC 2017
kill -USR1 10739
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10739 killed at Sat Oct 21 14:41:30 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9183 starting at Sat Oct 21 14:41:30 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:41:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10810 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10810 found at Sat Oct 21 14:41:30 UTC 2017
selfserv_9183 with PID 10810 started at Sat Oct 21 14:41:30 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:41:30 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sat Oct 21 14:41:31 UTC 2017
ssl.sh: #2522: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 10810 at Sat Oct 21 14:41:31 UTC 2017
kill -USR1 10810
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10810 killed at Sat Oct 21 14:41:32 UTC 2017
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) for Extended Test
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) for Extended Test
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 GCM (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:41:32 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:41:32 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10917 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10917 found at Sat Oct 21 14:41:33 UTC 2017
selfserv_9183 with PID 10917 started at Sat Oct 21 14:41:33 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:41:33 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Sat Oct 21 14:41:35 UTC 2017
ssl.sh: #2523: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 10917 at Sat Oct 21 14:41:36 UTC 2017
kill -USR1 10917
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10917 killed at Sat Oct 21 14:41:36 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:41:36 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:41:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10987 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10987 found at Sat Oct 21 14:41:37 UTC 2017
selfserv_9183 with PID 10987 started at Sat Oct 21 14:41:37 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:41:37 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:41:38 UTC 2017
ssl.sh: #2524: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 10987 at Sat Oct 21 14:41:38 UTC 2017
kill -USR1 10987
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10987 killed at Sat Oct 21 14:41:39 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:41:39 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:41:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11059 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11059 found at Sat Oct 21 14:41:39 UTC 2017
selfserv_9183 with PID 11059 started at Sat Oct 21 14:41:39 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:41:39 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Sat Oct 21 14:41:42 UTC 2017
ssl.sh: #2525: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 11059 at Sat Oct 21 14:41:42 UTC 2017
kill -USR1 11059
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 11059 killed at Sat Oct 21 14:41:42 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:41:42 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:41:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11129 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11129 found at Sat Oct 21 14:41:43 UTC 2017
selfserv_9183 with PID 11129 started at Sat Oct 21 14:41:43 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n ExtendedSSLUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:41:43 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Sat Oct 21 14:41:44 UTC 2017
ssl.sh: #2526: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 11129 at Sat Oct 21 14:41:44 UTC 2017
kill -USR1 11129
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 11129 killed at Sat Oct 21 14:41:44 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9183 starting at Sat Oct 21 14:41:45 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:41:45 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11199 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11199 found at Sat Oct 21 14:41:45 UTC 2017
selfserv_9183 with PID 11199 started at Sat Oct 21 14:41:45 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:41:45 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:41:46 UTC 2017
ssl.sh: #2527: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 11199 at Sat Oct 21 14:41:46 UTC 2017
kill -USR1 11199
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 11199 killed at Sat Oct 21 14:41:47 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:41:47 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:41:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11273 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11273 found at Sat Oct 21 14:41:47 UTC 2017
selfserv_9183 with PID 11273 started at Sat Oct 21 14:41:48 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:41:48 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Sat Oct 21 14:41:49 UTC 2017
ssl.sh: #2528: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 11273 at Sat Oct 21 14:41:49 UTC 2017
kill -USR1 11273
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 11273 killed at Sat Oct 21 14:41:49 UTC 2017
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:0038_-u Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:006A    Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (non-FIPS only)
ssl.sh: skipping  reuse test, once the session cache with DHE_DSS is working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:41:50 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:41:50 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11382 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11382 found at Sat Oct 21 14:41:50 UTC 2017
selfserv_9183 with PID 11382 started at Sat Oct 21 14:41:50 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:41:50 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Sat Oct 21 14:42:06 UTC 2017
ssl.sh: #2529: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 11382 at Sat Oct 21 14:42:06 UTC 2017
kill -USR1 11382
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 11382 killed at Sat Oct 21 14:42:07 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9183 starting at Sat Oct 21 14:42:07 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:42:07 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11465 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11465 found at Sat Oct 21 14:42:07 UTC 2017
selfserv_9183 with PID 11465 started at Sat Oct 21 14:42:07 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n ExtendedSSLUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:42:07 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Sat Oct 21 14:42:11 UTC 2017
ssl.sh: #2530: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 11465 at Sat Oct 21 14:42:11 UTC 2017
kill -USR1 11465
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 11465 killed at Sat Oct 21 14:42:11 UTC 2017
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:42:12 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:42:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11548 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11548 found at Sat Oct 21 14:42:12 UTC 2017
selfserv_9183 with PID 11548 started at Sat Oct 21 14:42:12 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:42:12 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Sat Oct 21 14:44:43 UTC 2017
ssl.sh: #2531: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 11548 at Sat Oct 21 14:44:43 UTC 2017
kill -USR1 11548
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 11548 killed at Sat Oct 21 14:44:43 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9183 starting at Sat Oct 21 14:44:43 UTC 2017
selfserv_9183 -D -p 9183 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 14:44:43 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11657 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11657 found at Sat Oct 21 14:44:44 UTC 2017
selfserv_9183 with PID 11657 started at Sat Oct 21 14:44:44 UTC 2017
strsclnt -q -p 9183 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Sat Oct 21 14:44:44 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Sat Oct 21 14:47:15 UTC 2017
ssl.sh: #2532: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9183 with PID 11657 at Sat Oct 21 14:47:16 UTC 2017
kill -USR1 11657
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 11657 killed at Sat Oct 21 14:47:16 UTC 2017
ssl.sh: SSL - FIPS mode off for client ===============================
ssl.sh: Turning FIPS off for the  client
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -fips false -force
FIPS mode disabled.
ssl.sh: #2533:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/client -list
ssl.sh: #2534:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2535:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
ssl.sh: Turning FIPS off for the extended  client
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -fips false -force
FIPS mode disabled.
ssl.sh: #2536:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/ext_client -list
ssl.sh: #2537:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2538:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
TIMESTAMP ssl END: Sat Oct 21 14:47:19 UTC 2017
Running tests for ocsp
TIMESTAMP ocsp BEGIN: Sat Oct 21 14:47:19 UTC 2017
ocsp.sh: OCSP tests ===============================
TIMESTAMP ocsp END: Sat Oct 21 14:47:19 UTC 2017
Running tests for merge
TIMESTAMP merge BEGIN: Sat Oct 21 14:47:19 UTC 2017
merge.sh: Merge Tests ===============================
merge.sh: Creating an SDR key & Encrypt
sdrtest -d . -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.v3.3868 -t Test2 -f ../tests.pw
merge.sh: #2539: Creating SDR Key  - PASSED
merge.sh: Merging in Key for Existing user
certutil --merge --source-dir ../dave -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2540: Merging Dave  - PASSED
merge.sh: Merging in new user 
certutil --merge --source-dir ../server -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2541: Merging server  - PASSED
merge.sh: Merging in new chain 
certutil --merge --source-dir ../ext_client -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2542: Merging ext_client  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict1 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2543: Merging conflicting nicknames 1  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict2 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2544: Merging conflicting nicknames 2  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #4)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 45 (0x2d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:28:37 2017
            Not After : Fri Oct 21 13:28:37 2022
        Subject: "CN=TestUser45,E=TestUser45@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ee:a0:2f:81:79:76:05:ec:f4:d9:3a:be:ff:05:2e:f7:
                    e6:f5:de:87:8b:dc:33:bb:c0:a3:bf:2d:6d:b8:40:fb:
                    a9:63:c4:ef:c5:d2:b6:03:0a:c0:e0:cb:45:54:d1:b6:
                    e7:e8:bb:a1:62:ed:29:ad:b9:92:36:a9:da:34:a1:7b:
                    f5:ca:b6:b7:a9:85:ff:fc:83:f8:8d:68:8e:50:8e:d7:
                    b6:9a:be:26:8a:fe:f4:7c:3e:23:9b:a6:7e:dd:4a:93:
                    54:10:d5:31:7e:7d:d4:54:b2:9f:c3:ca:fb:6e:7b:dd:
                    3e:7b:78:f4:27:cd:ca:2f:ae:d2:ef:19:1f:6f:63:9f:
                    db:79:ca:43:ed:27:7b:d7:61:83:a2:8a:0c:b9:e7:89:
                    27:ad:76:d0:2e:5a:77:c0:0f:db:1f:63:f5:7b:e4:7a:
                    93:6d:73:79:87:93:f1:c1:b2:04:35:43:53:41:9e:c1:
                    47:89:8f:60:ae:c8:24:37:e5:43:67:4c:be:f1:45:6a:
                    f1:81:78:38:54:d0:ea:20:84:cb:39:50:24:5e:c2:57:
                    de:01:9a:d4:81:3c:ba:bc:ce:b9:f5:89:d3:7f:2c:96:
                    b3:22:d8:84:11:57:13:66:d7:54:59:2f:46:1b:80:b9:
                    63:1c:98:2b:ec:88:2d:cd:30:05:e4:e8:f2:7b:9a:83
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e5:f6:7b:f9:54:ce:c4:70:e5:34:15:6a:de:19:71:db:
        07:ef:a1:2d:47:2c:e8:ff:ef:58:97:65:9c:ba:a9:57:
        0c:be:22:fe:9f:6b:df:60:2e:f3:b3:c1:28:02:d4:58:
        3a:be:bd:b6:b6:75:91:ef:db:72:d3:f8:80:97:50:34:
        b7:73:25:03:db:be:33:86:21:45:e6:3f:1d:79:38:48:
        59:53:18:b8:27:a7:4d:9a:10:9c:93:64:25:bc:8d:3a:
        6a:37:f1:3f:e6:32:bc:79:b2:8c:26:90:d6:2c:34:4c:
        8f:bb:99:4d:ed:42:dd:0b:4b:bd:4d:35:41:4d:4c:e2:
        e7:58:d0:e2:c9:41:14:57:13:66:f0:b9:88:e8:56:4e:
        de:eb:72:a0:0b:a4:8b:53:8f:b2:91:74:9d:f2:d2:75:
        df:49:f0:25:e9:83:4e:3b:ad:02:bd:12:32:05:d3:a1:
        e6:32:84:05:19:44:72:88:f2:81:61:18:a9:11:a0:68:
        95:04:84:43:36:c3:d4:76:cf:66:22:77:ef:0b:60:c5:
        2d:9f:72:c8:cc:87:8a:67:c4:e6:54:6e:e4:2e:c1:dd:
        1a:7a:9d:71:89:18:a5:f5:1b:b4:93:b3:13:dc:ee:a3:
        5e:4e:da:03:78:c1:9a:2e:c9:17:0b:6a:0c:1b:38:2a
    Fingerprint (SHA-256):
        ED:A5:AD:55:B0:3D:61:6E:B1:00:D3:F1:D4:56:EA:B4:CE:6A:B1:E7:A2:85:29:BA:FE:54:7A:C6:CA:D9:3A:B0
    Fingerprint (SHA1):
        C5:64:01:AF:79:1B:86:7A:13:14:98:D6:93:06:3E:31:C0:FF:F0:4A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #2545: Verify nicknames were deconflicted (Alice #4)  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #100)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 46 (0x2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:28:48 2017
            Not After : Fri Oct 21 13:28:48 2022
        Subject: "CN=TestUser46,E=TestUser46@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:fc:51:5b:85:e7:b3:6d:53:ec:92:17:9d:e2:08:5d:
                    95:00:9d:ff:2f:cc:46:5b:fe:bb:46:cf:3f:d1:bf:66:
                    45:65:3e:2b:e2:88:63:84:f3:ff:f5:bc:5a:0e:19:05:
                    d5:96:77:d3:2c:1a:6e:e6:b2:88:e9:e5:5a:8a:0e:a5:
                    01:a0:ec:cb:69:dd:29:fb:1d:3b:b3:f0:f7:b8:e0:f5:
                    99:4e:d2:45:69:3d:72:e5:c1:7f:b8:16:6e:3c:f3:78:
                    8e:cb:a9:ce:a2:51:e6:8d:4a:26:ae:ca:b6:25:28:2d:
                    e6:cc:48:be:67:00:b9:b2:a5:59:b3:47:5e:61:c8:75:
                    62:7a:a9:44:1c:bd:1e:c2:21:82:4e:db:1b:a6:ac:da:
                    2d:9f:74:83:c5:41:d1:e0:ed:39:6e:c8:ce:ce:ea:3d:
                    2c:48:a6:f8:aa:87:a1:c9:1c:21:96:90:cd:7c:c3:9f:
                    f8:ef:66:86:64:08:81:7b:c0:36:d4:b4:23:46:de:b1:
                    ef:0a:7a:bb:12:2e:f0:a2:4c:e9:2e:15:43:eb:19:e9:
                    d9:58:c4:54:ad:c2:0a:56:1c:95:67:3a:73:67:3b:e9:
                    45:ab:65:97:d2:b5:76:1d:2d:f8:1b:29:a3:f0:67:a7:
                    b6:31:76:21:a9:3f:a0:14:c8:07:46:19:53:05:34:67
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c8:64:fa:1d:ab:81:f6:6b:13:93:36:ca:e8:42:ea:6e:
        f2:e5:48:51:00:d2:70:ae:26:0c:ed:2c:c8:e4:0f:28:
        9f:ed:f2:d3:04:57:91:aa:fe:ea:86:f4:84:89:fe:17:
        28:eb:69:3e:80:5c:45:e9:f4:62:5d:e4:5f:2f:8b:86:
        5e:0d:a9:46:8b:40:bb:6c:ae:20:6b:9b:94:24:d4:9a:
        72:6f:b7:f3:08:b5:f5:34:9c:ea:76:08:27:b8:07:c7:
        5d:6b:47:25:be:8a:cd:97:1b:99:68:62:96:e3:60:45:
        f5:62:01:ae:e9:7c:c1:2a:30:96:c7:f9:20:00:9e:e1:
        d0:07:de:53:ec:ff:5d:e7:50:ed:21:7d:c6:3a:9f:5f:
        31:aa:4f:5f:44:6c:9c:74:42:ff:a6:13:4a:4b:36:a9:
        19:c1:e5:94:b6:1a:05:2a:1f:69:0e:59:39:dd:63:04:
        41:1a:7e:14:b7:73:83:2b:86:fa:ed:61:49:92:ae:6f:
        97:6a:0f:71:9f:20:30:b0:64:74:dc:31:d8:25:18:c1:
        40:ac:4b:26:45:82:73:9e:23:d9:ce:c1:e6:c8:d1:00:
        b4:04:46:29:4e:5a:6c:22:69:1d:d7:53:48:cb:bc:5f:
        3a:04:5f:97:5e:23:cc:70:06:33:a7:29:21:b1:f7:88
    Fingerprint (SHA-256):
        5B:6B:E6:FB:CB:16:44:BC:CC:CC:B4:61:B0:47:70:55:DD:8B:BA:78:A4:6F:4A:D7:36:A5:C6:1D:9F:6B:04:EB
    Fingerprint (SHA1):
        7E:76:03:CD:4A:01:89:CB:25:48:D8:35:0C:4E:DD:16:0F:D4:0E:51
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #2546: Verify nicknames were deconflicted (Alice #100)  - PASSED
merge.sh: Merging in SDR 
certutil --merge --source-dir ../SDR -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2547: Merging SDR  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
TestCA-dsa                                                   CT,C,C
Alice-ec                                                     u,u,u
Dave                                                         u,u,u
localhost.localdomain-dsamixed                               ,,   
serverCA-dsa                                                 C,C,C
chain-2-clientCA-ec                                          ,,   
Alice #1                                                     ,,   
Dave-dsa                                                     ,,   
localhost.localdomain-ecmixed                                ,,   
localhost-sni.localdomain-dsamixed                           ,,   
Alice #99                                                    ,,   
Alice-dsamixed                                               u,u,u
eve@bogus.com                                                ,,   
bob-ec@bogus.com                                             ,,   
localhost.localdomain                                        u,u,u
localhost-sni.localdomain-ecmixed                            ,,   
clientCA                                                     T,C,C
Alice #3                                                     ,,   
TestCA                                                       CT,C,C
TestCA-ec                                                    CT,C,C
Alice-ecmixed                                                u,u,u
Dave-ecmixed                                                 ,,   
localhost.localdomain-dsa                                    ,,   
localhost-sni.localdomain                                    u,u,u
localhost-sni.localdomain-ec                                 ,,   
ExtendedSSLUser                                              u,u,u
serverCA                                                     C,C,C
ExtendedSSLUser-ec                                           ,,   
serverCA-ec                                                  C,C,C
chain-1-clientCA                                             ,,   
clientCA-dsa                                                 T,C,C
chain-1-clientCA-ec                                          ,,   
Alice #2                                                     ,,   
Alice #4                                                     ,,   
Alice                                                        u,u,u
Dave-ec                                                      ,,   
localhost-sni.localdomain-dsa                                ,,   
ExtendedSSLUser-dsa                                          ,,   
ExtendedSSLUser-ecmixed                                      ,,   
chain-1-clientCA-dsa                                         ,,   
chain-2-clientCA                                             ,,   
Alice #100                                                   ,,   
Alice-dsa                                                    u,u,u
ExtendedSSLUser-dsamixed                                     ,,   
chain-2-clientCA-dsa                                         ,,   
bob@bogus.com                                                ,,   
Dave-dsamixed                                                ,,   
localhost.localdomain-ec                                     ,,   
clientCA-ec                                                  T,C,C
CRL names                                CRL Type
TestCA                                   CRL  
TestCA-ec                                CRL  
merge.sh: Decrypt - With Original SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.v3.3868 -t Test2 -f ../tests.pw
merge.sh: #2548: Decrypt - Value 3  - PASSED
merge.sh: Decrypt - With Merged SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests.v1.3868 -t Test1 -f ../tests.pw
merge.sh: #2549: Decrypt - Value 1  - PASSED
merge.sh: Signing with merged key  ------------------
cmsutil -S -T -N Dave -H SHA1 -i alice.txt -d . -p nss -o dave.dsig
merge.sh: #2550: Create Detached Signature Dave . - PASSED
cmsutil -D -i dave.dsig -c alice.txt -d . 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
merge.sh: #2551: Verifying Dave's Detached Signature  - PASSED
merge.sh: verifying  merged cert  ------------------
certutil -V -n ExtendedSSLUser -u C -d .
certutil: certificate is valid
merge.sh: #2552: Verifying ExtendedSSL User Cert  - PASSED
merge.sh: verifying  merged crl  ------------------
crlutil -L -n TestCA -d .
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US"
    This Update: Sat Oct 21 13:30:25 2017
    Entry 1 (0x1):
        Serial Number: 40 (0x28)
        Revocation Date: Sat Oct 21 13:21:23 2017
        Entry Extensions:
            Name: CRL reason code
    Entry 2 (0x2):
        Serial Number: 42 (0x2a)
        Revocation Date: Sat Oct 21 13:30:18 2017
    CRL Extensions:
        Name: Certificate Issuer Alt Name
        RFC822 Name: "caemail@ca.com"
        DNS name: "ca.com"
        Directory Name: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=Califo
            rnia,C=US"
        URI: "http://ca.com"
        IP Address:
            87:0b:31:39:32:2e:31:36:38:2e:30:2e:31
merge.sh: #2553: Verifying TestCA CRL  - PASSED
TEST_MODE=STANDARD
NSS_DEFAULT_DB_TYPE=dbm
TIMESTAMP merge END: Sat Oct 21 14:47:34 UTC 2017
Running tests for pkits
TIMESTAMP pkits BEGIN: Sat Oct 21 14:47:34 UTC 2017
pkits.sh: PKITS data directory not defined, skipping.
TIMESTAMP pkits END: Sat Oct 21 14:47:34 UTC 2017
Running tests for chains
TIMESTAMP chains BEGIN: Sat Oct 21 14:47:34 UTC 2017
chains.sh: Certificate Chains Tests ===============================
chains.sh: Creating DB OCSPRootDB
certutil -N -d OCSPRootDB -f OCSPRootDB/dbpasswd
chains.sh: #2554: OCSPD: Creating DB OCSPRootDB  - PASSED
chains.sh: Creating Root CA OCSPRoot
certutil -s "CN=OCSPRoot ROOT CA, O=OCSPRoot, C=US" -S -n OCSPRoot  -t CTu,CTu,CTu -v 600 -x -d OCSPRootDB -1 -2 -5 -f OCSPRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144735 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2555: OCSPD: Creating Root CA OCSPRoot  - PASSED
chains.sh: Exporting Root CA OCSPRoot.der
certutil -L -d OCSPRootDB -r -n OCSPRoot -o OCSPRoot.der
chains.sh: #2556: OCSPD: Exporting Root CA OCSPRoot.der  - PASSED
chains.sh: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d OCSPRootDB -o OCSPRoot.p12 -n OCSPRoot -k OCSPRootDB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2557: OCSPD: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database  - PASSED
chains.sh: Creating DB OCSPCA1DB
certutil -N -d OCSPCA1DB -f OCSPCA1DB/dbpasswd
chains.sh: #2558: OCSPD: Creating DB OCSPCA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA1Req.der
certutil -s "CN=OCSPCA1 Intermediate, O=OCSPCA1, C=US"  -R -2 -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPCA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2559: OCSPD: Creating Intermediate certifiate request OCSPCA1Req.der  - PASSED
chains.sh: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA1Req.der -o OCSPCA1OCSPRoot.der -f OCSPRootDB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2560: OCSPD: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database
certutil -A -n OCSPCA1 -t u,u,u -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -i OCSPCA1OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2561: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database  - PASSED
chains.sh: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d OCSPCA1DB -o OCSPCA1.p12 -n OCSPCA1 -k OCSPCA1DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2562: OCSPD: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database  - PASSED
chains.sh: Creating DB OCSPCA2DB
certutil -N -d OCSPCA2DB -f OCSPCA2DB/dbpasswd
chains.sh: #2563: OCSPD: Creating DB OCSPCA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA2Req.der
certutil -s "CN=OCSPCA2 Intermediate, O=OCSPCA2, C=US"  -R -2 -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPCA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2564: OCSPD: Creating Intermediate certifiate request OCSPCA2Req.der  - PASSED
chains.sh: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA2Req.der -o OCSPCA2OCSPRoot.der -f OCSPRootDB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2565: OCSPD: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database
certutil -A -n OCSPCA2 -t u,u,u -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -i OCSPCA2OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2566: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database  - PASSED
chains.sh: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d OCSPCA2DB -o OCSPCA2.p12 -n OCSPCA2 -k OCSPCA2DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2567: OCSPD: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database  - PASSED
chains.sh: Creating DB OCSPCA3DB
certutil -N -d OCSPCA3DB -f OCSPCA3DB/dbpasswd
chains.sh: #2568: OCSPD: Creating DB OCSPCA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA3Req.der
certutil -s "CN=OCSPCA3 Intermediate, O=OCSPCA3, C=US"  -R -2 -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPCA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2569: OCSPD: Creating Intermediate certifiate request OCSPCA3Req.der  - PASSED
chains.sh: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA3Req.der -o OCSPCA3OCSPRoot.der -f OCSPRootDB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9194
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2570: OCSPD: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database
certutil -A -n OCSPCA3 -t u,u,u -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -i OCSPCA3OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2571: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database  - PASSED
chains.sh: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d OCSPCA3DB -o OCSPCA3.p12 -n OCSPCA3 -k OCSPCA3DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2572: OCSPD: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database  - PASSED
chains.sh: Creating DB OCSPEE11DB
certutil -N -d OCSPEE11DB -f OCSPEE11DB/dbpasswd
chains.sh: #2573: OCSPD: Creating DB OCSPEE11DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE11Req.der
certutil -s "CN=OCSPEE11 EE, O=OCSPEE11, C=US"  -R  -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2574: OCSPD: Creating EE certifiate request OCSPEE11Req.der  - PASSED
chains.sh: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE11Req.der -o OCSPEE11OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2575: OCSPD: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database
certutil -A -n OCSPEE11 -t u,u,u -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -i OCSPEE11OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2576: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database  - PASSED
chains.sh: Creating DB OCSPEE12DB
certutil -N -d OCSPEE12DB -f OCSPEE12DB/dbpasswd
chains.sh: #2577: OCSPD: Creating DB OCSPEE12DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE12Req.der
certutil -s "CN=OCSPEE12 EE, O=OCSPEE12, C=US"  -R  -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2578: OCSPD: Creating EE certifiate request OCSPEE12Req.der  - PASSED
chains.sh: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE12Req.der -o OCSPEE12OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2579: OCSPD: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database
certutil -A -n OCSPEE12 -t u,u,u -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -i OCSPEE12OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2580: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database  - PASSED
chains.sh: Creating DB OCSPEE13DB
certutil -N -d OCSPEE13DB -f OCSPEE13DB/dbpasswd
chains.sh: #2581: OCSPD: Creating DB OCSPEE13DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE13Req.der
certutil -s "CN=OCSPEE13 EE, O=OCSPEE13, C=US"  -R  -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2582: OCSPD: Creating EE certifiate request OCSPEE13Req.der  - PASSED
chains.sh: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE13Req.der -o OCSPEE13OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2583: OCSPD: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database
certutil -A -n OCSPEE13 -t u,u,u -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -i OCSPEE13OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2584: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database  - PASSED
chains.sh: Creating DB OCSPEE14DB
certutil -N -d OCSPEE14DB -f OCSPEE14DB/dbpasswd
chains.sh: #2585: OCSPD: Creating DB OCSPEE14DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE14Req.der
certutil -s "CN=OCSPEE14 EE, O=OCSPEE14, C=US"  -R  -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE14Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2586: OCSPD: Creating EE certifiate request OCSPEE14Req.der  - PASSED
chains.sh: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE14Req.der -o OCSPEE14OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 4   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2587: OCSPD: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database
certutil -A -n OCSPEE14 -t u,u,u -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -i OCSPEE14OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2588: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database  - PASSED
chains.sh: Creating DB OCSPEE15DB
certutil -N -d OCSPEE15DB -f OCSPEE15DB/dbpasswd
chains.sh: #2589: OCSPD: Creating DB OCSPEE15DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE15Req.der
certutil -s "CN=OCSPEE15 EE, O=OCSPEE15, C=US"  -R  -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE15Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2590: OCSPD: Creating EE certifiate request OCSPEE15Req.der  - PASSED
chains.sh: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE15Req.der -o OCSPEE15OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 5   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9194
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2591: OCSPD: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database
certutil -A -n OCSPEE15 -t u,u,u -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -i OCSPEE15OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2592: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database  - PASSED
chains.sh: Creating DB OCSPEE21DB
certutil -N -d OCSPEE21DB -f OCSPEE21DB/dbpasswd
chains.sh: #2593: OCSPD: Creating DB OCSPEE21DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE21Req.der
certutil -s "CN=OCSPEE21 EE, O=OCSPEE21, C=US"  -R  -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2594: OCSPD: Creating EE certifiate request OCSPEE21Req.der  - PASSED
chains.sh: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE21Req.der -o OCSPEE21OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2595: OCSPD: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database
certutil -A -n OCSPEE21 -t u,u,u -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -i OCSPEE21OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2596: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database  - PASSED
chains.sh: Creating DB OCSPEE22DB
certutil -N -d OCSPEE22DB -f OCSPEE22DB/dbpasswd
chains.sh: #2597: OCSPD: Creating DB OCSPEE22DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE22Req.der
certutil -s "CN=OCSPEE22 EE, O=OCSPEE22, C=US"  -R  -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE22Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2598: OCSPD: Creating EE certifiate request OCSPEE22Req.der  - PASSED
chains.sh: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE22Req.der -o OCSPEE22OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2599: OCSPD: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database
certutil -A -n OCSPEE22 -t u,u,u -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -i OCSPEE22OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2600: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database  - PASSED
chains.sh: Creating DB OCSPEE23DB
certutil -N -d OCSPEE23DB -f OCSPEE23DB/dbpasswd
chains.sh: #2601: OCSPD: Creating DB OCSPEE23DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE23Req.der
certutil -s "CN=OCSPEE23 EE, O=OCSPEE23, C=US"  -R  -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE23Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2602: OCSPD: Creating EE certifiate request OCSPEE23Req.der  - PASSED
chains.sh: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE23Req.der -o OCSPEE23OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9194
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2603: OCSPD: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database
certutil -A -n OCSPEE23 -t u,u,u -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -i OCSPEE23OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2604: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database  - PASSED
chains.sh: Creating DB OCSPEE31DB
certutil -N -d OCSPEE31DB -f OCSPEE31DB/dbpasswd
chains.sh: #2605: OCSPD: Creating DB OCSPEE31DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE31Req.der
certutil -s "CN=OCSPEE31 EE, O=OCSPEE31, C=US"  -R  -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE31Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2606: OCSPD: Creating EE certifiate request OCSPEE31Req.der  - PASSED
chains.sh: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE31Req.der -o OCSPEE31OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2607: OCSPD: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database
certutil -A -n OCSPEE31 -t u,u,u -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -i OCSPEE31OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2608: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database  - PASSED
chains.sh: Creating DB OCSPEE32DB
certutil -N -d OCSPEE32DB -f OCSPEE32DB/dbpasswd
chains.sh: #2609: OCSPD: Creating DB OCSPEE32DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE32Req.der
certutil -s "CN=OCSPEE32 EE, O=OCSPEE32, C=US"  -R  -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE32Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2610: OCSPD: Creating EE certifiate request OCSPEE32Req.der  - PASSED
chains.sh: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE32Req.der -o OCSPEE32OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2611: OCSPD: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database
certutil -A -n OCSPEE32 -t u,u,u -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -i OCSPEE32OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2612: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database  - PASSED
chains.sh: Creating DB OCSPEE33DB
certutil -N -d OCSPEE33DB -f OCSPEE33DB/dbpasswd
chains.sh: #2613: OCSPD: Creating DB OCSPEE33DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE33Req.der
certutil -s "CN=OCSPEE33 EE, O=OCSPEE33, C=US"  -R  -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OCSPEE33Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2614: OCSPD: Creating EE certifiate request OCSPEE33Req.der  - PASSED
chains.sh: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE33Req.der -o OCSPEE33OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9194
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2615: OCSPD: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database
certutil -A -n OCSPEE33 -t u,u,u -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -i OCSPEE33OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2616: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database  - PASSED
chains.sh: Create CRL for OCSPRootDB
crlutil -G -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20171021144901Z
nextupdate=20181021144901Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Sat Oct 21 14:49:01 2017
    Next Update: Sun Oct 21 14:49:01 2018
    CRL Extensions:
chains.sh: #2617: OCSPD: Create CRL for OCSPRootDB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPRoot
crlutil -M -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20171021144902Z
addcert 2 20171021144902Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Sat Oct 21 14:49:02 2017
    Next Update: Sun Oct 21 14:49:01 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sat Oct 21 14:49:02 2017
    CRL Extensions:
chains.sh: #2618: OCSPD: Revoking certificate with SN 2 issued by OCSPRoot  - PASSED
chains.sh: Create CRL for OCSPCA1DB
crlutil -G -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20171021144903Z
nextupdate=20181021144903Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Sat Oct 21 14:49:03 2017
    Next Update: Sun Oct 21 14:49:03 2018
    CRL Extensions:
chains.sh: #2619: OCSPD: Create CRL for OCSPCA1DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20171021144904Z
addcert 2 20171021144904Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Sat Oct 21 14:49:04 2017
    Next Update: Sun Oct 21 14:49:03 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sat Oct 21 14:49:04 2017
    CRL Extensions:
chains.sh: #2620: OCSPD: Revoking certificate with SN 2 issued by OCSPCA1  - PASSED
chains.sh: Revoking certificate with SN 4 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20171021144905Z
addcert 4 20171021144905Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Sat Oct 21 14:49:05 2017
    Next Update: Sun Oct 21 14:49:03 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sat Oct 21 14:49:04 2017
    Entry 2 (0x2):
        Serial Number: 4 (0x4)
        Revocation Date: Sat Oct 21 14:49:05 2017
    CRL Extensions:
chains.sh: #2621: OCSPD: Revoking certificate with SN 4 issued by OCSPCA1  - PASSED
chains.sh: Create CRL for OCSPCA2DB
crlutil -G -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20171021144906Z
nextupdate=20181021144906Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Sat Oct 21 14:49:06 2017
    Next Update: Sun Oct 21 14:49:06 2018
    CRL Extensions:
chains.sh: #2622: OCSPD: Create CRL for OCSPCA2DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20171021144907Z
addcert 2 20171021144907Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Sat Oct 21 14:49:07 2017
    Next Update: Sun Oct 21 14:49:06 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sat Oct 21 14:49:07 2017
    CRL Extensions:
chains.sh: #2623: OCSPD: Revoking certificate with SN 2 issued by OCSPCA2  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20171021144908Z
addcert 3 20171021144908Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Sat Oct 21 14:49:08 2017
    Next Update: Sun Oct 21 14:49:06 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sat Oct 21 14:49:07 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Sat Oct 21 14:49:08 2017
    CRL Extensions:
chains.sh: #2624: OCSPD: Revoking certificate with SN 3 issued by OCSPCA2  - PASSED
chains.sh: Create CRL for OCSPCA3DB
crlutil -G -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20171021144909Z
nextupdate=20181021144909Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Sat Oct 21 14:49:09 2017
    Next Update: Sun Oct 21 14:49:09 2018
    CRL Extensions:
chains.sh: #2625: OCSPD: Create CRL for OCSPCA3DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20171021144910Z
addcert 2 20171021144910Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Sat Oct 21 14:49:10 2017
    Next Update: Sun Oct 21 14:49:09 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sat Oct 21 14:49:10 2017
    CRL Extensions:
chains.sh: #2626: OCSPD: Revoking certificate with SN 2 issued by OCSPCA3  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20171021144911Z
addcert 3 20171021144911Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Sat Oct 21 14:49:11 2017
    Next Update: Sun Oct 21 14:49:09 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sat Oct 21 14:49:10 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Sat Oct 21 14:49:11 2017
    CRL Extensions:
chains.sh: #2627: OCSPD: Revoking certificate with SN 3 issued by OCSPCA3  - PASSED
chains.sh: Creating DB ServerDB
certutil -N -d ServerDB -f ServerDB/dbpasswd
chains.sh: #2628: OCSPD: Creating DB ServerDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ServerDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.der
chains.sh: #2629: OCSPD: Importing certificate OCSPRoot.der to ServerDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ServerDB database
crlutil -I -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.crl
chains.sh: #2630: OCSPD: Importing CRL OCSPRoot.crl to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPRoot.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPRoot.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2631: OCSPD: Importing p12 key OCSPRoot.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA1.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA1.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2632: OCSPD: Importing p12 key OCSPCA1.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA2.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA2.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2633: OCSPD: Importing p12 key OCSPCA2.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA3.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA3.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2634: OCSPD: Importing p12 key OCSPCA3.p12 to ServerDB database  - PASSED
chains.sh: Creating DB ClientDB
certutil -N -d ClientDB -f ClientDB/dbpasswd
chains.sh: #2635: OCSPD: Creating DB ClientDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ClientDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.der
chains.sh: #2636: OCSPD: Importing certificate OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ClientDB database
crlutil -I -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.crl
chains.sh: #2637: OCSPD: Importing CRL OCSPRoot.crl to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA1OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA1OCSPRoot.der
chains.sh: #2638: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA2OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA2OCSPRoot.der
chains.sh: #2639: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA3OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA3OCSPRoot.der
chains.sh: #2640: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE11OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE11OCSPCA1.der
chains.sh: #2641: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE12OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE12OCSPCA1.der
chains.sh: #2642: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE13OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE13OCSPCA1.der
chains.sh: #2643: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE14OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE14OCSPCA1.der
chains.sh: #2644: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE15OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE15OCSPCA1.der
chains.sh: #2645: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE21OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE21OCSPCA2.der
chains.sh: #2646: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE22OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE22OCSPCA2.der
chains.sh: #2647: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE23OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE23OCSPCA2.der
chains.sh: #2648: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE31OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE31OCSPCA3.der
chains.sh: #2649: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE32OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE32OCSPCA3.der
chains.sh: #2650: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE33OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE33OCSPCA3.der
chains.sh: #2651: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database  - PASSED
httpserv starting at Sat Oct 21 14:49:27 UTC 2017
httpserv -D -p 9193  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O get -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/aiahttp/http_pid.3868  &
trying to connect to httpserv at Sat Oct 21 14:49:27 UTC 2017
tstclnt -p 9193 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9193 (address=127.0.0.1)
tstclnt: exiting with return code 0
kill -0 13427 >/dev/null 2>/dev/null
httpserv with PID 13427 found at Sat Oct 21 14:49:27 UTC 2017
httpserv with PID 13427 started at Sat Oct 21 14:49:27 UTC 2017
tstclnt -h localhost.localdomain -p 9193 -q -t 20
chains.sh: #2652: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144735 (0x3cdd6e9f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Sat Oct 21 14:47:37 2017
            Not After : Fri Oct 21 14:47:37 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:1a:6d:7e:f0:1f:3d:1f:f9:3b:3f:02:b6:00:bd:f8:
                    3b:8c:0a:68:8e:8e:2b:08:72:f6:93:57:ee:04:be:f8:
                    15:fb:64:d8:25:08:8b:8e:8d:a8:04:4b:f2:3d:13:c5:
                    fe:1f:be:f4:fc:f9:4b:36:ad:9d:d5:36:fb:04:49:44:
                    5d:97:29:8e:62:25:e0:88:a7:ca:ba:36:24:e0:09:d7:
                    17:8c:9a:cc:f9:ce:ba:de:cd:f5:fd:15:7f:c1:fb:11:
                    b0:0c:b6:f9:14:79:59:15:86:e6:69:3c:39:eb:6e:cf:
                    b1:f2:d4:3f:19:98:1c:04:dd:6e:8b:68:59:f2:82:d4:
                    82:29:83:a5:21:58:d7:d9:e6:b5:6f:41:5f:92:2f:6b:
                    94:65:5d:67:32:dc:a5:ec:d8:8e:28:d9:8c:c6:ee:fa:
                    c2:6c:96:2a:af:cf:f8:ed:8a:f9:7a:50:9f:66:a2:1f:
                    0f:a5:b5:cb:76:87:ae:ff:68:f7:c4:ab:6f:a1:81:49:
                    23:4a:15:50:e0:eb:a9:13:5f:d9:07:73:f8:78:ae:99:
                    8f:1f:cd:bd:15:a5:1d:e2:38:02:1c:b6:d1:43:32:b0:
                    c1:d4:d0:94:2c:55:85:4d:01:84:04:f5:6b:fb:f6:95:
                    10:1f:ce:48:18:e0:31:d6:97:bb:53:d8:d0:b3:09:85
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b2:27:be:af:8c:20:1f:90:e9:f0:98:bc:b5:ef:9b:6c:
        60:09:f4:bf:df:31:c1:5b:38:ae:1e:04:f7:0a:86:a2:
        6a:e8:2e:51:94:95:d5:7a:83:76:83:82:b4:47:a7:56:
        50:ea:4d:0a:09:0c:dc:0c:a1:54:17:b2:f5:29:58:ca:
        0f:36:ee:ac:30:20:67:8e:e2:9c:f0:9c:f1:72:48:1f:
        97:75:77:30:a4:25:25:c3:38:7e:69:42:b0:88:42:0b:
        3f:44:d5:5b:3e:91:e9:f1:7f:c3:45:47:19:75:e7:14:
        46:19:92:26:98:89:19:5b:eb:21:fb:2c:52:4f:78:fc:
        17:9c:23:20:94:7f:ed:fb:a2:57:f4:36:d2:6d:07:21:
        ce:5e:aa:8f:ad:38:a9:06:14:5b:57:58:03:6d:1b:d0:
        cb:59:ef:dd:36:2e:9b:50:78:c4:fe:45:40:b8:e9:12:
        52:10:e1:6f:1a:a8:8d:5a:5e:03:2e:66:2b:c4:b7:66:
        06:cb:dd:40:0b:b7:f3:8a:91:df:80:56:5d:98:30:70:
        ad:7b:74:5b:36:c7:d8:2c:a5:4b:9f:bf:0f:c8:08:bd:
        5e:69:8b:9f:1d:f1:2c:6f:21:af:96:e0:35:9d:fb:28:
        79:6d:ec:b0:b6:25:34:bc:ef:78:90:1b:f2:e0:f1:2a
    Fingerprint (SHA-256):
        02:9E:D9:FF:C3:DB:48:AA:AA:7B:B2:40:46:F4:B3:5D:F6:61:63:31:EB:2D:C7:48:71:63:C9:10:57:57:C6:32
    Fingerprint (SHA1):
        EF:1C:FB:18:A2:9E:3E:A7:21:FF:22:F7:79:B0:91:D8:91:AA:A5:AB
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2653: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2654: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2655: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 13427 at Sat Oct 21 14:49:31 UTC 2017
kill -USR1 13427
httpserv: normal termination
httpserv -b -p 9193 2>/dev/null;
httpserv with PID 13427 killed at Sat Oct 21 14:49:32 UTC 2017
httpserv starting at Sat Oct 21 14:49:32 UTC 2017
httpserv -D -p 9193  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O post -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/aiahttp/http_pid.3868  &
trying to connect to httpserv at Sat Oct 21 14:49:32 UTC 2017
tstclnt -p 9193 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9193 (address=127.0.0.1)
tstclnt: exiting with return code 0
kill -0 13596 >/dev/null 2>/dev/null
httpserv with PID 13596 found at Sat Oct 21 14:49:32 UTC 2017
httpserv with PID 13596 started at Sat Oct 21 14:49:32 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2656: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. OCSPEE12OCSPCA1 :
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2657: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2658: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
tstclnt -h localhost.localdomain -p 9193 -q -t 20
chains.sh: #2659: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144735 (0x3cdd6e9f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Sat Oct 21 14:47:37 2017
            Not After : Fri Oct 21 14:47:37 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:1a:6d:7e:f0:1f:3d:1f:f9:3b:3f:02:b6:00:bd:f8:
                    3b:8c:0a:68:8e:8e:2b:08:72:f6:93:57:ee:04:be:f8:
                    15:fb:64:d8:25:08:8b:8e:8d:a8:04:4b:f2:3d:13:c5:
                    fe:1f:be:f4:fc:f9:4b:36:ad:9d:d5:36:fb:04:49:44:
                    5d:97:29:8e:62:25:e0:88:a7:ca:ba:36:24:e0:09:d7:
                    17:8c:9a:cc:f9:ce:ba:de:cd:f5:fd:15:7f:c1:fb:11:
                    b0:0c:b6:f9:14:79:59:15:86:e6:69:3c:39:eb:6e:cf:
                    b1:f2:d4:3f:19:98:1c:04:dd:6e:8b:68:59:f2:82:d4:
                    82:29:83:a5:21:58:d7:d9:e6:b5:6f:41:5f:92:2f:6b:
                    94:65:5d:67:32:dc:a5:ec:d8:8e:28:d9:8c:c6:ee:fa:
                    c2:6c:96:2a:af:cf:f8:ed:8a:f9:7a:50:9f:66:a2:1f:
                    0f:a5:b5:cb:76:87:ae:ff:68:f7:c4:ab:6f:a1:81:49:
                    23:4a:15:50:e0:eb:a9:13:5f:d9:07:73:f8:78:ae:99:
                    8f:1f:cd:bd:15:a5:1d:e2:38:02:1c:b6:d1:43:32:b0:
                    c1:d4:d0:94:2c:55:85:4d:01:84:04:f5:6b:fb:f6:95:
                    10:1f:ce:48:18:e0:31:d6:97:bb:53:d8:d0:b3:09:85
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b2:27:be:af:8c:20:1f:90:e9:f0:98:bc:b5:ef:9b:6c:
        60:09:f4:bf:df:31:c1:5b:38:ae:1e:04:f7:0a:86:a2:
        6a:e8:2e:51:94:95:d5:7a:83:76:83:82:b4:47:a7:56:
        50:ea:4d:0a:09:0c:dc:0c:a1:54:17:b2:f5:29:58:ca:
        0f:36:ee:ac:30:20:67:8e:e2:9c:f0:9c:f1:72:48:1f:
        97:75:77:30:a4:25:25:c3:38:7e:69:42:b0:88:42:0b:
        3f:44:d5:5b:3e:91:e9:f1:7f:c3:45:47:19:75:e7:14:
        46:19:92:26:98:89:19:5b:eb:21:fb:2c:52:4f:78:fc:
        17:9c:23:20:94:7f:ed:fb:a2:57:f4:36:d2:6d:07:21:
        ce:5e:aa:8f:ad:38:a9:06:14:5b:57:58:03:6d:1b:d0:
        cb:59:ef:dd:36:2e:9b:50:78:c4:fe:45:40:b8:e9:12:
        52:10:e1:6f:1a:a8:8d:5a:5e:03:2e:66:2b:c4:b7:66:
        06:cb:dd:40:0b:b7:f3:8a:91:df:80:56:5d:98:30:70:
        ad:7b:74:5b:36:c7:d8:2c:a5:4b:9f:bf:0f:c8:08:bd:
        5e:69:8b:9f:1d:f1:2c:6f:21:af:96:e0:35:9d:fb:28:
        79:6d:ec:b0:b6:25:34:bc:ef:78:90:1b:f2:e0:f1:2a
    Fingerprint (SHA-256):
        02:9E:D9:FF:C3:DB:48:AA:AA:7B:B2:40:46:F4:B3:5D:F6:61:63:31:EB:2D:C7:48:71:63:C9:10:57:57:C6:32
    Fingerprint (SHA1):
        EF:1C:FB:18:A2:9E:3E:A7:21:FF:22:F7:79:B0:91:D8:91:AA:A5:AB
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2660: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2661: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2662: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 13596 at Sat Oct 21 14:49:39 UTC 2017
kill -USR1 13596
httpserv: normal termination
httpserv -b -p 9193 2>/dev/null;
httpserv with PID 13596 killed at Sat Oct 21 14:49:39 UTC 2017
httpserv starting at Sat Oct 21 14:49:39 UTC 2017
httpserv -D -p 9193  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O random -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/aiahttp/http_pid.3868  &
trying to connect to httpserv at Sat Oct 21 14:49:39 UTC 2017
tstclnt -p 9193 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9193 (address=127.0.0.1)
tstclnt: exiting with return code 0
kill -0 13843 >/dev/null 2>/dev/null
httpserv with PID 13843 found at Sat Oct 21 14:49:40 UTC 2017
httpserv with PID 13843 started at Sat Oct 21 14:49:40 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2663: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #2664: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144736 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2665: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #2666: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #2667: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144737 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2668: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #2669: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #2670: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2671: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 1021144738 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2672: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2673: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 1021144739 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2674: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2675: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #2676: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #2677: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2678: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 1021144740   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2679: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2680: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2681: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #2682: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #2683: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144737 (0x3cdd6ea1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 14:49:53 2017
            Not After : Fri Oct 21 14:49:53 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:47:d0:da:5c:c3:82:62:44:46:16:b9:1b:5f:18:e8:
                    1d:82:69:be:db:af:08:de:2c:38:73:45:01:43:cd:8f:
                    8e:a0:4c:6d:55:a9:de:e6:4a:6f:7d:9c:78:de:c5:f8:
                    3a:dd:57:14:37:97:45:34:a5:69:66:aa:17:8c:9d:58:
                    55:dd:10:94:c4:cb:47:96:07:8b:67:9c:12:5f:df:73:
                    1f:f3:80:90:67:90:7c:5d:aa:59:6c:3c:24:a7:18:68:
                    12:e5:46:8e:f6:89:0f:57:c4:84:9c:ff:5b:2d:2b:cb:
                    ba:e3:2c:7f:71:bb:c6:24:8c:05:5b:29:f3:14:56:29:
                    30:ef:00:71:a8:04:8b:25:99:bd:d9:58:3e:59:7c:a2:
                    29:cf:f8:df:a2:09:46:85:18:d6:e4:4f:1f:f5:94:38:
                    21:5f:63:6d:9b:07:c8:d8:a0:cd:9d:ad:c9:ed:d8:45:
                    0a:42:59:7f:65:c3:8c:58:09:fb:c8:5d:43:9f:d5:fb:
                    27:32:3c:e5:38:fb:d4:42:a4:7f:db:25:3f:e1:26:fa:
                    ce:27:26:01:57:fa:e1:33:8c:fd:53:4a:b1:53:e3:87:
                    2a:2a:0e:b8:5f:ea:98:e6:38:ed:23:52:b5:76:fe:94:
                    81:0c:26:0d:56:6c:25:a3:fe:96:8d:c2:5f:70:1a:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:72:e4:32:bb:20:46:65:53:f5:50:c4:d3:a1:95:d9:
        80:bc:53:f2:02:7a:62:38:6f:de:5b:e8:c5:c6:fa:71:
        c4:74:01:41:5c:5e:c3:c4:87:50:92:a4:a7:fc:26:ae:
        fc:f8:69:2a:1b:8b:6d:15:28:ff:9e:30:1c:52:4b:0d:
        16:62:60:f4:c4:ef:90:e4:e2:b1:8f:ed:b9:59:cc:b5:
        8d:e3:a5:54:1c:fb:24:bd:f5:88:9c:f8:46:19:fd:74:
        ca:e7:17:08:7d:dc:db:15:45:2b:7f:e1:27:29:99:12:
        8d:00:0e:5e:b9:2b:3b:cd:2c:78:32:c6:76:6c:cf:e7:
        9e:8d:41:a5:e2:51:96:0b:e3:4c:3e:31:9c:ca:25:95:
        09:9b:d0:c3:1d:a0:a5:8d:5e:38:89:9b:d9:a7:61:59:
        27:89:8a:8f:6b:86:45:cb:ef:1e:b4:03:51:47:ef:63:
        87:f5:cb:c5:f9:43:39:3c:79:97:63:a5:b0:4c:76:78:
        e8:2a:af:93:c8:47:84:96:19:84:84:f3:d0:38:84:61:
        7f:2d:68:67:34:0a:6e:f7:f2:ad:02:e7:f5:99:f7:b3:
        21:b3:32:81:47:9f:8b:29:9b:8e:e8:b4:cf:57:83:0f:
        ee:28:76:53:94:b6:03:9e:d5:54:de:36:e8:63:a7:87
    Fingerprint (SHA-256):
        80:30:32:55:0D:1A:E5:9B:52:B7:FB:87:77:37:67:72:DB:3A:F7:E0:F5:1E:EB:D6:1C:E3:F6:67:D6:D8:FC:80
    Fingerprint (SHA1):
        2D:FA:B5:F4:8C:F5:1D:05:33:0B:EB:A5:F5:9D:BA:21:A2:1B:82:FF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2684: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144736 (0x3cdd6ea0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 14:49:45 2017
            Not After : Fri Oct 21 14:49:45 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:70:21:fc:43:f9:d6:88:60:93:b5:70:e9:f1:46:df:
                    00:28:1e:a7:15:5e:16:c4:3a:be:4f:ee:13:f7:8c:53:
                    35:19:cb:1c:4e:46:a1:aa:7d:90:2a:40:3b:9f:1f:e3:
                    3e:13:ab:ce:3e:5d:cb:d1:c2:85:18:2f:2f:3c:ae:ac:
                    c3:3a:01:62:5a:82:be:12:f1:bd:5d:ec:41:79:af:6f:
                    62:e5:6b:7a:a5:b8:5a:42:e0:4a:0c:ed:bf:3d:4b:61:
                    a1:5b:35:8c:d7:74:b7:bd:be:88:49:8b:0a:fa:9d:e2:
                    f9:cc:8a:6f:e7:bf:81:b5:3e:15:89:55:c3:30:fc:10:
                    c8:0c:ee:22:a8:0b:bf:9c:f5:e0:f9:b2:8f:3c:22:0f:
                    48:96:06:f9:9f:b2:74:d9:02:da:3c:b0:5f:99:fb:cd:
                    5a:af:a6:ff:b4:87:5b:fd:0c:b7:cc:44:24:b1:24:d9:
                    12:3b:f3:32:99:a0:1d:ec:06:66:00:c8:3c:a0:e5:e3:
                    b7:5b:73:80:36:24:15:2b:78:b8:34:2f:8a:20:c8:73:
                    f7:1a:56:6a:ce:7b:09:d3:65:b6:39:46:da:ff:bd:91:
                    5b:01:a2:30:d4:90:b4:b8:60:5f:19:c1:39:20:84:ef:
                    a6:9a:db:35:ae:5c:6a:26:36:02:3f:2f:25:9c:cd:2b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:f2:da:03:1a:cb:71:ea:3d:9e:ec:81:9c:30:4e:09:
        b3:15:2f:62:05:c1:1c:e2:54:ee:da:80:78:8d:cf:b5:
        7e:2e:37:fd:fc:5d:e7:a2:93:15:b0:33:51:16:0a:f5:
        eb:f5:b9:df:2a:5d:ed:68:25:e6:d1:23:4c:56:cb:92:
        1b:6d:0f:13:7c:d6:30:bb:7c:01:99:de:b1:38:a2:f5:
        44:7e:64:54:62:7a:84:af:07:9d:82:ea:5c:cc:5f:70:
        ce:ad:49:f8:0d:30:ab:63:fa:1a:e0:89:70:7a:8e:a9:
        e0:2d:a3:64:53:0e:39:24:02:04:d1:f8:61:db:0d:57:
        bc:a3:83:14:1b:00:7f:c0:d9:c8:22:11:1e:5a:48:93:
        93:94:ac:29:04:9f:7b:db:39:91:d5:2e:9f:2c:cb:29:
        77:5b:69:31:8f:80:39:a5:2b:5d:6e:08:23:3a:28:f4:
        05:e2:b5:a4:c5:8a:03:76:b0:f7:c5:cb:9f:49:e9:21:
        33:51:f4:63:9a:b6:2a:2e:fc:9b:a1:57:87:0d:b9:d2:
        25:35:4a:ea:f2:52:de:19:9a:f6:c6:b2:26:47:e8:a9:
        6d:68:c5:62:a2:92:c4:e2:47:54:57:a9:91:9f:07:a9:
        30:3e:83:a2:2e:d0:68:e9:bb:f5:a2:0c:07:96:f0:b9
    Fingerprint (SHA-256):
        9A:05:BD:2A:B8:14:A9:2D:A9:92:34:36:BF:E6:17:7C:DA:A4:6C:7C:B8:29:32:F3:1B:04:B7:E6:51:57:3D:2B
    Fingerprint (SHA1):
        C5:0D:A0:D4:E1:D3:F9:ED:D8:93:1A:45:14:09:53:5A:AE:6F:38:AC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2685: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #2686: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #2687: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #2688: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144736 (0x3cdd6ea0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 14:49:45 2017
            Not After : Fri Oct 21 14:49:45 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:70:21:fc:43:f9:d6:88:60:93:b5:70:e9:f1:46:df:
                    00:28:1e:a7:15:5e:16:c4:3a:be:4f:ee:13:f7:8c:53:
                    35:19:cb:1c:4e:46:a1:aa:7d:90:2a:40:3b:9f:1f:e3:
                    3e:13:ab:ce:3e:5d:cb:d1:c2:85:18:2f:2f:3c:ae:ac:
                    c3:3a:01:62:5a:82:be:12:f1:bd:5d:ec:41:79:af:6f:
                    62:e5:6b:7a:a5:b8:5a:42:e0:4a:0c:ed:bf:3d:4b:61:
                    a1:5b:35:8c:d7:74:b7:bd:be:88:49:8b:0a:fa:9d:e2:
                    f9:cc:8a:6f:e7:bf:81:b5:3e:15:89:55:c3:30:fc:10:
                    c8:0c:ee:22:a8:0b:bf:9c:f5:e0:f9:b2:8f:3c:22:0f:
                    48:96:06:f9:9f:b2:74:d9:02:da:3c:b0:5f:99:fb:cd:
                    5a:af:a6:ff:b4:87:5b:fd:0c:b7:cc:44:24:b1:24:d9:
                    12:3b:f3:32:99:a0:1d:ec:06:66:00:c8:3c:a0:e5:e3:
                    b7:5b:73:80:36:24:15:2b:78:b8:34:2f:8a:20:c8:73:
                    f7:1a:56:6a:ce:7b:09:d3:65:b6:39:46:da:ff:bd:91:
                    5b:01:a2:30:d4:90:b4:b8:60:5f:19:c1:39:20:84:ef:
                    a6:9a:db:35:ae:5c:6a:26:36:02:3f:2f:25:9c:cd:2b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:f2:da:03:1a:cb:71:ea:3d:9e:ec:81:9c:30:4e:09:
        b3:15:2f:62:05:c1:1c:e2:54:ee:da:80:78:8d:cf:b5:
        7e:2e:37:fd:fc:5d:e7:a2:93:15:b0:33:51:16:0a:f5:
        eb:f5:b9:df:2a:5d:ed:68:25:e6:d1:23:4c:56:cb:92:
        1b:6d:0f:13:7c:d6:30:bb:7c:01:99:de:b1:38:a2:f5:
        44:7e:64:54:62:7a:84:af:07:9d:82:ea:5c:cc:5f:70:
        ce:ad:49:f8:0d:30:ab:63:fa:1a:e0:89:70:7a:8e:a9:
        e0:2d:a3:64:53:0e:39:24:02:04:d1:f8:61:db:0d:57:
        bc:a3:83:14:1b:00:7f:c0:d9:c8:22:11:1e:5a:48:93:
        93:94:ac:29:04:9f:7b:db:39:91:d5:2e:9f:2c:cb:29:
        77:5b:69:31:8f:80:39:a5:2b:5d:6e:08:23:3a:28:f4:
        05:e2:b5:a4:c5:8a:03:76:b0:f7:c5:cb:9f:49:e9:21:
        33:51:f4:63:9a:b6:2a:2e:fc:9b:a1:57:87:0d:b9:d2:
        25:35:4a:ea:f2:52:de:19:9a:f6:c6:b2:26:47:e8:a9:
        6d:68:c5:62:a2:92:c4:e2:47:54:57:a9:91:9f:07:a9:
        30:3e:83:a2:2e:d0:68:e9:bb:f5:a2:0c:07:96:f0:b9
    Fingerprint (SHA-256):
        9A:05:BD:2A:B8:14:A9:2D:A9:92:34:36:BF:E6:17:7C:DA:A4:6C:7C:B8:29:32:F3:1B:04:B7:E6:51:57:3D:2B
    Fingerprint (SHA1):
        C5:0D:A0:D4:E1:D3:F9:ED:D8:93:1A:45:14:09:53:5A:AE:6F:38:AC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2689: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144737 (0x3cdd6ea1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 14:49:53 2017
            Not After : Fri Oct 21 14:49:53 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:47:d0:da:5c:c3:82:62:44:46:16:b9:1b:5f:18:e8:
                    1d:82:69:be:db:af:08:de:2c:38:73:45:01:43:cd:8f:
                    8e:a0:4c:6d:55:a9:de:e6:4a:6f:7d:9c:78:de:c5:f8:
                    3a:dd:57:14:37:97:45:34:a5:69:66:aa:17:8c:9d:58:
                    55:dd:10:94:c4:cb:47:96:07:8b:67:9c:12:5f:df:73:
                    1f:f3:80:90:67:90:7c:5d:aa:59:6c:3c:24:a7:18:68:
                    12:e5:46:8e:f6:89:0f:57:c4:84:9c:ff:5b:2d:2b:cb:
                    ba:e3:2c:7f:71:bb:c6:24:8c:05:5b:29:f3:14:56:29:
                    30:ef:00:71:a8:04:8b:25:99:bd:d9:58:3e:59:7c:a2:
                    29:cf:f8:df:a2:09:46:85:18:d6:e4:4f:1f:f5:94:38:
                    21:5f:63:6d:9b:07:c8:d8:a0:cd:9d:ad:c9:ed:d8:45:
                    0a:42:59:7f:65:c3:8c:58:09:fb:c8:5d:43:9f:d5:fb:
                    27:32:3c:e5:38:fb:d4:42:a4:7f:db:25:3f:e1:26:fa:
                    ce:27:26:01:57:fa:e1:33:8c:fd:53:4a:b1:53:e3:87:
                    2a:2a:0e:b8:5f:ea:98:e6:38:ed:23:52:b5:76:fe:94:
                    81:0c:26:0d:56:6c:25:a3:fe:96:8d:c2:5f:70:1a:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:72:e4:32:bb:20:46:65:53:f5:50:c4:d3:a1:95:d9:
        80:bc:53:f2:02:7a:62:38:6f:de:5b:e8:c5:c6:fa:71:
        c4:74:01:41:5c:5e:c3:c4:87:50:92:a4:a7:fc:26:ae:
        fc:f8:69:2a:1b:8b:6d:15:28:ff:9e:30:1c:52:4b:0d:
        16:62:60:f4:c4:ef:90:e4:e2:b1:8f:ed:b9:59:cc:b5:
        8d:e3:a5:54:1c:fb:24:bd:f5:88:9c:f8:46:19:fd:74:
        ca:e7:17:08:7d:dc:db:15:45:2b:7f:e1:27:29:99:12:
        8d:00:0e:5e:b9:2b:3b:cd:2c:78:32:c6:76:6c:cf:e7:
        9e:8d:41:a5:e2:51:96:0b:e3:4c:3e:31:9c:ca:25:95:
        09:9b:d0:c3:1d:a0:a5:8d:5e:38:89:9b:d9:a7:61:59:
        27:89:8a:8f:6b:86:45:cb:ef:1e:b4:03:51:47:ef:63:
        87:f5:cb:c5:f9:43:39:3c:79:97:63:a5:b0:4c:76:78:
        e8:2a:af:93:c8:47:84:96:19:84:84:f3:d0:38:84:61:
        7f:2d:68:67:34:0a:6e:f7:f2:ad:02:e7:f5:99:f7:b3:
        21:b3:32:81:47:9f:8b:29:9b:8e:e8:b4:cf:57:83:0f:
        ee:28:76:53:94:b6:03:9e:d5:54:de:36:e8:63:a7:87
    Fingerprint (SHA-256):
        80:30:32:55:0D:1A:E5:9B:52:B7:FB:87:77:37:67:72:DB:3A:F7:E0:F5:1E:EB:D6:1C:E3:F6:67:D6:D8:FC:80
    Fingerprint (SHA1):
        2D:FA:B5:F4:8C:F5:1D:05:33:0B:EB:A5:F5:9D:BA:21:A2:1B:82:FF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2690: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #2691: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #2692: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #2693: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #2694: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #2695: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144737 (0x3cdd6ea1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 14:49:53 2017
            Not After : Fri Oct 21 14:49:53 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:47:d0:da:5c:c3:82:62:44:46:16:b9:1b:5f:18:e8:
                    1d:82:69:be:db:af:08:de:2c:38:73:45:01:43:cd:8f:
                    8e:a0:4c:6d:55:a9:de:e6:4a:6f:7d:9c:78:de:c5:f8:
                    3a:dd:57:14:37:97:45:34:a5:69:66:aa:17:8c:9d:58:
                    55:dd:10:94:c4:cb:47:96:07:8b:67:9c:12:5f:df:73:
                    1f:f3:80:90:67:90:7c:5d:aa:59:6c:3c:24:a7:18:68:
                    12:e5:46:8e:f6:89:0f:57:c4:84:9c:ff:5b:2d:2b:cb:
                    ba:e3:2c:7f:71:bb:c6:24:8c:05:5b:29:f3:14:56:29:
                    30:ef:00:71:a8:04:8b:25:99:bd:d9:58:3e:59:7c:a2:
                    29:cf:f8:df:a2:09:46:85:18:d6:e4:4f:1f:f5:94:38:
                    21:5f:63:6d:9b:07:c8:d8:a0:cd:9d:ad:c9:ed:d8:45:
                    0a:42:59:7f:65:c3:8c:58:09:fb:c8:5d:43:9f:d5:fb:
                    27:32:3c:e5:38:fb:d4:42:a4:7f:db:25:3f:e1:26:fa:
                    ce:27:26:01:57:fa:e1:33:8c:fd:53:4a:b1:53:e3:87:
                    2a:2a:0e:b8:5f:ea:98:e6:38:ed:23:52:b5:76:fe:94:
                    81:0c:26:0d:56:6c:25:a3:fe:96:8d:c2:5f:70:1a:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:72:e4:32:bb:20:46:65:53:f5:50:c4:d3:a1:95:d9:
        80:bc:53:f2:02:7a:62:38:6f:de:5b:e8:c5:c6:fa:71:
        c4:74:01:41:5c:5e:c3:c4:87:50:92:a4:a7:fc:26:ae:
        fc:f8:69:2a:1b:8b:6d:15:28:ff:9e:30:1c:52:4b:0d:
        16:62:60:f4:c4:ef:90:e4:e2:b1:8f:ed:b9:59:cc:b5:
        8d:e3:a5:54:1c:fb:24:bd:f5:88:9c:f8:46:19:fd:74:
        ca:e7:17:08:7d:dc:db:15:45:2b:7f:e1:27:29:99:12:
        8d:00:0e:5e:b9:2b:3b:cd:2c:78:32:c6:76:6c:cf:e7:
        9e:8d:41:a5:e2:51:96:0b:e3:4c:3e:31:9c:ca:25:95:
        09:9b:d0:c3:1d:a0:a5:8d:5e:38:89:9b:d9:a7:61:59:
        27:89:8a:8f:6b:86:45:cb:ef:1e:b4:03:51:47:ef:63:
        87:f5:cb:c5:f9:43:39:3c:79:97:63:a5:b0:4c:76:78:
        e8:2a:af:93:c8:47:84:96:19:84:84:f3:d0:38:84:61:
        7f:2d:68:67:34:0a:6e:f7:f2:ad:02:e7:f5:99:f7:b3:
        21:b3:32:81:47:9f:8b:29:9b:8e:e8:b4:cf:57:83:0f:
        ee:28:76:53:94:b6:03:9e:d5:54:de:36:e8:63:a7:87
    Fingerprint (SHA-256):
        80:30:32:55:0D:1A:E5:9B:52:B7:FB:87:77:37:67:72:DB:3A:F7:E0:F5:1E:EB:D6:1C:E3:F6:67:D6:D8:FC:80
    Fingerprint (SHA1):
        2D:FA:B5:F4:8C:F5:1D:05:33:0B:EB:A5:F5:9D:BA:21:A2:1B:82:FF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2696: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144737 (0x3cdd6ea1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 14:49:53 2017
            Not After : Fri Oct 21 14:49:53 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:47:d0:da:5c:c3:82:62:44:46:16:b9:1b:5f:18:e8:
                    1d:82:69:be:db:af:08:de:2c:38:73:45:01:43:cd:8f:
                    8e:a0:4c:6d:55:a9:de:e6:4a:6f:7d:9c:78:de:c5:f8:
                    3a:dd:57:14:37:97:45:34:a5:69:66:aa:17:8c:9d:58:
                    55:dd:10:94:c4:cb:47:96:07:8b:67:9c:12:5f:df:73:
                    1f:f3:80:90:67:90:7c:5d:aa:59:6c:3c:24:a7:18:68:
                    12:e5:46:8e:f6:89:0f:57:c4:84:9c:ff:5b:2d:2b:cb:
                    ba:e3:2c:7f:71:bb:c6:24:8c:05:5b:29:f3:14:56:29:
                    30:ef:00:71:a8:04:8b:25:99:bd:d9:58:3e:59:7c:a2:
                    29:cf:f8:df:a2:09:46:85:18:d6:e4:4f:1f:f5:94:38:
                    21:5f:63:6d:9b:07:c8:d8:a0:cd:9d:ad:c9:ed:d8:45:
                    0a:42:59:7f:65:c3:8c:58:09:fb:c8:5d:43:9f:d5:fb:
                    27:32:3c:e5:38:fb:d4:42:a4:7f:db:25:3f:e1:26:fa:
                    ce:27:26:01:57:fa:e1:33:8c:fd:53:4a:b1:53:e3:87:
                    2a:2a:0e:b8:5f:ea:98:e6:38:ed:23:52:b5:76:fe:94:
                    81:0c:26:0d:56:6c:25:a3:fe:96:8d:c2:5f:70:1a:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:72:e4:32:bb:20:46:65:53:f5:50:c4:d3:a1:95:d9:
        80:bc:53:f2:02:7a:62:38:6f:de:5b:e8:c5:c6:fa:71:
        c4:74:01:41:5c:5e:c3:c4:87:50:92:a4:a7:fc:26:ae:
        fc:f8:69:2a:1b:8b:6d:15:28:ff:9e:30:1c:52:4b:0d:
        16:62:60:f4:c4:ef:90:e4:e2:b1:8f:ed:b9:59:cc:b5:
        8d:e3:a5:54:1c:fb:24:bd:f5:88:9c:f8:46:19:fd:74:
        ca:e7:17:08:7d:dc:db:15:45:2b:7f:e1:27:29:99:12:
        8d:00:0e:5e:b9:2b:3b:cd:2c:78:32:c6:76:6c:cf:e7:
        9e:8d:41:a5:e2:51:96:0b:e3:4c:3e:31:9c:ca:25:95:
        09:9b:d0:c3:1d:a0:a5:8d:5e:38:89:9b:d9:a7:61:59:
        27:89:8a:8f:6b:86:45:cb:ef:1e:b4:03:51:47:ef:63:
        87:f5:cb:c5:f9:43:39:3c:79:97:63:a5:b0:4c:76:78:
        e8:2a:af:93:c8:47:84:96:19:84:84:f3:d0:38:84:61:
        7f:2d:68:67:34:0a:6e:f7:f2:ad:02:e7:f5:99:f7:b3:
        21:b3:32:81:47:9f:8b:29:9b:8e:e8:b4:cf:57:83:0f:
        ee:28:76:53:94:b6:03:9e:d5:54:de:36:e8:63:a7:87
    Fingerprint (SHA-256):
        80:30:32:55:0D:1A:E5:9B:52:B7:FB:87:77:37:67:72:DB:3A:F7:E0:F5:1E:EB:D6:1C:E3:F6:67:D6:D8:FC:80
    Fingerprint (SHA1):
        2D:FA:B5:F4:8C:F5:1D:05:33:0B:EB:A5:F5:9D:BA:21:A2:1B:82:FF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2697: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #2698: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #2699: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #2700: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #2701: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #2702: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144736 (0x3cdd6ea0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 14:49:45 2017
            Not After : Fri Oct 21 14:49:45 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:70:21:fc:43:f9:d6:88:60:93:b5:70:e9:f1:46:df:
                    00:28:1e:a7:15:5e:16:c4:3a:be:4f:ee:13:f7:8c:53:
                    35:19:cb:1c:4e:46:a1:aa:7d:90:2a:40:3b:9f:1f:e3:
                    3e:13:ab:ce:3e:5d:cb:d1:c2:85:18:2f:2f:3c:ae:ac:
                    c3:3a:01:62:5a:82:be:12:f1:bd:5d:ec:41:79:af:6f:
                    62:e5:6b:7a:a5:b8:5a:42:e0:4a:0c:ed:bf:3d:4b:61:
                    a1:5b:35:8c:d7:74:b7:bd:be:88:49:8b:0a:fa:9d:e2:
                    f9:cc:8a:6f:e7:bf:81:b5:3e:15:89:55:c3:30:fc:10:
                    c8:0c:ee:22:a8:0b:bf:9c:f5:e0:f9:b2:8f:3c:22:0f:
                    48:96:06:f9:9f:b2:74:d9:02:da:3c:b0:5f:99:fb:cd:
                    5a:af:a6:ff:b4:87:5b:fd:0c:b7:cc:44:24:b1:24:d9:
                    12:3b:f3:32:99:a0:1d:ec:06:66:00:c8:3c:a0:e5:e3:
                    b7:5b:73:80:36:24:15:2b:78:b8:34:2f:8a:20:c8:73:
                    f7:1a:56:6a:ce:7b:09:d3:65:b6:39:46:da:ff:bd:91:
                    5b:01:a2:30:d4:90:b4:b8:60:5f:19:c1:39:20:84:ef:
                    a6:9a:db:35:ae:5c:6a:26:36:02:3f:2f:25:9c:cd:2b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:f2:da:03:1a:cb:71:ea:3d:9e:ec:81:9c:30:4e:09:
        b3:15:2f:62:05:c1:1c:e2:54:ee:da:80:78:8d:cf:b5:
        7e:2e:37:fd:fc:5d:e7:a2:93:15:b0:33:51:16:0a:f5:
        eb:f5:b9:df:2a:5d:ed:68:25:e6:d1:23:4c:56:cb:92:
        1b:6d:0f:13:7c:d6:30:bb:7c:01:99:de:b1:38:a2:f5:
        44:7e:64:54:62:7a:84:af:07:9d:82:ea:5c:cc:5f:70:
        ce:ad:49:f8:0d:30:ab:63:fa:1a:e0:89:70:7a:8e:a9:
        e0:2d:a3:64:53:0e:39:24:02:04:d1:f8:61:db:0d:57:
        bc:a3:83:14:1b:00:7f:c0:d9:c8:22:11:1e:5a:48:93:
        93:94:ac:29:04:9f:7b:db:39:91:d5:2e:9f:2c:cb:29:
        77:5b:69:31:8f:80:39:a5:2b:5d:6e:08:23:3a:28:f4:
        05:e2:b5:a4:c5:8a:03:76:b0:f7:c5:cb:9f:49:e9:21:
        33:51:f4:63:9a:b6:2a:2e:fc:9b:a1:57:87:0d:b9:d2:
        25:35:4a:ea:f2:52:de:19:9a:f6:c6:b2:26:47:e8:a9:
        6d:68:c5:62:a2:92:c4:e2:47:54:57:a9:91:9f:07:a9:
        30:3e:83:a2:2e:d0:68:e9:bb:f5:a2:0c:07:96:f0:b9
    Fingerprint (SHA-256):
        9A:05:BD:2A:B8:14:A9:2D:A9:92:34:36:BF:E6:17:7C:DA:A4:6C:7C:B8:29:32:F3:1B:04:B7:E6:51:57:3D:2B
    Fingerprint (SHA1):
        C5:0D:A0:D4:E1:D3:F9:ED:D8:93:1A:45:14:09:53:5A:AE:6F:38:AC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2703: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144736 (0x3cdd6ea0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 14:49:45 2017
            Not After : Fri Oct 21 14:49:45 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:70:21:fc:43:f9:d6:88:60:93:b5:70:e9:f1:46:df:
                    00:28:1e:a7:15:5e:16:c4:3a:be:4f:ee:13:f7:8c:53:
                    35:19:cb:1c:4e:46:a1:aa:7d:90:2a:40:3b:9f:1f:e3:
                    3e:13:ab:ce:3e:5d:cb:d1:c2:85:18:2f:2f:3c:ae:ac:
                    c3:3a:01:62:5a:82:be:12:f1:bd:5d:ec:41:79:af:6f:
                    62:e5:6b:7a:a5:b8:5a:42:e0:4a:0c:ed:bf:3d:4b:61:
                    a1:5b:35:8c:d7:74:b7:bd:be:88:49:8b:0a:fa:9d:e2:
                    f9:cc:8a:6f:e7:bf:81:b5:3e:15:89:55:c3:30:fc:10:
                    c8:0c:ee:22:a8:0b:bf:9c:f5:e0:f9:b2:8f:3c:22:0f:
                    48:96:06:f9:9f:b2:74:d9:02:da:3c:b0:5f:99:fb:cd:
                    5a:af:a6:ff:b4:87:5b:fd:0c:b7:cc:44:24:b1:24:d9:
                    12:3b:f3:32:99:a0:1d:ec:06:66:00:c8:3c:a0:e5:e3:
                    b7:5b:73:80:36:24:15:2b:78:b8:34:2f:8a:20:c8:73:
                    f7:1a:56:6a:ce:7b:09:d3:65:b6:39:46:da:ff:bd:91:
                    5b:01:a2:30:d4:90:b4:b8:60:5f:19:c1:39:20:84:ef:
                    a6:9a:db:35:ae:5c:6a:26:36:02:3f:2f:25:9c:cd:2b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:f2:da:03:1a:cb:71:ea:3d:9e:ec:81:9c:30:4e:09:
        b3:15:2f:62:05:c1:1c:e2:54:ee:da:80:78:8d:cf:b5:
        7e:2e:37:fd:fc:5d:e7:a2:93:15:b0:33:51:16:0a:f5:
        eb:f5:b9:df:2a:5d:ed:68:25:e6:d1:23:4c:56:cb:92:
        1b:6d:0f:13:7c:d6:30:bb:7c:01:99:de:b1:38:a2:f5:
        44:7e:64:54:62:7a:84:af:07:9d:82:ea:5c:cc:5f:70:
        ce:ad:49:f8:0d:30:ab:63:fa:1a:e0:89:70:7a:8e:a9:
        e0:2d:a3:64:53:0e:39:24:02:04:d1:f8:61:db:0d:57:
        bc:a3:83:14:1b:00:7f:c0:d9:c8:22:11:1e:5a:48:93:
        93:94:ac:29:04:9f:7b:db:39:91:d5:2e:9f:2c:cb:29:
        77:5b:69:31:8f:80:39:a5:2b:5d:6e:08:23:3a:28:f4:
        05:e2:b5:a4:c5:8a:03:76:b0:f7:c5:cb:9f:49:e9:21:
        33:51:f4:63:9a:b6:2a:2e:fc:9b:a1:57:87:0d:b9:d2:
        25:35:4a:ea:f2:52:de:19:9a:f6:c6:b2:26:47:e8:a9:
        6d:68:c5:62:a2:92:c4:e2:47:54:57:a9:91:9f:07:a9:
        30:3e:83:a2:2e:d0:68:e9:bb:f5:a2:0c:07:96:f0:b9
    Fingerprint (SHA-256):
        9A:05:BD:2A:B8:14:A9:2D:A9:92:34:36:BF:E6:17:7C:DA:A4:6C:7C:B8:29:32:F3:1B:04:B7:E6:51:57:3D:2B
    Fingerprint (SHA1):
        C5:0D:A0:D4:E1:D3:F9:ED:D8:93:1A:45:14:09:53:5A:AE:6F:38:AC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2704: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #2705: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144741 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2706: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #2707: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #2708: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144742 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2709: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #2710: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #2711: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144743 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2712: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #2713: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #2714: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144744 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2715: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #2716: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #2717: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144745 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2718: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #2719: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #2720: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144746 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2721: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #2722: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #2723: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144747 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2724: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #2725: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #2726: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144748 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2727: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #2728: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #2729: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144749 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2730: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #2731: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #2732: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2733: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 1021144750 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2734: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2735: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 1021144751 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2736: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2737: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 1021144752 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2738: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2739: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #2740: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #2741: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2742: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 1021144753 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2743: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2744: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 1021144754 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2745: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2746: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 1021144755 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2747: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2748: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #2749: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #2750: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2751: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 1021144756 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2752: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2753: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 1021144757 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2754: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2755: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 1021144758 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2756: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2757: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #2758: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #2759: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2760: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 1021144759 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2761: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2762: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 1021144760 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2763: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2764: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 1021144761 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2765: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2766: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #2767: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2768: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2769: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 1021144762   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2770: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2771: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #2772: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2773: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021144763   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2774: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2775: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144741 (0x3cdd6ea5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Sat Oct 21 14:50:27 2017
            Not After : Fri Oct 21 14:50:27 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ef:29:26:59:bf:f0:7a:3d:00:3f:90:31:99:50:51:38:
                    6b:69:0e:3e:97:c3:ed:d9:b5:15:a5:66:92:2f:5a:48:
                    94:31:04:2d:57:43:4e:39:4b:82:1d:9a:90:bd:dc:a0:
                    79:9c:ab:bb:27:dc:93:12:80:ed:06:81:29:00:ef:51:
                    66:38:83:b3:c5:78:83:73:5b:46:0a:3c:60:4f:c9:ff:
                    35:8b:45:19:a8:ec:cb:21:77:a9:13:02:8d:12:5b:66:
                    22:36:ac:a2:ee:9e:f0:c2:9c:da:a3:d4:a6:ef:b1:0b:
                    d1:00:7b:dd:d8:58:08:da:59:6f:05:50:32:ac:f7:87:
                    1a:54:9e:47:bd:6b:6e:a1:cb:3b:e9:cc:41:0d:24:ae:
                    83:b6:54:24:15:8d:4a:aa:fe:e7:f0:1b:9d:d6:a9:6e:
                    0c:0a:90:b3:33:3a:28:10:8f:a0:48:73:8c:16:e7:a5:
                    b8:dc:c1:16:de:d5:38:07:29:3b:36:69:51:eb:25:a6:
                    d8:4a:0f:19:38:6d:c8:0d:3d:8a:0a:a2:de:c2:bc:0a:
                    a1:4e:9a:37:c7:e2:00:31:48:50:cd:88:06:11:d1:8a:
                    a3:e7:c3:cb:a7:d9:2c:c8:ab:f6:a1:1c:7c:87:e1:af:
                    1d:e3:e5:62:e3:55:c5:ad:9b:06:f2:46:e5:c6:12:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d5:e0:4e:02:4d:ba:da:5a:f5:bf:dd:f8:3a:26:d4:7b:
        8c:f7:4f:27:bc:5b:3e:7b:01:0a:48:96:92:b8:83:a2:
        70:e3:95:fe:1d:91:e8:6a:49:f3:73:99:68:37:e9:fa:
        b7:e1:9e:7b:23:a7:f8:e8:16:56:cf:48:ed:52:b2:6d:
        ff:31:50:8e:2a:b5:0c:46:d8:f5:7c:59:a1:28:c4:41:
        3a:4b:fc:fe:65:38:d9:43:a7:de:e0:22:72:21:af:c7:
        d6:db:54:f9:92:8e:10:09:b5:2e:d3:c0:56:f5:7f:54:
        6f:9e:85:87:cf:5d:d6:57:ec:12:03:63:bb:68:c6:ad:
        3b:96:92:cc:cf:89:be:e3:83:5c:69:8b:3c:63:d7:0c:
        ed:89:01:9f:29:56:99:09:00:a9:9c:90:1d:41:44:5c:
        ca:07:e0:01:9c:59:d7:4a:fd:e3:d1:46:48:1e:90:c0:
        df:c6:97:32:eb:21:9d:38:2a:83:7b:04:c1:f3:91:b7:
        16:f9:e4:0d:28:e7:32:77:b1:98:e8:19:17:b9:48:81:
        4f:0e:86:10:1b:3c:78:2e:e4:8b:20:61:a0:ea:b0:57:
        97:f0:8f:df:7f:f9:13:4c:a6:69:ac:f6:62:b4:e2:6b:
        ea:78:31:06:f3:75:0e:9d:af:4a:00:6e:df:43:45:8b
    Fingerprint (SHA-256):
        6C:94:EF:B3:85:93:F0:1B:09:49:36:C3:AD:CD:30:5B:B6:40:A8:D4:33:8E:4E:18:F3:71:44:39:AE:75:BC:5F
    Fingerprint (SHA1):
        88:9D:82:0B:9E:F2:4B:B5:C6:7F:42:AB:A0:D6:02:A7:6A:53:7B:16
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #2776: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144742 (0x3cdd6ea6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Sat Oct 21 14:50:32 2017
            Not After : Fri Oct 21 14:50:32 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:e1:3b:2d:5a:fa:4a:fd:d5:17:65:1a:1d:b9:77:84:
                    5e:6a:a9:36:84:ca:95:4f:f5:19:a2:b6:64:33:d3:d3:
                    89:14:3f:88:14:14:4d:a9:eb:a5:d8:2a:19:51:36:16:
                    4f:e0:23:8e:dd:48:e6:d8:4f:ef:d1:c5:64:58:8a:25:
                    4b:3b:88:6f:c5:30:9d:56:72:1d:0e:fb:0a:5a:b5:07:
                    50:3b:47:35:3c:2f:76:ea:1e:21:b2:79:8a:1a:b7:14:
                    f2:c7:58:0c:5f:68:0b:5f:27:e8:e1:b9:03:2a:25:df:
                    99:f8:e8:95:a9:7d:de:e7:47:6e:2b:76:99:fe:74:1f:
                    29:61:6b:b5:e6:92:6d:36:7b:01:57:76:8d:29:3f:cd:
                    21:d6:1b:70:95:51:26:0d:f7:5e:95:3b:27:f1:62:ce:
                    91:9e:ad:42:be:fa:60:ca:ef:8c:d7:6c:3a:65:7b:65:
                    1a:e4:d1:cc:9c:c2:ef:0e:b5:30:01:7d:3f:1a:2d:95:
                    4a:8e:1b:33:f2:d0:7c:8c:92:c6:cf:70:8a:c7:0e:7f:
                    cc:f9:5a:c3:f4:28:81:a1:c4:d5:4d:a5:a9:4d:60:56:
                    55:0a:88:5b:dd:4c:49:02:69:b3:7b:55:fc:58:d9:15:
                    b6:08:76:d5:44:26:c8:90:35:d6:08:2d:82:12:fb:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ab:37:2e:f4:96:77:1d:32:ff:91:40:57:22:70:75:e1:
        a2:7d:78:fa:81:f2:56:35:d5:b0:09:b7:8e:7e:98:53:
        8a:bb:4f:a1:be:1b:72:72:29:92:6a:0b:51:0c:33:c2:
        f6:a1:3b:a7:25:3d:83:6a:f0:28:08:80:76:e2:f0:cd:
        69:ab:8c:4f:df:b2:68:45:ec:57:3b:19:5a:d3:81:47:
        fc:92:e9:87:36:70:b9:8f:4d:39:b4:8a:c6:09:fa:e1:
        0d:d4:14:92:e2:88:b1:f2:89:04:4d:5f:cf:d2:ea:33:
        47:b5:ff:26:72:df:d7:c8:25:b4:a5:dc:e6:a8:ad:bc:
        b3:1d:f7:1b:20:01:30:ae:26:87:f9:fc:24:5b:b1:4b:
        a1:6c:c1:b7:50:aa:72:8f:07:19:ff:56:07:64:00:a2:
        0d:30:ae:93:3a:9d:9e:ed:4d:82:2c:5b:7c:1b:7c:21:
        50:4a:7d:64:70:7a:c5:b0:50:89:9d:06:d1:fc:4e:e7:
        2f:c4:b3:a9:d0:bd:41:76:04:6a:ed:79:a1:9b:cc:8c:
        5f:b3:86:9f:93:d7:69:cc:0e:ca:bf:8a:a1:23:ec:03:
        41:89:24:aa:94:51:35:bb:af:89:28:01:44:f1:06:d4:
        46:2f:0f:d2:d7:ae:ee:e6:da:90:a9:b0:1d:0a:34:51
    Fingerprint (SHA-256):
        C2:A6:98:0A:4E:11:4A:B4:C8:FF:12:5D:25:DB:CD:51:A8:89:BA:9B:5E:FD:C6:88:FF:07:64:52:CC:32:39:BC
    Fingerprint (SHA1):
        6B:BD:65:9B:77:36:C7:B1:92:E4:BA:DC:67:1B:56:0F:DC:15:E7:42
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #2777: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144743 (0x3cdd6ea7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Sat Oct 21 14:50:35 2017
            Not After : Fri Oct 21 14:50:35 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:16:1a:39:5c:ba:0b:32:cf:c9:bf:c5:0a:56:08:d5:
                    60:17:7b:c4:98:08:aa:82:7f:93:6c:bc:25:f7:4c:53:
                    c2:51:a3:0e:e6:3e:27:43:e0:55:95:cf:08:7b:41:ea:
                    e1:75:77:24:13:4f:3d:39:dc:cb:fb:c1:dd:fb:28:25:
                    24:3d:ae:17:0f:5b:61:eb:2b:1e:e1:f1:70:0d:31:7c:
                    4b:8b:e0:dd:7b:1c:b4:30:44:ec:bf:38:0a:19:60:80:
                    02:94:05:36:c2:bf:ca:ef:44:43:69:bc:76:e0:4b:1e:
                    59:e0:59:65:6d:da:f4:b6:4f:c4:b1:11:a7:7a:62:f1:
                    96:7c:9f:a3:99:fb:43:15:a7:92:06:fe:09:f4:a3:ff:
                    0b:03:2d:c2:70:3c:ed:2d:1e:cd:af:f5:b6:d0:f1:e3:
                    52:09:8b:8a:df:1f:18:b7:da:61:f0:97:c1:8d:11:56:
                    45:12:d8:0e:91:34:e4:c3:eb:53:b3:ea:e5:90:fa:b8:
                    f2:43:0a:d7:6e:7f:d4:e2:41:56:3b:7e:da:74:d6:c5:
                    dc:64:c5:25:4c:5c:4b:5a:ed:c1:51:c3:c6:e2:9f:ca:
                    3b:ee:d4:d3:51:48:5f:91:9d:1d:22:09:8a:7d:14:25:
                    9d:f4:99:2a:d4:12:1e:d3:45:86:90:c5:d3:fd:30:27
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:66:ab:f1:2f:1e:81:bc:2e:b4:52:20:f1:58:80:c6:
        01:b8:bb:68:71:f3:db:83:5b:ac:b7:c6:57:da:00:53:
        2c:d8:04:96:97:0c:72:17:ce:c8:80:21:4d:78:6f:ed:
        62:84:fd:55:5e:4a:d2:d5:0e:0d:51:f0:1e:bd:db:cd:
        3b:27:2b:57:74:79:02:f9:8d:ff:ab:38:2b:f5:ac:a2:
        c3:a0:43:87:32:db:82:f4:5f:a3:35:38:79:7f:80:c8:
        80:db:90:ba:54:ae:b6:47:48:58:21:47:d0:50:f4:e4:
        bd:1d:c2:ab:e4:d9:0f:17:af:6c:b5:2d:7e:50:81:54:
        0f:19:75:69:5e:e3:fb:75:ab:14:66:e3:64:c4:50:07:
        7a:f9:dc:83:2f:96:96:11:7e:77:dd:65:24:e6:21:5b:
        ef:45:db:72:c9:26:bc:fa:52:d9:0f:9f:6f:58:58:9c:
        99:cc:65:5f:41:f1:29:c9:15:0c:ce:2e:a4:f7:7b:56:
        9d:4d:17:fd:a2:2c:99:0a:2a:c4:2a:c5:b2:81:73:dd:
        0b:99:0d:2b:e4:2d:f4:7a:17:d3:f2:17:09:7e:97:f6:
        9c:cd:23:e5:b6:49:90:6b:3c:28:17:d9:24:c9:ad:9d:
        ec:2e:a9:6a:ac:3b:13:5e:bb:2d:56:78:e9:ca:4b:bb
    Fingerprint (SHA-256):
        11:5B:96:B1:17:66:3C:FB:68:3F:17:43:22:AA:84:06:2C:98:F9:04:81:54:A2:2C:5D:E3:CD:1D:F2:F6:A9:7F
    Fingerprint (SHA1):
        29:29:96:9D:60:DF:DC:8F:22:59:B6:20:A0:AC:39:24:1B:66:90:A5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #2778: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144744 (0x3cdd6ea8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Sat Oct 21 14:50:39 2017
            Not After : Fri Oct 21 14:50:39 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:39:b9:dc:89:10:6d:f5:4f:dc:87:1d:4b:ed:26:eb:
                    4c:5b:a8:86:c4:99:b3:16:d7:f2:66:da:43:05:3d:97:
                    46:e1:60:d9:02:50:45:0f:d6:e6:0c:7a:9f:1e:26:7c:
                    ba:13:b8:e6:be:81:fb:2a:0a:6e:04:5d:bd:e5:c0:c5:
                    e4:43:d0:92:1b:5d:72:43:07:e4:d5:a8:93:df:0b:3e:
                    07:ec:7a:c4:a2:2c:2a:76:21:85:1e:8e:9e:6b:73:f0:
                    dd:8e:35:16:ba:48:ba:9a:4a:20:15:be:d4:fe:4c:80:
                    5c:74:e8:96:c0:23:41:86:69:b6:a3:ae:4c:95:39:19:
                    a2:a8:0d:11:1d:2f:a9:55:b5:af:c2:f3:43:60:bb:a6:
                    18:00:b1:98:fc:ad:90:cc:38:77:89:c6:aa:67:41:8f:
                    bc:73:f3:ed:b5:4d:38:15:32:ee:a3:11:8d:87:f4:85:
                    5e:18:b7:42:6e:1f:33:32:2a:fe:f9:20:d1:04:89:7c:
                    08:9f:45:48:38:fc:1f:b9:6a:4f:0e:f9:20:23:e3:7a:
                    ae:fc:45:60:40:ca:10:af:80:12:3f:8a:66:6e:25:98:
                    c0:1a:88:90:ef:02:ff:63:c4:97:1e:94:a0:ae:36:75:
                    4b:90:9b:c5:d3:55:6b:9a:79:33:ac:8b:0a:27:35:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        14:28:6c:6c:23:d5:49:55:20:b2:81:5d:98:f2:f0:7c:
        98:9b:bc:d7:2b:c5:a5:0c:74:63:f6:47:41:83:b7:98:
        84:a2:de:b9:2d:b3:ae:d0:8f:e4:ab:15:d1:87:1d:72:
        61:1d:17:a9:18:db:90:92:85:4b:e4:9b:96:33:c5:b0:
        a6:7c:e3:c1:73:f2:3e:90:ff:5d:49:95:76:41:10:97:
        7f:b5:9e:30:6c:59:a8:8a:d3:5f:45:d2:cf:c0:05:9f:
        26:c9:b2:4a:0a:29:19:11:eb:37:f1:dd:79:d7:e9:67:
        94:b2:83:c1:92:42:5d:88:04:b3:57:f2:13:bf:0b:95:
        e7:f7:7c:99:88:a3:23:be:99:97:d5:ad:dc:78:c1:d3:
        4a:ae:e3:fc:4e:5f:b4:42:5a:7a:40:cf:79:f6:20:41:
        a2:6d:9c:a9:a1:47:74:52:2e:2b:77:78:22:e0:cc:59:
        b8:ff:46:14:7f:57:b3:3b:8a:f6:db:86:f9:a0:fb:51:
        a0:ac:e2:d3:df:ab:bf:23:0b:c9:b0:8b:45:e7:91:23:
        ab:8c:47:fe:d3:6b:60:8d:67:23:e5:5a:fb:bd:fc:67:
        a1:5c:e4:33:4b:94:34:ae:11:c8:92:4b:58:29:e3:4c:
        3b:1b:33:ec:b2:07:af:23:d5:d5:03:10:a3:db:10:ec
    Fingerprint (SHA-256):
        DF:03:CD:AB:51:D8:87:C8:6D:D1:38:44:03:32:EC:8B:EA:94:26:4B:E2:B3:F1:22:9B:28:61:D6:28:E3:1B:A3
    Fingerprint (SHA1):
        95:8F:81:2D:A2:0B:63:68:5B:7E:34:E1:E8:D6:74:D7:38:80:16:10
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #2779: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144745 (0x3cdd6ea9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Sat Oct 21 14:50:42 2017
            Not After : Fri Oct 21 14:50:42 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e7:46:2c:8d:83:96:85:a7:08:eb:5d:e5:6f:7d:1e:93:
                    1d:ef:0c:ff:1f:39:35:5d:37:96:7c:4e:03:78:18:f5:
                    bf:a6:cd:4d:fa:20:65:60:fe:31:5f:de:f0:67:f7:d1:
                    aa:4b:ab:8a:62:3a:97:ee:f9:c3:e4:54:67:e8:6f:c3:
                    9b:54:1d:25:bf:60:d3:19:b6:ed:5f:98:89:a5:49:8c:
                    d8:d5:ba:7b:ec:9c:d9:7f:d1:c4:d8:e4:57:6f:4e:db:
                    86:92:3a:e6:38:2a:1e:de:65:ad:5f:e8:72:e0:06:ac:
                    21:a4:db:0c:00:62:4c:c4:8e:86:51:f1:d7:f2:03:ff:
                    25:b5:69:d0:d2:e2:0f:ec:75:3d:95:1f:43:44:19:cd:
                    1a:b2:d5:87:c5:fd:a8:8c:a6:cb:9f:f3:e0:5c:96:a2:
                    c4:0a:3a:7c:13:af:43:3a:c9:74:1e:d1:4b:aa:95:64:
                    c2:c0:db:aa:d9:95:b9:0b:b6:9a:08:14:e3:24:27:d3:
                    a2:96:9d:20:cc:9e:2b:a8:e4:99:35:6f:16:9c:37:a9:
                    9a:eb:1a:ec:f1:f4:b1:db:48:8b:d2:99:af:6e:b9:ea:
                    40:60:fd:36:f5:63:a5:4f:7a:d1:04:ad:3e:24:59:93:
                    c5:01:22:51:64:49:02:99:80:d8:09:ce:15:7e:d5:51
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        81:de:06:d0:50:a5:ac:24:35:fa:79:e4:61:6d:e5:73:
        aa:18:92:4d:70:32:ad:bc:a1:4b:1f:99:70:71:9c:99:
        a3:3a:0e:eb:49:5d:ef:6f:e1:e2:dc:14:ee:e1:1c:b3:
        7a:15:ac:a9:b3:f5:91:fa:d4:1e:b8:69:f0:2c:3a:e2:
        5e:cb:6d:7e:1d:61:75:23:e6:52:72:4b:1e:30:aa:40:
        4a:a4:04:52:22:d3:2a:d7:d6:92:7b:2f:56:7c:6f:e2:
        cb:97:b0:11:10:2a:0d:8d:7e:ee:90:ee:2f:fb:15:9b:
        ca:04:39:f9:ca:4c:67:b0:2a:8b:2e:e4:4a:ac:6b:d3:
        1e:d6:0f:43:58:73:18:83:7d:cf:9c:7e:a8:6a:5d:ed:
        36:c4:a3:6f:bf:a5:6b:16:06:51:b9:9b:7c:f6:56:a6:
        bf:75:cb:5b:9d:c3:5d:7d:f1:92:cd:34:a4:44:b1:e6:
        02:bf:b6:20:78:99:db:c6:42:1f:6f:72:ee:83:0a:75:
        09:f7:a5:a2:1c:ee:62:77:20:9f:95:df:27:35:54:7e:
        5b:b8:03:48:ad:8b:3e:21:5e:dc:bd:64:20:c2:af:8f:
        50:e8:45:c0:1d:47:07:06:eb:66:49:4e:75:d8:58:4b:
        de:07:f1:4c:0b:f6:6d:c2:91:aa:63:6d:d9:fd:7a:ae
    Fingerprint (SHA-256):
        F7:B4:25:4C:7E:DA:1A:A1:16:C9:4C:47:10:9B:7F:B3:02:DC:81:AA:31:D6:C3:7E:D3:21:C9:3F:99:C2:53:A4
    Fingerprint (SHA1):
        F9:1A:66:48:F2:E6:27:B5:AD:45:17:09:D6:41:D7:7C:A7:E9:C1:F4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #2780: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144746 (0x3cdd6eaa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Sat Oct 21 14:50:46 2017
            Not After : Fri Oct 21 14:50:46 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f8:14:72:ca:47:a1:33:61:24:11:b1:4d:da:ad:45:ba:
                    88:3e:b2:bb:38:b4:24:06:1a:78:8e:73:d6:97:f1:c0:
                    89:1e:70:34:55:0c:e0:85:74:53:a0:01:9c:d0:bc:c0:
                    7d:5c:d3:1f:47:cc:4f:13:32:3f:ec:7a:a2:4e:11:e5:
                    01:cf:de:7c:7e:6c:8b:40:8e:3f:d5:a4:48:06:51:e9:
                    fd:f0:69:be:c3:99:81:a6:4c:bf:32:7c:3b:4f:fe:21:
                    e4:e5:67:38:eb:ed:54:6e:37:e1:df:b8:3f:4a:9c:79:
                    09:c4:e5:cb:35:f3:df:31:c8:10:6d:e4:a1:5e:1c:a8:
                    10:1c:2a:88:04:b3:f0:05:da:e2:76:11:e7:f7:12:1a:
                    1c:49:8f:d7:d5:1b:8a:e6:f3:bf:6a:14:cf:a0:f9:33:
                    e0:50:5f:65:e2:38:55:bb:59:af:bd:0f:95:8b:72:e6:
                    be:69:46:3c:13:ef:03:75:23:44:c5:ff:af:f5:9d:e6:
                    ca:c2:f7:87:35:5e:0b:45:d1:df:1a:be:9b:dc:1d:7b:
                    d8:bc:10:37:e8:24:04:c7:4b:be:44:4c:1d:cb:e4:7f:
                    89:04:c9:1b:5c:b8:63:4c:45:98:f7:7c:d8:47:d8:29:
                    f0:c3:c8:ce:74:38:22:fb:2e:27:7e:5e:ef:c9:1b:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3f:2e:8b:06:1a:63:fc:8d:3e:f6:e4:29:4d:a0:2c:ce:
        6c:55:9b:c7:04:da:27:50:72:0a:d1:5b:ec:11:55:de:
        4f:d7:0d:64:80:c2:d0:ef:6b:c5:5f:54:85:4b:cd:55:
        f8:bc:49:44:2e:60:72:d2:74:ec:13:d6:8b:d5:35:77:
        43:82:63:d3:4f:13:a3:d8:07:02:bc:75:a1:ec:5a:2a:
        27:be:09:98:3a:cc:2d:00:d6:d6:15:d3:a4:6c:d7:cd:
        84:dd:ba:e6:10:ef:23:cd:cc:97:94:29:12:39:cf:f2:
        b6:ec:a0:5a:49:e1:70:45:73:87:91:f9:9c:7f:74:7e:
        57:8d:aa:18:df:88:2f:1b:29:00:b4:0d:98:8b:b4:59:
        ec:69:6e:e4:fa:73:9d:18:be:07:fa:34:65:2a:df:c1:
        2f:26:26:ee:90:e0:31:a7:8a:fe:5d:e7:ac:94:33:5f:
        34:10:e7:55:ac:7c:c9:9c:b5:e6:6d:12:20:dc:a1:41:
        3c:2b:23:3f:93:24:b3:8c:3b:6b:ce:f7:c9:7a:4b:1e:
        bc:03:56:75:1c:30:71:ae:82:5e:62:32:a1:c1:f1:71:
        38:1e:09:bc:2b:3c:f8:5d:43:44:5a:e6:85:62:ea:29:
        55:64:0a:cc:69:a0:45:c4:86:28:7e:de:32:60:5b:93
    Fingerprint (SHA-256):
        9F:B5:58:00:15:17:61:38:2E:92:A5:8E:07:75:5C:5E:3E:96:F9:D0:71:4C:5D:7E:9C:74:A1:B5:84:77:80:52
    Fingerprint (SHA1):
        97:AE:F4:3F:F1:85:CC:B3:31:1F:C8:2A:6D:DE:C6:96:64:56:80:34
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #2781: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144747 (0x3cdd6eab)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Sat Oct 21 14:50:51 2017
            Not After : Fri Oct 21 14:50:51 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:aa:23:07:56:8d:ef:97:86:67:0b:70:b9:46:13:1b:
                    74:17:16:28:cc:c2:64:da:35:9d:3d:24:d8:8f:3d:ed:
                    ab:1a:03:e6:27:4e:9f:cf:df:7d:8f:e5:2e:7e:4e:d0:
                    37:ee:a3:70:c2:e0:9d:bb:10:63:e9:f7:0c:fe:a8:a9:
                    24:02:f0:8a:51:f6:f9:88:89:26:43:3f:53:8f:9a:14:
                    1c:b4:01:7c:0d:6e:a1:44:f8:a7:02:28:f5:45:46:cb:
                    4d:cb:0c:7f:61:1e:6a:a2:99:44:81:39:53:8a:4f:f8:
                    15:56:ff:ad:7a:e4:68:65:e4:6b:71:9c:52:4a:4e:71:
                    fd:78:8a:ee:29:6e:57:12:d2:0d:4a:46:28:94:c3:42:
                    b4:1a:ec:13:75:0a:fb:13:ca:72:df:d4:35:e4:e8:bb:
                    45:12:19:6a:97:da:3b:17:93:d2:88:46:f7:bc:6e:bf:
                    f1:4c:55:93:04:47:4a:e6:ea:9b:71:ae:63:7f:63:cf:
                    e5:1c:b7:01:a8:e6:3f:c0:f4:a4:37:af:0c:40:c3:ed:
                    21:9e:f0:b9:9d:d4:15:f0:ef:01:4b:4e:a9:e5:ab:21:
                    25:81:f3:11:cd:d1:9a:a3:27:b4:02:4e:05:00:44:81:
                    28:c4:03:85:c2:5a:1f:eb:fc:47:f6:ad:42:3f:14:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        44:11:72:56:97:08:4c:3b:9c:57:ab:56:93:34:6a:3a:
        cb:67:16:e9:b8:85:3d:da:8e:cf:34:4a:b7:d9:4b:a7:
        4b:8c:0b:8e:1a:49:69:f2:f4:b0:3b:7a:c9:27:1f:6a:
        1a:0e:96:e2:e1:b7:ec:a3:2a:4f:a7:2a:21:52:4e:9b:
        84:6d:c7:ac:bd:09:a5:21:42:0c:4a:65:ed:63:7b:9f:
        b5:81:37:45:e5:f9:3c:d0:32:17:c1:25:c0:40:80:b6:
        d5:1a:e4:45:1a:0d:16:95:2b:41:cd:11:8e:cf:a0:c8:
        cc:e1:9b:f8:5a:06:55:37:c2:b2:76:9c:b8:49:d2:13:
        f2:7a:56:7e:22:77:a6:bf:6f:b2:3c:63:63:40:64:04:
        38:54:aa:4a:e6:a4:01:dc:e2:4e:a5:f9:b7:be:b4:36:
        04:85:7f:13:24:3f:28:27:c8:43:91:cf:8b:79:30:cf:
        92:77:af:06:95:f7:79:65:46:60:07:ac:67:bc:80:f0:
        36:b7:ae:ef:72:68:f1:27:ed:5e:23:53:68:58:a8:e3:
        2a:45:74:a7:c0:19:26:99:84:4f:70:01:31:e4:a6:38:
        fe:32:d8:69:3b:cd:e3:85:55:7f:79:dc:9d:6a:12:10:
        9e:07:e8:9c:6b:e9:10:cd:c4:f3:1f:fa:89:21:e4:e7
    Fingerprint (SHA-256):
        41:6F:FA:85:AD:6F:E3:34:9C:04:FF:7F:E8:73:13:1B:99:0C:3A:AE:04:03:49:EF:78:67:C3:01:D8:C7:CB:CF
    Fingerprint (SHA1):
        90:06:29:8C:19:F1:C7:83:44:75:98:FE:D7:E2:0E:F5:BE:F6:B4:AA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #2782: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144748 (0x3cdd6eac)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Sat Oct 21 14:50:55 2017
            Not After : Fri Oct 21 14:50:55 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    92:e4:11:11:c1:98:e6:99:7a:97:3b:81:3f:49:6b:6f:
                    da:9a:7e:65:26:34:7c:a5:03:d1:9f:6a:ea:57:bf:8d:
                    0b:97:57:b2:3e:cc:db:40:5e:91:48:c1:22:89:33:b2:
                    95:7a:f5:e1:a0:1a:66:4b:0c:c6:2f:18:c2:60:52:3e:
                    8e:1d:db:be:39:f8:72:39:cd:15:97:af:7b:2a:de:d4:
                    79:96:a4:57:51:ab:98:3b:a2:aa:db:6d:8b:54:a5:e4:
                    f3:d2:49:d8:e6:f6:55:fd:e7:74:d1:f8:f8:d3:25:53:
                    c7:89:17:ec:52:28:7e:ee:e4:18:6d:90:e6:41:33:52:
                    94:5c:57:68:fb:29:93:b1:4e:cf:90:12:b7:31:5b:c1:
                    cc:14:4b:6c:2a:34:49:a4:20:fa:72:10:8b:1a:0e:b5:
                    b1:06:44:e8:2b:aa:a5:4b:27:6a:9b:09:2c:c9:96:8d:
                    db:16:7b:20:f2:4b:34:3f:c0:fa:f6:ee:96:7c:76:7b:
                    ad:11:d4:02:40:df:b9:6c:2b:6f:c5:c5:63:11:63:08:
                    59:08:04:28:eb:e8:8e:4e:78:43:56:72:83:fa:8b:26:
                    d6:89:f0:5f:80:e2:3d:90:4a:0e:68:44:15:c2:19:be:
                    1b:be:82:aa:4c:92:47:b6:28:f3:06:89:4f:db:41:21
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3c:47:46:f5:55:ee:65:ef:fd:6c:2a:57:09:46:f5:7d:
        11:c0:b9:93:d4:ce:4b:13:ec:ca:9e:4d:49:6a:53:be:
        52:96:fb:2d:34:fc:60:3a:a4:01:4d:21:7c:ee:bd:7e:
        94:ef:17:d1:a0:d0:a7:d1:ae:5b:80:2e:41:e8:9a:a8:
        ca:be:db:9d:e4:09:9b:80:a6:fb:fd:aa:61:80:cf:06:
        08:bd:8e:77:9b:d3:97:c4:80:d0:6f:d0:2c:94:22:be:
        b9:94:09:30:4a:df:df:11:a3:5e:c1:6b:32:24:84:67:
        34:dc:5c:b3:62:71:72:71:31:f3:d1:d6:c2:de:10:49:
        8c:cb:f0:57:a1:a6:92:f5:e3:6d:40:6e:b9:28:1a:4a:
        92:0c:28:90:18:09:6a:29:0f:4e:74:76:bf:16:d6:e8:
        0d:20:1e:b5:e4:92:1f:cb:da:36:87:ae:a8:aa:4d:03:
        0a:a3:e1:78:63:07:d1:9d:1b:34:b4:11:be:00:97:c2:
        11:a9:7e:80:aa:7a:59:a4:9c:79:c2:93:bb:5d:74:6b:
        57:1d:c3:cd:fc:66:91:fe:ff:11:37:f5:8f:22:54:f6:
        f1:1f:d3:c2:be:36:16:d5:d5:81:a4:ea:bc:af:3a:52:
        bb:84:09:5a:42:56:ee:16:12:19:0e:54:2a:a5:68:15
    Fingerprint (SHA-256):
        38:9A:D6:EB:8D:0E:AA:65:14:5A:00:11:B6:73:1B:F2:69:D5:DA:3C:CD:EB:C8:50:8B:E9:33:06:2E:FC:A8:60
    Fingerprint (SHA1):
        9D:21:35:A8:76:9A:94:3D:85:CB:51:B0:EF:59:52:54:D7:90:F2:D7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #2783: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144749 (0x3cdd6ead)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Sat Oct 21 14:51:00 2017
            Not After : Fri Oct 21 14:51:00 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:24:66:ed:cc:5b:ab:1a:0d:45:82:47:6f:f0:93:39:
                    33:f7:73:fc:47:bd:46:63:ff:8b:17:3c:50:3c:dd:c8:
                    0c:bc:57:6b:d7:33:0a:9f:b4:59:7a:0f:a6:1a:04:3f:
                    93:3a:70:01:05:92:fb:4a:34:73:78:24:47:94:5f:ea:
                    77:ba:3a:37:58:3a:6e:b0:ee:2a:0c:82:1a:6b:73:4a:
                    8f:4e:ea:25:b7:ca:2c:2a:42:16:51:86:d2:3d:2c:bb:
                    3b:1c:d2:27:69:00:ab:fb:79:66:1f:90:69:15:9d:48:
                    28:5b:23:b0:b2:62:d0:3f:d6:e3:d6:3d:d2:52:a1:72:
                    67:df:21:0e:a7:89:79:24:8a:13:0d:05:5e:81:a3:ee:
                    1f:c7:4c:25:2a:f1:be:00:f2:cb:48:5c:aa:41:e0:a8:
                    04:6e:7a:e5:8f:6a:54:95:2b:69:04:a2:ce:d0:e9:af:
                    5f:51:bf:80:35:26:c1:d8:27:b0:50:4e:a4:67:e6:30:
                    9f:01:82:b8:5e:ba:d1:df:b6:13:30:8b:31:49:ef:8a:
                    27:0c:53:a2:a2:74:43:3b:8a:30:a2:68:0f:ba:05:94:
                    56:fb:4b:66:9d:99:fc:a3:1b:77:32:a6:6f:82:cf:9d:
                    1c:e9:fe:2c:86:e8:f8:0b:a3:f2:f8:57:a2:7b:8d:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:d4:60:f9:29:bd:44:22:6e:1d:a7:70:08:c0:8e:60:
        93:bd:2a:b0:b7:8a:5c:57:6d:d1:f8:08:f2:26:52:3e:
        67:d9:3d:e6:58:d1:9f:b9:63:21:33:f4:d3:30:35:49:
        c4:ab:97:27:28:d0:f2:20:9c:16:08:0d:5d:86:36:74:
        5f:9e:cb:6c:b4:3b:0a:11:4d:67:67:7e:d4:b0:35:93:
        40:c8:e5:98:73:07:2d:94:24:5a:f0:db:f2:6e:8f:04:
        47:50:8d:8f:d5:0c:dc:38:fd:54:7f:be:ac:56:bd:25:
        06:02:43:14:53:7a:2b:27:f6:cd:81:bc:b9:5e:4e:d2:
        4b:92:c5:e1:73:df:f6:0e:ac:5f:81:3b:9c:9d:eb:6b:
        2c:99:e2:a4:61:d2:e7:21:89:16:b7:b5:68:f0:fc:fc:
        53:26:c6:ea:31:87:f0:47:78:19:c7:b8:88:d8:0d:98:
        89:df:56:f8:b9:b0:af:5b:be:dd:97:6f:14:44:8a:4c:
        22:50:59:37:3e:7a:ef:eb:16:91:e0:ba:6b:41:be:74:
        b2:24:94:9c:52:a1:c2:41:9c:a3:f8:21:94:48:2d:7b:
        a0:3f:f7:30:aa:30:94:79:0b:f4:a4:c8:15:66:fd:b4:
        05:d0:90:0e:33:90:0b:35:e5:99:b7:77:f8:26:fa:88
    Fingerprint (SHA-256):
        3E:54:89:F8:B2:5C:33:93:3C:B5:7E:34:D3:6E:B8:80:F8:49:45:56:3C:77:98:FA:34:B4:BC:A3:75:1E:EF:B8
    Fingerprint (SHA1):
        38:87:31:82:8E:EB:42:58:C8:FB:1E:96:82:35:8D:13:1A:DE:B9:82
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #2784: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #2785: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144764 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2786: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #2787: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2788: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2789: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021144765   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2790: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2791: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #2792: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2793: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021144766   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2794: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2795: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #2796: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2797: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 1021144767   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2798: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2799: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2800: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144764 (0x3cdd6ebc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 14:52:05 2017
            Not After : Fri Oct 21 14:52:05 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:e5:53:73:32:69:b6:72:09:ef:89:84:7c:3b:70:de:
                    5a:a3:83:9b:4f:53:e5:89:9b:74:38:6d:6c:e7:95:fc:
                    77:bb:91:9f:fb:6e:2f:82:d1:e2:af:b1:93:73:0c:2a:
                    bc:26:b1:c5:40:f3:3e:f9:d0:e7:da:51:d6:c7:7e:2f:
                    00:17:94:ae:6e:15:57:6e:68:39:ff:7c:f3:54:28:59:
                    2b:13:61:94:87:34:9d:62:7f:9a:6d:6a:59:62:8b:31:
                    88:1a:75:84:23:3c:db:68:de:0b:cb:38:30:90:a5:20:
                    18:0e:62:7e:0a:f2:a4:16:1b:c2:d4:1d:70:4f:1b:59:
                    2e:77:76:0d:10:88:ca:cc:8f:bf:b1:82:f4:2f:d0:1c:
                    a9:e2:4d:96:a0:45:90:ea:4e:38:90:3b:ed:66:8e:77:
                    c3:ab:1b:e6:64:c4:17:80:7f:5e:e7:2d:aa:e2:d8:a4:
                    fb:35:16:03:54:28:3a:2f:e6:6a:ab:a3:79:93:08:95:
                    e1:8b:3b:a5:b6:5a:0a:dc:d3:96:c1:35:b8:52:a0:35:
                    33:0c:b5:95:c8:ae:a3:a1:08:88:d6:d9:9e:cc:72:92:
                    c4:66:8e:d0:25:77:ee:39:07:f8:da:c8:5f:6e:39:b7:
                    2d:60:38:b8:ce:39:14:3f:41:2c:7b:4e:2a:49:91:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:c7:15:7a:42:ae:91:10:be:88:09:1e:53:4d:d0:0f:
        31:73:a2:06:d4:f7:83:d9:05:94:4e:a4:ec:91:1b:dc:
        7e:88:c5:08:82:a3:78:16:ff:0b:24:42:c2:0b:80:74:
        cd:55:8e:f4:48:b2:47:9b:4a:34:b5:f7:64:8f:2e:3a:
        98:f5:8d:e5:08:6d:41:97:37:66:93:c0:82:55:9b:41:
        82:d4:26:bc:ca:25:78:79:6e:1e:43:7a:5b:8d:03:f2:
        24:f9:f2:88:11:2c:64:d0:c2:3f:b8:6b:c6:91:b1:18:
        cc:af:e3:12:70:ab:3c:a9:b4:d5:96:c0:c2:89:83:dd:
        44:5c:41:37:1e:b5:72:4d:87:a6:a1:be:ef:9d:c1:18:
        c7:c2:61:0b:29:fb:7d:dd:a7:1a:22:ed:07:1d:2a:6e:
        6b:e4:bb:5e:5f:3f:10:35:02:4c:31:89:f0:60:7a:b6:
        24:77:d9:19:71:20:7e:c4:48:c5:31:73:b3:93:0d:6d:
        ce:ac:6e:c0:30:07:63:c5:db:9d:7f:4b:e3:b5:2f:81:
        f9:e7:3f:d4:98:1b:68:b4:50:c3:59:4e:ff:b1:21:00:
        37:bb:ed:6a:aa:91:f1:0a:94:95:f3:97:44:fa:1a:23:
        51:b3:d1:c9:6a:a3:7b:0e:e2:29:66:40:20:c7:d6:05
    Fingerprint (SHA-256):
        C1:45:0D:06:A6:2F:D8:08:C2:B9:E5:67:69:01:FD:B9:71:0B:79:59:F6:A1:72:D8:A6:83:EC:89:EA:27:E0:9C
    Fingerprint (SHA1):
        F3:FB:14:96:A0:76:70:AB:7F:28:CC:8F:AB:19:B0:56:68:F6:6B:91
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2801: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2802: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144765 (0x3cdd6ebd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 14:52:08 2017
            Not After : Fri Oct 21 14:52:08 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:b5:51:ab:b1:dd:c0:6b:30:66:39:c4:24:60:57:28:
                    4c:a9:20:0f:69:ab:0f:78:a9:b5:5c:b1:81:d4:30:17:
                    77:0e:ac:f6:88:ca:4b:cc:32:2f:ae:8d:a8:01:ec:f6:
                    74:4b:d8:c7:66:b4:d0:3c:9a:71:8c:fc:ed:67:1e:da:
                    58:c3:44:db:77:b1:06:a1:3e:5e:4c:f4:ed:5f:1b:d9:
                    c7:7c:f6:2f:21:75:ca:68:71:1c:2b:08:53:36:67:75:
                    13:67:ad:33:01:4c:49:fd:77:40:5c:3a:74:d6:24:a1:
                    3d:14:5d:6e:34:77:63:c4:af:a5:9e:4f:69:2f:ce:2d:
                    92:05:d2:61:96:d3:c5:8d:a9:eb:bf:58:0e:be:2b:4e:
                    1d:c4:44:62:46:d4:02:47:09:f4:20:d8:ba:16:48:6a:
                    25:d9:41:43:f4:83:58:35:0b:da:52:40:c1:65:ff:fa:
                    c2:10:be:13:f8:59:7a:7f:3a:01:94:42:ec:11:57:e8:
                    c2:27:04:23:31:05:56:27:39:fa:52:8d:25:b0:b7:a8:
                    3c:5a:17:fd:f3:fa:fc:36:06:b9:41:18:a3:fa:8b:2f:
                    2c:f8:f5:d9:86:24:dd:ac:39:4c:85:6b:26:2c:41:f0:
                    9e:48:de:31:dc:24:7d:f1:d5:af:a2:e1:eb:f6:c4:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6f:f2:8c:05:1d:26:0b:d0:45:c4:89:47:b2:41:43:0f:
        01:16:d8:41:a0:03:bb:ef:fa:39:74:09:29:d4:a1:e2:
        e6:fe:5a:0c:60:25:c2:e0:13:f0:db:14:a9:40:b6:b3:
        da:44:5d:51:ec:0a:14:5d:e9:b8:67:af:35:8f:37:d2:
        40:80:38:c0:cf:d2:51:1c:9a:7d:9d:9c:b5:32:c6:12:
        32:46:f2:53:77:1c:4d:2e:66:1a:d1:60:70:fb:2c:70:
        6a:e7:09:05:84:e2:ec:14:a2:b5:15:4f:ec:be:b5:dc:
        84:8e:61:71:ea:87:d4:0d:e8:4c:f8:c8:0a:09:19:d8:
        3b:0f:7c:52:c9:2f:5d:d0:fe:f1:fa:35:eb:ec:4b:e0:
        7b:d2:63:a3:39:59:05:3d:89:d3:95:a6:ee:28:3d:ba:
        46:bf:f7:05:31:54:96:83:8f:ba:0f:65:d3:2d:ef:b8:
        50:16:a0:17:bc:80:f1:0b:72:64:ea:99:b8:54:82:58:
        ea:ce:a0:e1:09:56:2c:32:d7:e1:1b:2f:4c:44:f1:dc:
        7e:4e:ee:db:9d:35:42:cb:0d:ff:c6:25:20:1e:65:a7:
        c6:bc:49:8d:82:bb:02:5f:87:d9:0d:6c:89:9f:57:c0:
        02:e3:79:14:32:c6:48:b2:91:24:67:39:38:1f:e4:a9
    Fingerprint (SHA-256):
        0C:94:43:E3:4B:48:D8:68:65:09:DC:B0:01:C5:38:76:7C:30:10:3F:6E:81:A9:C8:AA:34:1A:92:7A:74:8B:AF
    Fingerprint (SHA1):
        0D:7F:74:E9:FF:69:F9:37:58:AD:47:BF:D0:91:73:43:26:54:5E:F0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2803: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2804: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144766 (0x3cdd6ebe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 14:52:15 2017
            Not After : Fri Oct 21 14:52:15 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:f1:f6:f7:fb:93:d0:2d:6d:06:98:ca:ad:87:50:37:
                    db:d9:e8:67:ed:50:2a:da:4a:1a:38:63:22:7b:9a:07:
                    28:a8:55:93:e3:89:fa:cc:1c:00:2a:a9:e2:c3:6e:e8:
                    ca:05:4b:44:68:2c:37:77:db:01:c0:94:44:d1:da:f8:
                    27:76:7b:34:48:38:f2:87:ad:d8:12:64:dc:58:ef:2a:
                    7a:0f:f1:09:b8:17:fb:21:44:97:4f:44:74:e6:f1:7c:
                    f0:d2:bc:76:5e:a7:17:28:ac:ad:5b:fe:4f:3a:79:ac:
                    28:7a:a8:ba:05:ed:b8:a8:c2:a5:78:b8:47:6d:14:21:
                    57:46:d1:06:4f:b2:89:0d:09:1e:41:a8:14:fd:a7:2c:
                    fb:ff:8e:bd:a4:e7:2a:e2:4a:98:2e:c3:52:30:80:30:
                    cc:19:33:91:25:6f:62:1c:58:c8:53:82:1d:b7:44:37:
                    d2:05:e1:64:74:b8:76:f7:62:20:41:6c:cb:48:4f:40:
                    40:a9:ef:57:86:d4:48:46:ae:12:50:23:61:02:5b:97:
                    77:11:83:62:bf:6d:61:86:b0:27:f7:78:70:0b:d4:2e:
                    dc:ba:9d:57:b9:df:ef:0d:e7:49:77:25:cb:fd:3e:d6:
                    b6:10:ae:7d:fb:07:4f:23:11:e3:c1:ba:d8:cb:41:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:91:2a:32:24:c7:92:3c:1c:20:6d:35:06:59:ed:c2:
        3f:33:3d:e8:ad:6f:0a:dd:4d:d8:88:fa:27:7f:ad:ee:
        41:ca:82:c4:2f:e3:e4:2f:c2:d9:ce:78:bd:e2:39:cc:
        73:b8:2e:a3:1e:61:7d:90:24:bf:eb:4e:ef:55:8e:a4:
        81:72:d0:56:ed:02:05:a4:cb:d7:0c:5c:2d:5e:2c:4b:
        b1:70:2f:a6:b5:fa:c6:b8:d8:98:ea:e8:77:74:8b:09:
        0a:12:47:3a:1b:89:16:59:9e:f4:2d:70:17:59:5d:84:
        4c:da:a2:97:e6:3a:f2:74:f6:93:86:fd:80:07:21:ca:
        cc:9f:a7:dd:7e:4d:41:f6:d0:12:7a:c3:84:18:94:9c:
        06:06:f8:aa:bc:d5:58:11:75:3a:01:cb:dd:2e:98:2f:
        e7:91:3f:32:09:86:af:42:d8:5c:80:c5:f1:71:50:02:
        ce:e1:d9:12:69:33:48:92:2f:da:7f:52:ec:24:51:eb:
        f4:00:59:e9:6a:c3:85:6a:7e:9d:e2:89:6e:7e:d4:a9:
        6c:33:1e:d1:87:8a:f7:ad:16:bf:25:41:68:e5:fe:c4:
        f8:a7:fa:26:28:b3:8d:85:0a:6e:48:f3:f6:67:50:44:
        e9:c1:dd:b8:e2:73:f9:d2:06:cf:dd:7c:6c:37:9a:67
    Fingerprint (SHA-256):
        5E:33:37:B6:49:8C:05:9E:07:2D:90:7B:21:F7:7D:E1:FB:C9:4E:75:B2:18:0D:E6:0F:D1:81:94:8F:DB:6F:83
    Fingerprint (SHA1):
        89:F2:E8:AA:5F:C9:C7:2E:75:B5:D1:CD:CE:36:62:76:B1:AC:C5:9E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #2805: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2806: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #2807: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #2808: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #2809: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144764 (0x3cdd6ebc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 14:52:05 2017
            Not After : Fri Oct 21 14:52:05 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:e5:53:73:32:69:b6:72:09:ef:89:84:7c:3b:70:de:
                    5a:a3:83:9b:4f:53:e5:89:9b:74:38:6d:6c:e7:95:fc:
                    77:bb:91:9f:fb:6e:2f:82:d1:e2:af:b1:93:73:0c:2a:
                    bc:26:b1:c5:40:f3:3e:f9:d0:e7:da:51:d6:c7:7e:2f:
                    00:17:94:ae:6e:15:57:6e:68:39:ff:7c:f3:54:28:59:
                    2b:13:61:94:87:34:9d:62:7f:9a:6d:6a:59:62:8b:31:
                    88:1a:75:84:23:3c:db:68:de:0b:cb:38:30:90:a5:20:
                    18:0e:62:7e:0a:f2:a4:16:1b:c2:d4:1d:70:4f:1b:59:
                    2e:77:76:0d:10:88:ca:cc:8f:bf:b1:82:f4:2f:d0:1c:
                    a9:e2:4d:96:a0:45:90:ea:4e:38:90:3b:ed:66:8e:77:
                    c3:ab:1b:e6:64:c4:17:80:7f:5e:e7:2d:aa:e2:d8:a4:
                    fb:35:16:03:54:28:3a:2f:e6:6a:ab:a3:79:93:08:95:
                    e1:8b:3b:a5:b6:5a:0a:dc:d3:96:c1:35:b8:52:a0:35:
                    33:0c:b5:95:c8:ae:a3:a1:08:88:d6:d9:9e:cc:72:92:
                    c4:66:8e:d0:25:77:ee:39:07:f8:da:c8:5f:6e:39:b7:
                    2d:60:38:b8:ce:39:14:3f:41:2c:7b:4e:2a:49:91:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:c7:15:7a:42:ae:91:10:be:88:09:1e:53:4d:d0:0f:
        31:73:a2:06:d4:f7:83:d9:05:94:4e:a4:ec:91:1b:dc:
        7e:88:c5:08:82:a3:78:16:ff:0b:24:42:c2:0b:80:74:
        cd:55:8e:f4:48:b2:47:9b:4a:34:b5:f7:64:8f:2e:3a:
        98:f5:8d:e5:08:6d:41:97:37:66:93:c0:82:55:9b:41:
        82:d4:26:bc:ca:25:78:79:6e:1e:43:7a:5b:8d:03:f2:
        24:f9:f2:88:11:2c:64:d0:c2:3f:b8:6b:c6:91:b1:18:
        cc:af:e3:12:70:ab:3c:a9:b4:d5:96:c0:c2:89:83:dd:
        44:5c:41:37:1e:b5:72:4d:87:a6:a1:be:ef:9d:c1:18:
        c7:c2:61:0b:29:fb:7d:dd:a7:1a:22:ed:07:1d:2a:6e:
        6b:e4:bb:5e:5f:3f:10:35:02:4c:31:89:f0:60:7a:b6:
        24:77:d9:19:71:20:7e:c4:48:c5:31:73:b3:93:0d:6d:
        ce:ac:6e:c0:30:07:63:c5:db:9d:7f:4b:e3:b5:2f:81:
        f9:e7:3f:d4:98:1b:68:b4:50:c3:59:4e:ff:b1:21:00:
        37:bb:ed:6a:aa:91:f1:0a:94:95:f3:97:44:fa:1a:23:
        51:b3:d1:c9:6a:a3:7b:0e:e2:29:66:40:20:c7:d6:05
    Fingerprint (SHA-256):
        C1:45:0D:06:A6:2F:D8:08:C2:B9:E5:67:69:01:FD:B9:71:0B:79:59:F6:A1:72:D8:A6:83:EC:89:EA:27:E0:9C
    Fingerprint (SHA1):
        F3:FB:14:96:A0:76:70:AB:7F:28:CC:8F:AB:19:B0:56:68:F6:6B:91
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2810: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2811: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144765 (0x3cdd6ebd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 14:52:08 2017
            Not After : Fri Oct 21 14:52:08 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:b5:51:ab:b1:dd:c0:6b:30:66:39:c4:24:60:57:28:
                    4c:a9:20:0f:69:ab:0f:78:a9:b5:5c:b1:81:d4:30:17:
                    77:0e:ac:f6:88:ca:4b:cc:32:2f:ae:8d:a8:01:ec:f6:
                    74:4b:d8:c7:66:b4:d0:3c:9a:71:8c:fc:ed:67:1e:da:
                    58:c3:44:db:77:b1:06:a1:3e:5e:4c:f4:ed:5f:1b:d9:
                    c7:7c:f6:2f:21:75:ca:68:71:1c:2b:08:53:36:67:75:
                    13:67:ad:33:01:4c:49:fd:77:40:5c:3a:74:d6:24:a1:
                    3d:14:5d:6e:34:77:63:c4:af:a5:9e:4f:69:2f:ce:2d:
                    92:05:d2:61:96:d3:c5:8d:a9:eb:bf:58:0e:be:2b:4e:
                    1d:c4:44:62:46:d4:02:47:09:f4:20:d8:ba:16:48:6a:
                    25:d9:41:43:f4:83:58:35:0b:da:52:40:c1:65:ff:fa:
                    c2:10:be:13:f8:59:7a:7f:3a:01:94:42:ec:11:57:e8:
                    c2:27:04:23:31:05:56:27:39:fa:52:8d:25:b0:b7:a8:
                    3c:5a:17:fd:f3:fa:fc:36:06:b9:41:18:a3:fa:8b:2f:
                    2c:f8:f5:d9:86:24:dd:ac:39:4c:85:6b:26:2c:41:f0:
                    9e:48:de:31:dc:24:7d:f1:d5:af:a2:e1:eb:f6:c4:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6f:f2:8c:05:1d:26:0b:d0:45:c4:89:47:b2:41:43:0f:
        01:16:d8:41:a0:03:bb:ef:fa:39:74:09:29:d4:a1:e2:
        e6:fe:5a:0c:60:25:c2:e0:13:f0:db:14:a9:40:b6:b3:
        da:44:5d:51:ec:0a:14:5d:e9:b8:67:af:35:8f:37:d2:
        40:80:38:c0:cf:d2:51:1c:9a:7d:9d:9c:b5:32:c6:12:
        32:46:f2:53:77:1c:4d:2e:66:1a:d1:60:70:fb:2c:70:
        6a:e7:09:05:84:e2:ec:14:a2:b5:15:4f:ec:be:b5:dc:
        84:8e:61:71:ea:87:d4:0d:e8:4c:f8:c8:0a:09:19:d8:
        3b:0f:7c:52:c9:2f:5d:d0:fe:f1:fa:35:eb:ec:4b:e0:
        7b:d2:63:a3:39:59:05:3d:89:d3:95:a6:ee:28:3d:ba:
        46:bf:f7:05:31:54:96:83:8f:ba:0f:65:d3:2d:ef:b8:
        50:16:a0:17:bc:80:f1:0b:72:64:ea:99:b8:54:82:58:
        ea:ce:a0:e1:09:56:2c:32:d7:e1:1b:2f:4c:44:f1:dc:
        7e:4e:ee:db:9d:35:42:cb:0d:ff:c6:25:20:1e:65:a7:
        c6:bc:49:8d:82:bb:02:5f:87:d9:0d:6c:89:9f:57:c0:
        02:e3:79:14:32:c6:48:b2:91:24:67:39:38:1f:e4:a9
    Fingerprint (SHA-256):
        0C:94:43:E3:4B:48:D8:68:65:09:DC:B0:01:C5:38:76:7C:30:10:3F:6E:81:A9:C8:AA:34:1A:92:7A:74:8B:AF
    Fingerprint (SHA1):
        0D:7F:74:E9:FF:69:F9:37:58:AD:47:BF:D0:91:73:43:26:54:5E:F0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2812: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2813: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144766 (0x3cdd6ebe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 14:52:15 2017
            Not After : Fri Oct 21 14:52:15 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:f1:f6:f7:fb:93:d0:2d:6d:06:98:ca:ad:87:50:37:
                    db:d9:e8:67:ed:50:2a:da:4a:1a:38:63:22:7b:9a:07:
                    28:a8:55:93:e3:89:fa:cc:1c:00:2a:a9:e2:c3:6e:e8:
                    ca:05:4b:44:68:2c:37:77:db:01:c0:94:44:d1:da:f8:
                    27:76:7b:34:48:38:f2:87:ad:d8:12:64:dc:58:ef:2a:
                    7a:0f:f1:09:b8:17:fb:21:44:97:4f:44:74:e6:f1:7c:
                    f0:d2:bc:76:5e:a7:17:28:ac:ad:5b:fe:4f:3a:79:ac:
                    28:7a:a8:ba:05:ed:b8:a8:c2:a5:78:b8:47:6d:14:21:
                    57:46:d1:06:4f:b2:89:0d:09:1e:41:a8:14:fd:a7:2c:
                    fb:ff:8e:bd:a4:e7:2a:e2:4a:98:2e:c3:52:30:80:30:
                    cc:19:33:91:25:6f:62:1c:58:c8:53:82:1d:b7:44:37:
                    d2:05:e1:64:74:b8:76:f7:62:20:41:6c:cb:48:4f:40:
                    40:a9:ef:57:86:d4:48:46:ae:12:50:23:61:02:5b:97:
                    77:11:83:62:bf:6d:61:86:b0:27:f7:78:70:0b:d4:2e:
                    dc:ba:9d:57:b9:df:ef:0d:e7:49:77:25:cb:fd:3e:d6:
                    b6:10:ae:7d:fb:07:4f:23:11:e3:c1:ba:d8:cb:41:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:91:2a:32:24:c7:92:3c:1c:20:6d:35:06:59:ed:c2:
        3f:33:3d:e8:ad:6f:0a:dd:4d:d8:88:fa:27:7f:ad:ee:
        41:ca:82:c4:2f:e3:e4:2f:c2:d9:ce:78:bd:e2:39:cc:
        73:b8:2e:a3:1e:61:7d:90:24:bf:eb:4e:ef:55:8e:a4:
        81:72:d0:56:ed:02:05:a4:cb:d7:0c:5c:2d:5e:2c:4b:
        b1:70:2f:a6:b5:fa:c6:b8:d8:98:ea:e8:77:74:8b:09:
        0a:12:47:3a:1b:89:16:59:9e:f4:2d:70:17:59:5d:84:
        4c:da:a2:97:e6:3a:f2:74:f6:93:86:fd:80:07:21:ca:
        cc:9f:a7:dd:7e:4d:41:f6:d0:12:7a:c3:84:18:94:9c:
        06:06:f8:aa:bc:d5:58:11:75:3a:01:cb:dd:2e:98:2f:
        e7:91:3f:32:09:86:af:42:d8:5c:80:c5:f1:71:50:02:
        ce:e1:d9:12:69:33:48:92:2f:da:7f:52:ec:24:51:eb:
        f4:00:59:e9:6a:c3:85:6a:7e:9d:e2:89:6e:7e:d4:a9:
        6c:33:1e:d1:87:8a:f7:ad:16:bf:25:41:68:e5:fe:c4:
        f8:a7:fa:26:28:b3:8d:85:0a:6e:48:f3:f6:67:50:44:
        e9:c1:dd:b8:e2:73:f9:d2:06:cf:dd:7c:6c:37:9a:67
    Fingerprint (SHA-256):
        5E:33:37:B6:49:8C:05:9E:07:2D:90:7B:21:F7:7D:E1:FB:C9:4E:75:B2:18:0D:E6:0F:D1:81:94:8F:DB:6F:83
    Fingerprint (SHA1):
        89:F2:E8:AA:5F:C9:C7:2E:75:B5:D1:CD:CE:36:62:76:B1:AC:C5:9E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #2814: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2815: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #2816: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144768 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2817: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #2818: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2819: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2820: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021144769   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2821: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2822: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #2823: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2824: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021144770   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2825: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2826: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #2827: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2828: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 1021144771   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2829: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2830: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #2831: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2832: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 1021144772   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2833: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2834: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2835: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144768 (0x3cdd6ec0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 14:52:36 2017
            Not After : Fri Oct 21 14:52:36 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:f6:b5:64:bc:0f:88:6d:88:59:bc:34:19:65:b6:bc:
                    67:12:1a:e6:09:96:98:d4:3c:82:ec:f7:09:87:41:e5:
                    f5:87:46:bd:dd:72:54:50:d9:f0:f6:0d:01:29:80:5b:
                    aa:7c:56:96:ce:84:30:6d:4e:b6:b6:6c:46:38:2d:9b:
                    3d:5c:b0:61:01:ee:cd:c4:2f:d0:e5:49:f8:a5:ad:f2:
                    29:ab:b5:c5:c0:08:2c:77:07:02:5a:8a:0c:65:3f:5c:
                    c5:65:72:23:98:76:51:46:4b:94:3a:14:9c:87:44:3d:
                    db:9e:3d:9a:26:2f:07:c7:c2:ee:17:01:84:7e:75:2c:
                    01:c4:57:11:ce:89:21:62:2e:2b:bc:ff:cf:cf:b8:a5:
                    7f:43:e9:ab:74:aa:77:db:6c:b8:19:6b:62:81:97:45:
                    9a:11:90:87:e4:35:2c:f1:66:01:91:ee:31:41:60:1a:
                    2c:7d:d3:c2:16:08:7a:2c:8a:03:b9:78:66:ab:40:b2:
                    b1:97:18:2b:00:0f:34:13:4a:49:77:88:5d:57:d8:88:
                    df:f5:ce:22:0d:02:9e:e9:47:bc:26:67:dd:25:6c:76:
                    8b:b0:c9:9a:12:0d:40:ec:85:c4:e7:8e:d6:22:0f:b8:
                    72:0f:dc:4b:ff:98:e6:94:41:2e:af:d5:bf:af:ea:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:a1:66:a2:c5:ab:d5:f0:83:67:e0:50:10:1a:83:9a:
        54:63:ad:fc:8c:56:8b:af:1a:96:78:73:1e:5c:53:7b:
        53:e7:33:0d:28:85:b0:16:34:75:f8:0a:06:fb:9e:e9:
        3e:a2:54:b8:69:90:fc:18:e9:01:37:d5:ff:dc:d1:d8:
        4b:a7:7a:5f:e8:0b:f5:f9:19:af:3e:2d:23:1c:87:72:
        20:5b:44:b1:d2:26:a5:11:5d:5b:82:bc:5b:3c:ef:d9:
        a5:9e:3e:39:6f:3a:e5:1d:68:69:e6:0c:a9:c9:a3:f4:
        96:0d:24:d4:16:09:b0:4d:5b:7d:64:1b:d5:2f:02:02:
        44:3e:0c:61:24:3a:ac:bd:d6:2c:b6:bd:3b:89:0f:f5:
        0e:b8:85:31:6f:ab:4d:5e:26:7d:9c:5d:3e:d1:e7:51:
        f2:0b:9b:fd:b2:07:40:6b:07:d3:4b:19:4e:81:de:90:
        8c:1b:b0:4f:6c:48:7c:27:47:2e:04:5a:fb:b5:7b:84:
        e8:34:68:e4:dc:7f:8c:31:8d:be:9c:0e:94:61:8b:13:
        54:ca:ec:a1:14:e4:45:a5:3a:cc:a3:4f:8c:a8:89:b3:
        33:ca:69:70:b2:1a:a8:b3:35:2e:56:0c:ad:88:59:35:
        18:ba:71:06:0a:f0:c1:70:a5:83:93:f8:9a:f0:47:59
    Fingerprint (SHA-256):
        E8:59:AB:F3:E9:FE:07:9C:B7:D0:F0:7E:3E:F4:AE:C5:00:37:F0:D4:08:42:6F:AF:B7:22:7C:C1:13:5A:AF:09
    Fingerprint (SHA1):
        82:D8:EC:8A:AD:AD:2B:B9:25:55:82:6D:95:D2:AD:BC:9F:31:D9:89
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2836: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2837: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144769 (0x3cdd6ec1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 14:52:40 2017
            Not After : Fri Oct 21 14:52:40 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:31:e9:6d:93:39:55:71:8c:58:c9:73:76:ff:e1:83:
                    9f:ac:ad:c5:ce:47:44:9a:f0:04:6e:e1:9a:36:67:5f:
                    34:71:f1:89:a6:16:1b:8a:7d:0a:4c:0e:8c:5d:f4:ec:
                    ce:8b:d3:14:9b:06:aa:17:6d:d5:96:f8:74:88:f5:07:
                    72:6f:7e:5d:a8:01:55:b0:a3:e4:c2:4b:c6:54:e6:9a:
                    f8:ee:fd:a1:cf:b3:23:f6:e5:8a:c5:1c:da:57:b3:61:
                    0c:df:d9:15:b1:20:91:da:d6:2b:9b:17:48:db:d0:3e:
                    ac:9c:e8:82:0c:15:09:c3:ab:2e:96:c5:ef:f3:1c:0c:
                    3a:36:1c:b8:4a:9b:8b:be:e6:36:bc:d8:d1:37:79:40:
                    32:dd:65:23:6c:18:d6:fd:b3:26:c3:36:e2:ab:c4:e3:
                    c1:d2:72:a5:1a:e0:b3:16:ef:ed:a4:44:bb:0c:97:e1:
                    33:db:41:7b:1a:24:36:16:92:ce:d3:e2:8b:99:cc:8d:
                    d8:3f:2f:56:28:ac:31:c0:4e:5c:ef:f9:48:33:bc:2c:
                    df:ab:f1:05:bf:5b:52:03:ce:02:e2:95:03:12:7e:b7:
                    58:2a:cc:d0:60:e5:56:e3:15:46:59:62:73:84:e6:b0:
                    d6:9f:52:2a:c2:ef:b8:20:92:7d:16:ad:a1:d5:54:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:fe:e4:0d:df:cb:22:4e:65:38:7d:5d:3a:1f:67:7d:
        0d:92:34:15:86:4f:8d:ab:66:1f:5b:f6:e3:eb:75:5d:
        f2:aa:a2:aa:49:b5:b0:b3:c1:84:81:08:9c:02:fc:a2:
        9e:b6:a5:4c:29:2c:b7:0a:84:09:70:ec:6c:39:02:db:
        fc:cf:05:d1:1d:13:11:17:4a:14:44:3c:e5:2c:c3:12:
        a4:96:a9:e5:de:8c:a0:4b:8e:a3:99:ff:0a:79:31:ec:
        c2:4c:13:51:13:f7:bb:c7:8e:d2:6d:eb:05:04:3b:42:
        fa:cd:6a:57:7f:53:57:d9:86:9c:ec:b9:e9:39:5c:72:
        38:57:ce:37:e9:3b:95:80:61:3f:41:d2:9d:80:fb:d9:
        cd:56:58:a4:7e:03:09:d3:a2:c9:b4:7b:6d:84:cc:36:
        25:5d:66:73:ed:af:ff:51:5c:17:9e:6c:f1:33:53:7c:
        ea:1d:3a:e4:44:e0:9f:7d:63:26:0e:63:06:03:dc:9f:
        a9:22:06:ea:ed:89:8f:55:26:01:81:a0:0b:96:c9:74:
        cf:90:ce:c8:69:09:ac:a1:f3:38:fb:31:c5:89:89:06:
        cd:5e:1c:54:95:3e:d3:b6:07:31:d0:f2:d3:ec:a9:85:
        5b:96:ea:89:67:9e:b1:e0:f2:a8:35:91:e1:3a:92:c9
    Fingerprint (SHA-256):
        C2:3F:A5:4B:0A:3E:BB:65:9F:00:1F:3B:2E:6E:04:32:B0:8A:C0:69:1A:DD:E9:A5:AA:E9:08:95:6B:2B:25:7C
    Fingerprint (SHA1):
        A1:9D:46:2D:62:1F:54:FF:4B:C4:FD:F9:04:23:31:12:44:8B:49:FA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2838: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2839: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144770 (0x3cdd6ec2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 14:52:44 2017
            Not After : Fri Oct 21 14:52:44 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:59:c8:77:78:27:fa:da:12:2e:5d:b6:1a:c5:53:2d:
                    c0:c3:4c:84:a4:bc:ad:ca:66:d0:2a:27:44:0d:70:1f:
                    e0:d7:8d:d6:77:64:fd:7e:b6:d9:0f:32:c9:f1:73:80:
                    a2:b8:26:95:20:87:09:c1:f8:e9:14:cd:2a:0e:07:c4:
                    e9:b2:ce:fa:07:87:4e:27:fd:84:c3:1c:72:9b:ab:1f:
                    a3:b8:54:f5:e8:01:8d:5e:67:1e:6f:44:09:8d:b8:05:
                    59:54:83:39:f3:33:bf:c7:b1:6d:da:16:77:26:b8:20:
                    8b:c0:f9:f2:53:5f:8e:ae:e8:7b:3f:3d:56:06:90:2c:
                    d3:e9:b8:07:b5:e6:59:c5:59:13:42:5e:a4:2e:e1:49:
                    12:a8:c0:95:b9:2c:1a:2f:d5:a4:02:0b:69:3b:e7:c3:
                    12:99:41:b8:f7:18:d5:d8:d4:ed:44:86:a5:01:2a:2c:
                    ab:4a:d8:8b:8d:f5:09:4c:f6:eb:8d:f3:b4:00:02:dd:
                    89:8e:4c:b1:d5:46:5a:68:ff:b4:6f:32:6e:8e:19:19:
                    be:cd:42:f0:d8:1a:47:23:17:d2:d0:97:64:92:1d:b7:
                    c7:11:c6:9c:75:fd:8c:f1:cd:f8:5d:c4:e3:9d:87:d8:
                    18:bb:ff:22:39:54:7b:e6:6e:f6:18:75:c0:d7:bc:35
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:48:f3:92:35:e8:42:c8:84:65:47:ec:d9:7a:c8:61:
        ae:73:2f:cf:88:b7:78:cc:ac:84:14:a6:c4:7c:e0:1f:
        a9:2f:e6:2f:0b:91:32:5f:ff:91:59:8a:f3:cb:4e:65:
        5b:95:a2:c8:1e:0f:a9:a0:ad:c8:7e:d4:aa:77:a6:97:
        b3:be:50:de:e5:b4:55:d0:c0:17:02:90:e0:d8:7c:da:
        ac:cc:2f:8c:ba:a3:6b:1b:27:fd:ff:1a:da:d3:b7:d1:
        d3:f2:c7:5b:d7:51:ab:32:67:0d:4c:9f:1d:e9:2f:00:
        ca:cf:a1:1e:72:02:c3:c3:be:4f:d1:86:d2:15:b5:96:
        ba:56:5a:7d:7a:7e:77:a5:6f:44:c9:c3:2d:5a:f6:70:
        9f:d8:df:92:be:e3:df:fd:84:ba:9e:79:f8:78:8c:bc:
        7c:62:61:8f:10:f7:ec:6c:d5:22:11:fd:7b:2a:63:ea:
        d1:d2:ae:27:c0:23:f7:23:64:dc:db:fe:c9:41:a0:e2:
        a1:d4:b7:c5:09:ce:e6:fb:a5:2b:f7:29:17:12:69:90:
        a8:27:cd:8a:f5:96:4a:4b:c1:9f:13:83:1e:ff:11:cd:
        60:78:20:0c:cb:92:16:75:38:fb:65:a8:e5:ef:d7:01:
        56:84:43:f7:5a:b1:6d:c7:ef:cc:31:0b:4b:71:9a:bf
    Fingerprint (SHA-256):
        79:DE:52:1A:DF:CC:41:63:01:56:75:92:8B:E3:9C:E2:04:E6:2B:D2:11:99:FE:87:BE:EA:84:A0:87:8C:84:15
    Fingerprint (SHA1):
        9F:3C:65:F6:58:68:33:98:AB:DB:F3:B8:B0:67:14:F5:A8:23:24:25
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2840: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2841: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #2842: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #2843: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #2844: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144768 (0x3cdd6ec0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 14:52:36 2017
            Not After : Fri Oct 21 14:52:36 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:f6:b5:64:bc:0f:88:6d:88:59:bc:34:19:65:b6:bc:
                    67:12:1a:e6:09:96:98:d4:3c:82:ec:f7:09:87:41:e5:
                    f5:87:46:bd:dd:72:54:50:d9:f0:f6:0d:01:29:80:5b:
                    aa:7c:56:96:ce:84:30:6d:4e:b6:b6:6c:46:38:2d:9b:
                    3d:5c:b0:61:01:ee:cd:c4:2f:d0:e5:49:f8:a5:ad:f2:
                    29:ab:b5:c5:c0:08:2c:77:07:02:5a:8a:0c:65:3f:5c:
                    c5:65:72:23:98:76:51:46:4b:94:3a:14:9c:87:44:3d:
                    db:9e:3d:9a:26:2f:07:c7:c2:ee:17:01:84:7e:75:2c:
                    01:c4:57:11:ce:89:21:62:2e:2b:bc:ff:cf:cf:b8:a5:
                    7f:43:e9:ab:74:aa:77:db:6c:b8:19:6b:62:81:97:45:
                    9a:11:90:87:e4:35:2c:f1:66:01:91:ee:31:41:60:1a:
                    2c:7d:d3:c2:16:08:7a:2c:8a:03:b9:78:66:ab:40:b2:
                    b1:97:18:2b:00:0f:34:13:4a:49:77:88:5d:57:d8:88:
                    df:f5:ce:22:0d:02:9e:e9:47:bc:26:67:dd:25:6c:76:
                    8b:b0:c9:9a:12:0d:40:ec:85:c4:e7:8e:d6:22:0f:b8:
                    72:0f:dc:4b:ff:98:e6:94:41:2e:af:d5:bf:af:ea:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:a1:66:a2:c5:ab:d5:f0:83:67:e0:50:10:1a:83:9a:
        54:63:ad:fc:8c:56:8b:af:1a:96:78:73:1e:5c:53:7b:
        53:e7:33:0d:28:85:b0:16:34:75:f8:0a:06:fb:9e:e9:
        3e:a2:54:b8:69:90:fc:18:e9:01:37:d5:ff:dc:d1:d8:
        4b:a7:7a:5f:e8:0b:f5:f9:19:af:3e:2d:23:1c:87:72:
        20:5b:44:b1:d2:26:a5:11:5d:5b:82:bc:5b:3c:ef:d9:
        a5:9e:3e:39:6f:3a:e5:1d:68:69:e6:0c:a9:c9:a3:f4:
        96:0d:24:d4:16:09:b0:4d:5b:7d:64:1b:d5:2f:02:02:
        44:3e:0c:61:24:3a:ac:bd:d6:2c:b6:bd:3b:89:0f:f5:
        0e:b8:85:31:6f:ab:4d:5e:26:7d:9c:5d:3e:d1:e7:51:
        f2:0b:9b:fd:b2:07:40:6b:07:d3:4b:19:4e:81:de:90:
        8c:1b:b0:4f:6c:48:7c:27:47:2e:04:5a:fb:b5:7b:84:
        e8:34:68:e4:dc:7f:8c:31:8d:be:9c:0e:94:61:8b:13:
        54:ca:ec:a1:14:e4:45:a5:3a:cc:a3:4f:8c:a8:89:b3:
        33:ca:69:70:b2:1a:a8:b3:35:2e:56:0c:ad:88:59:35:
        18:ba:71:06:0a:f0:c1:70:a5:83:93:f8:9a:f0:47:59
    Fingerprint (SHA-256):
        E8:59:AB:F3:E9:FE:07:9C:B7:D0:F0:7E:3E:F4:AE:C5:00:37:F0:D4:08:42:6F:AF:B7:22:7C:C1:13:5A:AF:09
    Fingerprint (SHA1):
        82:D8:EC:8A:AD:AD:2B:B9:25:55:82:6D:95:D2:AD:BC:9F:31:D9:89
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2845: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2846: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144769 (0x3cdd6ec1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 14:52:40 2017
            Not After : Fri Oct 21 14:52:40 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:31:e9:6d:93:39:55:71:8c:58:c9:73:76:ff:e1:83:
                    9f:ac:ad:c5:ce:47:44:9a:f0:04:6e:e1:9a:36:67:5f:
                    34:71:f1:89:a6:16:1b:8a:7d:0a:4c:0e:8c:5d:f4:ec:
                    ce:8b:d3:14:9b:06:aa:17:6d:d5:96:f8:74:88:f5:07:
                    72:6f:7e:5d:a8:01:55:b0:a3:e4:c2:4b:c6:54:e6:9a:
                    f8:ee:fd:a1:cf:b3:23:f6:e5:8a:c5:1c:da:57:b3:61:
                    0c:df:d9:15:b1:20:91:da:d6:2b:9b:17:48:db:d0:3e:
                    ac:9c:e8:82:0c:15:09:c3:ab:2e:96:c5:ef:f3:1c:0c:
                    3a:36:1c:b8:4a:9b:8b:be:e6:36:bc:d8:d1:37:79:40:
                    32:dd:65:23:6c:18:d6:fd:b3:26:c3:36:e2:ab:c4:e3:
                    c1:d2:72:a5:1a:e0:b3:16:ef:ed:a4:44:bb:0c:97:e1:
                    33:db:41:7b:1a:24:36:16:92:ce:d3:e2:8b:99:cc:8d:
                    d8:3f:2f:56:28:ac:31:c0:4e:5c:ef:f9:48:33:bc:2c:
                    df:ab:f1:05:bf:5b:52:03:ce:02:e2:95:03:12:7e:b7:
                    58:2a:cc:d0:60:e5:56:e3:15:46:59:62:73:84:e6:b0:
                    d6:9f:52:2a:c2:ef:b8:20:92:7d:16:ad:a1:d5:54:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:fe:e4:0d:df:cb:22:4e:65:38:7d:5d:3a:1f:67:7d:
        0d:92:34:15:86:4f:8d:ab:66:1f:5b:f6:e3:eb:75:5d:
        f2:aa:a2:aa:49:b5:b0:b3:c1:84:81:08:9c:02:fc:a2:
        9e:b6:a5:4c:29:2c:b7:0a:84:09:70:ec:6c:39:02:db:
        fc:cf:05:d1:1d:13:11:17:4a:14:44:3c:e5:2c:c3:12:
        a4:96:a9:e5:de:8c:a0:4b:8e:a3:99:ff:0a:79:31:ec:
        c2:4c:13:51:13:f7:bb:c7:8e:d2:6d:eb:05:04:3b:42:
        fa:cd:6a:57:7f:53:57:d9:86:9c:ec:b9:e9:39:5c:72:
        38:57:ce:37:e9:3b:95:80:61:3f:41:d2:9d:80:fb:d9:
        cd:56:58:a4:7e:03:09:d3:a2:c9:b4:7b:6d:84:cc:36:
        25:5d:66:73:ed:af:ff:51:5c:17:9e:6c:f1:33:53:7c:
        ea:1d:3a:e4:44:e0:9f:7d:63:26:0e:63:06:03:dc:9f:
        a9:22:06:ea:ed:89:8f:55:26:01:81:a0:0b:96:c9:74:
        cf:90:ce:c8:69:09:ac:a1:f3:38:fb:31:c5:89:89:06:
        cd:5e:1c:54:95:3e:d3:b6:07:31:d0:f2:d3:ec:a9:85:
        5b:96:ea:89:67:9e:b1:e0:f2:a8:35:91:e1:3a:92:c9
    Fingerprint (SHA-256):
        C2:3F:A5:4B:0A:3E:BB:65:9F:00:1F:3B:2E:6E:04:32:B0:8A:C0:69:1A:DD:E9:A5:AA:E9:08:95:6B:2B:25:7C
    Fingerprint (SHA1):
        A1:9D:46:2D:62:1F:54:FF:4B:C4:FD:F9:04:23:31:12:44:8B:49:FA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2847: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2848: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144770 (0x3cdd6ec2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 14:52:44 2017
            Not After : Fri Oct 21 14:52:44 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:59:c8:77:78:27:fa:da:12:2e:5d:b6:1a:c5:53:2d:
                    c0:c3:4c:84:a4:bc:ad:ca:66:d0:2a:27:44:0d:70:1f:
                    e0:d7:8d:d6:77:64:fd:7e:b6:d9:0f:32:c9:f1:73:80:
                    a2:b8:26:95:20:87:09:c1:f8:e9:14:cd:2a:0e:07:c4:
                    e9:b2:ce:fa:07:87:4e:27:fd:84:c3:1c:72:9b:ab:1f:
                    a3:b8:54:f5:e8:01:8d:5e:67:1e:6f:44:09:8d:b8:05:
                    59:54:83:39:f3:33:bf:c7:b1:6d:da:16:77:26:b8:20:
                    8b:c0:f9:f2:53:5f:8e:ae:e8:7b:3f:3d:56:06:90:2c:
                    d3:e9:b8:07:b5:e6:59:c5:59:13:42:5e:a4:2e:e1:49:
                    12:a8:c0:95:b9:2c:1a:2f:d5:a4:02:0b:69:3b:e7:c3:
                    12:99:41:b8:f7:18:d5:d8:d4:ed:44:86:a5:01:2a:2c:
                    ab:4a:d8:8b:8d:f5:09:4c:f6:eb:8d:f3:b4:00:02:dd:
                    89:8e:4c:b1:d5:46:5a:68:ff:b4:6f:32:6e:8e:19:19:
                    be:cd:42:f0:d8:1a:47:23:17:d2:d0:97:64:92:1d:b7:
                    c7:11:c6:9c:75:fd:8c:f1:cd:f8:5d:c4:e3:9d:87:d8:
                    18:bb:ff:22:39:54:7b:e6:6e:f6:18:75:c0:d7:bc:35
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:48:f3:92:35:e8:42:c8:84:65:47:ec:d9:7a:c8:61:
        ae:73:2f:cf:88:b7:78:cc:ac:84:14:a6:c4:7c:e0:1f:
        a9:2f:e6:2f:0b:91:32:5f:ff:91:59:8a:f3:cb:4e:65:
        5b:95:a2:c8:1e:0f:a9:a0:ad:c8:7e:d4:aa:77:a6:97:
        b3:be:50:de:e5:b4:55:d0:c0:17:02:90:e0:d8:7c:da:
        ac:cc:2f:8c:ba:a3:6b:1b:27:fd:ff:1a:da:d3:b7:d1:
        d3:f2:c7:5b:d7:51:ab:32:67:0d:4c:9f:1d:e9:2f:00:
        ca:cf:a1:1e:72:02:c3:c3:be:4f:d1:86:d2:15:b5:96:
        ba:56:5a:7d:7a:7e:77:a5:6f:44:c9:c3:2d:5a:f6:70:
        9f:d8:df:92:be:e3:df:fd:84:ba:9e:79:f8:78:8c:bc:
        7c:62:61:8f:10:f7:ec:6c:d5:22:11:fd:7b:2a:63:ea:
        d1:d2:ae:27:c0:23:f7:23:64:dc:db:fe:c9:41:a0:e2:
        a1:d4:b7:c5:09:ce:e6:fb:a5:2b:f7:29:17:12:69:90:
        a8:27:cd:8a:f5:96:4a:4b:c1:9f:13:83:1e:ff:11:cd:
        60:78:20:0c:cb:92:16:75:38:fb:65:a8:e5:ef:d7:01:
        56:84:43:f7:5a:b1:6d:c7:ef:cc:31:0b:4b:71:9a:bf
    Fingerprint (SHA-256):
        79:DE:52:1A:DF:CC:41:63:01:56:75:92:8B:E3:9C:E2:04:E6:2B:D2:11:99:FE:87:BE:EA:84:A0:87:8C:84:15
    Fingerprint (SHA1):
        9F:3C:65:F6:58:68:33:98:AB:DB:F3:B8:B0:67:14:F5:A8:23:24:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2849: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2850: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144768 (0x3cdd6ec0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 14:52:36 2017
            Not After : Fri Oct 21 14:52:36 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:f6:b5:64:bc:0f:88:6d:88:59:bc:34:19:65:b6:bc:
                    67:12:1a:e6:09:96:98:d4:3c:82:ec:f7:09:87:41:e5:
                    f5:87:46:bd:dd:72:54:50:d9:f0:f6:0d:01:29:80:5b:
                    aa:7c:56:96:ce:84:30:6d:4e:b6:b6:6c:46:38:2d:9b:
                    3d:5c:b0:61:01:ee:cd:c4:2f:d0:e5:49:f8:a5:ad:f2:
                    29:ab:b5:c5:c0:08:2c:77:07:02:5a:8a:0c:65:3f:5c:
                    c5:65:72:23:98:76:51:46:4b:94:3a:14:9c:87:44:3d:
                    db:9e:3d:9a:26:2f:07:c7:c2:ee:17:01:84:7e:75:2c:
                    01:c4:57:11:ce:89:21:62:2e:2b:bc:ff:cf:cf:b8:a5:
                    7f:43:e9:ab:74:aa:77:db:6c:b8:19:6b:62:81:97:45:
                    9a:11:90:87:e4:35:2c:f1:66:01:91:ee:31:41:60:1a:
                    2c:7d:d3:c2:16:08:7a:2c:8a:03:b9:78:66:ab:40:b2:
                    b1:97:18:2b:00:0f:34:13:4a:49:77:88:5d:57:d8:88:
                    df:f5:ce:22:0d:02:9e:e9:47:bc:26:67:dd:25:6c:76:
                    8b:b0:c9:9a:12:0d:40:ec:85:c4:e7:8e:d6:22:0f:b8:
                    72:0f:dc:4b:ff:98:e6:94:41:2e:af:d5:bf:af:ea:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:a1:66:a2:c5:ab:d5:f0:83:67:e0:50:10:1a:83:9a:
        54:63:ad:fc:8c:56:8b:af:1a:96:78:73:1e:5c:53:7b:
        53:e7:33:0d:28:85:b0:16:34:75:f8:0a:06:fb:9e:e9:
        3e:a2:54:b8:69:90:fc:18:e9:01:37:d5:ff:dc:d1:d8:
        4b:a7:7a:5f:e8:0b:f5:f9:19:af:3e:2d:23:1c:87:72:
        20:5b:44:b1:d2:26:a5:11:5d:5b:82:bc:5b:3c:ef:d9:
        a5:9e:3e:39:6f:3a:e5:1d:68:69:e6:0c:a9:c9:a3:f4:
        96:0d:24:d4:16:09:b0:4d:5b:7d:64:1b:d5:2f:02:02:
        44:3e:0c:61:24:3a:ac:bd:d6:2c:b6:bd:3b:89:0f:f5:
        0e:b8:85:31:6f:ab:4d:5e:26:7d:9c:5d:3e:d1:e7:51:
        f2:0b:9b:fd:b2:07:40:6b:07:d3:4b:19:4e:81:de:90:
        8c:1b:b0:4f:6c:48:7c:27:47:2e:04:5a:fb:b5:7b:84:
        e8:34:68:e4:dc:7f:8c:31:8d:be:9c:0e:94:61:8b:13:
        54:ca:ec:a1:14:e4:45:a5:3a:cc:a3:4f:8c:a8:89:b3:
        33:ca:69:70:b2:1a:a8:b3:35:2e:56:0c:ad:88:59:35:
        18:ba:71:06:0a:f0:c1:70:a5:83:93:f8:9a:f0:47:59
    Fingerprint (SHA-256):
        E8:59:AB:F3:E9:FE:07:9C:B7:D0:F0:7E:3E:F4:AE:C5:00:37:F0:D4:08:42:6F:AF:B7:22:7C:C1:13:5A:AF:09
    Fingerprint (SHA1):
        82:D8:EC:8A:AD:AD:2B:B9:25:55:82:6D:95:D2:AD:BC:9F:31:D9:89
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2851: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144768 (0x3cdd6ec0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 14:52:36 2017
            Not After : Fri Oct 21 14:52:36 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:f6:b5:64:bc:0f:88:6d:88:59:bc:34:19:65:b6:bc:
                    67:12:1a:e6:09:96:98:d4:3c:82:ec:f7:09:87:41:e5:
                    f5:87:46:bd:dd:72:54:50:d9:f0:f6:0d:01:29:80:5b:
                    aa:7c:56:96:ce:84:30:6d:4e:b6:b6:6c:46:38:2d:9b:
                    3d:5c:b0:61:01:ee:cd:c4:2f:d0:e5:49:f8:a5:ad:f2:
                    29:ab:b5:c5:c0:08:2c:77:07:02:5a:8a:0c:65:3f:5c:
                    c5:65:72:23:98:76:51:46:4b:94:3a:14:9c:87:44:3d:
                    db:9e:3d:9a:26:2f:07:c7:c2:ee:17:01:84:7e:75:2c:
                    01:c4:57:11:ce:89:21:62:2e:2b:bc:ff:cf:cf:b8:a5:
                    7f:43:e9:ab:74:aa:77:db:6c:b8:19:6b:62:81:97:45:
                    9a:11:90:87:e4:35:2c:f1:66:01:91:ee:31:41:60:1a:
                    2c:7d:d3:c2:16:08:7a:2c:8a:03:b9:78:66:ab:40:b2:
                    b1:97:18:2b:00:0f:34:13:4a:49:77:88:5d:57:d8:88:
                    df:f5:ce:22:0d:02:9e:e9:47:bc:26:67:dd:25:6c:76:
                    8b:b0:c9:9a:12:0d:40:ec:85:c4:e7:8e:d6:22:0f:b8:
                    72:0f:dc:4b:ff:98:e6:94:41:2e:af:d5:bf:af:ea:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:a1:66:a2:c5:ab:d5:f0:83:67:e0:50:10:1a:83:9a:
        54:63:ad:fc:8c:56:8b:af:1a:96:78:73:1e:5c:53:7b:
        53:e7:33:0d:28:85:b0:16:34:75:f8:0a:06:fb:9e:e9:
        3e:a2:54:b8:69:90:fc:18:e9:01:37:d5:ff:dc:d1:d8:
        4b:a7:7a:5f:e8:0b:f5:f9:19:af:3e:2d:23:1c:87:72:
        20:5b:44:b1:d2:26:a5:11:5d:5b:82:bc:5b:3c:ef:d9:
        a5:9e:3e:39:6f:3a:e5:1d:68:69:e6:0c:a9:c9:a3:f4:
        96:0d:24:d4:16:09:b0:4d:5b:7d:64:1b:d5:2f:02:02:
        44:3e:0c:61:24:3a:ac:bd:d6:2c:b6:bd:3b:89:0f:f5:
        0e:b8:85:31:6f:ab:4d:5e:26:7d:9c:5d:3e:d1:e7:51:
        f2:0b:9b:fd:b2:07:40:6b:07:d3:4b:19:4e:81:de:90:
        8c:1b:b0:4f:6c:48:7c:27:47:2e:04:5a:fb:b5:7b:84:
        e8:34:68:e4:dc:7f:8c:31:8d:be:9c:0e:94:61:8b:13:
        54:ca:ec:a1:14:e4:45:a5:3a:cc:a3:4f:8c:a8:89:b3:
        33:ca:69:70:b2:1a:a8:b3:35:2e:56:0c:ad:88:59:35:
        18:ba:71:06:0a:f0:c1:70:a5:83:93:f8:9a:f0:47:59
    Fingerprint (SHA-256):
        E8:59:AB:F3:E9:FE:07:9C:B7:D0:F0:7E:3E:F4:AE:C5:00:37:F0:D4:08:42:6F:AF:B7:22:7C:C1:13:5A:AF:09
    Fingerprint (SHA1):
        82:D8:EC:8A:AD:AD:2B:B9:25:55:82:6D:95:D2:AD:BC:9F:31:D9:89
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2852: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144769 (0x3cdd6ec1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 14:52:40 2017
            Not After : Fri Oct 21 14:52:40 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:31:e9:6d:93:39:55:71:8c:58:c9:73:76:ff:e1:83:
                    9f:ac:ad:c5:ce:47:44:9a:f0:04:6e:e1:9a:36:67:5f:
                    34:71:f1:89:a6:16:1b:8a:7d:0a:4c:0e:8c:5d:f4:ec:
                    ce:8b:d3:14:9b:06:aa:17:6d:d5:96:f8:74:88:f5:07:
                    72:6f:7e:5d:a8:01:55:b0:a3:e4:c2:4b:c6:54:e6:9a:
                    f8:ee:fd:a1:cf:b3:23:f6:e5:8a:c5:1c:da:57:b3:61:
                    0c:df:d9:15:b1:20:91:da:d6:2b:9b:17:48:db:d0:3e:
                    ac:9c:e8:82:0c:15:09:c3:ab:2e:96:c5:ef:f3:1c:0c:
                    3a:36:1c:b8:4a:9b:8b:be:e6:36:bc:d8:d1:37:79:40:
                    32:dd:65:23:6c:18:d6:fd:b3:26:c3:36:e2:ab:c4:e3:
                    c1:d2:72:a5:1a:e0:b3:16:ef:ed:a4:44:bb:0c:97:e1:
                    33:db:41:7b:1a:24:36:16:92:ce:d3:e2:8b:99:cc:8d:
                    d8:3f:2f:56:28:ac:31:c0:4e:5c:ef:f9:48:33:bc:2c:
                    df:ab:f1:05:bf:5b:52:03:ce:02:e2:95:03:12:7e:b7:
                    58:2a:cc:d0:60:e5:56:e3:15:46:59:62:73:84:e6:b0:
                    d6:9f:52:2a:c2:ef:b8:20:92:7d:16:ad:a1:d5:54:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:fe:e4:0d:df:cb:22:4e:65:38:7d:5d:3a:1f:67:7d:
        0d:92:34:15:86:4f:8d:ab:66:1f:5b:f6:e3:eb:75:5d:
        f2:aa:a2:aa:49:b5:b0:b3:c1:84:81:08:9c:02:fc:a2:
        9e:b6:a5:4c:29:2c:b7:0a:84:09:70:ec:6c:39:02:db:
        fc:cf:05:d1:1d:13:11:17:4a:14:44:3c:e5:2c:c3:12:
        a4:96:a9:e5:de:8c:a0:4b:8e:a3:99:ff:0a:79:31:ec:
        c2:4c:13:51:13:f7:bb:c7:8e:d2:6d:eb:05:04:3b:42:
        fa:cd:6a:57:7f:53:57:d9:86:9c:ec:b9:e9:39:5c:72:
        38:57:ce:37:e9:3b:95:80:61:3f:41:d2:9d:80:fb:d9:
        cd:56:58:a4:7e:03:09:d3:a2:c9:b4:7b:6d:84:cc:36:
        25:5d:66:73:ed:af:ff:51:5c:17:9e:6c:f1:33:53:7c:
        ea:1d:3a:e4:44:e0:9f:7d:63:26:0e:63:06:03:dc:9f:
        a9:22:06:ea:ed:89:8f:55:26:01:81:a0:0b:96:c9:74:
        cf:90:ce:c8:69:09:ac:a1:f3:38:fb:31:c5:89:89:06:
        cd:5e:1c:54:95:3e:d3:b6:07:31:d0:f2:d3:ec:a9:85:
        5b:96:ea:89:67:9e:b1:e0:f2:a8:35:91:e1:3a:92:c9
    Fingerprint (SHA-256):
        C2:3F:A5:4B:0A:3E:BB:65:9F:00:1F:3B:2E:6E:04:32:B0:8A:C0:69:1A:DD:E9:A5:AA:E9:08:95:6B:2B:25:7C
    Fingerprint (SHA1):
        A1:9D:46:2D:62:1F:54:FF:4B:C4:FD:F9:04:23:31:12:44:8B:49:FA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2853: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144769 (0x3cdd6ec1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 14:52:40 2017
            Not After : Fri Oct 21 14:52:40 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:31:e9:6d:93:39:55:71:8c:58:c9:73:76:ff:e1:83:
                    9f:ac:ad:c5:ce:47:44:9a:f0:04:6e:e1:9a:36:67:5f:
                    34:71:f1:89:a6:16:1b:8a:7d:0a:4c:0e:8c:5d:f4:ec:
                    ce:8b:d3:14:9b:06:aa:17:6d:d5:96:f8:74:88:f5:07:
                    72:6f:7e:5d:a8:01:55:b0:a3:e4:c2:4b:c6:54:e6:9a:
                    f8:ee:fd:a1:cf:b3:23:f6:e5:8a:c5:1c:da:57:b3:61:
                    0c:df:d9:15:b1:20:91:da:d6:2b:9b:17:48:db:d0:3e:
                    ac:9c:e8:82:0c:15:09:c3:ab:2e:96:c5:ef:f3:1c:0c:
                    3a:36:1c:b8:4a:9b:8b:be:e6:36:bc:d8:d1:37:79:40:
                    32:dd:65:23:6c:18:d6:fd:b3:26:c3:36:e2:ab:c4:e3:
                    c1:d2:72:a5:1a:e0:b3:16:ef:ed:a4:44:bb:0c:97:e1:
                    33:db:41:7b:1a:24:36:16:92:ce:d3:e2:8b:99:cc:8d:
                    d8:3f:2f:56:28:ac:31:c0:4e:5c:ef:f9:48:33:bc:2c:
                    df:ab:f1:05:bf:5b:52:03:ce:02:e2:95:03:12:7e:b7:
                    58:2a:cc:d0:60:e5:56:e3:15:46:59:62:73:84:e6:b0:
                    d6:9f:52:2a:c2:ef:b8:20:92:7d:16:ad:a1:d5:54:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:fe:e4:0d:df:cb:22:4e:65:38:7d:5d:3a:1f:67:7d:
        0d:92:34:15:86:4f:8d:ab:66:1f:5b:f6:e3:eb:75:5d:
        f2:aa:a2:aa:49:b5:b0:b3:c1:84:81:08:9c:02:fc:a2:
        9e:b6:a5:4c:29:2c:b7:0a:84:09:70:ec:6c:39:02:db:
        fc:cf:05:d1:1d:13:11:17:4a:14:44:3c:e5:2c:c3:12:
        a4:96:a9:e5:de:8c:a0:4b:8e:a3:99:ff:0a:79:31:ec:
        c2:4c:13:51:13:f7:bb:c7:8e:d2:6d:eb:05:04:3b:42:
        fa:cd:6a:57:7f:53:57:d9:86:9c:ec:b9:e9:39:5c:72:
        38:57:ce:37:e9:3b:95:80:61:3f:41:d2:9d:80:fb:d9:
        cd:56:58:a4:7e:03:09:d3:a2:c9:b4:7b:6d:84:cc:36:
        25:5d:66:73:ed:af:ff:51:5c:17:9e:6c:f1:33:53:7c:
        ea:1d:3a:e4:44:e0:9f:7d:63:26:0e:63:06:03:dc:9f:
        a9:22:06:ea:ed:89:8f:55:26:01:81:a0:0b:96:c9:74:
        cf:90:ce:c8:69:09:ac:a1:f3:38:fb:31:c5:89:89:06:
        cd:5e:1c:54:95:3e:d3:b6:07:31:d0:f2:d3:ec:a9:85:
        5b:96:ea:89:67:9e:b1:e0:f2:a8:35:91:e1:3a:92:c9
    Fingerprint (SHA-256):
        C2:3F:A5:4B:0A:3E:BB:65:9F:00:1F:3B:2E:6E:04:32:B0:8A:C0:69:1A:DD:E9:A5:AA:E9:08:95:6B:2B:25:7C
    Fingerprint (SHA1):
        A1:9D:46:2D:62:1F:54:FF:4B:C4:FD:F9:04:23:31:12:44:8B:49:FA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2854: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144770 (0x3cdd6ec2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 14:52:44 2017
            Not After : Fri Oct 21 14:52:44 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:59:c8:77:78:27:fa:da:12:2e:5d:b6:1a:c5:53:2d:
                    c0:c3:4c:84:a4:bc:ad:ca:66:d0:2a:27:44:0d:70:1f:
                    e0:d7:8d:d6:77:64:fd:7e:b6:d9:0f:32:c9:f1:73:80:
                    a2:b8:26:95:20:87:09:c1:f8:e9:14:cd:2a:0e:07:c4:
                    e9:b2:ce:fa:07:87:4e:27:fd:84:c3:1c:72:9b:ab:1f:
                    a3:b8:54:f5:e8:01:8d:5e:67:1e:6f:44:09:8d:b8:05:
                    59:54:83:39:f3:33:bf:c7:b1:6d:da:16:77:26:b8:20:
                    8b:c0:f9:f2:53:5f:8e:ae:e8:7b:3f:3d:56:06:90:2c:
                    d3:e9:b8:07:b5:e6:59:c5:59:13:42:5e:a4:2e:e1:49:
                    12:a8:c0:95:b9:2c:1a:2f:d5:a4:02:0b:69:3b:e7:c3:
                    12:99:41:b8:f7:18:d5:d8:d4:ed:44:86:a5:01:2a:2c:
                    ab:4a:d8:8b:8d:f5:09:4c:f6:eb:8d:f3:b4:00:02:dd:
                    89:8e:4c:b1:d5:46:5a:68:ff:b4:6f:32:6e:8e:19:19:
                    be:cd:42:f0:d8:1a:47:23:17:d2:d0:97:64:92:1d:b7:
                    c7:11:c6:9c:75:fd:8c:f1:cd:f8:5d:c4:e3:9d:87:d8:
                    18:bb:ff:22:39:54:7b:e6:6e:f6:18:75:c0:d7:bc:35
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:48:f3:92:35:e8:42:c8:84:65:47:ec:d9:7a:c8:61:
        ae:73:2f:cf:88:b7:78:cc:ac:84:14:a6:c4:7c:e0:1f:
        a9:2f:e6:2f:0b:91:32:5f:ff:91:59:8a:f3:cb:4e:65:
        5b:95:a2:c8:1e:0f:a9:a0:ad:c8:7e:d4:aa:77:a6:97:
        b3:be:50:de:e5:b4:55:d0:c0:17:02:90:e0:d8:7c:da:
        ac:cc:2f:8c:ba:a3:6b:1b:27:fd:ff:1a:da:d3:b7:d1:
        d3:f2:c7:5b:d7:51:ab:32:67:0d:4c:9f:1d:e9:2f:00:
        ca:cf:a1:1e:72:02:c3:c3:be:4f:d1:86:d2:15:b5:96:
        ba:56:5a:7d:7a:7e:77:a5:6f:44:c9:c3:2d:5a:f6:70:
        9f:d8:df:92:be:e3:df:fd:84:ba:9e:79:f8:78:8c:bc:
        7c:62:61:8f:10:f7:ec:6c:d5:22:11:fd:7b:2a:63:ea:
        d1:d2:ae:27:c0:23:f7:23:64:dc:db:fe:c9:41:a0:e2:
        a1:d4:b7:c5:09:ce:e6:fb:a5:2b:f7:29:17:12:69:90:
        a8:27:cd:8a:f5:96:4a:4b:c1:9f:13:83:1e:ff:11:cd:
        60:78:20:0c:cb:92:16:75:38:fb:65:a8:e5:ef:d7:01:
        56:84:43:f7:5a:b1:6d:c7:ef:cc:31:0b:4b:71:9a:bf
    Fingerprint (SHA-256):
        79:DE:52:1A:DF:CC:41:63:01:56:75:92:8B:E3:9C:E2:04:E6:2B:D2:11:99:FE:87:BE:EA:84:A0:87:8C:84:15
    Fingerprint (SHA1):
        9F:3C:65:F6:58:68:33:98:AB:DB:F3:B8:B0:67:14:F5:A8:23:24:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2855: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144770 (0x3cdd6ec2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 14:52:44 2017
            Not After : Fri Oct 21 14:52:44 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:59:c8:77:78:27:fa:da:12:2e:5d:b6:1a:c5:53:2d:
                    c0:c3:4c:84:a4:bc:ad:ca:66:d0:2a:27:44:0d:70:1f:
                    e0:d7:8d:d6:77:64:fd:7e:b6:d9:0f:32:c9:f1:73:80:
                    a2:b8:26:95:20:87:09:c1:f8:e9:14:cd:2a:0e:07:c4:
                    e9:b2:ce:fa:07:87:4e:27:fd:84:c3:1c:72:9b:ab:1f:
                    a3:b8:54:f5:e8:01:8d:5e:67:1e:6f:44:09:8d:b8:05:
                    59:54:83:39:f3:33:bf:c7:b1:6d:da:16:77:26:b8:20:
                    8b:c0:f9:f2:53:5f:8e:ae:e8:7b:3f:3d:56:06:90:2c:
                    d3:e9:b8:07:b5:e6:59:c5:59:13:42:5e:a4:2e:e1:49:
                    12:a8:c0:95:b9:2c:1a:2f:d5:a4:02:0b:69:3b:e7:c3:
                    12:99:41:b8:f7:18:d5:d8:d4:ed:44:86:a5:01:2a:2c:
                    ab:4a:d8:8b:8d:f5:09:4c:f6:eb:8d:f3:b4:00:02:dd:
                    89:8e:4c:b1:d5:46:5a:68:ff:b4:6f:32:6e:8e:19:19:
                    be:cd:42:f0:d8:1a:47:23:17:d2:d0:97:64:92:1d:b7:
                    c7:11:c6:9c:75:fd:8c:f1:cd:f8:5d:c4:e3:9d:87:d8:
                    18:bb:ff:22:39:54:7b:e6:6e:f6:18:75:c0:d7:bc:35
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:48:f3:92:35:e8:42:c8:84:65:47:ec:d9:7a:c8:61:
        ae:73:2f:cf:88:b7:78:cc:ac:84:14:a6:c4:7c:e0:1f:
        a9:2f:e6:2f:0b:91:32:5f:ff:91:59:8a:f3:cb:4e:65:
        5b:95:a2:c8:1e:0f:a9:a0:ad:c8:7e:d4:aa:77:a6:97:
        b3:be:50:de:e5:b4:55:d0:c0:17:02:90:e0:d8:7c:da:
        ac:cc:2f:8c:ba:a3:6b:1b:27:fd:ff:1a:da:d3:b7:d1:
        d3:f2:c7:5b:d7:51:ab:32:67:0d:4c:9f:1d:e9:2f:00:
        ca:cf:a1:1e:72:02:c3:c3:be:4f:d1:86:d2:15:b5:96:
        ba:56:5a:7d:7a:7e:77:a5:6f:44:c9:c3:2d:5a:f6:70:
        9f:d8:df:92:be:e3:df:fd:84:ba:9e:79:f8:78:8c:bc:
        7c:62:61:8f:10:f7:ec:6c:d5:22:11:fd:7b:2a:63:ea:
        d1:d2:ae:27:c0:23:f7:23:64:dc:db:fe:c9:41:a0:e2:
        a1:d4:b7:c5:09:ce:e6:fb:a5:2b:f7:29:17:12:69:90:
        a8:27:cd:8a:f5:96:4a:4b:c1:9f:13:83:1e:ff:11:cd:
        60:78:20:0c:cb:92:16:75:38:fb:65:a8:e5:ef:d7:01:
        56:84:43:f7:5a:b1:6d:c7:ef:cc:31:0b:4b:71:9a:bf
    Fingerprint (SHA-256):
        79:DE:52:1A:DF:CC:41:63:01:56:75:92:8B:E3:9C:E2:04:E6:2B:D2:11:99:FE:87:BE:EA:84:A0:87:8C:84:15
    Fingerprint (SHA1):
        9F:3C:65:F6:58:68:33:98:AB:DB:F3:B8:B0:67:14:F5:A8:23:24:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2856: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #2857: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144773 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2858: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #2859: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2860: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2861: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 1021144774   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2862: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2863: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #2864: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2865: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021144775   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2866: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2867: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #2868: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2869: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 1021144776   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2870: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2871: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #2872: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2873: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 1021144777   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2874: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2875: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #2876: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2877: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 1021144778   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2878: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2879: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #2880: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2881: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 1021144779   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2882: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2883: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2884: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #2885: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #2886: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #2887: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #2888: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144773 (0x3cdd6ec5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 14:53:14 2017
            Not After : Fri Oct 21 14:53:14 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:c5:f0:2e:8e:22:d6:35:e1:ea:cc:1b:dc:54:27:f9:
                    1b:09:fa:b0:a8:08:83:94:7f:fe:4a:e4:da:ef:87:c8:
                    2c:03:b6:26:3d:70:a4:20:4a:5a:8a:b8:62:56:42:68:
                    fb:f5:c6:12:22:1f:65:da:fd:38:7d:1d:ab:19:5d:04:
                    63:ea:fd:ec:58:af:6a:68:b0:65:18:37:24:82:35:50:
                    72:6c:1a:26:b6:04:b1:e8:d4:8c:f9:0b:d0:5c:87:1f:
                    2c:cf:1b:34:8b:d6:40:a8:26:1c:5d:03:67:ca:da:db:
                    6f:84:e7:f2:65:73:fc:19:8c:b4:3b:91:32:e5:95:8c:
                    fb:08:27:15:ab:7d:37:3c:ff:ca:2c:6b:d6:e6:fb:86:
                    c6:fb:d9:7c:e4:24:f3:db:d2:cf:ce:71:bf:23:ea:22:
                    0d:38:39:b6:b5:a7:36:2c:8a:89:ac:2c:5c:7c:8a:c1:
                    b8:51:7d:bd:49:e1:d4:5f:a7:fe:db:3f:d7:13:1f:b4:
                    e7:3e:e3:b4:e4:92:4b:0b:93:48:1c:5d:1d:49:31:5e:
                    0d:fa:30:db:56:a6:3c:87:64:f7:3d:66:93:3b:9f:74:
                    c7:dc:87:4a:7a:63:ea:37:7e:47:7a:54:99:7e:11:3d:
                    79:0c:58:da:bc:bd:d0:b4:83:51:f6:ef:c9:a4:a5:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:a9:4b:89:64:1f:ca:ee:da:db:e0:08:41:09:83:d2:
        0f:53:4a:25:2f:cf:5c:59:3c:49:22:74:83:9a:07:63:
        4d:59:39:29:f0:d1:fb:4a:6b:85:8e:6e:b0:04:01:81:
        78:c1:cb:36:46:ee:17:12:8a:27:91:85:87:85:9e:ce:
        65:7e:14:fe:3c:e0:a5:9f:a8:81:3a:f8:39:3b:73:a0:
        cd:48:27:30:fe:75:7c:02:5b:3f:83:6f:ef:d9:8e:2a:
        60:ef:7d:81:14:46:24:85:3c:27:da:6b:6e:09:ff:5f:
        06:29:53:12:04:32:4e:41:af:e9:2b:b5:95:ee:56:9d:
        33:e2:5b:32:1f:f7:4b:bf:b4:a1:c7:bf:c7:ed:cf:9c:
        da:40:72:f6:29:07:18:60:23:18:ea:5e:43:b9:2a:b3:
        e1:f1:d7:45:21:da:7e:f1:0c:80:10:a9:d2:ce:63:7b:
        43:ee:99:fd:87:fa:a1:d4:0b:f7:14:b8:50:c8:0b:3e:
        98:22:90:e1:87:1c:12:fa:17:f4:32:6f:3c:f3:c8:7f:
        bd:5e:69:d5:68:7a:c3:35:af:34:42:1b:78:d4:bc:8b:
        52:fe:6d:ba:2c:e5:5a:64:dd:42:1d:48:92:e2:a4:3c:
        72:94:0d:e0:9b:93:14:1b:eb:26:20:9a:2c:42:a3:a5
    Fingerprint (SHA-256):
        33:97:0F:53:96:2B:51:84:23:02:82:83:9D:B4:7B:95:3B:4C:6A:E8:B2:EC:4C:16:1E:DB:FE:51:7C:27:63:8A
    Fingerprint (SHA1):
        2D:12:C8:C2:50:BF:CC:18:0D:92:EF:33:4E:B4:5F:F4:40:77:CA:6C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2889: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2890: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2891: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2892: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144773 (0x3cdd6ec5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 14:53:14 2017
            Not After : Fri Oct 21 14:53:14 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:c5:f0:2e:8e:22:d6:35:e1:ea:cc:1b:dc:54:27:f9:
                    1b:09:fa:b0:a8:08:83:94:7f:fe:4a:e4:da:ef:87:c8:
                    2c:03:b6:26:3d:70:a4:20:4a:5a:8a:b8:62:56:42:68:
                    fb:f5:c6:12:22:1f:65:da:fd:38:7d:1d:ab:19:5d:04:
                    63:ea:fd:ec:58:af:6a:68:b0:65:18:37:24:82:35:50:
                    72:6c:1a:26:b6:04:b1:e8:d4:8c:f9:0b:d0:5c:87:1f:
                    2c:cf:1b:34:8b:d6:40:a8:26:1c:5d:03:67:ca:da:db:
                    6f:84:e7:f2:65:73:fc:19:8c:b4:3b:91:32:e5:95:8c:
                    fb:08:27:15:ab:7d:37:3c:ff:ca:2c:6b:d6:e6:fb:86:
                    c6:fb:d9:7c:e4:24:f3:db:d2:cf:ce:71:bf:23:ea:22:
                    0d:38:39:b6:b5:a7:36:2c:8a:89:ac:2c:5c:7c:8a:c1:
                    b8:51:7d:bd:49:e1:d4:5f:a7:fe:db:3f:d7:13:1f:b4:
                    e7:3e:e3:b4:e4:92:4b:0b:93:48:1c:5d:1d:49:31:5e:
                    0d:fa:30:db:56:a6:3c:87:64:f7:3d:66:93:3b:9f:74:
                    c7:dc:87:4a:7a:63:ea:37:7e:47:7a:54:99:7e:11:3d:
                    79:0c:58:da:bc:bd:d0:b4:83:51:f6:ef:c9:a4:a5:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:a9:4b:89:64:1f:ca:ee:da:db:e0:08:41:09:83:d2:
        0f:53:4a:25:2f:cf:5c:59:3c:49:22:74:83:9a:07:63:
        4d:59:39:29:f0:d1:fb:4a:6b:85:8e:6e:b0:04:01:81:
        78:c1:cb:36:46:ee:17:12:8a:27:91:85:87:85:9e:ce:
        65:7e:14:fe:3c:e0:a5:9f:a8:81:3a:f8:39:3b:73:a0:
        cd:48:27:30:fe:75:7c:02:5b:3f:83:6f:ef:d9:8e:2a:
        60:ef:7d:81:14:46:24:85:3c:27:da:6b:6e:09:ff:5f:
        06:29:53:12:04:32:4e:41:af:e9:2b:b5:95:ee:56:9d:
        33:e2:5b:32:1f:f7:4b:bf:b4:a1:c7:bf:c7:ed:cf:9c:
        da:40:72:f6:29:07:18:60:23:18:ea:5e:43:b9:2a:b3:
        e1:f1:d7:45:21:da:7e:f1:0c:80:10:a9:d2:ce:63:7b:
        43:ee:99:fd:87:fa:a1:d4:0b:f7:14:b8:50:c8:0b:3e:
        98:22:90:e1:87:1c:12:fa:17:f4:32:6f:3c:f3:c8:7f:
        bd:5e:69:d5:68:7a:c3:35:af:34:42:1b:78:d4:bc:8b:
        52:fe:6d:ba:2c:e5:5a:64:dd:42:1d:48:92:e2:a4:3c:
        72:94:0d:e0:9b:93:14:1b:eb:26:20:9a:2c:42:a3:a5
    Fingerprint (SHA-256):
        33:97:0F:53:96:2B:51:84:23:02:82:83:9D:B4:7B:95:3B:4C:6A:E8:B2:EC:4C:16:1E:DB:FE:51:7C:27:63:8A
    Fingerprint (SHA1):
        2D:12:C8:C2:50:BF:CC:18:0D:92:EF:33:4E:B4:5F:F4:40:77:CA:6C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2893: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2894: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #2895: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144780 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2896: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #2897: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2898: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2899: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 1021144781   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2900: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2901: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #2902: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2903: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 1021144782   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2904: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2905: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #2906: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2907: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 1021144783   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2908: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2909: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #2910: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2911: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 1021144784   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2912: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2913: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #2914: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2915: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 1021144785   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2916: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2917: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #2918: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2919: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 1021144786   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2920: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2921: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #2922: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2923: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 1021144787   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2924: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2925: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #2926: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2927: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 1021144788   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2928: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2929: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #2930: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2931: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 1021144789   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2932: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2933: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #2934: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2935: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 1021144790   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2936: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2937: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #2938: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2939: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 1021144791   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2940: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2941: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #2942: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2943: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 1021144792   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2944: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2945: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #2946: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2947: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 1021144793   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2948: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2949: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #2950: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2951: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 1021144794   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2952: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2953: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #2954: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2955: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 1021144795   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2956: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2957: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #2958: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2959: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 1021144796   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2960: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2961: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #2962: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2963: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 1021144797   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2964: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2965: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #2966: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2967: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 1021144798   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2968: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2969: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #2970: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2971: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 1021144799   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2972: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2973: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #2974: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2975: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 1021144800   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2976: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2977: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #2978: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2979: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 1021144801   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2980: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2981: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #2982: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2983: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 1021144802   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2984: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2985: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #2986: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2987: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 1021144803   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2988: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2989: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #2990: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2991: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 1021144804   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2992: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2993: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #2994: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2995: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 1021144805   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2996: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2997: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #2998: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2999: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 1021144806   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3000: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3001: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #3002: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3003: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 1021144807   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3004: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3005: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #3006: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3007: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 1021144808   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3008: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3009: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #3010: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3011: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 1021144809   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3012: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3013: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3014: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144780 (0x3cdd6ecc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 14:53:57 2017
            Not After : Fri Oct 21 14:53:57 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:b5:94:fb:34:84:9f:9d:07:ce:8c:f0:2c:ad:b6:c1:
                    98:ca:ba:8a:39:ad:60:a6:05:0c:af:d4:72:51:7e:41:
                    0e:ae:3f:68:fb:c6:7c:9d:54:7b:6f:08:ce:e4:37:f5:
                    6a:2d:db:33:c9:08:85:2b:e0:49:4d:70:ca:d8:7d:16:
                    22:fd:08:62:03:9a:38:6c:98:2d:21:df:15:66:01:ed:
                    38:0c:22:ce:50:03:75:a7:1c:e1:32:68:90:2b:5d:57:
                    f9:18:6f:89:34:2a:d2:ef:37:0d:36:24:50:0f:b6:82:
                    04:7e:e2:8d:a8:40:8c:76:e1:13:26:72:9c:41:ed:3d:
                    42:83:9d:78:aa:b3:48:9d:0a:30:d1:c9:0d:2b:35:e3:
                    12:36:48:c2:85:22:11:10:7c:5b:55:1f:68:ae:cb:0a:
                    a8:48:58:e6:55:84:31:7e:cd:48:c1:23:46:7e:a2:fa:
                    1e:3d:23:5a:58:4d:cc:37:dc:de:c6:72:72:dd:c9:f1:
                    f8:23:17:57:59:bd:95:d8:2f:04:a5:70:a8:89:87:77:
                    a7:fa:b1:c7:b4:38:e1:62:bd:1a:3a:26:91:5e:a6:7b:
                    c4:8f:67:19:5d:f4:a4:31:b8:08:e5:ac:48:38:7c:40:
                    20:a1:b2:3e:db:5d:8b:29:f6:b2:f1:cd:8a:f8:df:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:c8:f1:43:bf:19:08:80:79:fe:43:54:0e:a8:40:de:
        e4:f4:b1:2c:d6:38:0c:70:8f:44:9f:c7:76:0a:79:58:
        db:ed:46:e0:8e:71:28:87:44:66:8b:e1:2b:d7:4d:88:
        0c:f8:a1:20:94:7d:1b:1d:08:5a:1a:3b:a3:c5:7f:69:
        f7:ba:36:56:43:17:b2:a1:fd:8a:e6:a1:44:8b:0d:ad:
        d2:86:bc:c4:55:5f:c8:17:05:cd:47:70:a5:93:98:2b:
        97:04:81:4d:7c:c0:66:a9:51:45:c8:40:90:a7:6b:65:
        36:c6:c6:1b:5c:62:99:12:4b:0b:1d:62:67:6e:9b:9c:
        a1:3d:4b:85:d9:10:9c:1a:8c:2f:10:25:23:04:ba:7b:
        ab:0f:d6:8e:9f:b3:b3:18:4d:ab:01:f9:e5:3f:97:2f:
        8d:58:a3:9a:b2:f8:7f:62:00:6e:cd:9c:49:fd:25:5a:
        6f:d2:6d:be:e6:90:84:cf:ef:40:79:bd:1e:67:79:de:
        88:97:40:e7:90:58:6f:44:81:81:65:26:4a:ed:6c:a9:
        6b:e2:31:3e:16:18:38:bd:4b:9a:b8:a3:de:ec:5e:b5:
        72:62:be:97:e9:2b:df:d4:09:fc:55:19:d2:12:6a:c7:
        5d:e4:d3:d2:43:ff:22:50:f0:45:f4:93:7e:6b:a9:16
    Fingerprint (SHA-256):
        A4:BB:DA:8B:1C:2C:95:C7:A2:01:CA:2C:5A:A8:17:DC:8D:73:66:88:7F:2B:82:99:69:9D:58:78:76:61:61:45
    Fingerprint (SHA1):
        30:DA:45:D9:47:26:EB:AB:92:BE:ED:89:8B:E2:61:1E:22:34:22:13
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3015: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3016: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144780 (0x3cdd6ecc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 14:53:57 2017
            Not After : Fri Oct 21 14:53:57 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:b5:94:fb:34:84:9f:9d:07:ce:8c:f0:2c:ad:b6:c1:
                    98:ca:ba:8a:39:ad:60:a6:05:0c:af:d4:72:51:7e:41:
                    0e:ae:3f:68:fb:c6:7c:9d:54:7b:6f:08:ce:e4:37:f5:
                    6a:2d:db:33:c9:08:85:2b:e0:49:4d:70:ca:d8:7d:16:
                    22:fd:08:62:03:9a:38:6c:98:2d:21:df:15:66:01:ed:
                    38:0c:22:ce:50:03:75:a7:1c:e1:32:68:90:2b:5d:57:
                    f9:18:6f:89:34:2a:d2:ef:37:0d:36:24:50:0f:b6:82:
                    04:7e:e2:8d:a8:40:8c:76:e1:13:26:72:9c:41:ed:3d:
                    42:83:9d:78:aa:b3:48:9d:0a:30:d1:c9:0d:2b:35:e3:
                    12:36:48:c2:85:22:11:10:7c:5b:55:1f:68:ae:cb:0a:
                    a8:48:58:e6:55:84:31:7e:cd:48:c1:23:46:7e:a2:fa:
                    1e:3d:23:5a:58:4d:cc:37:dc:de:c6:72:72:dd:c9:f1:
                    f8:23:17:57:59:bd:95:d8:2f:04:a5:70:a8:89:87:77:
                    a7:fa:b1:c7:b4:38:e1:62:bd:1a:3a:26:91:5e:a6:7b:
                    c4:8f:67:19:5d:f4:a4:31:b8:08:e5:ac:48:38:7c:40:
                    20:a1:b2:3e:db:5d:8b:29:f6:b2:f1:cd:8a:f8:df:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:c8:f1:43:bf:19:08:80:79:fe:43:54:0e:a8:40:de:
        e4:f4:b1:2c:d6:38:0c:70:8f:44:9f:c7:76:0a:79:58:
        db:ed:46:e0:8e:71:28:87:44:66:8b:e1:2b:d7:4d:88:
        0c:f8:a1:20:94:7d:1b:1d:08:5a:1a:3b:a3:c5:7f:69:
        f7:ba:36:56:43:17:b2:a1:fd:8a:e6:a1:44:8b:0d:ad:
        d2:86:bc:c4:55:5f:c8:17:05:cd:47:70:a5:93:98:2b:
        97:04:81:4d:7c:c0:66:a9:51:45:c8:40:90:a7:6b:65:
        36:c6:c6:1b:5c:62:99:12:4b:0b:1d:62:67:6e:9b:9c:
        a1:3d:4b:85:d9:10:9c:1a:8c:2f:10:25:23:04:ba:7b:
        ab:0f:d6:8e:9f:b3:b3:18:4d:ab:01:f9:e5:3f:97:2f:
        8d:58:a3:9a:b2:f8:7f:62:00:6e:cd:9c:49:fd:25:5a:
        6f:d2:6d:be:e6:90:84:cf:ef:40:79:bd:1e:67:79:de:
        88:97:40:e7:90:58:6f:44:81:81:65:26:4a:ed:6c:a9:
        6b:e2:31:3e:16:18:38:bd:4b:9a:b8:a3:de:ec:5e:b5:
        72:62:be:97:e9:2b:df:d4:09:fc:55:19:d2:12:6a:c7:
        5d:e4:d3:d2:43:ff:22:50:f0:45:f4:93:7e:6b:a9:16
    Fingerprint (SHA-256):
        A4:BB:DA:8B:1C:2C:95:C7:A2:01:CA:2C:5A:A8:17:DC:8D:73:66:88:7F:2B:82:99:69:9D:58:78:76:61:61:45
    Fingerprint (SHA1):
        30:DA:45:D9:47:26:EB:AB:92:BE:ED:89:8B:E2:61:1E:22:34:22:13
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3017: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3018: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3019: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3020: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144780 (0x3cdd6ecc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 14:53:57 2017
            Not After : Fri Oct 21 14:53:57 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:b5:94:fb:34:84:9f:9d:07:ce:8c:f0:2c:ad:b6:c1:
                    98:ca:ba:8a:39:ad:60:a6:05:0c:af:d4:72:51:7e:41:
                    0e:ae:3f:68:fb:c6:7c:9d:54:7b:6f:08:ce:e4:37:f5:
                    6a:2d:db:33:c9:08:85:2b:e0:49:4d:70:ca:d8:7d:16:
                    22:fd:08:62:03:9a:38:6c:98:2d:21:df:15:66:01:ed:
                    38:0c:22:ce:50:03:75:a7:1c:e1:32:68:90:2b:5d:57:
                    f9:18:6f:89:34:2a:d2:ef:37:0d:36:24:50:0f:b6:82:
                    04:7e:e2:8d:a8:40:8c:76:e1:13:26:72:9c:41:ed:3d:
                    42:83:9d:78:aa:b3:48:9d:0a:30:d1:c9:0d:2b:35:e3:
                    12:36:48:c2:85:22:11:10:7c:5b:55:1f:68:ae:cb:0a:
                    a8:48:58:e6:55:84:31:7e:cd:48:c1:23:46:7e:a2:fa:
                    1e:3d:23:5a:58:4d:cc:37:dc:de:c6:72:72:dd:c9:f1:
                    f8:23:17:57:59:bd:95:d8:2f:04:a5:70:a8:89:87:77:
                    a7:fa:b1:c7:b4:38:e1:62:bd:1a:3a:26:91:5e:a6:7b:
                    c4:8f:67:19:5d:f4:a4:31:b8:08:e5:ac:48:38:7c:40:
                    20:a1:b2:3e:db:5d:8b:29:f6:b2:f1:cd:8a:f8:df:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:c8:f1:43:bf:19:08:80:79:fe:43:54:0e:a8:40:de:
        e4:f4:b1:2c:d6:38:0c:70:8f:44:9f:c7:76:0a:79:58:
        db:ed:46:e0:8e:71:28:87:44:66:8b:e1:2b:d7:4d:88:
        0c:f8:a1:20:94:7d:1b:1d:08:5a:1a:3b:a3:c5:7f:69:
        f7:ba:36:56:43:17:b2:a1:fd:8a:e6:a1:44:8b:0d:ad:
        d2:86:bc:c4:55:5f:c8:17:05:cd:47:70:a5:93:98:2b:
        97:04:81:4d:7c:c0:66:a9:51:45:c8:40:90:a7:6b:65:
        36:c6:c6:1b:5c:62:99:12:4b:0b:1d:62:67:6e:9b:9c:
        a1:3d:4b:85:d9:10:9c:1a:8c:2f:10:25:23:04:ba:7b:
        ab:0f:d6:8e:9f:b3:b3:18:4d:ab:01:f9:e5:3f:97:2f:
        8d:58:a3:9a:b2:f8:7f:62:00:6e:cd:9c:49:fd:25:5a:
        6f:d2:6d:be:e6:90:84:cf:ef:40:79:bd:1e:67:79:de:
        88:97:40:e7:90:58:6f:44:81:81:65:26:4a:ed:6c:a9:
        6b:e2:31:3e:16:18:38:bd:4b:9a:b8:a3:de:ec:5e:b5:
        72:62:be:97:e9:2b:df:d4:09:fc:55:19:d2:12:6a:c7:
        5d:e4:d3:d2:43:ff:22:50:f0:45:f4:93:7e:6b:a9:16
    Fingerprint (SHA-256):
        A4:BB:DA:8B:1C:2C:95:C7:A2:01:CA:2C:5A:A8:17:DC:8D:73:66:88:7F:2B:82:99:69:9D:58:78:76:61:61:45
    Fingerprint (SHA1):
        30:DA:45:D9:47:26:EB:AB:92:BE:ED:89:8B:E2:61:1E:22:34:22:13
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3021: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3022: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3023: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3024: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144780 (0x3cdd6ecc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 14:53:57 2017
            Not After : Fri Oct 21 14:53:57 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:b5:94:fb:34:84:9f:9d:07:ce:8c:f0:2c:ad:b6:c1:
                    98:ca:ba:8a:39:ad:60:a6:05:0c:af:d4:72:51:7e:41:
                    0e:ae:3f:68:fb:c6:7c:9d:54:7b:6f:08:ce:e4:37:f5:
                    6a:2d:db:33:c9:08:85:2b:e0:49:4d:70:ca:d8:7d:16:
                    22:fd:08:62:03:9a:38:6c:98:2d:21:df:15:66:01:ed:
                    38:0c:22:ce:50:03:75:a7:1c:e1:32:68:90:2b:5d:57:
                    f9:18:6f:89:34:2a:d2:ef:37:0d:36:24:50:0f:b6:82:
                    04:7e:e2:8d:a8:40:8c:76:e1:13:26:72:9c:41:ed:3d:
                    42:83:9d:78:aa:b3:48:9d:0a:30:d1:c9:0d:2b:35:e3:
                    12:36:48:c2:85:22:11:10:7c:5b:55:1f:68:ae:cb:0a:
                    a8:48:58:e6:55:84:31:7e:cd:48:c1:23:46:7e:a2:fa:
                    1e:3d:23:5a:58:4d:cc:37:dc:de:c6:72:72:dd:c9:f1:
                    f8:23:17:57:59:bd:95:d8:2f:04:a5:70:a8:89:87:77:
                    a7:fa:b1:c7:b4:38:e1:62:bd:1a:3a:26:91:5e:a6:7b:
                    c4:8f:67:19:5d:f4:a4:31:b8:08:e5:ac:48:38:7c:40:
                    20:a1:b2:3e:db:5d:8b:29:f6:b2:f1:cd:8a:f8:df:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:c8:f1:43:bf:19:08:80:79:fe:43:54:0e:a8:40:de:
        e4:f4:b1:2c:d6:38:0c:70:8f:44:9f:c7:76:0a:79:58:
        db:ed:46:e0:8e:71:28:87:44:66:8b:e1:2b:d7:4d:88:
        0c:f8:a1:20:94:7d:1b:1d:08:5a:1a:3b:a3:c5:7f:69:
        f7:ba:36:56:43:17:b2:a1:fd:8a:e6:a1:44:8b:0d:ad:
        d2:86:bc:c4:55:5f:c8:17:05:cd:47:70:a5:93:98:2b:
        97:04:81:4d:7c:c0:66:a9:51:45:c8:40:90:a7:6b:65:
        36:c6:c6:1b:5c:62:99:12:4b:0b:1d:62:67:6e:9b:9c:
        a1:3d:4b:85:d9:10:9c:1a:8c:2f:10:25:23:04:ba:7b:
        ab:0f:d6:8e:9f:b3:b3:18:4d:ab:01:f9:e5:3f:97:2f:
        8d:58:a3:9a:b2:f8:7f:62:00:6e:cd:9c:49:fd:25:5a:
        6f:d2:6d:be:e6:90:84:cf:ef:40:79:bd:1e:67:79:de:
        88:97:40:e7:90:58:6f:44:81:81:65:26:4a:ed:6c:a9:
        6b:e2:31:3e:16:18:38:bd:4b:9a:b8:a3:de:ec:5e:b5:
        72:62:be:97:e9:2b:df:d4:09:fc:55:19:d2:12:6a:c7:
        5d:e4:d3:d2:43:ff:22:50:f0:45:f4:93:7e:6b:a9:16
    Fingerprint (SHA-256):
        A4:BB:DA:8B:1C:2C:95:C7:A2:01:CA:2C:5A:A8:17:DC:8D:73:66:88:7F:2B:82:99:69:9D:58:78:76:61:61:45
    Fingerprint (SHA1):
        30:DA:45:D9:47:26:EB:AB:92:BE:ED:89:8B:E2:61:1E:22:34:22:13
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3025: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144780 (0x3cdd6ecc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 14:53:57 2017
            Not After : Fri Oct 21 14:53:57 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:b5:94:fb:34:84:9f:9d:07:ce:8c:f0:2c:ad:b6:c1:
                    98:ca:ba:8a:39:ad:60:a6:05:0c:af:d4:72:51:7e:41:
                    0e:ae:3f:68:fb:c6:7c:9d:54:7b:6f:08:ce:e4:37:f5:
                    6a:2d:db:33:c9:08:85:2b:e0:49:4d:70:ca:d8:7d:16:
                    22:fd:08:62:03:9a:38:6c:98:2d:21:df:15:66:01:ed:
                    38:0c:22:ce:50:03:75:a7:1c:e1:32:68:90:2b:5d:57:
                    f9:18:6f:89:34:2a:d2:ef:37:0d:36:24:50:0f:b6:82:
                    04:7e:e2:8d:a8:40:8c:76:e1:13:26:72:9c:41:ed:3d:
                    42:83:9d:78:aa:b3:48:9d:0a:30:d1:c9:0d:2b:35:e3:
                    12:36:48:c2:85:22:11:10:7c:5b:55:1f:68:ae:cb:0a:
                    a8:48:58:e6:55:84:31:7e:cd:48:c1:23:46:7e:a2:fa:
                    1e:3d:23:5a:58:4d:cc:37:dc:de:c6:72:72:dd:c9:f1:
                    f8:23:17:57:59:bd:95:d8:2f:04:a5:70:a8:89:87:77:
                    a7:fa:b1:c7:b4:38:e1:62:bd:1a:3a:26:91:5e:a6:7b:
                    c4:8f:67:19:5d:f4:a4:31:b8:08:e5:ac:48:38:7c:40:
                    20:a1:b2:3e:db:5d:8b:29:f6:b2:f1:cd:8a:f8:df:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:c8:f1:43:bf:19:08:80:79:fe:43:54:0e:a8:40:de:
        e4:f4:b1:2c:d6:38:0c:70:8f:44:9f:c7:76:0a:79:58:
        db:ed:46:e0:8e:71:28:87:44:66:8b:e1:2b:d7:4d:88:
        0c:f8:a1:20:94:7d:1b:1d:08:5a:1a:3b:a3:c5:7f:69:
        f7:ba:36:56:43:17:b2:a1:fd:8a:e6:a1:44:8b:0d:ad:
        d2:86:bc:c4:55:5f:c8:17:05:cd:47:70:a5:93:98:2b:
        97:04:81:4d:7c:c0:66:a9:51:45:c8:40:90:a7:6b:65:
        36:c6:c6:1b:5c:62:99:12:4b:0b:1d:62:67:6e:9b:9c:
        a1:3d:4b:85:d9:10:9c:1a:8c:2f:10:25:23:04:ba:7b:
        ab:0f:d6:8e:9f:b3:b3:18:4d:ab:01:f9:e5:3f:97:2f:
        8d:58:a3:9a:b2:f8:7f:62:00:6e:cd:9c:49:fd:25:5a:
        6f:d2:6d:be:e6:90:84:cf:ef:40:79:bd:1e:67:79:de:
        88:97:40:e7:90:58:6f:44:81:81:65:26:4a:ed:6c:a9:
        6b:e2:31:3e:16:18:38:bd:4b:9a:b8:a3:de:ec:5e:b5:
        72:62:be:97:e9:2b:df:d4:09:fc:55:19:d2:12:6a:c7:
        5d:e4:d3:d2:43:ff:22:50:f0:45:f4:93:7e:6b:a9:16
    Fingerprint (SHA-256):
        A4:BB:DA:8B:1C:2C:95:C7:A2:01:CA:2C:5A:A8:17:DC:8D:73:66:88:7F:2B:82:99:69:9D:58:78:76:61:61:45
    Fingerprint (SHA1):
        30:DA:45:D9:47:26:EB:AB:92:BE:ED:89:8B:E2:61:1E:22:34:22:13
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3026: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3027: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144780 (0x3cdd6ecc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 14:53:57 2017
            Not After : Fri Oct 21 14:53:57 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:b5:94:fb:34:84:9f:9d:07:ce:8c:f0:2c:ad:b6:c1:
                    98:ca:ba:8a:39:ad:60:a6:05:0c:af:d4:72:51:7e:41:
                    0e:ae:3f:68:fb:c6:7c:9d:54:7b:6f:08:ce:e4:37:f5:
                    6a:2d:db:33:c9:08:85:2b:e0:49:4d:70:ca:d8:7d:16:
                    22:fd:08:62:03:9a:38:6c:98:2d:21:df:15:66:01:ed:
                    38:0c:22:ce:50:03:75:a7:1c:e1:32:68:90:2b:5d:57:
                    f9:18:6f:89:34:2a:d2:ef:37:0d:36:24:50:0f:b6:82:
                    04:7e:e2:8d:a8:40:8c:76:e1:13:26:72:9c:41:ed:3d:
                    42:83:9d:78:aa:b3:48:9d:0a:30:d1:c9:0d:2b:35:e3:
                    12:36:48:c2:85:22:11:10:7c:5b:55:1f:68:ae:cb:0a:
                    a8:48:58:e6:55:84:31:7e:cd:48:c1:23:46:7e:a2:fa:
                    1e:3d:23:5a:58:4d:cc:37:dc:de:c6:72:72:dd:c9:f1:
                    f8:23:17:57:59:bd:95:d8:2f:04:a5:70:a8:89:87:77:
                    a7:fa:b1:c7:b4:38:e1:62:bd:1a:3a:26:91:5e:a6:7b:
                    c4:8f:67:19:5d:f4:a4:31:b8:08:e5:ac:48:38:7c:40:
                    20:a1:b2:3e:db:5d:8b:29:f6:b2:f1:cd:8a:f8:df:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:c8:f1:43:bf:19:08:80:79:fe:43:54:0e:a8:40:de:
        e4:f4:b1:2c:d6:38:0c:70:8f:44:9f:c7:76:0a:79:58:
        db:ed:46:e0:8e:71:28:87:44:66:8b:e1:2b:d7:4d:88:
        0c:f8:a1:20:94:7d:1b:1d:08:5a:1a:3b:a3:c5:7f:69:
        f7:ba:36:56:43:17:b2:a1:fd:8a:e6:a1:44:8b:0d:ad:
        d2:86:bc:c4:55:5f:c8:17:05:cd:47:70:a5:93:98:2b:
        97:04:81:4d:7c:c0:66:a9:51:45:c8:40:90:a7:6b:65:
        36:c6:c6:1b:5c:62:99:12:4b:0b:1d:62:67:6e:9b:9c:
        a1:3d:4b:85:d9:10:9c:1a:8c:2f:10:25:23:04:ba:7b:
        ab:0f:d6:8e:9f:b3:b3:18:4d:ab:01:f9:e5:3f:97:2f:
        8d:58:a3:9a:b2:f8:7f:62:00:6e:cd:9c:49:fd:25:5a:
        6f:d2:6d:be:e6:90:84:cf:ef:40:79:bd:1e:67:79:de:
        88:97:40:e7:90:58:6f:44:81:81:65:26:4a:ed:6c:a9:
        6b:e2:31:3e:16:18:38:bd:4b:9a:b8:a3:de:ec:5e:b5:
        72:62:be:97:e9:2b:df:d4:09:fc:55:19:d2:12:6a:c7:
        5d:e4:d3:d2:43:ff:22:50:f0:45:f4:93:7e:6b:a9:16
    Fingerprint (SHA-256):
        A4:BB:DA:8B:1C:2C:95:C7:A2:01:CA:2C:5A:A8:17:DC:8D:73:66:88:7F:2B:82:99:69:9D:58:78:76:61:61:45
    Fingerprint (SHA1):
        30:DA:45:D9:47:26:EB:AB:92:BE:ED:89:8B:E2:61:1E:22:34:22:13
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3028: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3029: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3030: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3031: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144780 (0x3cdd6ecc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 14:53:57 2017
            Not After : Fri Oct 21 14:53:57 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:b5:94:fb:34:84:9f:9d:07:ce:8c:f0:2c:ad:b6:c1:
                    98:ca:ba:8a:39:ad:60:a6:05:0c:af:d4:72:51:7e:41:
                    0e:ae:3f:68:fb:c6:7c:9d:54:7b:6f:08:ce:e4:37:f5:
                    6a:2d:db:33:c9:08:85:2b:e0:49:4d:70:ca:d8:7d:16:
                    22:fd:08:62:03:9a:38:6c:98:2d:21:df:15:66:01:ed:
                    38:0c:22:ce:50:03:75:a7:1c:e1:32:68:90:2b:5d:57:
                    f9:18:6f:89:34:2a:d2:ef:37:0d:36:24:50:0f:b6:82:
                    04:7e:e2:8d:a8:40:8c:76:e1:13:26:72:9c:41:ed:3d:
                    42:83:9d:78:aa:b3:48:9d:0a:30:d1:c9:0d:2b:35:e3:
                    12:36:48:c2:85:22:11:10:7c:5b:55:1f:68:ae:cb:0a:
                    a8:48:58:e6:55:84:31:7e:cd:48:c1:23:46:7e:a2:fa:
                    1e:3d:23:5a:58:4d:cc:37:dc:de:c6:72:72:dd:c9:f1:
                    f8:23:17:57:59:bd:95:d8:2f:04:a5:70:a8:89:87:77:
                    a7:fa:b1:c7:b4:38:e1:62:bd:1a:3a:26:91:5e:a6:7b:
                    c4:8f:67:19:5d:f4:a4:31:b8:08:e5:ac:48:38:7c:40:
                    20:a1:b2:3e:db:5d:8b:29:f6:b2:f1:cd:8a:f8:df:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:c8:f1:43:bf:19:08:80:79:fe:43:54:0e:a8:40:de:
        e4:f4:b1:2c:d6:38:0c:70:8f:44:9f:c7:76:0a:79:58:
        db:ed:46:e0:8e:71:28:87:44:66:8b:e1:2b:d7:4d:88:
        0c:f8:a1:20:94:7d:1b:1d:08:5a:1a:3b:a3:c5:7f:69:
        f7:ba:36:56:43:17:b2:a1:fd:8a:e6:a1:44:8b:0d:ad:
        d2:86:bc:c4:55:5f:c8:17:05:cd:47:70:a5:93:98:2b:
        97:04:81:4d:7c:c0:66:a9:51:45:c8:40:90:a7:6b:65:
        36:c6:c6:1b:5c:62:99:12:4b:0b:1d:62:67:6e:9b:9c:
        a1:3d:4b:85:d9:10:9c:1a:8c:2f:10:25:23:04:ba:7b:
        ab:0f:d6:8e:9f:b3:b3:18:4d:ab:01:f9:e5:3f:97:2f:
        8d:58:a3:9a:b2:f8:7f:62:00:6e:cd:9c:49:fd:25:5a:
        6f:d2:6d:be:e6:90:84:cf:ef:40:79:bd:1e:67:79:de:
        88:97:40:e7:90:58:6f:44:81:81:65:26:4a:ed:6c:a9:
        6b:e2:31:3e:16:18:38:bd:4b:9a:b8:a3:de:ec:5e:b5:
        72:62:be:97:e9:2b:df:d4:09:fc:55:19:d2:12:6a:c7:
        5d:e4:d3:d2:43:ff:22:50:f0:45:f4:93:7e:6b:a9:16
    Fingerprint (SHA-256):
        A4:BB:DA:8B:1C:2C:95:C7:A2:01:CA:2C:5A:A8:17:DC:8D:73:66:88:7F:2B:82:99:69:9D:58:78:76:61:61:45
    Fingerprint (SHA1):
        30:DA:45:D9:47:26:EB:AB:92:BE:ED:89:8B:E2:61:1E:22:34:22:13
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3032: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144780 (0x3cdd6ecc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 14:53:57 2017
            Not After : Fri Oct 21 14:53:57 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:b5:94:fb:34:84:9f:9d:07:ce:8c:f0:2c:ad:b6:c1:
                    98:ca:ba:8a:39:ad:60:a6:05:0c:af:d4:72:51:7e:41:
                    0e:ae:3f:68:fb:c6:7c:9d:54:7b:6f:08:ce:e4:37:f5:
                    6a:2d:db:33:c9:08:85:2b:e0:49:4d:70:ca:d8:7d:16:
                    22:fd:08:62:03:9a:38:6c:98:2d:21:df:15:66:01:ed:
                    38:0c:22:ce:50:03:75:a7:1c:e1:32:68:90:2b:5d:57:
                    f9:18:6f:89:34:2a:d2:ef:37:0d:36:24:50:0f:b6:82:
                    04:7e:e2:8d:a8:40:8c:76:e1:13:26:72:9c:41:ed:3d:
                    42:83:9d:78:aa:b3:48:9d:0a:30:d1:c9:0d:2b:35:e3:
                    12:36:48:c2:85:22:11:10:7c:5b:55:1f:68:ae:cb:0a:
                    a8:48:58:e6:55:84:31:7e:cd:48:c1:23:46:7e:a2:fa:
                    1e:3d:23:5a:58:4d:cc:37:dc:de:c6:72:72:dd:c9:f1:
                    f8:23:17:57:59:bd:95:d8:2f:04:a5:70:a8:89:87:77:
                    a7:fa:b1:c7:b4:38:e1:62:bd:1a:3a:26:91:5e:a6:7b:
                    c4:8f:67:19:5d:f4:a4:31:b8:08:e5:ac:48:38:7c:40:
                    20:a1:b2:3e:db:5d:8b:29:f6:b2:f1:cd:8a:f8:df:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:c8:f1:43:bf:19:08:80:79:fe:43:54:0e:a8:40:de:
        e4:f4:b1:2c:d6:38:0c:70:8f:44:9f:c7:76:0a:79:58:
        db:ed:46:e0:8e:71:28:87:44:66:8b:e1:2b:d7:4d:88:
        0c:f8:a1:20:94:7d:1b:1d:08:5a:1a:3b:a3:c5:7f:69:
        f7:ba:36:56:43:17:b2:a1:fd:8a:e6:a1:44:8b:0d:ad:
        d2:86:bc:c4:55:5f:c8:17:05:cd:47:70:a5:93:98:2b:
        97:04:81:4d:7c:c0:66:a9:51:45:c8:40:90:a7:6b:65:
        36:c6:c6:1b:5c:62:99:12:4b:0b:1d:62:67:6e:9b:9c:
        a1:3d:4b:85:d9:10:9c:1a:8c:2f:10:25:23:04:ba:7b:
        ab:0f:d6:8e:9f:b3:b3:18:4d:ab:01:f9:e5:3f:97:2f:
        8d:58:a3:9a:b2:f8:7f:62:00:6e:cd:9c:49:fd:25:5a:
        6f:d2:6d:be:e6:90:84:cf:ef:40:79:bd:1e:67:79:de:
        88:97:40:e7:90:58:6f:44:81:81:65:26:4a:ed:6c:a9:
        6b:e2:31:3e:16:18:38:bd:4b:9a:b8:a3:de:ec:5e:b5:
        72:62:be:97:e9:2b:df:d4:09:fc:55:19:d2:12:6a:c7:
        5d:e4:d3:d2:43:ff:22:50:f0:45:f4:93:7e:6b:a9:16
    Fingerprint (SHA-256):
        A4:BB:DA:8B:1C:2C:95:C7:A2:01:CA:2C:5A:A8:17:DC:8D:73:66:88:7F:2B:82:99:69:9D:58:78:76:61:61:45
    Fingerprint (SHA1):
        30:DA:45:D9:47:26:EB:AB:92:BE:ED:89:8B:E2:61:1E:22:34:22:13
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3033: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144780 (0x3cdd6ecc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 14:53:57 2017
            Not After : Fri Oct 21 14:53:57 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:b5:94:fb:34:84:9f:9d:07:ce:8c:f0:2c:ad:b6:c1:
                    98:ca:ba:8a:39:ad:60:a6:05:0c:af:d4:72:51:7e:41:
                    0e:ae:3f:68:fb:c6:7c:9d:54:7b:6f:08:ce:e4:37:f5:
                    6a:2d:db:33:c9:08:85:2b:e0:49:4d:70:ca:d8:7d:16:
                    22:fd:08:62:03:9a:38:6c:98:2d:21:df:15:66:01:ed:
                    38:0c:22:ce:50:03:75:a7:1c:e1:32:68:90:2b:5d:57:
                    f9:18:6f:89:34:2a:d2:ef:37:0d:36:24:50:0f:b6:82:
                    04:7e:e2:8d:a8:40:8c:76:e1:13:26:72:9c:41:ed:3d:
                    42:83:9d:78:aa:b3:48:9d:0a:30:d1:c9:0d:2b:35:e3:
                    12:36:48:c2:85:22:11:10:7c:5b:55:1f:68:ae:cb:0a:
                    a8:48:58:e6:55:84:31:7e:cd:48:c1:23:46:7e:a2:fa:
                    1e:3d:23:5a:58:4d:cc:37:dc:de:c6:72:72:dd:c9:f1:
                    f8:23:17:57:59:bd:95:d8:2f:04:a5:70:a8:89:87:77:
                    a7:fa:b1:c7:b4:38:e1:62:bd:1a:3a:26:91:5e:a6:7b:
                    c4:8f:67:19:5d:f4:a4:31:b8:08:e5:ac:48:38:7c:40:
                    20:a1:b2:3e:db:5d:8b:29:f6:b2:f1:cd:8a:f8:df:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:c8:f1:43:bf:19:08:80:79:fe:43:54:0e:a8:40:de:
        e4:f4:b1:2c:d6:38:0c:70:8f:44:9f:c7:76:0a:79:58:
        db:ed:46:e0:8e:71:28:87:44:66:8b:e1:2b:d7:4d:88:
        0c:f8:a1:20:94:7d:1b:1d:08:5a:1a:3b:a3:c5:7f:69:
        f7:ba:36:56:43:17:b2:a1:fd:8a:e6:a1:44:8b:0d:ad:
        d2:86:bc:c4:55:5f:c8:17:05:cd:47:70:a5:93:98:2b:
        97:04:81:4d:7c:c0:66:a9:51:45:c8:40:90:a7:6b:65:
        36:c6:c6:1b:5c:62:99:12:4b:0b:1d:62:67:6e:9b:9c:
        a1:3d:4b:85:d9:10:9c:1a:8c:2f:10:25:23:04:ba:7b:
        ab:0f:d6:8e:9f:b3:b3:18:4d:ab:01:f9:e5:3f:97:2f:
        8d:58:a3:9a:b2:f8:7f:62:00:6e:cd:9c:49:fd:25:5a:
        6f:d2:6d:be:e6:90:84:cf:ef:40:79:bd:1e:67:79:de:
        88:97:40:e7:90:58:6f:44:81:81:65:26:4a:ed:6c:a9:
        6b:e2:31:3e:16:18:38:bd:4b:9a:b8:a3:de:ec:5e:b5:
        72:62:be:97:e9:2b:df:d4:09:fc:55:19:d2:12:6a:c7:
        5d:e4:d3:d2:43:ff:22:50:f0:45:f4:93:7e:6b:a9:16
    Fingerprint (SHA-256):
        A4:BB:DA:8B:1C:2C:95:C7:A2:01:CA:2C:5A:A8:17:DC:8D:73:66:88:7F:2B:82:99:69:9D:58:78:76:61:61:45
    Fingerprint (SHA1):
        30:DA:45:D9:47:26:EB:AB:92:BE:ED:89:8B:E2:61:1E:22:34:22:13
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3034: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144780 (0x3cdd6ecc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 14:53:57 2017
            Not After : Fri Oct 21 14:53:57 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:b5:94:fb:34:84:9f:9d:07:ce:8c:f0:2c:ad:b6:c1:
                    98:ca:ba:8a:39:ad:60:a6:05:0c:af:d4:72:51:7e:41:
                    0e:ae:3f:68:fb:c6:7c:9d:54:7b:6f:08:ce:e4:37:f5:
                    6a:2d:db:33:c9:08:85:2b:e0:49:4d:70:ca:d8:7d:16:
                    22:fd:08:62:03:9a:38:6c:98:2d:21:df:15:66:01:ed:
                    38:0c:22:ce:50:03:75:a7:1c:e1:32:68:90:2b:5d:57:
                    f9:18:6f:89:34:2a:d2:ef:37:0d:36:24:50:0f:b6:82:
                    04:7e:e2:8d:a8:40:8c:76:e1:13:26:72:9c:41:ed:3d:
                    42:83:9d:78:aa:b3:48:9d:0a:30:d1:c9:0d:2b:35:e3:
                    12:36:48:c2:85:22:11:10:7c:5b:55:1f:68:ae:cb:0a:
                    a8:48:58:e6:55:84:31:7e:cd:48:c1:23:46:7e:a2:fa:
                    1e:3d:23:5a:58:4d:cc:37:dc:de:c6:72:72:dd:c9:f1:
                    f8:23:17:57:59:bd:95:d8:2f:04:a5:70:a8:89:87:77:
                    a7:fa:b1:c7:b4:38:e1:62:bd:1a:3a:26:91:5e:a6:7b:
                    c4:8f:67:19:5d:f4:a4:31:b8:08:e5:ac:48:38:7c:40:
                    20:a1:b2:3e:db:5d:8b:29:f6:b2:f1:cd:8a:f8:df:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:c8:f1:43:bf:19:08:80:79:fe:43:54:0e:a8:40:de:
        e4:f4:b1:2c:d6:38:0c:70:8f:44:9f:c7:76:0a:79:58:
        db:ed:46:e0:8e:71:28:87:44:66:8b:e1:2b:d7:4d:88:
        0c:f8:a1:20:94:7d:1b:1d:08:5a:1a:3b:a3:c5:7f:69:
        f7:ba:36:56:43:17:b2:a1:fd:8a:e6:a1:44:8b:0d:ad:
        d2:86:bc:c4:55:5f:c8:17:05:cd:47:70:a5:93:98:2b:
        97:04:81:4d:7c:c0:66:a9:51:45:c8:40:90:a7:6b:65:
        36:c6:c6:1b:5c:62:99:12:4b:0b:1d:62:67:6e:9b:9c:
        a1:3d:4b:85:d9:10:9c:1a:8c:2f:10:25:23:04:ba:7b:
        ab:0f:d6:8e:9f:b3:b3:18:4d:ab:01:f9:e5:3f:97:2f:
        8d:58:a3:9a:b2:f8:7f:62:00:6e:cd:9c:49:fd:25:5a:
        6f:d2:6d:be:e6:90:84:cf:ef:40:79:bd:1e:67:79:de:
        88:97:40:e7:90:58:6f:44:81:81:65:26:4a:ed:6c:a9:
        6b:e2:31:3e:16:18:38:bd:4b:9a:b8:a3:de:ec:5e:b5:
        72:62:be:97:e9:2b:df:d4:09:fc:55:19:d2:12:6a:c7:
        5d:e4:d3:d2:43:ff:22:50:f0:45:f4:93:7e:6b:a9:16
    Fingerprint (SHA-256):
        A4:BB:DA:8B:1C:2C:95:C7:A2:01:CA:2C:5A:A8:17:DC:8D:73:66:88:7F:2B:82:99:69:9D:58:78:76:61:61:45
    Fingerprint (SHA1):
        30:DA:45:D9:47:26:EB:AB:92:BE:ED:89:8B:E2:61:1E:22:34:22:13
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3035: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144780 (0x3cdd6ecc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 14:53:57 2017
            Not After : Fri Oct 21 14:53:57 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:b5:94:fb:34:84:9f:9d:07:ce:8c:f0:2c:ad:b6:c1:
                    98:ca:ba:8a:39:ad:60:a6:05:0c:af:d4:72:51:7e:41:
                    0e:ae:3f:68:fb:c6:7c:9d:54:7b:6f:08:ce:e4:37:f5:
                    6a:2d:db:33:c9:08:85:2b:e0:49:4d:70:ca:d8:7d:16:
                    22:fd:08:62:03:9a:38:6c:98:2d:21:df:15:66:01:ed:
                    38:0c:22:ce:50:03:75:a7:1c:e1:32:68:90:2b:5d:57:
                    f9:18:6f:89:34:2a:d2:ef:37:0d:36:24:50:0f:b6:82:
                    04:7e:e2:8d:a8:40:8c:76:e1:13:26:72:9c:41:ed:3d:
                    42:83:9d:78:aa:b3:48:9d:0a:30:d1:c9:0d:2b:35:e3:
                    12:36:48:c2:85:22:11:10:7c:5b:55:1f:68:ae:cb:0a:
                    a8:48:58:e6:55:84:31:7e:cd:48:c1:23:46:7e:a2:fa:
                    1e:3d:23:5a:58:4d:cc:37:dc:de:c6:72:72:dd:c9:f1:
                    f8:23:17:57:59:bd:95:d8:2f:04:a5:70:a8:89:87:77:
                    a7:fa:b1:c7:b4:38:e1:62:bd:1a:3a:26:91:5e:a6:7b:
                    c4:8f:67:19:5d:f4:a4:31:b8:08:e5:ac:48:38:7c:40:
                    20:a1:b2:3e:db:5d:8b:29:f6:b2:f1:cd:8a:f8:df:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:c8:f1:43:bf:19:08:80:79:fe:43:54:0e:a8:40:de:
        e4:f4:b1:2c:d6:38:0c:70:8f:44:9f:c7:76:0a:79:58:
        db:ed:46:e0:8e:71:28:87:44:66:8b:e1:2b:d7:4d:88:
        0c:f8:a1:20:94:7d:1b:1d:08:5a:1a:3b:a3:c5:7f:69:
        f7:ba:36:56:43:17:b2:a1:fd:8a:e6:a1:44:8b:0d:ad:
        d2:86:bc:c4:55:5f:c8:17:05:cd:47:70:a5:93:98:2b:
        97:04:81:4d:7c:c0:66:a9:51:45:c8:40:90:a7:6b:65:
        36:c6:c6:1b:5c:62:99:12:4b:0b:1d:62:67:6e:9b:9c:
        a1:3d:4b:85:d9:10:9c:1a:8c:2f:10:25:23:04:ba:7b:
        ab:0f:d6:8e:9f:b3:b3:18:4d:ab:01:f9:e5:3f:97:2f:
        8d:58:a3:9a:b2:f8:7f:62:00:6e:cd:9c:49:fd:25:5a:
        6f:d2:6d:be:e6:90:84:cf:ef:40:79:bd:1e:67:79:de:
        88:97:40:e7:90:58:6f:44:81:81:65:26:4a:ed:6c:a9:
        6b:e2:31:3e:16:18:38:bd:4b:9a:b8:a3:de:ec:5e:b5:
        72:62:be:97:e9:2b:df:d4:09:fc:55:19:d2:12:6a:c7:
        5d:e4:d3:d2:43:ff:22:50:f0:45:f4:93:7e:6b:a9:16
    Fingerprint (SHA-256):
        A4:BB:DA:8B:1C:2C:95:C7:A2:01:CA:2C:5A:A8:17:DC:8D:73:66:88:7F:2B:82:99:69:9D:58:78:76:61:61:45
    Fingerprint (SHA1):
        30:DA:45:D9:47:26:EB:AB:92:BE:ED:89:8B:E2:61:1E:22:34:22:13
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3036: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144780 (0x3cdd6ecc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 14:53:57 2017
            Not After : Fri Oct 21 14:53:57 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:b5:94:fb:34:84:9f:9d:07:ce:8c:f0:2c:ad:b6:c1:
                    98:ca:ba:8a:39:ad:60:a6:05:0c:af:d4:72:51:7e:41:
                    0e:ae:3f:68:fb:c6:7c:9d:54:7b:6f:08:ce:e4:37:f5:
                    6a:2d:db:33:c9:08:85:2b:e0:49:4d:70:ca:d8:7d:16:
                    22:fd:08:62:03:9a:38:6c:98:2d:21:df:15:66:01:ed:
                    38:0c:22:ce:50:03:75:a7:1c:e1:32:68:90:2b:5d:57:
                    f9:18:6f:89:34:2a:d2:ef:37:0d:36:24:50:0f:b6:82:
                    04:7e:e2:8d:a8:40:8c:76:e1:13:26:72:9c:41:ed:3d:
                    42:83:9d:78:aa:b3:48:9d:0a:30:d1:c9:0d:2b:35:e3:
                    12:36:48:c2:85:22:11:10:7c:5b:55:1f:68:ae:cb:0a:
                    a8:48:58:e6:55:84:31:7e:cd:48:c1:23:46:7e:a2:fa:
                    1e:3d:23:5a:58:4d:cc:37:dc:de:c6:72:72:dd:c9:f1:
                    f8:23:17:57:59:bd:95:d8:2f:04:a5:70:a8:89:87:77:
                    a7:fa:b1:c7:b4:38:e1:62:bd:1a:3a:26:91:5e:a6:7b:
                    c4:8f:67:19:5d:f4:a4:31:b8:08:e5:ac:48:38:7c:40:
                    20:a1:b2:3e:db:5d:8b:29:f6:b2:f1:cd:8a:f8:df:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:c8:f1:43:bf:19:08:80:79:fe:43:54:0e:a8:40:de:
        e4:f4:b1:2c:d6:38:0c:70:8f:44:9f:c7:76:0a:79:58:
        db:ed:46:e0:8e:71:28:87:44:66:8b:e1:2b:d7:4d:88:
        0c:f8:a1:20:94:7d:1b:1d:08:5a:1a:3b:a3:c5:7f:69:
        f7:ba:36:56:43:17:b2:a1:fd:8a:e6:a1:44:8b:0d:ad:
        d2:86:bc:c4:55:5f:c8:17:05:cd:47:70:a5:93:98:2b:
        97:04:81:4d:7c:c0:66:a9:51:45:c8:40:90:a7:6b:65:
        36:c6:c6:1b:5c:62:99:12:4b:0b:1d:62:67:6e:9b:9c:
        a1:3d:4b:85:d9:10:9c:1a:8c:2f:10:25:23:04:ba:7b:
        ab:0f:d6:8e:9f:b3:b3:18:4d:ab:01:f9:e5:3f:97:2f:
        8d:58:a3:9a:b2:f8:7f:62:00:6e:cd:9c:49:fd:25:5a:
        6f:d2:6d:be:e6:90:84:cf:ef:40:79:bd:1e:67:79:de:
        88:97:40:e7:90:58:6f:44:81:81:65:26:4a:ed:6c:a9:
        6b:e2:31:3e:16:18:38:bd:4b:9a:b8:a3:de:ec:5e:b5:
        72:62:be:97:e9:2b:df:d4:09:fc:55:19:d2:12:6a:c7:
        5d:e4:d3:d2:43:ff:22:50:f0:45:f4:93:7e:6b:a9:16
    Fingerprint (SHA-256):
        A4:BB:DA:8B:1C:2C:95:C7:A2:01:CA:2C:5A:A8:17:DC:8D:73:66:88:7F:2B:82:99:69:9D:58:78:76:61:61:45
    Fingerprint (SHA1):
        30:DA:45:D9:47:26:EB:AB:92:BE:ED:89:8B:E2:61:1E:22:34:22:13
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3037: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3038: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3039: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144810 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3040: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3041: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #3042: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3043: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 1021144811   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3044: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3045: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #3046: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3047: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 1021144812   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3048: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3049: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #3050: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3051: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 1021144813   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3052: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3053: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #3054: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3055: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 1021144814   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3056: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3057: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #3058: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3059: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 1021144815   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3060: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3061: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #3062: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3063: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 1021144816   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3064: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3065: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3066: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144810 (0x3cdd6eea)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 14:57:11 2017
            Not After : Fri Oct 21 14:57:11 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f8:ca:e1:a6:ea:23:4f:b9:19:6c:df:32:b0:00:5b:9d:
                    fb:5c:1a:9d:4d:4f:a1:4f:82:25:b8:6a:14:fb:39:c1:
                    cc:3d:70:26:5a:ee:ac:64:67:e4:2f:0b:13:a8:c1:02:
                    e6:d0:09:c8:d0:04:73:76:ea:b1:d8:3a:65:e2:8a:ab:
                    8d:e6:b9:e7:b4:84:22:39:a0:29:51:dc:27:7b:15:b2:
                    6d:e8:1c:bc:3a:c1:1f:36:2a:e3:32:2e:21:bd:29:99:
                    d1:ea:3f:68:07:59:d6:8e:d3:f4:51:c7:ed:93:b1:75:
                    1e:12:08:c5:fc:e1:1f:ce:2e:40:bd:8c:a7:72:7a:2f:
                    6b:48:50:7c:b7:c8:60:eb:e9:e3:6a:78:89:e8:2a:32:
                    d8:00:48:12:ae:8f:c0:bb:e6:ea:a6:59:47:24:46:4c:
                    a4:ed:d9:27:dc:69:c4:73:9a:f2:5e:bb:84:16:aa:3d:
                    3d:2b:b5:e4:16:f8:88:45:72:c9:e9:0a:fa:46:8f:59:
                    97:b5:19:ec:d8:cd:5b:8a:72:5d:1f:6b:28:79:6a:3a:
                    2d:8e:e6:10:de:90:48:b3:c2:a3:3b:62:d7:aa:c4:7a:
                    21:a5:bc:20:3d:f4:1a:00:ff:b1:f0:d1:31:19:fb:dc:
                    a1:cd:a2:fc:5b:ef:23:4d:32:55:b8:52:74:dc:54:c1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:4f:af:c9:27:df:df:b7:dd:8f:88:19:2d:ee:6e:c2:
        67:fa:2b:cd:f5:a8:67:ea:8a:06:3a:d8:3e:b0:65:fa:
        0a:10:10:fa:f4:cc:a4:b0:5d:d7:82:88:10:7d:c0:18:
        18:42:05:70:1c:6d:69:3e:dc:5b:aa:16:0e:33:ba:83:
        4c:c0:65:35:61:97:0a:ef:f1:d2:e4:c1:8c:4d:32:42:
        b2:08:09:95:c0:bc:23:6a:66:d4:9a:43:a7:cc:49:41:
        b1:b7:23:58:e2:33:12:e7:83:dc:09:af:ff:5c:83:23:
        df:7d:59:00:dd:5f:ae:31:59:2b:81:c9:16:30:67:0b:
        e1:d1:d2:4e:6f:af:03:b3:3b:df:64:44:2b:df:87:6f:
        0e:83:84:4d:ab:f3:9c:2d:92:e3:07:b8:a1:8d:6a:b5:
        18:e0:59:8b:5a:73:05:f2:f7:d3:ac:cc:19:69:0c:e7:
        f4:f5:17:da:88:b9:19:28:ac:43:9f:7d:eb:54:71:4d:
        11:de:30:7e:b0:31:d3:7c:7a:2e:7d:17:53:3e:9a:0c:
        4e:91:4d:00:5d:1b:47:a5:a0:d9:89:81:bd:8d:41:f3:
        04:51:e0:9a:6b:74:1f:58:95:e9:6f:73:6a:9e:65:e9:
        eb:ef:7f:e5:aa:56:56:27:f2:6d:f3:c9:42:0e:ad:2a
    Fingerprint (SHA-256):
        89:A2:9B:55:76:A9:06:FB:55:8D:E9:CA:74:8B:8A:91:0E:E1:4D:09:4B:33:7F:A3:98:2F:2C:B8:67:61:74:43
    Fingerprint (SHA1):
        B0:EE:FA:AE:51:0B:84:71:8B:9F:28:DE:31:1B:AB:44:FD:7B:F2:4A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3067: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3068: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3069: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3070: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144810 (0x3cdd6eea)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 14:57:11 2017
            Not After : Fri Oct 21 14:57:11 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f8:ca:e1:a6:ea:23:4f:b9:19:6c:df:32:b0:00:5b:9d:
                    fb:5c:1a:9d:4d:4f:a1:4f:82:25:b8:6a:14:fb:39:c1:
                    cc:3d:70:26:5a:ee:ac:64:67:e4:2f:0b:13:a8:c1:02:
                    e6:d0:09:c8:d0:04:73:76:ea:b1:d8:3a:65:e2:8a:ab:
                    8d:e6:b9:e7:b4:84:22:39:a0:29:51:dc:27:7b:15:b2:
                    6d:e8:1c:bc:3a:c1:1f:36:2a:e3:32:2e:21:bd:29:99:
                    d1:ea:3f:68:07:59:d6:8e:d3:f4:51:c7:ed:93:b1:75:
                    1e:12:08:c5:fc:e1:1f:ce:2e:40:bd:8c:a7:72:7a:2f:
                    6b:48:50:7c:b7:c8:60:eb:e9:e3:6a:78:89:e8:2a:32:
                    d8:00:48:12:ae:8f:c0:bb:e6:ea:a6:59:47:24:46:4c:
                    a4:ed:d9:27:dc:69:c4:73:9a:f2:5e:bb:84:16:aa:3d:
                    3d:2b:b5:e4:16:f8:88:45:72:c9:e9:0a:fa:46:8f:59:
                    97:b5:19:ec:d8:cd:5b:8a:72:5d:1f:6b:28:79:6a:3a:
                    2d:8e:e6:10:de:90:48:b3:c2:a3:3b:62:d7:aa:c4:7a:
                    21:a5:bc:20:3d:f4:1a:00:ff:b1:f0:d1:31:19:fb:dc:
                    a1:cd:a2:fc:5b:ef:23:4d:32:55:b8:52:74:dc:54:c1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:4f:af:c9:27:df:df:b7:dd:8f:88:19:2d:ee:6e:c2:
        67:fa:2b:cd:f5:a8:67:ea:8a:06:3a:d8:3e:b0:65:fa:
        0a:10:10:fa:f4:cc:a4:b0:5d:d7:82:88:10:7d:c0:18:
        18:42:05:70:1c:6d:69:3e:dc:5b:aa:16:0e:33:ba:83:
        4c:c0:65:35:61:97:0a:ef:f1:d2:e4:c1:8c:4d:32:42:
        b2:08:09:95:c0:bc:23:6a:66:d4:9a:43:a7:cc:49:41:
        b1:b7:23:58:e2:33:12:e7:83:dc:09:af:ff:5c:83:23:
        df:7d:59:00:dd:5f:ae:31:59:2b:81:c9:16:30:67:0b:
        e1:d1:d2:4e:6f:af:03:b3:3b:df:64:44:2b:df:87:6f:
        0e:83:84:4d:ab:f3:9c:2d:92:e3:07:b8:a1:8d:6a:b5:
        18:e0:59:8b:5a:73:05:f2:f7:d3:ac:cc:19:69:0c:e7:
        f4:f5:17:da:88:b9:19:28:ac:43:9f:7d:eb:54:71:4d:
        11:de:30:7e:b0:31:d3:7c:7a:2e:7d:17:53:3e:9a:0c:
        4e:91:4d:00:5d:1b:47:a5:a0:d9:89:81:bd:8d:41:f3:
        04:51:e0:9a:6b:74:1f:58:95:e9:6f:73:6a:9e:65:e9:
        eb:ef:7f:e5:aa:56:56:27:f2:6d:f3:c9:42:0e:ad:2a
    Fingerprint (SHA-256):
        89:A2:9B:55:76:A9:06:FB:55:8D:E9:CA:74:8B:8A:91:0E:E1:4D:09:4B:33:7F:A3:98:2F:2C:B8:67:61:74:43
    Fingerprint (SHA1):
        B0:EE:FA:AE:51:0B:84:71:8B:9F:28:DE:31:1B:AB:44:FD:7B:F2:4A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3071: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3072: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3073: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3074: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144817 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3075: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3076: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3077: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3078: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021144818   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3079: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3080: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3081: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3082: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021144819   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3083: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3084: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3085: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3086: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 1021144820   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3087: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3088: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3089: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3090: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3091: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3092: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144817 (0x3cdd6ef1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 14:57:57 2017
            Not After : Fri Oct 21 14:57:57 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:ee:b4:74:02:24:0c:72:c1:68:7b:d5:c0:73:5d:19:
                    bc:ed:af:03:0b:46:04:f1:f2:b7:78:4b:22:48:d0:34:
                    40:86:4e:cd:b9:20:cb:a5:c9:72:8e:f8:1a:03:ff:55:
                    9e:cf:a2:a5:88:16:89:bd:29:9b:95:e1:84:f0:fc:3f:
                    e2:af:b6:76:d6:a8:c3:a7:cb:17:9b:40:50:e1:b8:84:
                    b5:21:19:eb:3c:8f:9c:67:b2:9a:5e:67:f5:f9:14:73:
                    5d:26:c9:e8:a2:03:d0:ae:2f:01:31:c4:b7:02:48:df:
                    c0:16:7f:ff:31:93:2c:9c:8d:20:d8:27:58:88:da:17:
                    f0:19:eb:ec:0b:6c:4a:74:2b:65:18:61:64:c8:6b:da:
                    a2:47:8c:92:94:73:bc:a1:ba:1c:c4:a1:f4:bc:11:66:
                    12:5c:f9:47:cf:94:18:10:73:77:9a:0c:98:c0:b3:0b:
                    46:a4:32:8e:98:d1:60:14:f5:55:9a:e6:fc:4c:5f:dc:
                    cb:fd:d8:1a:65:37:c3:87:61:62:d8:bd:50:d9:8d:07:
                    83:4b:93:c1:13:19:45:3b:56:ea:3b:54:b0:5c:2a:1a:
                    75:f1:b9:68:9c:97:65:e3:63:0e:82:30:d8:c2:d8:a9:
                    8e:71:80:2f:bf:93:a5:ed:cb:ff:76:5b:71:63:be:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        36:92:6b:41:e1:53:ac:d1:30:fd:96:7c:7a:72:e8:71:
        03:e9:40:4c:ee:ad:8d:c2:0e:1b:77:92:e1:bd:13:6e:
        0e:48:cc:a1:e6:d2:3f:3f:05:e2:28:40:f0:8f:e1:21:
        d7:56:0e:35:18:da:88:82:8e:1a:4f:ae:0f:a6:a6:62:
        21:98:70:0f:e1:3c:3a:42:2b:2a:61:6f:d0:54:4e:aa:
        b2:a8:9f:d2:80:c5:ad:78:a7:51:19:59:e2:70:22:9f:
        4b:ec:84:2d:c4:31:53:a4:ce:12:4e:bb:56:b8:af:c3:
        79:f1:1a:d9:b7:fa:44:04:9c:8e:5d:84:ba:13:5d:96:
        65:5d:cc:8e:fa:1f:b2:8d:ce:56:ae:51:bb:0e:81:97:
        f9:49:23:9e:eb:75:9a:de:e0:9a:20:ce:31:25:5d:e4:
        24:a7:c3:fc:2a:14:9a:49:28:df:40:78:5a:11:46:2f:
        9d:1e:b7:81:ce:77:5a:d2:4f:d3:35:de:d1:28:73:05:
        8a:10:56:a7:d9:b1:e8:32:40:b2:07:59:e4:c0:08:97:
        fd:cf:39:63:c5:c2:d8:aa:4f:0c:78:d6:40:75:74:c8:
        ab:74:cc:c8:c7:d0:aa:73:7e:e2:d4:7e:b8:26:47:7f:
        4a:0b:5b:0f:50:db:7d:6a:f1:d4:0b:18:27:87:e2:06
    Fingerprint (SHA-256):
        FD:44:73:D3:AF:CB:D9:AA:2E:58:8C:9B:4B:B3:07:C5:EE:EA:63:E8:E9:0E:C9:FB:4F:3A:20:A7:20:68:AB:72
    Fingerprint (SHA1):
        DF:CD:48:D8:9B:A8:37:99:1B:D6:AF:25:81:08:19:94:C5:99:38:F5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3093: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3094: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3095: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144818 (0x3cdd6ef2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 14:58:03 2017
            Not After : Fri Oct 21 14:58:03 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    93:75:a5:8b:b4:2e:30:47:d0:74:ae:32:c9:c5:19:7e:
                    c9:5b:26:31:b5:31:1f:27:77:94:87:dd:14:2f:f3:84:
                    eb:d7:c4:ee:74:8b:b3:d0:38:9d:14:2a:b3:d5:f1:6e:
                    45:ab:f2:89:61:1c:59:c4:16:74:25:1c:f4:84:00:63:
                    d1:bf:e1:ea:ed:a7:f3:39:38:01:f6:f4:7d:dc:28:e3:
                    77:94:bf:36:e9:a0:7e:da:c8:18:5a:c8:e7:e3:24:d3:
                    b2:da:fd:4b:1a:7b:35:d6:f3:77:01:b4:aa:6b:31:c8:
                    96:c1:b8:9f:bb:ec:57:55:6d:05:51:79:e6:8b:82:9a:
                    18:18:df:3a:3e:0f:b6:a3:2b:8d:d8:16:b7:8c:6a:22:
                    2b:9a:03:d6:09:05:2c:14:ea:fa:1b:ba:d8:13:a1:a7:
                    fd:24:78:19:60:2a:e8:13:43:90:d5:94:66:bc:c1:ac:
                    2e:ef:9e:ce:af:4f:51:18:ec:a0:ee:9e:14:03:35:89:
                    a8:6a:46:94:8b:5a:49:a8:cd:68:87:f9:3f:23:1c:dc:
                    3b:56:84:bf:fc:2d:b1:7a:b7:e2:c7:ad:fb:f6:c5:2a:
                    cd:24:f6:59:fc:27:ce:77:50:e9:ef:d2:b8:9c:4e:fe:
                    71:be:f1:61:33:27:b8:c6:5a:51:e9:09:2d:b7:f4:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a0:49:4d:c6:17:14:be:4d:9f:39:fc:38:f2:4c:d0:83:
        e5:c2:a6:ca:7a:9a:77:23:77:bb:a0:0c:3e:19:67:c5:
        00:bc:a8:88:1a:56:40:ca:3c:35:34:3c:89:5d:5d:3a:
        a5:34:42:2d:be:0a:3b:d5:46:c2:92:98:39:15:45:9c:
        9b:e4:ef:7a:11:72:35:2b:4b:28:6a:4d:4e:6e:90:51:
        73:8d:95:33:5a:ae:b5:53:d9:31:f7:88:cc:10:40:b5:
        9d:4a:3d:3e:fe:31:fa:c4:e2:86:db:94:0f:0a:7f:ae:
        ff:ce:d5:5d:30:2b:75:c5:b7:61:ea:9f:36:26:c0:ea:
        dc:74:a5:38:26:ef:7b:62:bb:3e:6c:84:e7:d5:de:61:
        32:a1:f0:de:6f:5d:2f:08:09:85:75:77:cf:9b:5a:7f:
        b9:9a:ef:1a:6a:5d:6d:9a:e2:2a:ba:fc:6b:5a:bb:6d:
        cc:0d:fe:db:3e:b9:c9:38:4c:dc:36:16:9d:02:6c:bf:
        9f:fc:1c:95:27:c1:8e:c6:fc:eb:4f:96:21:26:f5:da:
        9d:40:a4:64:bd:a7:81:3b:7c:3e:e8:16:d7:b5:04:f0:
        9e:26:21:a6:06:32:43:ab:ea:fb:5f:9e:98:bf:d2:19:
        2d:c5:1e:76:04:b9:cf:36:7f:a7:73:f5:8e:86:f6:87
    Fingerprint (SHA-256):
        2C:C1:34:95:2C:8D:9A:04:5D:95:EE:A9:18:87:58:ED:95:59:FA:A9:2A:80:E0:C4:83:7A:5A:74:81:C8:4C:EC
    Fingerprint (SHA1):
        00:BA:CA:30:F2:40:18:2E:14:19:8B:C4:F5:6F:FC:35:BB:BF:F2:C3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3096: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3097: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144819 (0x3cdd6ef3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 14:58:09 2017
            Not After : Fri Oct 21 14:58:09 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:26:65:28:d3:62:dc:97:97:f1:fa:df:63:0a:65:30:
                    63:b3:0c:96:4f:3e:cb:1d:32:73:3a:ef:ec:a5:c0:8d:
                    1c:80:ce:d1:71:e5:c0:99:cd:f2:57:8f:36:34:43:53:
                    f7:72:b0:c1:4a:6d:0e:76:c4:8f:c7:03:40:dc:72:cc:
                    48:5c:12:0b:69:88:ab:8f:6b:e0:82:48:f7:f7:8e:49:
                    85:91:e5:59:5e:54:a8:d8:7f:92:a2:8d:02:da:0b:0a:
                    84:6c:54:5d:c4:c9:55:c0:3c:fc:aa:c5:7c:a5:0f:83:
                    e8:31:5a:b5:4c:e3:e5:12:76:5b:5b:54:83:a5:b7:b1:
                    53:a7:33:e0:b9:81:bb:6e:ff:f1:2b:a9:f9:b6:43:f7:
                    46:0d:28:14:36:12:75:70:1c:cb:3a:b2:b2:85:9b:d4:
                    22:d1:e4:84:c3:e5:a7:93:36:77:75:58:96:5b:d8:ed:
                    10:57:06:e8:d7:93:18:38:56:ca:16:a2:61:50:de:58:
                    f2:49:a4:a0:9a:28:09:66:e8:9e:e5:4e:c7:9c:1d:4f:
                    61:08:1a:c9:e9:36:de:de:43:ae:76:fa:7b:78:a5:69:
                    a7:34:c9:39:fa:36:06:b3:9c:ee:9c:50:b6:51:87:1b:
                    ac:fc:37:50:fb:bb:3d:e7:d0:c8:db:cd:1f:e8:cc:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:47:96:5d:17:4a:a9:d7:94:8f:7f:10:2c:38:9d:05:
        09:44:dd:2d:38:64:24:7f:cc:6a:8a:c0:9e:58:23:f8:
        c6:de:c6:86:46:e0:b4:ad:34:b4:7c:0b:54:ce:b1:b4:
        49:00:08:0e:d8:3c:fe:25:3f:9c:85:0a:65:9e:bc:11:
        21:56:73:af:4b:7d:e1:99:82:cc:fb:68:8e:4a:c5:39:
        78:37:bc:12:0f:e8:56:74:84:3c:86:9e:a6:81:cc:3e:
        70:5e:45:74:e3:35:7b:79:70:ff:90:77:b3:e9:77:a2:
        91:e7:a6:3a:94:e8:fa:bc:6c:7f:e6:8c:e0:61:45:aa:
        66:00:21:be:18:a8:3c:ad:a5:ad:9f:8a:3a:a3:d2:37:
        d8:d9:88:61:c9:b2:77:f1:05:05:4d:82:5f:c1:95:35:
        39:6f:63:d4:de:ed:f3:b2:9c:43:d9:0f:19:24:a6:13:
        00:96:84:15:3f:da:2d:61:8f:00:eb:74:50:85:2e:f8:
        77:c7:94:20:3a:02:f3:e1:a9:74:39:fa:74:0f:c9:a8:
        c2:7e:1c:10:41:f7:71:8f:10:20:01:ce:bf:f3:7a:ca:
        04:c3:e7:17:cd:e7:ba:e1:3e:48:59:e0:07:6e:7c:67:
        64:e2:42:7e:89:11:7c:88:dc:98:f9:fc:6e:bb:91:af
    Fingerprint (SHA-256):
        8D:CD:A3:44:95:B9:E4:27:9B:FA:FB:AA:31:3A:06:84:68:67:12:F6:6E:5E:54:EE:16:2F:8A:47:60:E5:7E:65
    Fingerprint (SHA1):
        8B:A8:18:46:CE:EC:A8:0E:17:AF:1F:15:76:27:62:D9:E8:61:E5:9E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3098: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3099: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144821 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3100: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3101: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3102: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3103: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021144822   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3104: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3105: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3106: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3107: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021144823   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3108: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3109: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3110: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3111: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 1021144824   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3112: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3113: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3114: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3115: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 1021144825   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3116: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3117: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3118: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3119: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3120: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3121: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #3122: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144821 (0x3cdd6ef5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 14:58:29 2017
            Not After : Fri Oct 21 14:58:29 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a1:8d:87:19:51:ae:57:e1:fc:73:4b:b1:62:f7:cb:67:
                    07:a5:b6:d0:bd:4e:d5:90:74:2e:49:9b:50:63:be:0e:
                    7a:da:54:c1:c3:b4:6e:e0:64:d0:b1:fd:f2:4d:49:67:
                    45:ae:e0:55:69:93:c9:f2:ef:a4:0d:fd:10:91:3d:e8:
                    98:50:2f:4b:51:0e:54:39:36:0f:c0:4b:05:c2:cb:d4:
                    6c:a7:e8:7b:a7:f9:a7:70:6b:dd:24:34:0c:4e:85:40:
                    60:08:e7:be:a1:2b:42:08:5d:1d:96:00:ee:5b:85:b2:
                    fb:5e:52:63:87:1c:d8:6e:25:9e:6b:60:b7:ed:6f:92:
                    35:1f:59:e6:88:fe:e3:2c:ac:5d:67:0e:42:72:d1:2f:
                    6a:eb:c7:46:d5:4b:d8:42:f5:fe:3a:83:86:8b:91:25:
                    9c:d0:bf:34:53:ea:57:49:2c:b7:8c:42:0f:44:3b:71:
                    84:df:6e:f1:b9:50:92:12:ed:7d:e0:3f:63:7a:ad:bc:
                    6c:14:85:d7:ff:8b:8c:65:ce:53:f5:77:84:e4:0f:1b:
                    69:fc:d7:1b:26:7a:6e:7e:c7:1c:70:40:03:73:06:98:
                    d1:ff:ec:05:14:27:62:30:75:81:19:7c:84:cd:93:67:
                    71:7d:14:94:94:71:48:12:ee:10:ee:ee:49:be:37:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        03:e9:11:05:3f:d6:23:b7:2e:89:45:04:42:6b:cc:3f:
        4f:eb:af:75:1a:14:bc:d2:17:43:83:67:34:55:19:74:
        5f:f3:46:c4:05:61:4d:a4:06:74:02:a2:60:43:68:29:
        78:c3:47:58:26:f5:a2:c0:17:fa:05:81:37:a8:ed:0a:
        88:2a:e9:9a:0b:f6:75:f1:00:0e:2e:11:b1:1c:ed:9d:
        c2:61:17:1b:00:e1:d4:28:28:3f:94:c4:60:0d:ee:68:
        e3:4e:e6:13:2d:8f:be:b4:3d:3d:61:a4:f8:83:37:d8:
        47:14:8a:9d:90:df:8c:6c:94:f9:bf:da:14:ac:dc:9f:
        57:e3:6a:31:70:15:8f:ab:5a:34:c2:b2:fa:a3:c2:2e:
        80:c9:51:6f:90:42:6d:f8:3d:01:51:14:5e:60:f2:bd:
        38:01:00:da:de:ed:4c:61:b6:1c:21:a9:f5:86:4c:fc:
        08:e0:cb:6b:ba:d0:a4:76:b0:18:66:3a:f2:d2:60:3c:
        ea:13:d8:b9:52:1b:07:09:50:70:08:90:a6:22:21:52:
        be:94:4d:d1:be:a3:d2:e2:e5:44:5b:44:fa:a7:c5:2a:
        d3:52:09:a7:29:cb:3c:cb:d1:14:9c:c9:32:ce:8c:8d:
        16:4b:ab:4a:7c:48:3f:d1:ea:cc:f3:bd:03:f3:f2:d1
    Fingerprint (SHA-256):
        D2:EB:BC:E1:45:B4:B4:6E:16:0F:76:9E:85:9E:3D:25:57:97:0F:A2:14:3D:8E:98:D3:61:C6:D8:4E:C4:B7:72
    Fingerprint (SHA1):
        24:33:DD:2E:66:90:0F:60:4A:5C:80:07:44:1C:33:C6:5A:F8:7D:B9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3123: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3124: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144822 (0x3cdd6ef6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 14:58:37 2017
            Not After : Fri Oct 21 14:58:37 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:0e:f0:1d:52:48:d3:bb:b6:62:69:a1:75:48:c6:67:
                    6b:12:62:5c:94:27:dc:a4:df:98:d2:73:6a:a3:9e:b0:
                    db:b1:af:ed:68:aa:16:a2:3e:72:d9:88:b8:cc:c2:63:
                    1c:80:a9:d2:7f:40:ee:d5:5d:ac:77:76:8a:26:f8:d4:
                    75:bf:74:dd:a5:8e:28:0f:4d:ab:64:51:16:2e:59:19:
                    52:a1:de:a7:cc:cd:5c:d6:27:1c:9c:52:b8:f7:d0:ee:
                    28:ca:a4:0c:32:d9:21:40:5d:63:97:ed:26:bc:02:a6:
                    3b:d1:de:a9:2e:a0:ca:56:f0:3b:b4:a9:9d:ad:26:2b:
                    30:e1:1a:66:69:42:6b:1a:5e:ee:be:ae:80:f8:6a:9c:
                    38:b2:8b:98:a6:bb:23:98:d4:38:9b:54:5e:08:42:e0:
                    34:76:3e:c3:73:bd:6e:f5:e9:f3:e1:dd:63:2f:a6:ba:
                    53:25:0f:48:6e:80:28:24:37:4a:3a:9a:cd:66:65:dc:
                    55:e6:76:c6:5b:2a:41:e5:17:13:fa:62:9b:c2:5f:82:
                    5a:3e:07:61:47:7c:0b:7c:7b:07:1b:9e:01:2c:4e:45:
                    26:73:af:a1:51:90:df:c0:47:96:f6:df:06:28:55:d3:
                    0b:43:97:4d:88:d9:7a:76:75:01:11:dd:27:49:04:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        39:59:7a:b9:ad:92:de:40:15:9c:3b:6c:16:42:76:4f:
        0e:5c:f5:e6:fb:e5:cc:b0:f2:9b:4e:2a:7c:38:7f:ea:
        4c:c8:05:3c:87:27:b2:e2:e2:9a:55:b4:41:bb:91:0c:
        b0:d6:e9:40:de:cc:49:4e:44:a8:38:4e:c6:77:76:d0:
        5b:4c:f7:92:a1:73:87:47:cb:7a:b2:23:b3:04:69:1a:
        35:ce:9f:b6:96:2c:85:2d:1b:96:ff:eb:2d:09:51:a7:
        64:61:9f:67:fd:68:76:94:be:63:b6:1f:ad:e7:0c:ef:
        37:2c:a9:db:86:15:35:f8:6c:79:80:fb:57:72:5f:5d:
        60:38:af:63:89:4a:50:60:a7:b6:a9:25:6a:e4:09:2e:
        df:28:bb:d0:a7:89:75:f6:8b:a1:32:33:d0:42:4f:60:
        71:73:4f:7d:5c:b7:91:22:37:5b:40:ed:ca:18:b1:cd:
        72:93:c9:ce:04:96:74:89:71:ee:3b:6d:6f:ec:5e:59:
        30:9a:af:b5:d5:a7:c0:94:84:98:c2:2f:f6:f7:66:e2:
        03:51:ec:19:f1:81:57:3f:cf:6b:6d:fa:d0:79:11:5d:
        30:df:41:a2:3a:ee:b3:69:1f:fc:f4:f8:4b:4e:47:62:
        b3:4a:4b:b5:e8:a4:b8:76:5e:c3:49:66:cc:bc:d1:4d
    Fingerprint (SHA-256):
        FA:91:7F:D9:1B:69:94:05:36:69:EF:A1:DF:8C:5B:C7:A9:B9:AB:65:DF:F3:61:C6:F7:DA:AD:2A:0B:4B:63:0A
    Fingerprint (SHA1):
        55:79:21:F0:E7:29:B0:72:C5:51:4B:B1:DA:18:1D:2E:3E:2F:67:9A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3125: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3126: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3127: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144823 (0x3cdd6ef7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 14:58:42 2017
            Not After : Fri Oct 21 14:58:42 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:e0:a4:df:5d:96:18:7f:e8:97:59:4c:91:09:24:54:
                    26:68:7e:bf:68:26:a3:71:cf:2a:71:79:c9:a2:c5:dc:
                    d3:bf:96:69:ce:9c:fe:a4:74:29:7b:ac:86:1b:b3:b1:
                    26:9f:15:93:b4:d3:4c:58:89:65:ba:10:44:ae:48:85:
                    9c:8b:3a:63:6c:1c:71:f8:d6:3a:46:50:dc:56:7f:eb:
                    1c:20:b2:db:6c:6d:07:21:dd:ef:77:00:fb:78:5e:c4:
                    a6:ba:62:10:24:0a:11:e7:34:67:76:72:89:56:62:18:
                    68:99:7a:c0:53:ec:65:3e:ca:e8:8f:9f:7f:b6:b8:84:
                    8e:c4:ef:ba:58:c5:76:82:e1:06:7d:b6:88:c6:28:40:
                    b6:19:13:ef:66:eb:65:ef:95:be:22:f4:8a:a8:cc:23:
                    82:cf:f9:58:a3:7f:ea:2c:3a:8a:89:50:c8:a4:8a:0d:
                    79:cb:78:b1:77:bc:a4:b2:03:f3:6a:3f:af:4c:16:38:
                    be:de:7a:c1:5a:38:db:51:39:73:c9:49:37:e4:dd:23:
                    b8:67:53:b6:fb:02:c5:1d:57:8a:2f:93:d2:98:f2:07:
                    fc:4b:37:12:ce:80:aa:48:bb:5e:e8:0c:97:43:00:e0:
                    b9:2f:64:11:d8:00:fc:64:17:11:28:30:31:c4:50:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:5b:0a:11:a1:8c:5a:98:fc:60:fe:cd:a4:12:93:9e:
        8d:5d:73:4c:68:fe:09:c8:5f:2b:30:7b:bc:b0:bc:01:
        dd:03:f5:0d:97:d0:a4:3c:87:47:fa:23:44:16:95:da:
        ee:ef:9f:8c:bc:0d:9c:b5:c1:38:06:5c:9d:d4:9e:6e:
        cb:5b:f6:95:75:ee:5d:f2:13:25:9b:b4:c3:5f:ba:e6:
        4e:58:83:77:7b:52:ae:12:ce:c9:4d:10:33:76:b7:d1:
        1a:38:29:3f:f4:91:3b:b1:bd:e1:c8:03:52:e8:50:06:
        08:b2:47:52:5d:52:6d:c8:53:be:e1:a1:5b:17:ef:d1:
        7d:61:97:c3:8f:c3:e6:e2:10:c3:86:ec:6b:25:02:6b:
        9c:b1:da:70:4f:cd:83:c3:05:06:b6:59:1b:13:ec:d7:
        4a:4f:cf:18:c0:3c:71:0a:f4:6e:12:c6:bf:75:f7:df:
        80:67:99:07:d1:3c:75:79:46:1c:13:c1:05:ca:a1:fe:
        b7:a8:bd:6f:87:f0:3f:97:0a:b1:07:c3:e5:a8:37:84:
        ae:c4:82:7a:1e:60:c3:dd:3a:67:1b:03:fa:09:2a:19:
        0b:12:c0:0b:40:32:4e:08:fc:c7:4b:a9:b9:05:d7:06:
        a2:83:2d:55:90:51:51:2f:dd:67:7c:78:a7:d0:e1:01
    Fingerprint (SHA-256):
        AB:C8:21:6E:6A:8C:ED:E3:8F:93:F6:7D:1A:8F:84:D3:FB:E0:41:9D:A3:D5:7F:15:91:D8:27:5F:82:D1:6F:18
    Fingerprint (SHA1):
        F4:6F:08:E5:78:7C:B3:71:B1:4D:C0:AA:23:11:7F:AB:06:03:22:A5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #3128: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3129: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144826 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3130: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3131: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3132: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3133: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021144827   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3134: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3135: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3136: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3137: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021144828   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA1Root-1021144735.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3138: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3139: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3140: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3141: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 1021144829   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3142: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3143: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #3144: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144826 (0x3cdd6efa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 14:59:05 2017
            Not After : Fri Oct 21 14:59:05 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:22:22:eb:48:bd:a8:72:ec:dc:5f:29:9c:f1:ca:09:
                    f0:60:8d:57:ff:89:81:de:eb:ba:95:eb:75:3b:ea:1e:
                    e1:b2:bb:6b:50:13:ea:79:4a:56:c1:a6:b5:3b:a7:02:
                    9d:bf:f0:de:7c:53:34:de:b3:68:35:16:31:de:ea:22:
                    b2:bc:05:bc:74:80:cb:2f:7d:fc:78:05:66:dc:60:c8:
                    04:41:ed:3c:09:d2:fa:dd:1a:d2:4b:34:89:25:0b:3d:
                    85:a1:ba:e9:5e:fb:01:e9:21:4b:7e:10:76:36:28:b1:
                    58:b2:5a:55:0c:02:2f:5e:0c:c7:23:06:b3:29:8d:db:
                    79:1f:4f:0a:3b:e9:ce:7c:a3:36:92:8b:3c:8f:3d:52:
                    d8:dd:c3:3e:80:1a:66:d3:6e:6b:dc:0e:65:cc:24:4d:
                    42:27:0a:de:a0:59:f7:6b:c8:67:39:29:62:2e:ba:56:
                    3f:9a:33:5e:8f:6d:37:ef:ac:04:44:ee:0c:87:3f:f8:
                    6d:84:e7:62:13:29:62:d4:d5:59:1e:4d:9a:ce:e7:55:
                    2b:87:62:b2:22:69:a5:77:cb:f9:0b:dd:54:aa:26:71:
                    81:f1:2c:a6:31:08:8d:4b:ee:4b:ed:0b:d8:c1:ce:fd:
                    85:5b:c6:b6:8d:46:37:9b:96:14:ba:19:14:d9:8a:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        21:71:c8:14:af:b5:ec:9d:fd:05:77:be:7d:d3:70:5b:
        c6:6f:ad:f0:b7:7f:b1:78:83:53:d3:a3:66:42:74:e9:
        44:34:a4:91:b4:ea:b5:49:ef:a6:dc:f5:f6:fb:29:72:
        b7:74:e0:b0:ae:1d:5f:e5:a6:8c:27:12:1c:ae:d2:ca:
        6f:e5:0b:ad:a0:ae:0c:5e:43:58:78:11:25:2e:bf:82:
        b2:6b:23:cc:63:b2:a4:80:a9:fa:e3:93:4e:c0:52:19:
        c7:a2:41:f1:ee:25:70:b9:b3:ed:9e:9b:e6:b2:11:b9:
        7b:01:e9:6e:ab:2c:a4:40:8d:a4:c7:93:04:f3:ca:97:
        aa:22:70:87:38:38:e9:c9:0b:d1:48:dc:53:cb:e2:2b:
        bd:12:f0:f0:0b:69:b6:1c:46:ea:e7:12:e7:66:08:9b:
        c7:8e:a7:db:7e:34:b2:9e:e7:f0:0d:65:e9:e8:8d:c5:
        fb:ed:e2:47:22:85:a5:ab:bd:24:e9:63:95:b7:db:45:
        dc:de:77:cb:3c:05:2f:0d:5d:33:09:3a:6a:22:3d:cb:
        10:ab:d0:e8:8d:03:ba:7f:da:33:a2:c0:63:5a:ef:1f:
        b8:39:9f:96:f4:f3:f6:d6:bf:ec:8a:53:dc:f0:ad:f4:
        d6:68:06:f9:b2:16:e8:30:3c:d8:18:4c:36:af:14:92
    Fingerprint (SHA-256):
        09:5B:4A:2C:B4:08:9F:52:99:C6:21:84:56:1C:D7:68:4D:A6:0C:75:CE:57:75:93:96:E7:14:45:C1:80:C0:05
    Fingerprint (SHA1):
        72:5D:A7:0B:B4:C0:3D:25:3A:F9:A9:AA:11:55:F5:CC:0C:87:88:43
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3145: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3146: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144830 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3147: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3148: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3149: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144831 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3150: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3151: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3152: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3153: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 1021144832 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3154: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3155: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 1021144833 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3156: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3157: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3158: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3159: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3160: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 1021144834   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-Bridge-1021144736.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3161: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3162: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3163: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3164: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021144835   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3165: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3166: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3167: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3168: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144831 (0x3cdd6eff)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 14:59:37 2017
            Not After : Fri Oct 21 14:59:37 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e3:9d:ef:8e:e7:79:ba:fb:dc:11:42:a5:7a:3c:c3:34:
                    d8:8d:da:e2:e0:62:93:f6:69:81:31:71:9e:df:b4:13:
                    87:03:14:b3:5d:67:83:49:55:e5:66:85:03:21:3e:20:
                    77:72:eb:93:b9:73:fc:68:28:1b:c5:54:d8:d8:96:27:
                    5d:70:d6:7f:08:bb:91:22:a0:45:99:ee:67:bf:9c:67:
                    99:d9:c1:9d:76:05:35:30:b6:1c:3b:fb:bb:d7:3e:fe:
                    26:71:f0:0a:21:6d:59:c8:94:56:ca:ee:eb:d3:53:f0:
                    f7:fb:96:86:01:91:09:98:70:48:b8:d3:14:8d:f6:1f:
                    be:d5:60:66:96:e3:11:03:52:d6:86:16:3f:ff:1c:6d:
                    af:1c:de:95:95:32:4f:d7:87:d2:db:1d:1a:d6:ae:9e:
                    28:05:a5:10:04:9f:52:79:38:51:9f:97:ac:75:09:ba:
                    9b:a1:fc:ad:ab:b5:87:fc:fa:f8:d4:fd:39:f1:da:73:
                    48:11:55:af:ce:19:5c:1c:7a:2c:cb:92:5e:cc:ae:90:
                    f7:b4:2d:fc:0d:ff:b5:ec:92:4d:4f:f5:e8:10:36:7d:
                    7c:91:ec:16:da:e2:5b:01:a0:8d:6b:0a:42:4c:50:f2:
                    49:d2:8f:21:d4:19:35:59:11:d9:8a:c7:41:19:a2:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e1:cb:be:91:c9:5a:09:f9:66:33:22:48:5c:86:47:07:
        92:a2:88:a1:c1:8d:42:ec:5f:31:06:f4:c3:1b:33:b3:
        7b:f4:1a:8a:5c:37:c5:8f:25:d2:e3:ad:66:0d:69:00:
        36:68:46:91:13:3c:3e:6c:e1:0c:e6:e0:8d:dd:5c:e0:
        f5:7b:f3:07:b3:59:6f:5b:d6:e0:36:3d:de:a2:55:54:
        55:7f:a2:98:b6:92:bf:2e:cd:fa:13:8b:7f:25:30:72:
        e1:cc:3b:a1:39:fc:39:e1:1a:a7:c4:0a:49:18:29:5f:
        29:cb:11:74:e1:32:73:09:32:67:5c:59:0e:6d:f8:ab:
        6e:b6:55:4c:69:3d:cc:7d:4b:5d:3a:6c:ff:4a:7e:e6:
        33:84:38:05:1d:46:3a:e5:0c:cc:37:13:2e:54:ae:30:
        aa:c8:c0:87:6d:64:85:7f:b1:be:5d:2f:a1:43:8c:27:
        a4:2c:85:23:d4:85:d8:a5:87:cf:a1:b1:a3:9c:ff:40:
        2d:49:04:0c:df:f4:48:61:53:98:76:b0:8f:6e:57:7f:
        c6:5b:af:ff:28:a4:a9:d3:83:23:6e:38:b0:4c:f7:37:
        2c:21:76:b7:2e:b7:b7:5c:2b:70:78:39:8b:79:03:da:
        84:bb:a6:90:1a:e1:79:f0:a7:a4:4f:25:d2:0e:57:6a
    Fingerprint (SHA-256):
        C6:CE:A4:E9:6B:1F:E5:99:6B:BB:E4:E9:15:69:67:28:00:B5:09:DC:D7:82:AA:13:D4:CC:0E:80:6E:30:A8:F2
    Fingerprint (SHA1):
        CD:E4:6E:CB:3E:39:78:33:83:C3:CC:0E:43:42:35:4D:03:DA:92:C8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3169: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144831 (0x3cdd6eff)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 14:59:37 2017
            Not After : Fri Oct 21 14:59:37 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e3:9d:ef:8e:e7:79:ba:fb:dc:11:42:a5:7a:3c:c3:34:
                    d8:8d:da:e2:e0:62:93:f6:69:81:31:71:9e:df:b4:13:
                    87:03:14:b3:5d:67:83:49:55:e5:66:85:03:21:3e:20:
                    77:72:eb:93:b9:73:fc:68:28:1b:c5:54:d8:d8:96:27:
                    5d:70:d6:7f:08:bb:91:22:a0:45:99:ee:67:bf:9c:67:
                    99:d9:c1:9d:76:05:35:30:b6:1c:3b:fb:bb:d7:3e:fe:
                    26:71:f0:0a:21:6d:59:c8:94:56:ca:ee:eb:d3:53:f0:
                    f7:fb:96:86:01:91:09:98:70:48:b8:d3:14:8d:f6:1f:
                    be:d5:60:66:96:e3:11:03:52:d6:86:16:3f:ff:1c:6d:
                    af:1c:de:95:95:32:4f:d7:87:d2:db:1d:1a:d6:ae:9e:
                    28:05:a5:10:04:9f:52:79:38:51:9f:97:ac:75:09:ba:
                    9b:a1:fc:ad:ab:b5:87:fc:fa:f8:d4:fd:39:f1:da:73:
                    48:11:55:af:ce:19:5c:1c:7a:2c:cb:92:5e:cc:ae:90:
                    f7:b4:2d:fc:0d:ff:b5:ec:92:4d:4f:f5:e8:10:36:7d:
                    7c:91:ec:16:da:e2:5b:01:a0:8d:6b:0a:42:4c:50:f2:
                    49:d2:8f:21:d4:19:35:59:11:d9:8a:c7:41:19:a2:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e1:cb:be:91:c9:5a:09:f9:66:33:22:48:5c:86:47:07:
        92:a2:88:a1:c1:8d:42:ec:5f:31:06:f4:c3:1b:33:b3:
        7b:f4:1a:8a:5c:37:c5:8f:25:d2:e3:ad:66:0d:69:00:
        36:68:46:91:13:3c:3e:6c:e1:0c:e6:e0:8d:dd:5c:e0:
        f5:7b:f3:07:b3:59:6f:5b:d6:e0:36:3d:de:a2:55:54:
        55:7f:a2:98:b6:92:bf:2e:cd:fa:13:8b:7f:25:30:72:
        e1:cc:3b:a1:39:fc:39:e1:1a:a7:c4:0a:49:18:29:5f:
        29:cb:11:74:e1:32:73:09:32:67:5c:59:0e:6d:f8:ab:
        6e:b6:55:4c:69:3d:cc:7d:4b:5d:3a:6c:ff:4a:7e:e6:
        33:84:38:05:1d:46:3a:e5:0c:cc:37:13:2e:54:ae:30:
        aa:c8:c0:87:6d:64:85:7f:b1:be:5d:2f:a1:43:8c:27:
        a4:2c:85:23:d4:85:d8:a5:87:cf:a1:b1:a3:9c:ff:40:
        2d:49:04:0c:df:f4:48:61:53:98:76:b0:8f:6e:57:7f:
        c6:5b:af:ff:28:a4:a9:d3:83:23:6e:38:b0:4c:f7:37:
        2c:21:76:b7:2e:b7:b7:5c:2b:70:78:39:8b:79:03:da:
        84:bb:a6:90:1a:e1:79:f0:a7:a4:4f:25:d2:0e:57:6a
    Fingerprint (SHA-256):
        C6:CE:A4:E9:6B:1F:E5:99:6B:BB:E4:E9:15:69:67:28:00:B5:09:DC:D7:82:AA:13:D4:CC:0E:80:6E:30:A8:F2
    Fingerprint (SHA1):
        CD:E4:6E:CB:3E:39:78:33:83:C3:CC:0E:43:42:35:4D:03:DA:92:C8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3170: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3171: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144836 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3172: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3173: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3174: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144837 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3175: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3176: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3177: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3178: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 1021144838 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3179: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3180: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 1021144839 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3181: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3182: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3183: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3184: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3185: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 1021144840   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-Bridge-1021144737.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3186: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3187: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3188: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3189: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021144841   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3190: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3191: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3192: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3193: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 1021144842   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-BridgeNavy-1021144738.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3194: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3195: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3196: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3197: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 1021144843   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3198: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3199: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3200: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3201: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144837 (0x3cdd6f05)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 15:00:08 2017
            Not After : Fri Oct 21 15:00:08 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:49:1c:2d:4a:11:a6:57:8e:e0:2f:9c:2f:dc:e3:00:
                    db:5a:7c:b2:85:07:66:7b:19:b6:d3:dd:01:00:66:1e:
                    a7:0f:98:60:1c:7e:f7:79:30:4d:2a:be:af:dd:6d:4b:
                    c4:aa:00:e4:14:23:86:9c:e5:88:1f:ed:ef:be:19:6d:
                    09:3e:d8:b2:cd:6a:ac:24:e5:6d:1e:6e:ae:15:c8:83:
                    67:1c:61:90:22:36:c8:69:f0:e4:cc:1f:be:b5:2e:36:
                    0c:8f:18:19:37:c0:f9:52:86:bf:8d:d4:85:d9:ad:56:
                    08:44:a0:65:9a:5b:14:0f:8b:5c:7d:ea:ad:fd:16:d8:
                    76:f8:5f:2f:cc:71:8a:f3:67:ec:ab:b2:18:b4:5a:ae:
                    c2:90:33:27:e3:77:12:38:ce:d4:5f:8d:55:76:54:82:
                    f0:5e:11:5e:11:27:dc:e0:e3:be:c6:68:8a:df:c8:0b:
                    3f:db:87:aa:3c:30:b4:ff:bd:69:2f:6b:23:cc:f3:88:
                    80:51:fa:b3:9a:fe:9d:d0:04:df:53:ec:ee:fc:9e:3c:
                    78:f4:b4:42:4d:e8:16:c8:4e:8b:f3:71:21:b4:a7:17:
                    cf:06:9f:28:e7:dc:ec:9e:9b:5f:40:a1:28:b9:4f:27:
                    c5:c0:0c:2b:49:2d:f1:2a:15:d6:80:19:be:d7:71:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        85:34:96:8e:29:74:2f:5b:ca:43:b5:35:59:d4:4a:7a:
        08:2a:73:bd:f9:4b:03:3d:e6:b3:d6:86:ef:4d:32:cc:
        fa:99:12:b7:54:e5:f5:6b:b5:6f:7d:f1:fd:de:d3:54:
        6a:83:81:77:68:73:46:3b:f8:8b:fe:52:b7:80:ce:a1:
        8a:b9:09:44:bf:20:eb:38:08:ea:ea:ad:35:33:07:03:
        7b:58:d5:ae:6b:a2:a1:c0:d5:65:6a:d4:14:23:af:cc:
        52:f6:10:be:49:5b:6e:fd:1e:d4:74:81:91:90:3e:3f:
        32:98:0e:0f:6f:c9:4d:fc:28:0c:3d:35:13:0e:90:eb:
        8d:67:79:9b:e6:4a:9d:50:26:79:42:d1:fa:8c:55:ee:
        73:3c:90:8a:e7:4c:2c:8f:42:73:a6:16:e9:fd:dd:05:
        1d:4a:02:f0:e7:c1:a7:a4:84:a8:62:55:e2:a6:0f:d7:
        92:2f:74:95:c1:51:25:88:6f:8b:41:8d:4b:34:25:19:
        0a:58:ea:bd:4f:35:3d:95:d3:2b:ab:ec:aa:9a:af:14:
        14:65:9d:67:b2:7b:22:2f:46:16:82:49:56:e9:c9:b2:
        cf:c8:18:e4:b7:2b:51:b6:b3:72:b9:5c:70:30:d1:23:
        18:a5:53:9c:54:e6:3c:94:80:cb:27:98:ce:01:f6:b3
    Fingerprint (SHA-256):
        CC:8F:B1:15:68:FC:09:3C:83:30:03:25:F6:CF:21:8A:94:CA:7C:49:E8:92:D5:07:87:88:FE:35:08:D1:0C:C0
    Fingerprint (SHA1):
        20:BD:87:D7:CC:B8:C2:F4:74:19:0F:2C:D9:18:6A:1A:1E:F4:1B:67
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3202: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144837 (0x3cdd6f05)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 15:00:08 2017
            Not After : Fri Oct 21 15:00:08 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:49:1c:2d:4a:11:a6:57:8e:e0:2f:9c:2f:dc:e3:00:
                    db:5a:7c:b2:85:07:66:7b:19:b6:d3:dd:01:00:66:1e:
                    a7:0f:98:60:1c:7e:f7:79:30:4d:2a:be:af:dd:6d:4b:
                    c4:aa:00:e4:14:23:86:9c:e5:88:1f:ed:ef:be:19:6d:
                    09:3e:d8:b2:cd:6a:ac:24:e5:6d:1e:6e:ae:15:c8:83:
                    67:1c:61:90:22:36:c8:69:f0:e4:cc:1f:be:b5:2e:36:
                    0c:8f:18:19:37:c0:f9:52:86:bf:8d:d4:85:d9:ad:56:
                    08:44:a0:65:9a:5b:14:0f:8b:5c:7d:ea:ad:fd:16:d8:
                    76:f8:5f:2f:cc:71:8a:f3:67:ec:ab:b2:18:b4:5a:ae:
                    c2:90:33:27:e3:77:12:38:ce:d4:5f:8d:55:76:54:82:
                    f0:5e:11:5e:11:27:dc:e0:e3:be:c6:68:8a:df:c8:0b:
                    3f:db:87:aa:3c:30:b4:ff:bd:69:2f:6b:23:cc:f3:88:
                    80:51:fa:b3:9a:fe:9d:d0:04:df:53:ec:ee:fc:9e:3c:
                    78:f4:b4:42:4d:e8:16:c8:4e:8b:f3:71:21:b4:a7:17:
                    cf:06:9f:28:e7:dc:ec:9e:9b:5f:40:a1:28:b9:4f:27:
                    c5:c0:0c:2b:49:2d:f1:2a:15:d6:80:19:be:d7:71:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        85:34:96:8e:29:74:2f:5b:ca:43:b5:35:59:d4:4a:7a:
        08:2a:73:bd:f9:4b:03:3d:e6:b3:d6:86:ef:4d:32:cc:
        fa:99:12:b7:54:e5:f5:6b:b5:6f:7d:f1:fd:de:d3:54:
        6a:83:81:77:68:73:46:3b:f8:8b:fe:52:b7:80:ce:a1:
        8a:b9:09:44:bf:20:eb:38:08:ea:ea:ad:35:33:07:03:
        7b:58:d5:ae:6b:a2:a1:c0:d5:65:6a:d4:14:23:af:cc:
        52:f6:10:be:49:5b:6e:fd:1e:d4:74:81:91:90:3e:3f:
        32:98:0e:0f:6f:c9:4d:fc:28:0c:3d:35:13:0e:90:eb:
        8d:67:79:9b:e6:4a:9d:50:26:79:42:d1:fa:8c:55:ee:
        73:3c:90:8a:e7:4c:2c:8f:42:73:a6:16:e9:fd:dd:05:
        1d:4a:02:f0:e7:c1:a7:a4:84:a8:62:55:e2:a6:0f:d7:
        92:2f:74:95:c1:51:25:88:6f:8b:41:8d:4b:34:25:19:
        0a:58:ea:bd:4f:35:3d:95:d3:2b:ab:ec:aa:9a:af:14:
        14:65:9d:67:b2:7b:22:2f:46:16:82:49:56:e9:c9:b2:
        cf:c8:18:e4:b7:2b:51:b6:b3:72:b9:5c:70:30:d1:23:
        18:a5:53:9c:54:e6:3c:94:80:cb:27:98:ce:01:f6:b3
    Fingerprint (SHA-256):
        CC:8F:B1:15:68:FC:09:3C:83:30:03:25:F6:CF:21:8A:94:CA:7C:49:E8:92:D5:07:87:88:FE:35:08:D1:0C:C0
    Fingerprint (SHA1):
        20:BD:87:D7:CC:B8:C2:F4:74:19:0F:2C:D9:18:6A:1A:1E:F4:1B:67
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3203: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #3204: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144836 (0x3cdd6f04)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 15:00:04 2017
            Not After : Fri Oct 21 15:00:04 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:6d:8b:1e:db:80:8c:70:7d:d2:03:8d:45:f2:5e:81:
                    0d:6f:40:a7:11:d2:d5:fe:3c:0c:b2:2e:b1:1b:e6:dc:
                    0e:9f:7a:6b:22:21:09:e3:6f:db:c9:64:43:93:68:31:
                    62:61:46:f5:bc:29:20:ee:e8:2f:8b:62:a2:fb:d7:85:
                    ba:34:1f:5f:1f:0f:e0:f7:19:16:ff:e1:e7:0d:1c:9d:
                    43:49:a6:30:55:f7:bd:a5:0d:96:e2:5f:8d:0e:77:d9:
                    a9:92:62:53:6c:35:35:d9:e5:65:5f:9a:d9:c1:bd:3a:
                    2d:30:54:de:06:41:b2:6f:c9:d4:f7:70:29:c2:f5:f6:
                    af:f4:d2:4d:0a:55:fc:b1:6c:1b:79:ab:53:d8:81:2d:
                    88:7a:a1:c6:da:89:79:27:01:42:0b:be:51:2b:3f:ba:
                    7c:d4:93:f7:bd:97:0c:d9:87:db:ea:6f:df:23:f7:e1:
                    66:fb:e8:85:a2:e9:d9:61:8b:0b:5e:f9:0e:d1:a0:22:
                    77:7b:d3:4f:c8:65:1b:86:69:72:89:38:4f:6d:16:1a:
                    5f:30:ff:6d:77:a9:04:c4:a7:e7:84:36:e2:db:e9:81:
                    8b:01:50:cb:8f:53:f0:ba:57:3d:24:e8:e4:4b:c6:db:
                    f0:c2:2c:60:53:2e:f0:30:f5:06:4d:ea:96:d9:ee:b1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        69:36:c6:94:da:d7:8c:1d:7d:e8:39:68:a6:c1:31:a2:
        5c:ec:8e:83:e5:4d:b6:88:8c:00:0c:c9:de:ef:8e:28:
        6c:4f:b8:96:3a:f7:e7:72:28:39:64:be:c5:84:25:9c:
        95:75:28:91:ff:98:bb:3b:10:81:27:25:2d:05:c0:3a:
        af:2f:08:c1:f2:fb:da:80:24:22:e0:cd:95:f7:6f:24:
        19:f1:cd:6a:d5:ad:b4:6a:b4:6b:d1:97:b4:8a:6d:d6:
        e8:e3:99:f1:33:b5:50:55:d1:3e:55:93:d1:58:5f:7b:
        d9:3c:c9:3c:9c:07:6f:89:39:b1:d7:49:54:e7:f0:f6:
        c7:6d:ac:c7:c0:25:77:f0:5a:44:cc:81:bc:ac:02:83:
        ed:c5:9f:5c:bf:36:5f:c2:d7:20:8b:c5:4e:64:71:fa:
        26:99:a4:7d:03:3e:d9:74:54:cd:60:ab:bf:27:26:be:
        5b:6c:06:b2:b7:96:cb:e4:10:6d:ab:35:6b:0f:16:58:
        f8:de:f4:78:d3:9f:ae:a3:52:a5:ba:de:3b:08:1f:b7:
        c0:ec:1f:03:66:89:f0:96:38:44:68:d8:a4:61:bd:0c:
        ce:2a:61:82:e9:ac:62:94:56:bb:43:27:da:3a:b6:21:
        83:aa:31:ec:95:d5:9e:4d:cc:e0:14:1e:49:4f:41:f2
    Fingerprint (SHA-256):
        0A:A4:4F:E4:08:B9:04:CA:AE:38:21:1F:97:9A:4C:7A:43:59:45:71:DF:E4:EB:09:C3:03:4C:C9:9B:E7:A1:0B
    Fingerprint (SHA1):
        C0:99:5C:C6:A5:90:63:6D:C8:08:C8:C8:E4:D4:9A:4B:1B:D9:5E:5A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3205: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144837 (0x3cdd6f05)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 15:00:08 2017
            Not After : Fri Oct 21 15:00:08 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:49:1c:2d:4a:11:a6:57:8e:e0:2f:9c:2f:dc:e3:00:
                    db:5a:7c:b2:85:07:66:7b:19:b6:d3:dd:01:00:66:1e:
                    a7:0f:98:60:1c:7e:f7:79:30:4d:2a:be:af:dd:6d:4b:
                    c4:aa:00:e4:14:23:86:9c:e5:88:1f:ed:ef:be:19:6d:
                    09:3e:d8:b2:cd:6a:ac:24:e5:6d:1e:6e:ae:15:c8:83:
                    67:1c:61:90:22:36:c8:69:f0:e4:cc:1f:be:b5:2e:36:
                    0c:8f:18:19:37:c0:f9:52:86:bf:8d:d4:85:d9:ad:56:
                    08:44:a0:65:9a:5b:14:0f:8b:5c:7d:ea:ad:fd:16:d8:
                    76:f8:5f:2f:cc:71:8a:f3:67:ec:ab:b2:18:b4:5a:ae:
                    c2:90:33:27:e3:77:12:38:ce:d4:5f:8d:55:76:54:82:
                    f0:5e:11:5e:11:27:dc:e0:e3:be:c6:68:8a:df:c8:0b:
                    3f:db:87:aa:3c:30:b4:ff:bd:69:2f:6b:23:cc:f3:88:
                    80:51:fa:b3:9a:fe:9d:d0:04:df:53:ec:ee:fc:9e:3c:
                    78:f4:b4:42:4d:e8:16:c8:4e:8b:f3:71:21:b4:a7:17:
                    cf:06:9f:28:e7:dc:ec:9e:9b:5f:40:a1:28:b9:4f:27:
                    c5:c0:0c:2b:49:2d:f1:2a:15:d6:80:19:be:d7:71:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        85:34:96:8e:29:74:2f:5b:ca:43:b5:35:59:d4:4a:7a:
        08:2a:73:bd:f9:4b:03:3d:e6:b3:d6:86:ef:4d:32:cc:
        fa:99:12:b7:54:e5:f5:6b:b5:6f:7d:f1:fd:de:d3:54:
        6a:83:81:77:68:73:46:3b:f8:8b:fe:52:b7:80:ce:a1:
        8a:b9:09:44:bf:20:eb:38:08:ea:ea:ad:35:33:07:03:
        7b:58:d5:ae:6b:a2:a1:c0:d5:65:6a:d4:14:23:af:cc:
        52:f6:10:be:49:5b:6e:fd:1e:d4:74:81:91:90:3e:3f:
        32:98:0e:0f:6f:c9:4d:fc:28:0c:3d:35:13:0e:90:eb:
        8d:67:79:9b:e6:4a:9d:50:26:79:42:d1:fa:8c:55:ee:
        73:3c:90:8a:e7:4c:2c:8f:42:73:a6:16:e9:fd:dd:05:
        1d:4a:02:f0:e7:c1:a7:a4:84:a8:62:55:e2:a6:0f:d7:
        92:2f:74:95:c1:51:25:88:6f:8b:41:8d:4b:34:25:19:
        0a:58:ea:bd:4f:35:3d:95:d3:2b:ab:ec:aa:9a:af:14:
        14:65:9d:67:b2:7b:22:2f:46:16:82:49:56:e9:c9:b2:
        cf:c8:18:e4:b7:2b:51:b6:b3:72:b9:5c:70:30:d1:23:
        18:a5:53:9c:54:e6:3c:94:80:cb:27:98:ce:01:f6:b3
    Fingerprint (SHA-256):
        CC:8F:B1:15:68:FC:09:3C:83:30:03:25:F6:CF:21:8A:94:CA:7C:49:E8:92:D5:07:87:88:FE:35:08:D1:0C:C0
    Fingerprint (SHA1):
        20:BD:87:D7:CC:B8:C2:F4:74:19:0F:2C:D9:18:6A:1A:1E:F4:1B:67
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3206: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144837 (0x3cdd6f05)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 15:00:08 2017
            Not After : Fri Oct 21 15:00:08 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:49:1c:2d:4a:11:a6:57:8e:e0:2f:9c:2f:dc:e3:00:
                    db:5a:7c:b2:85:07:66:7b:19:b6:d3:dd:01:00:66:1e:
                    a7:0f:98:60:1c:7e:f7:79:30:4d:2a:be:af:dd:6d:4b:
                    c4:aa:00:e4:14:23:86:9c:e5:88:1f:ed:ef:be:19:6d:
                    09:3e:d8:b2:cd:6a:ac:24:e5:6d:1e:6e:ae:15:c8:83:
                    67:1c:61:90:22:36:c8:69:f0:e4:cc:1f:be:b5:2e:36:
                    0c:8f:18:19:37:c0:f9:52:86:bf:8d:d4:85:d9:ad:56:
                    08:44:a0:65:9a:5b:14:0f:8b:5c:7d:ea:ad:fd:16:d8:
                    76:f8:5f:2f:cc:71:8a:f3:67:ec:ab:b2:18:b4:5a:ae:
                    c2:90:33:27:e3:77:12:38:ce:d4:5f:8d:55:76:54:82:
                    f0:5e:11:5e:11:27:dc:e0:e3:be:c6:68:8a:df:c8:0b:
                    3f:db:87:aa:3c:30:b4:ff:bd:69:2f:6b:23:cc:f3:88:
                    80:51:fa:b3:9a:fe:9d:d0:04:df:53:ec:ee:fc:9e:3c:
                    78:f4:b4:42:4d:e8:16:c8:4e:8b:f3:71:21:b4:a7:17:
                    cf:06:9f:28:e7:dc:ec:9e:9b:5f:40:a1:28:b9:4f:27:
                    c5:c0:0c:2b:49:2d:f1:2a:15:d6:80:19:be:d7:71:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        85:34:96:8e:29:74:2f:5b:ca:43:b5:35:59:d4:4a:7a:
        08:2a:73:bd:f9:4b:03:3d:e6:b3:d6:86:ef:4d:32:cc:
        fa:99:12:b7:54:e5:f5:6b:b5:6f:7d:f1:fd:de:d3:54:
        6a:83:81:77:68:73:46:3b:f8:8b:fe:52:b7:80:ce:a1:
        8a:b9:09:44:bf:20:eb:38:08:ea:ea:ad:35:33:07:03:
        7b:58:d5:ae:6b:a2:a1:c0:d5:65:6a:d4:14:23:af:cc:
        52:f6:10:be:49:5b:6e:fd:1e:d4:74:81:91:90:3e:3f:
        32:98:0e:0f:6f:c9:4d:fc:28:0c:3d:35:13:0e:90:eb:
        8d:67:79:9b:e6:4a:9d:50:26:79:42:d1:fa:8c:55:ee:
        73:3c:90:8a:e7:4c:2c:8f:42:73:a6:16:e9:fd:dd:05:
        1d:4a:02:f0:e7:c1:a7:a4:84:a8:62:55:e2:a6:0f:d7:
        92:2f:74:95:c1:51:25:88:6f:8b:41:8d:4b:34:25:19:
        0a:58:ea:bd:4f:35:3d:95:d3:2b:ab:ec:aa:9a:af:14:
        14:65:9d:67:b2:7b:22:2f:46:16:82:49:56:e9:c9:b2:
        cf:c8:18:e4:b7:2b:51:b6:b3:72:b9:5c:70:30:d1:23:
        18:a5:53:9c:54:e6:3c:94:80:cb:27:98:ce:01:f6:b3
    Fingerprint (SHA-256):
        CC:8F:B1:15:68:FC:09:3C:83:30:03:25:F6:CF:21:8A:94:CA:7C:49:E8:92:D5:07:87:88:FE:35:08:D1:0C:C0
    Fingerprint (SHA1):
        20:BD:87:D7:CC:B8:C2:F4:74:19:0F:2C:D9:18:6A:1A:1E:F4:1B:67
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3207: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3208: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144844 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3209: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3210: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3211: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144845 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3212: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3213: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #3214: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3215: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 1021144846   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3216: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3217: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #3218: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3219: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 1021144847   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3220: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3221: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3222: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3223: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 1021144848 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3224: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3225: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 1021144849 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3226: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3227: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #3228: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3229: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3230: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 1021144850   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3231: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3232: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3233: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3234: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 1021144851   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3235: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3236: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3237: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3238: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021144852   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3239: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3240: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3241: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3242: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 1021144853   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3243: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3244: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3245: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144844 (0x3cdd6f0c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 15:00:47 2017
            Not After : Fri Oct 21 15:00:47 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:a8:bb:d2:10:1a:a1:b5:d6:9d:56:39:9c:d1:b9:fe:
                    27:3b:cc:31:3b:72:ea:76:08:bc:75:c7:33:80:39:f9:
                    76:0f:c1:fd:85:19:6f:c1:c5:5c:27:35:1a:cf:d4:25:
                    1e:1c:3e:5d:76:3b:5b:1f:17:0c:2f:16:18:aa:b4:b7:
                    08:30:22:8c:3b:fe:e7:90:7d:0f:1e:de:dc:93:f4:9d:
                    90:3f:35:86:19:c5:54:b5:77:a0:92:78:56:bc:94:09:
                    e4:8d:90:37:dd:e2:35:67:bb:04:33:70:23:a2:13:89:
                    21:a0:87:74:6f:a1:69:95:0b:8a:9b:44:1b:3a:1a:d3:
                    34:8d:5c:f0:92:8b:ab:3a:66:47:40:ed:a2:fc:e4:90:
                    9f:ea:0d:2c:53:6d:7f:ec:98:aa:7c:fc:81:17:82:0f:
                    e2:5c:7f:ee:32:df:ec:ef:08:00:48:88:28:69:02:68:
                    00:7c:30:99:f6:08:be:1f:0d:a4:bc:36:15:45:13:be:
                    5b:07:5a:c2:ba:03:81:5c:55:6f:61:26:40:b0:7d:5f:
                    ab:5a:eb:9c:65:29:34:f4:a6:40:12:bb:5e:36:50:7a:
                    ad:cd:e5:81:b5:9e:67:3c:4a:c4:5c:55:4a:61:27:b6:
                    e9:7b:6e:32:06:3c:90:6c:17:67:82:31:25:f2:13:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5d:67:54:de:95:20:04:cd:0e:6a:8f:48:03:1c:ec:bc:
        e2:2c:40:16:b9:4e:d5:5a:59:0b:ac:e0:02:3f:49:46:
        0e:33:10:e8:fd:39:1d:bc:c3:3e:17:ca:a1:62:34:54:
        26:12:2f:a5:98:29:c7:8d:cb:6b:f2:34:ae:8d:85:3c:
        bf:44:f6:aa:16:4f:1f:44:13:1e:18:be:6e:bc:01:8e:
        e3:87:d6:92:cc:bc:15:bd:b6:d2:84:a7:fd:a5:f8:2a:
        bb:7c:8c:51:5a:6a:0c:94:5b:00:a1:57:2d:c3:86:a8:
        88:e0:15:aa:cf:c0:b1:5f:2d:ed:bc:07:9e:1b:50:c2:
        92:27:79:aa:36:5d:ee:b6:62:44:41:95:55:09:26:d8:
        c9:b1:61:ad:e2:6c:2d:61:64:74:c9:dd:a8:c9:b3:a5:
        35:98:d5:ea:16:c2:ed:1a:91:66:8b:b2:be:f2:c6:3e:
        99:cb:92:64:e9:4e:71:1b:1d:b3:a7:70:2d:f7:18:4f:
        e3:cc:c7:c0:6e:51:87:81:d6:2e:f2:47:70:a8:c0:de:
        78:43:2f:14:a7:e0:30:ed:cf:01:e0:fe:7f:32:0e:84:
        80:51:32:07:ee:8e:37:65:50:07:0f:71:2a:ef:67:b1:
        26:00:9b:fb:b8:72:0f:04:1e:fd:c9:5c:01:24:e5:47
    Fingerprint (SHA-256):
        56:07:D2:AF:E8:F8:D7:B4:5B:4C:9F:DE:84:ED:51:CD:A7:F4:EE:B7:5A:53:A9:7C:EE:20:32:AB:35:92:5C:D4
    Fingerprint (SHA1):
        E4:36:46:0B:4F:18:EE:17:33:E7:5F:17:64:4B:37:44:97:C8:0F:BB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #3246: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3247: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3248: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3249: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3250: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3251: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3252: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3253: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3254: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144845 (0x3cdd6f0d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 15:00:50 2017
            Not After : Fri Oct 21 15:00:50 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:26:a5:3c:cc:f7:bf:21:f9:6f:30:7c:00:ec:c3:85:
                    fd:9d:ca:8b:37:3c:cd:80:56:6d:89:d8:df:43:4c:d4:
                    1d:ed:ac:19:e8:f2:40:47:d5:ef:74:21:5b:7f:40:9a:
                    7d:11:8e:c4:a6:61:46:52:53:b8:da:2a:3f:74:b8:4a:
                    e4:cf:5d:8f:30:0e:b2:0d:18:12:38:75:b8:0e:1e:91:
                    72:82:04:ae:23:cd:cc:f6:c2:15:46:c9:09:16:45:a1:
                    7c:4f:8d:f0:3d:33:58:57:50:f9:7b:71:4b:9d:71:fb:
                    26:ba:1f:f4:f3:83:80:1b:ec:90:c5:8b:07:4e:49:c7:
                    1a:1d:e2:f1:40:c5:23:7c:96:71:97:3c:1f:5d:7a:33:
                    0f:ea:ba:14:0e:e1:7d:00:7f:b8:d0:81:6f:06:8b:06:
                    28:ef:da:4a:43:cd:4f:5b:28:74:08:17:98:7f:e4:0d:
                    8c:24:08:0b:42:c2:55:ac:02:7d:a1:6f:32:49:4f:69:
                    89:d4:43:93:9c:23:65:68:90:fe:71:2c:ae:ed:be:25:
                    2d:a8:8d:eb:39:4d:e2:2f:6e:aa:31:d6:05:54:86:fc:
                    05:b5:10:d5:58:43:16:46:ee:24:ab:85:ac:e3:e1:99:
                    d4:4f:f2:b0:80:ef:de:53:fd:11:11:fa:78:87:46:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        86:c9:06:35:6f:2c:0d:fd:19:17:3b:9f:8d:9d:85:31:
        77:ad:5b:72:50:92:a9:3b:62:14:a7:8a:19:ba:fa:96:
        77:77:5a:f1:74:a5:1b:1a:4f:98:96:3a:5d:cb:d5:48:
        59:e1:59:91:6c:2d:13:61:ea:21:96:df:39:fb:60:27:
        8c:81:c8:dc:aa:f0:c8:70:e0:80:3d:0d:b7:f8:43:3b:
        58:5d:60:9e:92:21:0d:f7:fd:96:d0:34:3f:f3:78:f2:
        6d:d8:b6:16:93:77:eb:26:bb:08:bc:33:19:8c:46:1c:
        cf:4f:e4:67:4b:4d:53:a2:c2:fb:3f:01:19:a0:03:bb:
        1e:79:cb:4b:c8:82:22:12:eb:7c:27:71:94:29:a1:f8:
        c8:a2:bc:7d:2f:f3:1b:2d:09:75:1e:fe:b5:14:a2:89:
        ac:cf:33:f2:8b:24:c5:01:c0:5b:1d:bd:55:c8:82:c9:
        76:6a:2c:13:4e:ca:63:03:8f:d7:32:f0:c5:83:0c:0f:
        50:33:b9:0c:7b:b8:6a:e3:f7:3b:be:a6:78:e3:33:97:
        71:a6:42:2d:dc:3b:95:f3:e9:f3:7f:8d:b3:40:70:55:
        14:4b:41:46:8b:0c:6f:89:9d:a1:14:3f:08:1b:80:74:
        15:f3:eb:b0:64:7b:06:e8:5e:23:5a:9f:a1:0f:e3:5b
    Fingerprint (SHA-256):
        CF:C4:D4:CD:78:9A:A6:E5:80:E1:85:F4:E4:24:32:E0:E9:24:19:F8:25:D9:88:F8:52:85:34:EA:9D:BE:73:A4
    Fingerprint (SHA1):
        E4:40:01:6D:13:11:F8:E3:52:B1:EC:9E:BA:D9:64:ED:0A:57:3A:B7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #3255: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3256: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3257: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3258: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3259: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3260: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3261: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #3262: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #3263: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #3264: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #3265: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #3266: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #3267: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #3268: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3269: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3270: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #3271: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #3272: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3273: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144854 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3274: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3275: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3276: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3277: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021144855   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3278: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3279: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3280: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3281: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021144856   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3282: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3283: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3284: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3285: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 1021144857   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3286: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3287: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3288: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3289: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 1021144858   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3290: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3291: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3292: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3293: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 1021144859   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3294: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3295: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #3296: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3297: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 1021144860   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3298: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3299: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #3300: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3301: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 1021144861   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3302: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3303: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #3304: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3305: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 1021144862   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3306: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3307: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3308: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144854 (0x3cdd6f16)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:01:55 2017
            Not After : Fri Oct 21 15:01:55 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    46:39:51:dc:30:f2:51:fa:c2:c2:31:70:55:fc:78:99:
                    29:ea:4b:a5:f3:57:9d:e3:39:1a:74:7e:09:f3:1c:63:
                    b7:bd:45:76:98:54:a2:7c:9f:44:13:09:40:c7:18:ff:
                    31:82:c5:31:be:a4:60:70:34:2b:e1:09:83:a3:3c:0f:
                    b4:51:e3:c2:4f:5d:c8:ea:46:42:31:af:23:b4:d9:08:
                    63:59:3e:4f:39:33:49:13:79:70:1b:73:c2:52:8b:d6:
                    7e:88:fd:c8:4e:da:31:6f:71:a4:5b:58:d2:3c:64:8d:
                    c9:1c:08:13:1c:bf:25:37:89:9e:22:fa:13:9a:94:2b:
                    75:17:1e:ae:d7:b6:99:61:e8:70:28:8b:f3:ce:fb:64:
                    f8:81:84:4d:a6:de:0c:93:51:6f:23:c5:7f:67:fd:d0:
                    ee:99:89:2e:ec:43:f0:cb:69:ec:21:d6:37:9d:c1:ef:
                    02:cf:f8:06:b7:f1:c6:a6:ee:6c:b0:1f:bf:09:f9:2c:
                    c9:c1:42:0f:73:2e:24:c2:b0:14:98:94:15:15:88:7a:
                    ab:3e:4f:dd:2b:46:5f:f7:f2:bc:1a:40:3b:00:af:95:
                    8d:c8:b7:3d:3c:75:ab:5f:6d:d8:f6:c8:85:5f:1e:b2:
                    86:88:f5:47:f0:2d:08:d3:fb:ff:04:a6:c2:50:70:a8
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3c:02:1c:34:53:35:5f:63:18:6e:ec:c1:44:53:19:
        b1:fe:ba:f4:a2:9b:05:87:bd:e0:a4:e5:ee:64:65:e6:
        02:1c:2e:0a:ef:4d:6f:20:b1:24:cd:75:ef:d3:d9:94:
        11:11:a5:1a:a3:5e:d4:3a:09:40:33:bd:66:5e
    Fingerprint (SHA-256):
        21:6F:00:99:C9:01:78:29:A7:F0:4C:9A:BC:92:95:F5:64:C9:02:E8:55:11:09:23:0F:9D:98:57:36:42:CC:84
    Fingerprint (SHA1):
        BB:BD:CF:9E:A9:15:BD:2D:34:FB:06:31:25:68:74:1F:FE:36:EE:A8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3309: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144854 (0x3cdd6f16)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:01:55 2017
            Not After : Fri Oct 21 15:01:55 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    46:39:51:dc:30:f2:51:fa:c2:c2:31:70:55:fc:78:99:
                    29:ea:4b:a5:f3:57:9d:e3:39:1a:74:7e:09:f3:1c:63:
                    b7:bd:45:76:98:54:a2:7c:9f:44:13:09:40:c7:18:ff:
                    31:82:c5:31:be:a4:60:70:34:2b:e1:09:83:a3:3c:0f:
                    b4:51:e3:c2:4f:5d:c8:ea:46:42:31:af:23:b4:d9:08:
                    63:59:3e:4f:39:33:49:13:79:70:1b:73:c2:52:8b:d6:
                    7e:88:fd:c8:4e:da:31:6f:71:a4:5b:58:d2:3c:64:8d:
                    c9:1c:08:13:1c:bf:25:37:89:9e:22:fa:13:9a:94:2b:
                    75:17:1e:ae:d7:b6:99:61:e8:70:28:8b:f3:ce:fb:64:
                    f8:81:84:4d:a6:de:0c:93:51:6f:23:c5:7f:67:fd:d0:
                    ee:99:89:2e:ec:43:f0:cb:69:ec:21:d6:37:9d:c1:ef:
                    02:cf:f8:06:b7:f1:c6:a6:ee:6c:b0:1f:bf:09:f9:2c:
                    c9:c1:42:0f:73:2e:24:c2:b0:14:98:94:15:15:88:7a:
                    ab:3e:4f:dd:2b:46:5f:f7:f2:bc:1a:40:3b:00:af:95:
                    8d:c8:b7:3d:3c:75:ab:5f:6d:d8:f6:c8:85:5f:1e:b2:
                    86:88:f5:47:f0:2d:08:d3:fb:ff:04:a6:c2:50:70:a8
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3c:02:1c:34:53:35:5f:63:18:6e:ec:c1:44:53:19:
        b1:fe:ba:f4:a2:9b:05:87:bd:e0:a4:e5:ee:64:65:e6:
        02:1c:2e:0a:ef:4d:6f:20:b1:24:cd:75:ef:d3:d9:94:
        11:11:a5:1a:a3:5e:d4:3a:09:40:33:bd:66:5e
    Fingerprint (SHA-256):
        21:6F:00:99:C9:01:78:29:A7:F0:4C:9A:BC:92:95:F5:64:C9:02:E8:55:11:09:23:0F:9D:98:57:36:42:CC:84
    Fingerprint (SHA1):
        BB:BD:CF:9E:A9:15:BD:2D:34:FB:06:31:25:68:74:1F:FE:36:EE:A8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3310: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144854 (0x3cdd6f16)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:01:55 2017
            Not After : Fri Oct 21 15:01:55 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    46:39:51:dc:30:f2:51:fa:c2:c2:31:70:55:fc:78:99:
                    29:ea:4b:a5:f3:57:9d:e3:39:1a:74:7e:09:f3:1c:63:
                    b7:bd:45:76:98:54:a2:7c:9f:44:13:09:40:c7:18:ff:
                    31:82:c5:31:be:a4:60:70:34:2b:e1:09:83:a3:3c:0f:
                    b4:51:e3:c2:4f:5d:c8:ea:46:42:31:af:23:b4:d9:08:
                    63:59:3e:4f:39:33:49:13:79:70:1b:73:c2:52:8b:d6:
                    7e:88:fd:c8:4e:da:31:6f:71:a4:5b:58:d2:3c:64:8d:
                    c9:1c:08:13:1c:bf:25:37:89:9e:22:fa:13:9a:94:2b:
                    75:17:1e:ae:d7:b6:99:61:e8:70:28:8b:f3:ce:fb:64:
                    f8:81:84:4d:a6:de:0c:93:51:6f:23:c5:7f:67:fd:d0:
                    ee:99:89:2e:ec:43:f0:cb:69:ec:21:d6:37:9d:c1:ef:
                    02:cf:f8:06:b7:f1:c6:a6:ee:6c:b0:1f:bf:09:f9:2c:
                    c9:c1:42:0f:73:2e:24:c2:b0:14:98:94:15:15:88:7a:
                    ab:3e:4f:dd:2b:46:5f:f7:f2:bc:1a:40:3b:00:af:95:
                    8d:c8:b7:3d:3c:75:ab:5f:6d:d8:f6:c8:85:5f:1e:b2:
                    86:88:f5:47:f0:2d:08:d3:fb:ff:04:a6:c2:50:70:a8
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3c:02:1c:34:53:35:5f:63:18:6e:ec:c1:44:53:19:
        b1:fe:ba:f4:a2:9b:05:87:bd:e0:a4:e5:ee:64:65:e6:
        02:1c:2e:0a:ef:4d:6f:20:b1:24:cd:75:ef:d3:d9:94:
        11:11:a5:1a:a3:5e:d4:3a:09:40:33:bd:66:5e
    Fingerprint (SHA-256):
        21:6F:00:99:C9:01:78:29:A7:F0:4C:9A:BC:92:95:F5:64:C9:02:E8:55:11:09:23:0F:9D:98:57:36:42:CC:84
    Fingerprint (SHA1):
        BB:BD:CF:9E:A9:15:BD:2D:34:FB:06:31:25:68:74:1F:FE:36:EE:A8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #3311: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144854 (0x3cdd6f16)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:01:55 2017
            Not After : Fri Oct 21 15:01:55 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    46:39:51:dc:30:f2:51:fa:c2:c2:31:70:55:fc:78:99:
                    29:ea:4b:a5:f3:57:9d:e3:39:1a:74:7e:09:f3:1c:63:
                    b7:bd:45:76:98:54:a2:7c:9f:44:13:09:40:c7:18:ff:
                    31:82:c5:31:be:a4:60:70:34:2b:e1:09:83:a3:3c:0f:
                    b4:51:e3:c2:4f:5d:c8:ea:46:42:31:af:23:b4:d9:08:
                    63:59:3e:4f:39:33:49:13:79:70:1b:73:c2:52:8b:d6:
                    7e:88:fd:c8:4e:da:31:6f:71:a4:5b:58:d2:3c:64:8d:
                    c9:1c:08:13:1c:bf:25:37:89:9e:22:fa:13:9a:94:2b:
                    75:17:1e:ae:d7:b6:99:61:e8:70:28:8b:f3:ce:fb:64:
                    f8:81:84:4d:a6:de:0c:93:51:6f:23:c5:7f:67:fd:d0:
                    ee:99:89:2e:ec:43:f0:cb:69:ec:21:d6:37:9d:c1:ef:
                    02:cf:f8:06:b7:f1:c6:a6:ee:6c:b0:1f:bf:09:f9:2c:
                    c9:c1:42:0f:73:2e:24:c2:b0:14:98:94:15:15:88:7a:
                    ab:3e:4f:dd:2b:46:5f:f7:f2:bc:1a:40:3b:00:af:95:
                    8d:c8:b7:3d:3c:75:ab:5f:6d:d8:f6:c8:85:5f:1e:b2:
                    86:88:f5:47:f0:2d:08:d3:fb:ff:04:a6:c2:50:70:a8
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3c:02:1c:34:53:35:5f:63:18:6e:ec:c1:44:53:19:
        b1:fe:ba:f4:a2:9b:05:87:bd:e0:a4:e5:ee:64:65:e6:
        02:1c:2e:0a:ef:4d:6f:20:b1:24:cd:75:ef:d3:d9:94:
        11:11:a5:1a:a3:5e:d4:3a:09:40:33:bd:66:5e
    Fingerprint (SHA-256):
        21:6F:00:99:C9:01:78:29:A7:F0:4C:9A:BC:92:95:F5:64:C9:02:E8:55:11:09:23:0F:9D:98:57:36:42:CC:84
    Fingerprint (SHA1):
        BB:BD:CF:9E:A9:15:BD:2D:34:FB:06:31:25:68:74:1F:FE:36:EE:A8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #3312: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3313: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 10 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3314: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3315: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #3316: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3317: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3318: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3319: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3320: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3321: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3322: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3323: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #3324: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3325: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3326: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3327: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #3328: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3329: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3330: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3331: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3332: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3333: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3334: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3335: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #3336: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3337: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3338: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3339: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20171021150316Z
nextupdate=20181021150316Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Sat Oct 21 15:03:16 2017
    Next Update: Sun Oct 21 15:03:16 2018
    CRL Extensions:
chains.sh: #3340: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021150317Z
nextupdate=20181021150317Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 15:03:17 2017
    Next Update: Sun Oct 21 15:03:17 2018
    CRL Extensions:
chains.sh: #3341: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20171021150317Z
nextupdate=20181021150317Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Sat Oct 21 15:03:17 2017
    Next Update: Sun Oct 21 15:03:17 2018
    CRL Extensions:
chains.sh: #3342: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20171021150318Z
nextupdate=20181021150318Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Sat Oct 21 15:03:18 2017
    Next Update: Sun Oct 21 15:03:18 2018
    CRL Extensions:
chains.sh: #3343: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20171021150319Z
addcert 14 20171021150319Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Sat Oct 21 15:03:19 2017
    Next Update: Sun Oct 21 15:03:17 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Sat Oct 21 15:03:19 2017
    CRL Extensions:
chains.sh: #3344: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021150320Z
addcert 15 20171021150320Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 15:03:20 2017
    Next Update: Sun Oct 21 15:03:17 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Sat Oct 21 15:03:20 2017
    CRL Extensions:
chains.sh: #3345: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3346: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3347: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #3348: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #3349: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #3350: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #3351: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #3352: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #3353: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #3354: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:02:43 2017
            Not After : Fri Oct 21 15:02:43 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:2a:5b:f6:56:01:61:9a:f6:a3:c2:50:e0:18:af:12:
                    ee:b1:84:54:a2:37:d1:d6:1d:ee:c7:67:74:da:be:4e:
                    3b:84:ae:7e:cc:38:36:30:d6:13:9d:a8:58:3e:3f:64:
                    76:b3:ab:b6:f3:9b:41:3e:d1:bd:48:a6:37:af:62:7c:
                    2c:2f:cb:6f:a8:2e:f4:be:80:4f:2a:e5:50:67:d6:2a:
                    75:4b:f0:d1:bf:de:94:08:a4:68:1b:43:98:52:fc:6d:
                    a7:21:8a:2e:73:59:87:be:25:6e:80:74:0f:fa:66:b8:
                    05:3f:50:0b:89:a7:a1:42:85:b8:8f:17:4c:c5:ac:24:
                    8f:5f:99:ec:f5:f2:e8:01:f9:f5:bb:48:b3:7c:f3:0b:
                    54:2b:9e:b9:c0:66:66:0a:1c:59:60:f9:26:cd:49:cf:
                    f1:41:19:c4:25:35:17:e2:e2:6c:40:90:e7:07:35:94:
                    27:86:e3:1a:6c:04:2f:6f:98:43:62:a8:1c:04:12:e7:
                    0b:bb:15:21:42:61:72:d4:dc:c8:9b:7f:3f:f4:96:2f:
                    83:96:00:6a:ba:e2:6c:bb:e2:dd:59:82:93:85:6f:bb:
                    b1:37:c4:03:97:65:c4:08:98:43:cc:3f:8d:e9:55:86:
                    c9:f5:a9:87:7f:b8:3f:16:fc:22:f0:fa:46:cd:23:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6b:d5:55:4d:71:0c:48:0a:8b:31:58:f2:a3:26:e8:c0:
        39:36:ad:8f:85:0b:55:a6:4d:c8:65:52:0c:84:3e:25:
        68:dc:9d:bb:90:4c:3e:d5:2d:18:45:27:ba:c9:b3:e0:
        cd:65:b9:33:6c:9b:62:69:a3:56:75:5e:ed:71:30:55:
        80:4b:57:7f:8a:9d:d9:7c:8a:74:57:87:51:ec:12:45:
        fb:d8:7b:48:1d:5a:00:61:70:6c:6e:27:93:e5:5d:a0:
        4e:d8:3e:74:2c:9e:76:4d:ba:e9:b6:be:96:55:46:18:
        e9:49:97:1d:38:40:49:3e:4e:c0:04:91:97:e5:27:33:
        3e:63:c7:e6:aa:ee:f2:3a:ec:8b:4e:79:0a:75:79:3b:
        69:ab:08:2e:3e:dc:3d:45:5e:f9:3d:6a:17:ca:7f:0b:
        aa:5b:69:b2:16:a4:ce:de:38:f7:8b:f5:26:94:6d:87:
        8e:02:cc:cf:dc:6a:25:1d:05:77:01:dc:4d:c1:ed:5d:
        8f:5f:59:ef:21:d1:9d:b5:0a:30:3a:66:23:b0:bd:aa:
        f4:9d:33:2d:31:13:0d:d6:40:46:59:71:5a:60:4e:49:
        62:f7:10:6d:29:12:6d:2f:2d:3a:4e:38:51:f6:a2:e0:
        42:f0:8d:f9:fe:7f:97:c9:59:05:cd:b5:49:1a:4e:f4
    Fingerprint (SHA-256):
        0E:4B:BF:DB:61:F1:09:E0:C0:62:10:A9:A5:15:91:0A:0F:29:39:8B:43:96:94:86:51:26:68:10:3F:15:C9:B2
    Fingerprint (SHA1):
        0D:8A:FC:E0:14:BC:A3:3C:24:2F:41:5C:86:F0:03:20:47:56:37:15
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3355: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3356: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:02:43 2017
            Not After : Fri Oct 21 15:02:43 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:2a:5b:f6:56:01:61:9a:f6:a3:c2:50:e0:18:af:12:
                    ee:b1:84:54:a2:37:d1:d6:1d:ee:c7:67:74:da:be:4e:
                    3b:84:ae:7e:cc:38:36:30:d6:13:9d:a8:58:3e:3f:64:
                    76:b3:ab:b6:f3:9b:41:3e:d1:bd:48:a6:37:af:62:7c:
                    2c:2f:cb:6f:a8:2e:f4:be:80:4f:2a:e5:50:67:d6:2a:
                    75:4b:f0:d1:bf:de:94:08:a4:68:1b:43:98:52:fc:6d:
                    a7:21:8a:2e:73:59:87:be:25:6e:80:74:0f:fa:66:b8:
                    05:3f:50:0b:89:a7:a1:42:85:b8:8f:17:4c:c5:ac:24:
                    8f:5f:99:ec:f5:f2:e8:01:f9:f5:bb:48:b3:7c:f3:0b:
                    54:2b:9e:b9:c0:66:66:0a:1c:59:60:f9:26:cd:49:cf:
                    f1:41:19:c4:25:35:17:e2:e2:6c:40:90:e7:07:35:94:
                    27:86:e3:1a:6c:04:2f:6f:98:43:62:a8:1c:04:12:e7:
                    0b:bb:15:21:42:61:72:d4:dc:c8:9b:7f:3f:f4:96:2f:
                    83:96:00:6a:ba:e2:6c:bb:e2:dd:59:82:93:85:6f:bb:
                    b1:37:c4:03:97:65:c4:08:98:43:cc:3f:8d:e9:55:86:
                    c9:f5:a9:87:7f:b8:3f:16:fc:22:f0:fa:46:cd:23:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6b:d5:55:4d:71:0c:48:0a:8b:31:58:f2:a3:26:e8:c0:
        39:36:ad:8f:85:0b:55:a6:4d:c8:65:52:0c:84:3e:25:
        68:dc:9d:bb:90:4c:3e:d5:2d:18:45:27:ba:c9:b3:e0:
        cd:65:b9:33:6c:9b:62:69:a3:56:75:5e:ed:71:30:55:
        80:4b:57:7f:8a:9d:d9:7c:8a:74:57:87:51:ec:12:45:
        fb:d8:7b:48:1d:5a:00:61:70:6c:6e:27:93:e5:5d:a0:
        4e:d8:3e:74:2c:9e:76:4d:ba:e9:b6:be:96:55:46:18:
        e9:49:97:1d:38:40:49:3e:4e:c0:04:91:97:e5:27:33:
        3e:63:c7:e6:aa:ee:f2:3a:ec:8b:4e:79:0a:75:79:3b:
        69:ab:08:2e:3e:dc:3d:45:5e:f9:3d:6a:17:ca:7f:0b:
        aa:5b:69:b2:16:a4:ce:de:38:f7:8b:f5:26:94:6d:87:
        8e:02:cc:cf:dc:6a:25:1d:05:77:01:dc:4d:c1:ed:5d:
        8f:5f:59:ef:21:d1:9d:b5:0a:30:3a:66:23:b0:bd:aa:
        f4:9d:33:2d:31:13:0d:d6:40:46:59:71:5a:60:4e:49:
        62:f7:10:6d:29:12:6d:2f:2d:3a:4e:38:51:f6:a2:e0:
        42:f0:8d:f9:fe:7f:97:c9:59:05:cd:b5:49:1a:4e:f4
    Fingerprint (SHA-256):
        0E:4B:BF:DB:61:F1:09:E0:C0:62:10:A9:A5:15:91:0A:0F:29:39:8B:43:96:94:86:51:26:68:10:3F:15:C9:B2
    Fingerprint (SHA1):
        0D:8A:FC:E0:14:BC:A3:3C:24:2F:41:5C:86:F0:03:20:47:56:37:15
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3357: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3358: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3359: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144863 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3360: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3361: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #3362: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3363: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 1021144864   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3364: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3365: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3366: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021144754.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3367: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0Root-1021144739.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3368: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3369: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #3370: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021144754.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3371: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 1021144865   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3372: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3373: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3374: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021144754.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3375: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0Root-1021144740.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3376: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3377: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #3378: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3379: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 1021144866   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3380: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3381: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3382: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021144754.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3383: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0Root-1021144741.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3384: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3385: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3386: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021144754.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3387: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0Root-1021144742.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3388: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3389: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20171021150412Z
nextupdate=20181021150412Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Sat Oct 21 15:04:12 2017
    Next Update: Sun Oct 21 15:04:12 2018
    CRL Extensions:
chains.sh: #3390: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021150413Z
nextupdate=20181021150413Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 15:04:13 2017
    Next Update: Sun Oct 21 15:04:13 2018
    CRL Extensions:
chains.sh: #3391: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20171021150413Z
nextupdate=20181021150413Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Sat Oct 21 15:04:13 2017
    Next Update: Sun Oct 21 15:04:13 2018
    CRL Extensions:
chains.sh: #3392: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20171021150414Z
nextupdate=20181021150414Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Sat Oct 21 15:04:14 2017
    Next Update: Sun Oct 21 15:04:14 2018
    CRL Extensions:
chains.sh: #3393: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021150415Z
addcert 20 20171021150415Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 15:04:15 2017
    Next Update: Sun Oct 21 15:04:13 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Sat Oct 21 15:04:15 2017
    CRL Extensions:
chains.sh: #3394: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021150416Z
addcert 40 20171021150416Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 15:04:16 2017
    Next Update: Sun Oct 21 15:04:13 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Sat Oct 21 15:04:15 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Sat Oct 21 15:04:16 2017
    CRL Extensions:
chains.sh: #3395: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3396: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3397: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #3398: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144863 (0x3cdd6f1f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:03:33 2017
            Not After : Fri Oct 21 15:03:33 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:55:39:b2:f1:8f:05:fa:04:f8:6f:d7:d2:ad:07:89:
                    a9:98:a5:0d:80:b0:7b:dc:29:e4:4c:6a:09:d3:e7:a3:
                    33:9e:93:c5:02:2a:a9:0d:e2:50:36:6c:23:46:61:ce:
                    13:2c:25:ec:05:e6:f9:5a:aa:44:af:6f:23:aa:c9:57:
                    7b:41:b0:20:8e:14:c4:31:6d:d5:a8:48:7d:8d:c6:8f:
                    7a:0b:1f:3a:b7:d2:d9:64:e3:7f:4c:44:70:ba:99:7f:
                    6d:95:9a:60:a8:d1:22:d0:7e:17:ad:d1:1d:e8:54:fa:
                    25:a9:9c:d4:59:17:96:1e:db:c5:dc:84:30:d4:6e:2c:
                    7d:29:1e:67:1a:cf:b4:1e:6a:f1:cc:c9:57:fb:ab:b2:
                    c1:0f:47:2b:be:d8:15:5d:69:d3:f8:cc:47:57:7e:88:
                    5f:fc:a8:ac:8d:f8:a6:08:f2:a4:77:d2:c9:98:80:02:
                    4e:a8:b0:90:3d:ba:86:51:9c:a9:33:27:44:dc:52:bf:
                    5f:a0:42:7f:f6:60:ce:c1:b9:3b:84:e9:f8:0e:19:85:
                    95:18:6e:75:d3:c7:07:5d:48:4b:92:a0:eb:06:9f:51:
                    aa:27:d1:55:5c:21:c9:c3:72:5b:65:68:a2:5b:94:7e:
                    b7:3e:0f:01:ff:71:c2:41:62:96:54:15:16:ba:94:0b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        69:34:d2:25:65:70:15:07:25:4d:aa:25:e7:8f:16:e9:
        34:17:ec:21:38:a6:54:23:fb:58:6c:b6:a2:c4:84:2b:
        d3:f3:8c:93:43:7f:04:53:14:07:42:ef:25:c8:c4:c6:
        23:25:a1:d0:45:57:b8:78:1a:12:5b:90:aa:e1:68:b2:
        ee:3b:6c:1c:c5:ad:19:4a:18:a7:91:14:e9:18:b3:19:
        a5:ce:a4:03:9d:6d:d3:2c:9d:f1:d1:9b:26:57:d1:bd:
        a7:d4:0d:da:77:8c:73:3f:4f:1e:3b:07:19:b0:3e:40:
        44:77:f9:ca:ef:c3:a4:32:b1:29:f3:58:47:31:d3:bc:
        cc:3f:72:10:33:60:6d:6f:ba:91:60:a5:c7:81:d0:26:
        ab:b1:08:a8:cd:49:8b:cd:9c:64:fb:8d:73:e9:e1:81:
        8f:54:7a:90:5f:b8:e1:9d:08:87:c7:d8:20:d5:82:b0:
        c2:70:9f:77:bb:1c:23:cb:5e:b5:72:64:06:70:92:39:
        2c:85:97:17:cd:0f:4e:df:83:93:b6:c7:58:b8:58:23:
        18:a4:03:5e:8a:a4:1b:fc:6d:fc:b9:25:d6:db:8d:5b:
        5c:4f:04:22:c5:27:d2:d3:71:a5:da:f5:a0:a2:fa:03:
        d5:c2:ab:b7:11:86:f9:b3:08:6f:22:c5:c4:47:e2:82
    Fingerprint (SHA-256):
        FA:22:9C:84:23:3E:7A:EA:BE:0E:7F:FD:04:CC:BD:52:F4:29:58:33:1D:82:A7:6C:86:EA:5B:8F:C9:3B:E0:08
    Fingerprint (SHA1):
        86:D0:D7:D4:DC:E1:74:81:57:50:21:2E:BE:3B:5D:BD:92:B5:BD:F2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3399: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3400: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144863 (0x3cdd6f1f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:03:33 2017
            Not After : Fri Oct 21 15:03:33 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:55:39:b2:f1:8f:05:fa:04:f8:6f:d7:d2:ad:07:89:
                    a9:98:a5:0d:80:b0:7b:dc:29:e4:4c:6a:09:d3:e7:a3:
                    33:9e:93:c5:02:2a:a9:0d:e2:50:36:6c:23:46:61:ce:
                    13:2c:25:ec:05:e6:f9:5a:aa:44:af:6f:23:aa:c9:57:
                    7b:41:b0:20:8e:14:c4:31:6d:d5:a8:48:7d:8d:c6:8f:
                    7a:0b:1f:3a:b7:d2:d9:64:e3:7f:4c:44:70:ba:99:7f:
                    6d:95:9a:60:a8:d1:22:d0:7e:17:ad:d1:1d:e8:54:fa:
                    25:a9:9c:d4:59:17:96:1e:db:c5:dc:84:30:d4:6e:2c:
                    7d:29:1e:67:1a:cf:b4:1e:6a:f1:cc:c9:57:fb:ab:b2:
                    c1:0f:47:2b:be:d8:15:5d:69:d3:f8:cc:47:57:7e:88:
                    5f:fc:a8:ac:8d:f8:a6:08:f2:a4:77:d2:c9:98:80:02:
                    4e:a8:b0:90:3d:ba:86:51:9c:a9:33:27:44:dc:52:bf:
                    5f:a0:42:7f:f6:60:ce:c1:b9:3b:84:e9:f8:0e:19:85:
                    95:18:6e:75:d3:c7:07:5d:48:4b:92:a0:eb:06:9f:51:
                    aa:27:d1:55:5c:21:c9:c3:72:5b:65:68:a2:5b:94:7e:
                    b7:3e:0f:01:ff:71:c2:41:62:96:54:15:16:ba:94:0b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        69:34:d2:25:65:70:15:07:25:4d:aa:25:e7:8f:16:e9:
        34:17:ec:21:38:a6:54:23:fb:58:6c:b6:a2:c4:84:2b:
        d3:f3:8c:93:43:7f:04:53:14:07:42:ef:25:c8:c4:c6:
        23:25:a1:d0:45:57:b8:78:1a:12:5b:90:aa:e1:68:b2:
        ee:3b:6c:1c:c5:ad:19:4a:18:a7:91:14:e9:18:b3:19:
        a5:ce:a4:03:9d:6d:d3:2c:9d:f1:d1:9b:26:57:d1:bd:
        a7:d4:0d:da:77:8c:73:3f:4f:1e:3b:07:19:b0:3e:40:
        44:77:f9:ca:ef:c3:a4:32:b1:29:f3:58:47:31:d3:bc:
        cc:3f:72:10:33:60:6d:6f:ba:91:60:a5:c7:81:d0:26:
        ab:b1:08:a8:cd:49:8b:cd:9c:64:fb:8d:73:e9:e1:81:
        8f:54:7a:90:5f:b8:e1:9d:08:87:c7:d8:20:d5:82:b0:
        c2:70:9f:77:bb:1c:23:cb:5e:b5:72:64:06:70:92:39:
        2c:85:97:17:cd:0f:4e:df:83:93:b6:c7:58:b8:58:23:
        18:a4:03:5e:8a:a4:1b:fc:6d:fc:b9:25:d6:db:8d:5b:
        5c:4f:04:22:c5:27:d2:d3:71:a5:da:f5:a0:a2:fa:03:
        d5:c2:ab:b7:11:86:f9:b3:08:6f:22:c5:c4:47:e2:82
    Fingerprint (SHA-256):
        FA:22:9C:84:23:3E:7A:EA:BE:0E:7F:FD:04:CC:BD:52:F4:29:58:33:1D:82:A7:6C:86:EA:5B:8F:C9:3B:E0:08
    Fingerprint (SHA1):
        86:D0:D7:D4:DC:E1:74:81:57:50:21:2E:BE:3B:5D:BD:92:B5:BD:F2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3401: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3402: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #3403: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144867 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3404: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #3405: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3406: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3407: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 1021144868   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3408: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3409: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3410: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3411: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021144869   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3412: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3413: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3414: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3415: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 1021144870   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3416: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3417: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #3418: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144871 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3419: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #3420: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #3421: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3422: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 1021144872   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3423: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3424: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3425: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3426: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 1021144873   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3427: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3428: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #3429: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #3430: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #3431: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144867 (0x3cdd6f23)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 15:04:26 2017
            Not After : Fri Oct 21 15:04:26 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f3:63:4a:b2:b1:7a:0f:c5:64:e3:82:79:b9:88:7a:
                    7d:01:5b:f2:0c:80:33:58:cf:88:74:ee:c8:e0:05:00:
                    a2:0a:68:31:b6:f7:70:9b:93:d3:ea:0f:cc:4f:a7:85:
                    64:a0:3a:ab:d9:6c:e8:5e:32:ad:9d:60:0c:d5:7d:35:
                    46:b4:35:ca:7a:d1:ac:21:eb:e1:ed:21:22:69:b5:c1:
                    5a:ef:62:65:4d:df:eb:f1:84:c8:93:01:c8:15:35:27:
                    d4:d5:f5:47:28:de:36:0b:2c:eb:3c:50:2a:4c:f9:27:
                    88:69:fd:8e:cf:bc:3a:10:c1:fe:b5:e1:71:4d:2a:58:
                    6b:3c:59:e9:6c:39:3c:38:38:d9:60:77:3e:49:21:fe:
                    bd:40:88:02:cd:0f:99:55:20:a3:58:58:3e:e2:ac:ca:
                    1e:20:8e:10:2d:e0:fa:b2:45:e4:10:b0:f7:e7:0c:35:
                    04:b9:a4:ed:85:8b:49:17:91:f9:89:7f:fb:0b:d6:89:
                    9c:43:cc:34:ba:3e:43:b7:92:47:03:ce:bc:b0:09:c5:
                    3f:89:83:7c:38:e6:a0:2e:9e:17:5b:82:23:70:2e:25:
                    65:2a:7b:08:05:45:4e:dd:5d:8f:c4:33:02:39:98:28:
                    cb:45:f9:b3:89:cc:77:bf:2c:f3:12:0a:41:a0:d3:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:26:9e:16:1c:6d:0d:35:6a:b4:35:94:85:2e:c9:e0:
        37:96:29:23:bf:2e:4e:f9:c1:bd:ef:4b:c1:2c:80:57:
        be:e2:af:e3:28:0c:c0:99:dc:24:5b:a3:67:d9:6e:b1:
        0d:7b:9b:67:33:7c:a8:28:cf:fd:39:8f:60:73:2e:9f:
        56:7a:36:d9:9e:fc:af:ee:9d:28:c7:ad:0a:2b:89:d6:
        d9:6e:96:5d:91:a6:96:eb:9a:9e:53:64:ac:41:e6:86:
        0b:d5:fe:11:8b:95:07:a8:fa:20:29:3f:b1:f4:7d:29:
        be:a1:0c:fe:5b:dd:21:a9:b4:ca:37:43:6e:ca:a9:17:
        b0:b8:b1:e5:b2:20:45:b3:3f:08:fe:2b:4d:f2:d2:f4:
        7c:a6:5d:db:7e:13:b6:77:cc:db:46:c5:40:a2:1c:83:
        3c:0d:06:9d:b4:21:11:20:db:3b:8d:58:b6:13:53:2d:
        5e:e5:91:40:4c:78:27:6c:07:6b:18:97:09:53:8e:60:
        73:a5:71:e3:27:0d:95:2e:68:73:91:96:9e:59:da:25:
        dc:48:ce:15:1c:0e:5a:70:16:09:73:fa:e5:37:6a:af:
        a2:7f:47:46:98:7d:f5:8c:4b:0d:91:1e:e0:19:30:1b:
        2e:49:e1:fa:6e:e4:f8:fe:37:e7:b2:c3:af:89:f0:4d
    Fingerprint (SHA-256):
        33:D9:01:19:79:7C:18:DC:BC:30:6A:D0:EC:77:66:C0:D6:29:48:E7:AA:CC:71:D6:59:B5:4B:48:D4:F5:65:3F
    Fingerprint (SHA1):
        7C:E9:BA:54:2D:87:8A:EE:93:06:17:9F:91:E8:24:32:06:5E:5B:E1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3432: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144869 (0x3cdd6f25)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 15:04:34 2017
            Not After : Fri Oct 21 15:04:34 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:87:24:24:77:aa:51:6c:cc:07:30:ee:1d:aa:ce:60:
                    66:62:83:c4:c6:d8:44:22:67:bb:d6:db:de:cb:a2:0c:
                    86:27:0f:6b:ad:3f:06:45:c2:f7:4f:bf:e9:58:dc:de:
                    a0:a6:66:96:1d:03:13:6e:e3:2f:49:f6:9f:fe:8a:59:
                    9e:a7:4c:e6:a5:82:7e:d0:96:cc:40:6f:5c:b2:e5:40:
                    aa:35:7a:eb:8a:f3:8b:0a:77:6f:6e:d7:9f:99:f5:8d:
                    89:40:e9:70:c0:42:d5:02:c1:22:4c:54:6c:7b:8d:31:
                    6c:05:bb:85:22:0e:f2:a4:73:51:e4:27:fb:30:67:16:
                    8a:77:00:a8:11:8e:e2:19:f9:70:96:59:4c:7c:25:aa:
                    24:41:fd:90:43:81:80:ce:b3:01:4e:fb:47:94:80:82:
                    6c:9b:7c:55:ae:02:e9:5e:ba:81:c9:20:74:16:18:46:
                    5b:73:3e:9f:4d:6b:b6:01:a6:2b:c1:c8:2b:5c:fd:ce:
                    61:bf:72:2b:8b:ab:17:48:94:9d:ed:13:13:b7:9e:cd:
                    66:c9:3f:54:39:04:40:eb:00:79:57:af:76:99:39:b6:
                    30:40:f8:dd:ed:2d:94:6b:9a:2f:a7:38:7d:e8:26:1e:
                    27:5d:8a:38:65:89:0c:9b:b7:af:70:aa:cc:05:82:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        77:1f:e5:28:23:10:51:74:e0:d9:c1:a0:39:c2:2d:fa:
        c3:ee:f1:6e:b4:b5:90:68:50:71:36:1d:be:45:f0:3b:
        31:d7:33:d8:ab:2d:88:18:b9:9c:f0:a8:9d:56:e8:67:
        1d:32:e9:6e:e1:49:8a:6d:e7:e2:06:c3:69:23:7f:96:
        ab:14:43:98:59:28:7a:f6:ea:b3:2c:5d:13:b1:9e:6c:
        35:c4:50:02:b8:a0:2c:6c:1d:3b:75:6e:15:fc:3e:63:
        81:6f:9a:4b:67:bf:16:03:63:ac:4b:a8:bd:75:8c:24:
        6f:6f:4a:64:79:d4:32:05:f2:c8:5f:fb:79:7a:a5:1f:
        f6:ed:fc:ab:c5:db:72:c9:21:ad:ea:9b:53:cf:d4:43:
        b3:7f:c8:8d:d7:72:1a:8f:b1:c8:1b:ac:67:3b:bb:40:
        ec:8d:1f:2e:aa:d3:e4:dd:9c:2f:f5:50:64:75:bf:88:
        6c:0d:2f:c3:85:b7:97:63:5d:ac:1b:f2:d5:8b:b3:0c:
        a4:eb:77:b8:89:a2:25:1b:88:3c:b1:9d:3e:ff:5c:e2:
        54:3c:6a:c4:58:ff:0b:d8:49:3b:54:3b:13:84:55:e2:
        93:00:8f:01:27:86:4a:96:d5:e9:ec:6d:1c:14:01:9b:
        be:dc:6d:49:ef:cf:ab:05:02:a1:3d:da:e6:58:a3:69
    Fingerprint (SHA-256):
        02:9B:1E:E1:23:A8:49:C9:60:B4:A0:58:46:D1:85:F5:5C:AC:24:08:FB:CB:9F:5B:C4:3C:84:E9:AC:2A:70:C3
    Fingerprint (SHA1):
        2E:D8:1A:18:ED:EA:CA:B3:67:80:71:92:17:C7:9E:23:6A:8E:39:1F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3433: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144867 (0x3cdd6f23)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 15:04:26 2017
            Not After : Fri Oct 21 15:04:26 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f3:63:4a:b2:b1:7a:0f:c5:64:e3:82:79:b9:88:7a:
                    7d:01:5b:f2:0c:80:33:58:cf:88:74:ee:c8:e0:05:00:
                    a2:0a:68:31:b6:f7:70:9b:93:d3:ea:0f:cc:4f:a7:85:
                    64:a0:3a:ab:d9:6c:e8:5e:32:ad:9d:60:0c:d5:7d:35:
                    46:b4:35:ca:7a:d1:ac:21:eb:e1:ed:21:22:69:b5:c1:
                    5a:ef:62:65:4d:df:eb:f1:84:c8:93:01:c8:15:35:27:
                    d4:d5:f5:47:28:de:36:0b:2c:eb:3c:50:2a:4c:f9:27:
                    88:69:fd:8e:cf:bc:3a:10:c1:fe:b5:e1:71:4d:2a:58:
                    6b:3c:59:e9:6c:39:3c:38:38:d9:60:77:3e:49:21:fe:
                    bd:40:88:02:cd:0f:99:55:20:a3:58:58:3e:e2:ac:ca:
                    1e:20:8e:10:2d:e0:fa:b2:45:e4:10:b0:f7:e7:0c:35:
                    04:b9:a4:ed:85:8b:49:17:91:f9:89:7f:fb:0b:d6:89:
                    9c:43:cc:34:ba:3e:43:b7:92:47:03:ce:bc:b0:09:c5:
                    3f:89:83:7c:38:e6:a0:2e:9e:17:5b:82:23:70:2e:25:
                    65:2a:7b:08:05:45:4e:dd:5d:8f:c4:33:02:39:98:28:
                    cb:45:f9:b3:89:cc:77:bf:2c:f3:12:0a:41:a0:d3:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:26:9e:16:1c:6d:0d:35:6a:b4:35:94:85:2e:c9:e0:
        37:96:29:23:bf:2e:4e:f9:c1:bd:ef:4b:c1:2c:80:57:
        be:e2:af:e3:28:0c:c0:99:dc:24:5b:a3:67:d9:6e:b1:
        0d:7b:9b:67:33:7c:a8:28:cf:fd:39:8f:60:73:2e:9f:
        56:7a:36:d9:9e:fc:af:ee:9d:28:c7:ad:0a:2b:89:d6:
        d9:6e:96:5d:91:a6:96:eb:9a:9e:53:64:ac:41:e6:86:
        0b:d5:fe:11:8b:95:07:a8:fa:20:29:3f:b1:f4:7d:29:
        be:a1:0c:fe:5b:dd:21:a9:b4:ca:37:43:6e:ca:a9:17:
        b0:b8:b1:e5:b2:20:45:b3:3f:08:fe:2b:4d:f2:d2:f4:
        7c:a6:5d:db:7e:13:b6:77:cc:db:46:c5:40:a2:1c:83:
        3c:0d:06:9d:b4:21:11:20:db:3b:8d:58:b6:13:53:2d:
        5e:e5:91:40:4c:78:27:6c:07:6b:18:97:09:53:8e:60:
        73:a5:71:e3:27:0d:95:2e:68:73:91:96:9e:59:da:25:
        dc:48:ce:15:1c:0e:5a:70:16:09:73:fa:e5:37:6a:af:
        a2:7f:47:46:98:7d:f5:8c:4b:0d:91:1e:e0:19:30:1b:
        2e:49:e1:fa:6e:e4:f8:fe:37:e7:b2:c3:af:89:f0:4d
    Fingerprint (SHA-256):
        33:D9:01:19:79:7C:18:DC:BC:30:6A:D0:EC:77:66:C0:D6:29:48:E7:AA:CC:71:D6:59:B5:4B:48:D4:F5:65:3F
    Fingerprint (SHA1):
        7C:E9:BA:54:2D:87:8A:EE:93:06:17:9F:91:E8:24:32:06:5E:5B:E1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3434: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #3435: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144867 (0x3cdd6f23)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 15:04:26 2017
            Not After : Fri Oct 21 15:04:26 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f3:63:4a:b2:b1:7a:0f:c5:64:e3:82:79:b9:88:7a:
                    7d:01:5b:f2:0c:80:33:58:cf:88:74:ee:c8:e0:05:00:
                    a2:0a:68:31:b6:f7:70:9b:93:d3:ea:0f:cc:4f:a7:85:
                    64:a0:3a:ab:d9:6c:e8:5e:32:ad:9d:60:0c:d5:7d:35:
                    46:b4:35:ca:7a:d1:ac:21:eb:e1:ed:21:22:69:b5:c1:
                    5a:ef:62:65:4d:df:eb:f1:84:c8:93:01:c8:15:35:27:
                    d4:d5:f5:47:28:de:36:0b:2c:eb:3c:50:2a:4c:f9:27:
                    88:69:fd:8e:cf:bc:3a:10:c1:fe:b5:e1:71:4d:2a:58:
                    6b:3c:59:e9:6c:39:3c:38:38:d9:60:77:3e:49:21:fe:
                    bd:40:88:02:cd:0f:99:55:20:a3:58:58:3e:e2:ac:ca:
                    1e:20:8e:10:2d:e0:fa:b2:45:e4:10:b0:f7:e7:0c:35:
                    04:b9:a4:ed:85:8b:49:17:91:f9:89:7f:fb:0b:d6:89:
                    9c:43:cc:34:ba:3e:43:b7:92:47:03:ce:bc:b0:09:c5:
                    3f:89:83:7c:38:e6:a0:2e:9e:17:5b:82:23:70:2e:25:
                    65:2a:7b:08:05:45:4e:dd:5d:8f:c4:33:02:39:98:28:
                    cb:45:f9:b3:89:cc:77:bf:2c:f3:12:0a:41:a0:d3:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:26:9e:16:1c:6d:0d:35:6a:b4:35:94:85:2e:c9:e0:
        37:96:29:23:bf:2e:4e:f9:c1:bd:ef:4b:c1:2c:80:57:
        be:e2:af:e3:28:0c:c0:99:dc:24:5b:a3:67:d9:6e:b1:
        0d:7b:9b:67:33:7c:a8:28:cf:fd:39:8f:60:73:2e:9f:
        56:7a:36:d9:9e:fc:af:ee:9d:28:c7:ad:0a:2b:89:d6:
        d9:6e:96:5d:91:a6:96:eb:9a:9e:53:64:ac:41:e6:86:
        0b:d5:fe:11:8b:95:07:a8:fa:20:29:3f:b1:f4:7d:29:
        be:a1:0c:fe:5b:dd:21:a9:b4:ca:37:43:6e:ca:a9:17:
        b0:b8:b1:e5:b2:20:45:b3:3f:08:fe:2b:4d:f2:d2:f4:
        7c:a6:5d:db:7e:13:b6:77:cc:db:46:c5:40:a2:1c:83:
        3c:0d:06:9d:b4:21:11:20:db:3b:8d:58:b6:13:53:2d:
        5e:e5:91:40:4c:78:27:6c:07:6b:18:97:09:53:8e:60:
        73:a5:71:e3:27:0d:95:2e:68:73:91:96:9e:59:da:25:
        dc:48:ce:15:1c:0e:5a:70:16:09:73:fa:e5:37:6a:af:
        a2:7f:47:46:98:7d:f5:8c:4b:0d:91:1e:e0:19:30:1b:
        2e:49:e1:fa:6e:e4:f8:fe:37:e7:b2:c3:af:89:f0:4d
    Fingerprint (SHA-256):
        33:D9:01:19:79:7C:18:DC:BC:30:6A:D0:EC:77:66:C0:D6:29:48:E7:AA:CC:71:D6:59:B5:4B:48:D4:F5:65:3F
    Fingerprint (SHA1):
        7C:E9:BA:54:2D:87:8A:EE:93:06:17:9F:91:E8:24:32:06:5E:5B:E1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3436: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144869 (0x3cdd6f25)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 15:04:34 2017
            Not After : Fri Oct 21 15:04:34 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:87:24:24:77:aa:51:6c:cc:07:30:ee:1d:aa:ce:60:
                    66:62:83:c4:c6:d8:44:22:67:bb:d6:db:de:cb:a2:0c:
                    86:27:0f:6b:ad:3f:06:45:c2:f7:4f:bf:e9:58:dc:de:
                    a0:a6:66:96:1d:03:13:6e:e3:2f:49:f6:9f:fe:8a:59:
                    9e:a7:4c:e6:a5:82:7e:d0:96:cc:40:6f:5c:b2:e5:40:
                    aa:35:7a:eb:8a:f3:8b:0a:77:6f:6e:d7:9f:99:f5:8d:
                    89:40:e9:70:c0:42:d5:02:c1:22:4c:54:6c:7b:8d:31:
                    6c:05:bb:85:22:0e:f2:a4:73:51:e4:27:fb:30:67:16:
                    8a:77:00:a8:11:8e:e2:19:f9:70:96:59:4c:7c:25:aa:
                    24:41:fd:90:43:81:80:ce:b3:01:4e:fb:47:94:80:82:
                    6c:9b:7c:55:ae:02:e9:5e:ba:81:c9:20:74:16:18:46:
                    5b:73:3e:9f:4d:6b:b6:01:a6:2b:c1:c8:2b:5c:fd:ce:
                    61:bf:72:2b:8b:ab:17:48:94:9d:ed:13:13:b7:9e:cd:
                    66:c9:3f:54:39:04:40:eb:00:79:57:af:76:99:39:b6:
                    30:40:f8:dd:ed:2d:94:6b:9a:2f:a7:38:7d:e8:26:1e:
                    27:5d:8a:38:65:89:0c:9b:b7:af:70:aa:cc:05:82:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        77:1f:e5:28:23:10:51:74:e0:d9:c1:a0:39:c2:2d:fa:
        c3:ee:f1:6e:b4:b5:90:68:50:71:36:1d:be:45:f0:3b:
        31:d7:33:d8:ab:2d:88:18:b9:9c:f0:a8:9d:56:e8:67:
        1d:32:e9:6e:e1:49:8a:6d:e7:e2:06:c3:69:23:7f:96:
        ab:14:43:98:59:28:7a:f6:ea:b3:2c:5d:13:b1:9e:6c:
        35:c4:50:02:b8:a0:2c:6c:1d:3b:75:6e:15:fc:3e:63:
        81:6f:9a:4b:67:bf:16:03:63:ac:4b:a8:bd:75:8c:24:
        6f:6f:4a:64:79:d4:32:05:f2:c8:5f:fb:79:7a:a5:1f:
        f6:ed:fc:ab:c5:db:72:c9:21:ad:ea:9b:53:cf:d4:43:
        b3:7f:c8:8d:d7:72:1a:8f:b1:c8:1b:ac:67:3b:bb:40:
        ec:8d:1f:2e:aa:d3:e4:dd:9c:2f:f5:50:64:75:bf:88:
        6c:0d:2f:c3:85:b7:97:63:5d:ac:1b:f2:d5:8b:b3:0c:
        a4:eb:77:b8:89:a2:25:1b:88:3c:b1:9d:3e:ff:5c:e2:
        54:3c:6a:c4:58:ff:0b:d8:49:3b:54:3b:13:84:55:e2:
        93:00:8f:01:27:86:4a:96:d5:e9:ec:6d:1c:14:01:9b:
        be:dc:6d:49:ef:cf:ab:05:02:a1:3d:da:e6:58:a3:69
    Fingerprint (SHA-256):
        02:9B:1E:E1:23:A8:49:C9:60:B4:A0:58:46:D1:85:F5:5C:AC:24:08:FB:CB:9F:5B:C4:3C:84:E9:AC:2A:70:C3
    Fingerprint (SHA1):
        2E:D8:1A:18:ED:EA:CA:B3:67:80:71:92:17:C7:9E:23:6A:8E:39:1F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3437: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #3438: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #3439: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #3440: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144867 (0x3cdd6f23)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 15:04:26 2017
            Not After : Fri Oct 21 15:04:26 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f3:63:4a:b2:b1:7a:0f:c5:64:e3:82:79:b9:88:7a:
                    7d:01:5b:f2:0c:80:33:58:cf:88:74:ee:c8:e0:05:00:
                    a2:0a:68:31:b6:f7:70:9b:93:d3:ea:0f:cc:4f:a7:85:
                    64:a0:3a:ab:d9:6c:e8:5e:32:ad:9d:60:0c:d5:7d:35:
                    46:b4:35:ca:7a:d1:ac:21:eb:e1:ed:21:22:69:b5:c1:
                    5a:ef:62:65:4d:df:eb:f1:84:c8:93:01:c8:15:35:27:
                    d4:d5:f5:47:28:de:36:0b:2c:eb:3c:50:2a:4c:f9:27:
                    88:69:fd:8e:cf:bc:3a:10:c1:fe:b5:e1:71:4d:2a:58:
                    6b:3c:59:e9:6c:39:3c:38:38:d9:60:77:3e:49:21:fe:
                    bd:40:88:02:cd:0f:99:55:20:a3:58:58:3e:e2:ac:ca:
                    1e:20:8e:10:2d:e0:fa:b2:45:e4:10:b0:f7:e7:0c:35:
                    04:b9:a4:ed:85:8b:49:17:91:f9:89:7f:fb:0b:d6:89:
                    9c:43:cc:34:ba:3e:43:b7:92:47:03:ce:bc:b0:09:c5:
                    3f:89:83:7c:38:e6:a0:2e:9e:17:5b:82:23:70:2e:25:
                    65:2a:7b:08:05:45:4e:dd:5d:8f:c4:33:02:39:98:28:
                    cb:45:f9:b3:89:cc:77:bf:2c:f3:12:0a:41:a0:d3:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:26:9e:16:1c:6d:0d:35:6a:b4:35:94:85:2e:c9:e0:
        37:96:29:23:bf:2e:4e:f9:c1:bd:ef:4b:c1:2c:80:57:
        be:e2:af:e3:28:0c:c0:99:dc:24:5b:a3:67:d9:6e:b1:
        0d:7b:9b:67:33:7c:a8:28:cf:fd:39:8f:60:73:2e:9f:
        56:7a:36:d9:9e:fc:af:ee:9d:28:c7:ad:0a:2b:89:d6:
        d9:6e:96:5d:91:a6:96:eb:9a:9e:53:64:ac:41:e6:86:
        0b:d5:fe:11:8b:95:07:a8:fa:20:29:3f:b1:f4:7d:29:
        be:a1:0c:fe:5b:dd:21:a9:b4:ca:37:43:6e:ca:a9:17:
        b0:b8:b1:e5:b2:20:45:b3:3f:08:fe:2b:4d:f2:d2:f4:
        7c:a6:5d:db:7e:13:b6:77:cc:db:46:c5:40:a2:1c:83:
        3c:0d:06:9d:b4:21:11:20:db:3b:8d:58:b6:13:53:2d:
        5e:e5:91:40:4c:78:27:6c:07:6b:18:97:09:53:8e:60:
        73:a5:71:e3:27:0d:95:2e:68:73:91:96:9e:59:da:25:
        dc:48:ce:15:1c:0e:5a:70:16:09:73:fa:e5:37:6a:af:
        a2:7f:47:46:98:7d:f5:8c:4b:0d:91:1e:e0:19:30:1b:
        2e:49:e1:fa:6e:e4:f8:fe:37:e7:b2:c3:af:89:f0:4d
    Fingerprint (SHA-256):
        33:D9:01:19:79:7C:18:DC:BC:30:6A:D0:EC:77:66:C0:D6:29:48:E7:AA:CC:71:D6:59:B5:4B:48:D4:F5:65:3F
    Fingerprint (SHA1):
        7C:E9:BA:54:2D:87:8A:EE:93:06:17:9F:91:E8:24:32:06:5E:5B:E1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3441: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144871 (0x3cdd6f27)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Sat Oct 21 15:04:46 2017
            Not After : Fri Oct 21 15:04:46 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:9b:78:05:39:7d:6c:b8:ea:74:fb:ea:cd:f3:5f:1a:
                    40:44:40:d1:94:d9:9d:54:99:77:ea:fd:4d:cd:29:ee:
                    d6:13:8f:1c:ec:a0:92:7e:c6:56:c9:9c:f6:2f:55:e5:
                    61:ee:37:7d:e0:85:a0:27:e3:11:29:54:8f:3f:97:5d:
                    7a:d8:e3:0f:32:c3:bb:be:40:7b:c3:15:d4:25:f1:af:
                    f4:57:4f:b2:ff:a4:90:d9:c2:ad:e5:2a:09:c4:34:96:
                    a3:17:28:11:cb:8f:52:9f:73:e2:a4:c8:9e:a0:3d:40:
                    80:26:e2:96:1d:53:1e:11:dc:82:f9:7e:14:4e:25:6e:
                    a5:75:c1:02:74:e1:d2:8f:2c:39:93:51:16:d7:10:b1:
                    29:c9:69:83:8f:d6:4e:5c:18:9e:f9:10:70:3f:60:0f:
                    60:60:8e:a1:70:28:69:11:48:0c:e0:bd:c1:9c:43:7d:
                    a9:c9:5f:12:5a:dd:56:15:eb:33:b2:cb:89:bb:04:6a:
                    1b:2f:59:c3:b2:db:6c:d4:69:89:64:f6:38:73:e1:35:
                    61:d6:c8:d3:c6:ec:fb:db:0e:f4:df:d5:a7:9d:67:25:
                    16:3a:93:8d:7c:69:d2:64:aa:15:a2:18:5e:a2:6f:99:
                    28:2d:cf:3b:ab:ab:83:a9:4d:ae:31:da:4d:ef:13:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        07:b0:b1:50:6d:f4:a5:e0:7a:68:15:c3:f8:03:9f:78:
        42:74:1d:ee:9a:3c:cd:1f:57:2e:a0:3c:38:4f:b9:63:
        29:2d:dc:c7:0e:22:62:72:6b:62:53:83:40:57:7f:9e:
        d2:99:42:7f:b9:e6:2d:c7:6f:b0:ee:2e:27:00:37:47:
        5d:7d:5a:6a:be:4a:38:50:0b:02:31:eb:f3:6f:29:bb:
        2a:d8:40:cb:98:f8:35:62:fa:d3:24:db:ac:84:d0:f6:
        ba:4a:22:39:d9:cb:65:98:7b:3a:cb:ef:19:69:26:e3:
        f2:61:92:17:f5:86:34:b5:b5:d6:e6:b2:c0:c1:d8:e2:
        9f:d5:a2:9e:c1:f1:48:79:a6:7d:ee:f5:85:47:62:0f:
        e4:f5:b7:21:71:b0:08:6f:ba:d6:0b:86:14:11:0f:f5:
        a6:89:53:26:8d:d1:bc:40:1a:8b:9c:e5:59:f7:3f:13:
        52:d3:00:cc:c0:3a:1b:88:5d:0a:a8:15:94:2b:f7:53:
        20:67:11:03:9a:25:ac:7f:22:b7:12:a5:ae:55:34:4f:
        f5:50:6d:c2:03:01:a3:71:8a:25:78:6f:2f:f7:58:3f:
        85:ff:dc:7a:9f:df:57:36:d1:9e:29:18:fa:8e:fd:58:
        a9:81:f9:e5:f8:1e:32:e8:f7:e4:a6:18:ab:f1:89:c6
    Fingerprint (SHA-256):
        FC:DB:EE:A1:A4:F7:89:48:70:C0:76:B5:79:89:EF:CA:A1:DF:18:1A:E8:5B:6E:6D:12:D6:A0:09:C3:04:35:D7
    Fingerprint (SHA1):
        07:6C:00:7F:68:97:43:9E:25:6F:1D:45:BA:9D:06:A2:34:31:88:F5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #3442: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144867 (0x3cdd6f23)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 15:04:26 2017
            Not After : Fri Oct 21 15:04:26 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:f3:63:4a:b2:b1:7a:0f:c5:64:e3:82:79:b9:88:7a:
                    7d:01:5b:f2:0c:80:33:58:cf:88:74:ee:c8:e0:05:00:
                    a2:0a:68:31:b6:f7:70:9b:93:d3:ea:0f:cc:4f:a7:85:
                    64:a0:3a:ab:d9:6c:e8:5e:32:ad:9d:60:0c:d5:7d:35:
                    46:b4:35:ca:7a:d1:ac:21:eb:e1:ed:21:22:69:b5:c1:
                    5a:ef:62:65:4d:df:eb:f1:84:c8:93:01:c8:15:35:27:
                    d4:d5:f5:47:28:de:36:0b:2c:eb:3c:50:2a:4c:f9:27:
                    88:69:fd:8e:cf:bc:3a:10:c1:fe:b5:e1:71:4d:2a:58:
                    6b:3c:59:e9:6c:39:3c:38:38:d9:60:77:3e:49:21:fe:
                    bd:40:88:02:cd:0f:99:55:20:a3:58:58:3e:e2:ac:ca:
                    1e:20:8e:10:2d:e0:fa:b2:45:e4:10:b0:f7:e7:0c:35:
                    04:b9:a4:ed:85:8b:49:17:91:f9:89:7f:fb:0b:d6:89:
                    9c:43:cc:34:ba:3e:43:b7:92:47:03:ce:bc:b0:09:c5:
                    3f:89:83:7c:38:e6:a0:2e:9e:17:5b:82:23:70:2e:25:
                    65:2a:7b:08:05:45:4e:dd:5d:8f:c4:33:02:39:98:28:
                    cb:45:f9:b3:89:cc:77:bf:2c:f3:12:0a:41:a0:d3:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:26:9e:16:1c:6d:0d:35:6a:b4:35:94:85:2e:c9:e0:
        37:96:29:23:bf:2e:4e:f9:c1:bd:ef:4b:c1:2c:80:57:
        be:e2:af:e3:28:0c:c0:99:dc:24:5b:a3:67:d9:6e:b1:
        0d:7b:9b:67:33:7c:a8:28:cf:fd:39:8f:60:73:2e:9f:
        56:7a:36:d9:9e:fc:af:ee:9d:28:c7:ad:0a:2b:89:d6:
        d9:6e:96:5d:91:a6:96:eb:9a:9e:53:64:ac:41:e6:86:
        0b:d5:fe:11:8b:95:07:a8:fa:20:29:3f:b1:f4:7d:29:
        be:a1:0c:fe:5b:dd:21:a9:b4:ca:37:43:6e:ca:a9:17:
        b0:b8:b1:e5:b2:20:45:b3:3f:08:fe:2b:4d:f2:d2:f4:
        7c:a6:5d:db:7e:13:b6:77:cc:db:46:c5:40:a2:1c:83:
        3c:0d:06:9d:b4:21:11:20:db:3b:8d:58:b6:13:53:2d:
        5e:e5:91:40:4c:78:27:6c:07:6b:18:97:09:53:8e:60:
        73:a5:71:e3:27:0d:95:2e:68:73:91:96:9e:59:da:25:
        dc:48:ce:15:1c:0e:5a:70:16:09:73:fa:e5:37:6a:af:
        a2:7f:47:46:98:7d:f5:8c:4b:0d:91:1e:e0:19:30:1b:
        2e:49:e1:fa:6e:e4:f8:fe:37:e7:b2:c3:af:89:f0:4d
    Fingerprint (SHA-256):
        33:D9:01:19:79:7C:18:DC:BC:30:6A:D0:EC:77:66:C0:D6:29:48:E7:AA:CC:71:D6:59:B5:4B:48:D4:F5:65:3F
    Fingerprint (SHA1):
        7C:E9:BA:54:2D:87:8A:EE:93:06:17:9F:91:E8:24:32:06:5E:5B:E1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3443: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #3444: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #3445: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #3446: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #3447: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #3448: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144872 (0x3cdd6f28)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Sat Oct 21 15:04:53 2017
            Not After : Fri Oct 21 15:04:53 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:fa:aa:3b:ed:0f:3c:f7:3f:d7:a3:d9:69:e0:4c:69:
                    37:7d:e6:17:f3:9f:00:df:7c:51:78:c3:9c:6b:64:13:
                    73:b3:9a:14:03:92:d9:9f:61:27:06:67:c5:13:0c:8a:
                    d4:f7:99:34:4a:70:e1:30:ac:8a:7b:cf:93:fb:70:bc:
                    08:81:1f:0d:09:91:d9:de:11:48:f7:d2:a1:ef:13:15:
                    cc:22:23:88:0d:38:7e:6e:23:8d:68:63:24:d7:1b:5d:
                    07:b2:98:fc:70:a4:ee:f3:07:f9:cd:4f:5a:35:ab:7b:
                    8d:c0:e9:ec:66:00:23:58:4e:41:90:a4:fd:48:62:83:
                    2b:73:39:c2:a6:60:64:c3:e4:fc:e8:55:3c:49:cc:c9:
                    cd:7d:ca:8b:89:cc:f6:cc:54:17:3e:b8:62:f6:b2:de:
                    1b:46:bd:51:70:86:ed:0c:63:7b:6d:c8:95:50:ff:f8:
                    d7:36:b0:4c:01:7d:cc:74:2e:97:15:a1:fe:07:65:0c:
                    56:fa:00:b2:c3:97:96:03:a3:e5:55:7d:5d:a5:1f:17:
                    b2:dd:1f:aa:ec:40:2a:3f:b2:83:29:c3:af:a1:44:aa:
                    5b:e8:49:69:25:4b:63:20:3d:22:fb:f7:bc:93:d5:0f:
                    41:5a:26:7a:02:65:87:ef:ab:d8:fd:c8:0c:ef:74:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0e:c6:20:e5:01:87:08:82:7b:40:1b:76:58:c2:39:64:
        62:3f:9b:58:d9:16:fa:de:09:8b:88:7e:e7:34:2e:b1:
        de:d6:e5:ca:18:8b:ba:5a:ea:86:48:7a:78:98:bb:56:
        66:ff:55:4c:c1:ce:fd:04:de:1f:ad:3c:55:45:70:23:
        7d:8d:5b:cb:77:de:49:c3:0a:94:fe:90:04:2f:be:8a:
        33:b3:f8:93:e7:55:11:ea:5b:6f:4e:e1:fe:95:fc:53:
        e6:54:74:4d:b7:4d:0e:93:06:2c:a4:8d:13:a7:6b:00:
        d4:38:03:60:07:cb:e5:eb:04:0e:4f:f0:a2:3c:49:b8:
        30:b0:01:cf:19:bf:2d:ed:a9:f4:d4:41:84:7b:c3:f3:
        33:47:cf:b5:14:4e:88:9f:8b:cf:4d:0e:44:e1:50:48:
        2f:50:fa:d9:30:b3:81:de:44:40:83:55:69:58:0c:0f:
        d2:44:06:24:0c:53:28:46:52:4f:be:8a:b7:88:18:17:
        f1:8c:1d:d3:99:91:52:2e:5a:5f:8b:6d:86:a2:ce:f8:
        e3:2f:46:8c:8c:98:e0:16:04:54:20:34:55:69:b4:6f:
        23:f3:be:7e:5c:e6:dd:65:aa:e5:92:2f:f8:f3:92:7a:
        30:1a:26:d8:6e:95:ff:0c:03:f7:f8:4b:94:d7:c5:fd
    Fingerprint (SHA-256):
        D4:3A:EC:56:87:1C:96:01:03:5B:D1:F9:DF:09:0C:9F:58:18:C4:85:B4:83:B3:0F:DB:5D:DF:0D:1F:05:35:3F
    Fingerprint (SHA1):
        C6:C3:3F:5F:CD:1E:9C:F4:98:CE:1D:E5:87:F6:33:80:F6:AA:10:82
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3449: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #3450: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #3451: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #3452: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #3453: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3454: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3455: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3456: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3457: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3458: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3459: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3460: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3461: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3462: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3463: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3464: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3465: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3466: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3467: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #3468: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3469: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3470: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3471: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3472: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 13843 at Sat Oct 21 15:05:31 UTC 2017
kill -USR1 13843
httpserv: normal termination
httpserv -b -p 9193 2>/dev/null;
httpserv with PID 13843 killed at Sat Oct 21 15:05:32 UTC 2017
httpserv starting at Sat Oct 21 15:05:32 UTC 2017
httpserv -D -p 9193  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O get-unknown -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/aiahttp/http_pid.3868  &
trying to connect to httpserv at Sat Oct 21 15:05:32 UTC 2017
tstclnt -p 9193 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9193 (address=127.0.0.1)
tstclnt: exiting with return code 0
kill -0 29542 >/dev/null 2>/dev/null
httpserv with PID 29542 found at Sat Oct 21 15:05:32 UTC 2017
httpserv with PID 29542 started at Sat Oct 21 15:05:32 UTC 2017
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3473: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144874 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3474: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3475: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3476: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144875 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3477: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3478: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3479: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3480: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 1021144876 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3481: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3482: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 1021144877 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3483: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3484: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3485: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3486: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3487: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 1021144878   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3488: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3489: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3490: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #3491: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #3492: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144875 (0x3cdd6f2b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 15:05:43 2017
            Not After : Fri Oct 21 15:05:43 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:bf:8b:32:c0:bc:b2:85:4f:de:4e:2a:ca:a3:ba:a5:
                    08:19:a9:7a:6c:6e:18:91:c0:04:84:11:4a:44:9b:d5:
                    0e:83:6c:2a:7f:4b:6b:88:91:a9:e0:bf:b0:d1:53:d1:
                    4b:91:04:f1:dc:62:91:9e:82:14:bf:d7:54:74:29:88:
                    b8:26:c7:cf:4b:a1:40:9e:4b:fe:c6:54:b0:61:e9:4f:
                    1a:d3:c8:ad:e1:7d:27:92:cb:19:a0:07:83:e5:3f:3b:
                    6f:90:fe:10:bf:dc:e1:86:f2:ea:98:d7:c2:91:a3:e7:
                    a5:bc:f0:b2:b5:09:40:ef:4c:44:aa:9c:52:d8:97:68:
                    de:45:02:c0:31:8a:b5:25:ce:a7:54:cb:c9:f7:d5:94:
                    db:0f:6c:fa:9a:a7:47:ea:6a:c4:89:62:0c:9d:9c:7c:
                    50:2f:1b:c0:7e:97:6b:c9:56:cb:52:97:75:e6:37:6c:
                    87:79:4e:1e:a0:cf:93:93:35:e0:09:5a:bf:f7:56:04:
                    3c:dd:97:e0:fd:4c:48:f8:7a:70:83:3e:9a:3e:2f:4b:
                    50:da:fe:b6:f5:e0:90:96:ba:a5:9c:db:49:39:60:83:
                    43:4c:46:ba:cb:97:3b:41:17:1f:f5:c6:05:fc:af:cb:
                    9e:b7:cf:64:a0:95:3d:7e:52:71:ab:c0:a1:1a:a8:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:ce:6b:6d:bd:8a:01:d1:c4:e9:48:83:33:22:d9:14:
        c5:1b:05:7f:c8:40:5a:bd:59:05:34:05:87:f4:e9:07:
        0a:c1:aa:fb:25:85:9a:b3:8e:9f:b6:9f:f8:52:b7:e7:
        cc:01:18:7c:9b:bd:98:88:8d:2d:1e:b5:0f:3c:d4:9a:
        05:d7:96:e7:10:b6:fb:b4:ba:62:31:88:93:59:94:e3:
        ed:54:05:0a:ff:cf:1c:5c:eb:fa:f1:48:38:3b:5e:c9:
        f6:72:74:07:02:c4:a2:80:87:21:a2:d5:78:fd:c2:c7:
        f5:02:ad:3d:15:20:35:9d:ef:21:57:d9:a6:d3:67:c0:
        de:d9:58:e4:0a:70:5a:10:1d:60:30:db:51:00:b3:7b:
        3c:f2:cf:e3:f7:7d:de:f7:39:43:61:23:ac:0e:dd:7e:
        77:a8:52:8a:c0:e1:84:3b:2e:c7:c1:be:f3:53:69:27:
        e2:aa:ed:b1:10:68:91:ac:5e:20:2f:56:bf:12:f7:ca:
        af:59:ee:c6:17:c5:9b:6b:f5:4b:37:32:01:96:95:53:
        1e:43:e8:d6:08:e1:6b:e9:a3:66:44:b3:29:96:ac:09:
        47:99:3e:be:5e:80:29:4b:41:48:d2:6b:3b:6b:e4:ab:
        9a:92:fe:eb:6f:d0:b4:46:18:fe:5a:49:37:57:89:db
    Fingerprint (SHA-256):
        87:B6:03:BE:88:45:DE:F5:43:64:D3:38:15:27:CD:D0:DE:60:AA:C0:10:0D:7A:8E:05:BA:0A:50:31:84:CC:FA
    Fingerprint (SHA1):
        06:97:26:40:70:B0:8A:F9:5E:A6:7C:10:41:AE:45:16:4A:70:63:21
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3493: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144874 (0x3cdd6f2a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 15:05:37 2017
            Not After : Fri Oct 21 15:05:37 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:81:10:fe:c4:3d:16:15:63:6f:1b:f3:7d:13:5c:16:
                    0a:f1:9e:8c:13:9e:02:de:b1:c7:79:d6:d1:a8:30:d6:
                    06:12:3b:e7:bd:95:e7:9f:67:d4:7a:98:06:f8:cb:5f:
                    88:00:34:09:ef:01:ca:4c:87:5c:3d:5d:af:33:52:92:
                    e8:8b:30:e4:ff:41:b0:2a:8b:c8:e2:45:b6:68:57:06:
                    18:3b:4a:18:30:19:e0:e3:97:28:65:64:eb:ae:a1:50:
                    72:fa:06:83:36:9b:ce:17:8e:2a:15:8f:e0:24:29:36:
                    42:04:9c:61:00:ef:a7:63:91:79:db:df:0a:ef:a3:05:
                    d6:c6:29:f6:01:fd:48:e0:0d:b1:b1:78:a0:d4:75:6b:
                    b6:f2:da:69:52:c1:b0:2d:86:95:71:e7:d5:0c:70:49:
                    7b:35:dd:6b:7c:7f:06:e7:da:52:ea:94:24:b3:2b:56:
                    7c:2f:f7:3a:d0:2c:af:49:44:b5:e7:7f:b0:7f:ae:83:
                    82:7e:b2:49:0c:b3:0f:0f:e7:5e:9e:05:93:e2:15:26:
                    20:3d:77:76:95:4f:70:98:2f:4b:2a:95:ba:37:ba:3e:
                    30:4e:04:82:12:c9:a6:9a:8a:88:80:0c:08:37:35:22:
                    f8:1e:f7:e4:4a:99:9f:34:ec:20:76:2f:84:fd:7f:33
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:2c:94:15:df:26:48:5e:de:d3:42:42:c0:a6:2a:cd:
        05:12:09:fc:3c:27:90:c9:ac:ac:4a:9a:e8:d7:6c:7d:
        58:52:cc:9d:31:db:a3:16:fb:07:1d:7f:a1:fa:3b:23:
        26:d6:c7:a9:bc:fa:da:6a:59:9a:a0:46:71:b1:99:98:
        e4:13:49:58:d6:16:a6:63:57:34:43:2b:af:09:f6:1e:
        1d:cf:45:30:07:be:a2:5e:bb:85:17:1d:3d:b3:17:f5:
        31:52:8e:d9:40:74:20:05:f1:17:a5:db:ac:71:77:77:
        6d:e8:23:32:07:5d:6e:49:aa:cb:ce:7b:2b:a7:f3:5b:
        59:8e:d3:67:20:4f:60:94:ce:eb:bf:80:b6:c6:45:20:
        46:1b:4d:0f:b5:44:f7:01:9a:81:a0:5e:2f:3f:ea:23:
        d2:ea:6c:a4:7e:37:0b:3c:f8:19:9e:0f:40:5f:21:ec:
        5d:ac:72:9e:67:25:27:6e:24:fa:4f:99:33:35:ea:ac:
        50:25:0b:9b:a4:4f:7c:9d:8c:a0:04:84:dd:d6:dd:18:
        ed:43:b1:d2:52:d4:00:c0:c8:cb:34:f5:ec:d7:f2:86:
        ec:92:03:09:30:df:e3:3e:ca:10:f8:51:df:48:49:bd:
        80:23:cd:60:bb:7a:63:25:4f:46:50:81:e9:4d:a7:78
    Fingerprint (SHA-256):
        0F:99:75:5F:96:AB:70:FE:14:18:12:A5:51:17:68:60:7F:1F:08:77:30:6E:03:7E:F1:27:05:B2:6F:0B:80:AF
    Fingerprint (SHA1):
        28:49:8D:05:54:E1:A5:87:54:29:0A:59:40:3B:E2:0E:18:7D:AC:94
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3494: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3495: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #3496: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #3497: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144874 (0x3cdd6f2a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 15:05:37 2017
            Not After : Fri Oct 21 15:05:37 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:81:10:fe:c4:3d:16:15:63:6f:1b:f3:7d:13:5c:16:
                    0a:f1:9e:8c:13:9e:02:de:b1:c7:79:d6:d1:a8:30:d6:
                    06:12:3b:e7:bd:95:e7:9f:67:d4:7a:98:06:f8:cb:5f:
                    88:00:34:09:ef:01:ca:4c:87:5c:3d:5d:af:33:52:92:
                    e8:8b:30:e4:ff:41:b0:2a:8b:c8:e2:45:b6:68:57:06:
                    18:3b:4a:18:30:19:e0:e3:97:28:65:64:eb:ae:a1:50:
                    72:fa:06:83:36:9b:ce:17:8e:2a:15:8f:e0:24:29:36:
                    42:04:9c:61:00:ef:a7:63:91:79:db:df:0a:ef:a3:05:
                    d6:c6:29:f6:01:fd:48:e0:0d:b1:b1:78:a0:d4:75:6b:
                    b6:f2:da:69:52:c1:b0:2d:86:95:71:e7:d5:0c:70:49:
                    7b:35:dd:6b:7c:7f:06:e7:da:52:ea:94:24:b3:2b:56:
                    7c:2f:f7:3a:d0:2c:af:49:44:b5:e7:7f:b0:7f:ae:83:
                    82:7e:b2:49:0c:b3:0f:0f:e7:5e:9e:05:93:e2:15:26:
                    20:3d:77:76:95:4f:70:98:2f:4b:2a:95:ba:37:ba:3e:
                    30:4e:04:82:12:c9:a6:9a:8a:88:80:0c:08:37:35:22:
                    f8:1e:f7:e4:4a:99:9f:34:ec:20:76:2f:84:fd:7f:33
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:2c:94:15:df:26:48:5e:de:d3:42:42:c0:a6:2a:cd:
        05:12:09:fc:3c:27:90:c9:ac:ac:4a:9a:e8:d7:6c:7d:
        58:52:cc:9d:31:db:a3:16:fb:07:1d:7f:a1:fa:3b:23:
        26:d6:c7:a9:bc:fa:da:6a:59:9a:a0:46:71:b1:99:98:
        e4:13:49:58:d6:16:a6:63:57:34:43:2b:af:09:f6:1e:
        1d:cf:45:30:07:be:a2:5e:bb:85:17:1d:3d:b3:17:f5:
        31:52:8e:d9:40:74:20:05:f1:17:a5:db:ac:71:77:77:
        6d:e8:23:32:07:5d:6e:49:aa:cb:ce:7b:2b:a7:f3:5b:
        59:8e:d3:67:20:4f:60:94:ce:eb:bf:80:b6:c6:45:20:
        46:1b:4d:0f:b5:44:f7:01:9a:81:a0:5e:2f:3f:ea:23:
        d2:ea:6c:a4:7e:37:0b:3c:f8:19:9e:0f:40:5f:21:ec:
        5d:ac:72:9e:67:25:27:6e:24:fa:4f:99:33:35:ea:ac:
        50:25:0b:9b:a4:4f:7c:9d:8c:a0:04:84:dd:d6:dd:18:
        ed:43:b1:d2:52:d4:00:c0:c8:cb:34:f5:ec:d7:f2:86:
        ec:92:03:09:30:df:e3:3e:ca:10:f8:51:df:48:49:bd:
        80:23:cd:60:bb:7a:63:25:4f:46:50:81:e9:4d:a7:78
    Fingerprint (SHA-256):
        0F:99:75:5F:96:AB:70:FE:14:18:12:A5:51:17:68:60:7F:1F:08:77:30:6E:03:7E:F1:27:05:B2:6F:0B:80:AF
    Fingerprint (SHA1):
        28:49:8D:05:54:E1:A5:87:54:29:0A:59:40:3B:E2:0E:18:7D:AC:94
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3498: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144875 (0x3cdd6f2b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 15:05:43 2017
            Not After : Fri Oct 21 15:05:43 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:bf:8b:32:c0:bc:b2:85:4f:de:4e:2a:ca:a3:ba:a5:
                    08:19:a9:7a:6c:6e:18:91:c0:04:84:11:4a:44:9b:d5:
                    0e:83:6c:2a:7f:4b:6b:88:91:a9:e0:bf:b0:d1:53:d1:
                    4b:91:04:f1:dc:62:91:9e:82:14:bf:d7:54:74:29:88:
                    b8:26:c7:cf:4b:a1:40:9e:4b:fe:c6:54:b0:61:e9:4f:
                    1a:d3:c8:ad:e1:7d:27:92:cb:19:a0:07:83:e5:3f:3b:
                    6f:90:fe:10:bf:dc:e1:86:f2:ea:98:d7:c2:91:a3:e7:
                    a5:bc:f0:b2:b5:09:40:ef:4c:44:aa:9c:52:d8:97:68:
                    de:45:02:c0:31:8a:b5:25:ce:a7:54:cb:c9:f7:d5:94:
                    db:0f:6c:fa:9a:a7:47:ea:6a:c4:89:62:0c:9d:9c:7c:
                    50:2f:1b:c0:7e:97:6b:c9:56:cb:52:97:75:e6:37:6c:
                    87:79:4e:1e:a0:cf:93:93:35:e0:09:5a:bf:f7:56:04:
                    3c:dd:97:e0:fd:4c:48:f8:7a:70:83:3e:9a:3e:2f:4b:
                    50:da:fe:b6:f5:e0:90:96:ba:a5:9c:db:49:39:60:83:
                    43:4c:46:ba:cb:97:3b:41:17:1f:f5:c6:05:fc:af:cb:
                    9e:b7:cf:64:a0:95:3d:7e:52:71:ab:c0:a1:1a:a8:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:ce:6b:6d:bd:8a:01:d1:c4:e9:48:83:33:22:d9:14:
        c5:1b:05:7f:c8:40:5a:bd:59:05:34:05:87:f4:e9:07:
        0a:c1:aa:fb:25:85:9a:b3:8e:9f:b6:9f:f8:52:b7:e7:
        cc:01:18:7c:9b:bd:98:88:8d:2d:1e:b5:0f:3c:d4:9a:
        05:d7:96:e7:10:b6:fb:b4:ba:62:31:88:93:59:94:e3:
        ed:54:05:0a:ff:cf:1c:5c:eb:fa:f1:48:38:3b:5e:c9:
        f6:72:74:07:02:c4:a2:80:87:21:a2:d5:78:fd:c2:c7:
        f5:02:ad:3d:15:20:35:9d:ef:21:57:d9:a6:d3:67:c0:
        de:d9:58:e4:0a:70:5a:10:1d:60:30:db:51:00:b3:7b:
        3c:f2:cf:e3:f7:7d:de:f7:39:43:61:23:ac:0e:dd:7e:
        77:a8:52:8a:c0:e1:84:3b:2e:c7:c1:be:f3:53:69:27:
        e2:aa:ed:b1:10:68:91:ac:5e:20:2f:56:bf:12:f7:ca:
        af:59:ee:c6:17:c5:9b:6b:f5:4b:37:32:01:96:95:53:
        1e:43:e8:d6:08:e1:6b:e9:a3:66:44:b3:29:96:ac:09:
        47:99:3e:be:5e:80:29:4b:41:48:d2:6b:3b:6b:e4:ab:
        9a:92:fe:eb:6f:d0:b4:46:18:fe:5a:49:37:57:89:db
    Fingerprint (SHA-256):
        87:B6:03:BE:88:45:DE:F5:43:64:D3:38:15:27:CD:D0:DE:60:AA:C0:10:0D:7A:8E:05:BA:0A:50:31:84:CC:FA
    Fingerprint (SHA1):
        06:97:26:40:70:B0:8A:F9:5E:A6:7C:10:41:AE:45:16:4A:70:63:21
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3499: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #3500: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #3501: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3502: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3503: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3504: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144875 (0x3cdd6f2b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 15:05:43 2017
            Not After : Fri Oct 21 15:05:43 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:bf:8b:32:c0:bc:b2:85:4f:de:4e:2a:ca:a3:ba:a5:
                    08:19:a9:7a:6c:6e:18:91:c0:04:84:11:4a:44:9b:d5:
                    0e:83:6c:2a:7f:4b:6b:88:91:a9:e0:bf:b0:d1:53:d1:
                    4b:91:04:f1:dc:62:91:9e:82:14:bf:d7:54:74:29:88:
                    b8:26:c7:cf:4b:a1:40:9e:4b:fe:c6:54:b0:61:e9:4f:
                    1a:d3:c8:ad:e1:7d:27:92:cb:19:a0:07:83:e5:3f:3b:
                    6f:90:fe:10:bf:dc:e1:86:f2:ea:98:d7:c2:91:a3:e7:
                    a5:bc:f0:b2:b5:09:40:ef:4c:44:aa:9c:52:d8:97:68:
                    de:45:02:c0:31:8a:b5:25:ce:a7:54:cb:c9:f7:d5:94:
                    db:0f:6c:fa:9a:a7:47:ea:6a:c4:89:62:0c:9d:9c:7c:
                    50:2f:1b:c0:7e:97:6b:c9:56:cb:52:97:75:e6:37:6c:
                    87:79:4e:1e:a0:cf:93:93:35:e0:09:5a:bf:f7:56:04:
                    3c:dd:97:e0:fd:4c:48:f8:7a:70:83:3e:9a:3e:2f:4b:
                    50:da:fe:b6:f5:e0:90:96:ba:a5:9c:db:49:39:60:83:
                    43:4c:46:ba:cb:97:3b:41:17:1f:f5:c6:05:fc:af:cb:
                    9e:b7:cf:64:a0:95:3d:7e:52:71:ab:c0:a1:1a:a8:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:ce:6b:6d:bd:8a:01:d1:c4:e9:48:83:33:22:d9:14:
        c5:1b:05:7f:c8:40:5a:bd:59:05:34:05:87:f4:e9:07:
        0a:c1:aa:fb:25:85:9a:b3:8e:9f:b6:9f:f8:52:b7:e7:
        cc:01:18:7c:9b:bd:98:88:8d:2d:1e:b5:0f:3c:d4:9a:
        05:d7:96:e7:10:b6:fb:b4:ba:62:31:88:93:59:94:e3:
        ed:54:05:0a:ff:cf:1c:5c:eb:fa:f1:48:38:3b:5e:c9:
        f6:72:74:07:02:c4:a2:80:87:21:a2:d5:78:fd:c2:c7:
        f5:02:ad:3d:15:20:35:9d:ef:21:57:d9:a6:d3:67:c0:
        de:d9:58:e4:0a:70:5a:10:1d:60:30:db:51:00:b3:7b:
        3c:f2:cf:e3:f7:7d:de:f7:39:43:61:23:ac:0e:dd:7e:
        77:a8:52:8a:c0:e1:84:3b:2e:c7:c1:be:f3:53:69:27:
        e2:aa:ed:b1:10:68:91:ac:5e:20:2f:56:bf:12:f7:ca:
        af:59:ee:c6:17:c5:9b:6b:f5:4b:37:32:01:96:95:53:
        1e:43:e8:d6:08:e1:6b:e9:a3:66:44:b3:29:96:ac:09:
        47:99:3e:be:5e:80:29:4b:41:48:d2:6b:3b:6b:e4:ab:
        9a:92:fe:eb:6f:d0:b4:46:18:fe:5a:49:37:57:89:db
    Fingerprint (SHA-256):
        87:B6:03:BE:88:45:DE:F5:43:64:D3:38:15:27:CD:D0:DE:60:AA:C0:10:0D:7A:8E:05:BA:0A:50:31:84:CC:FA
    Fingerprint (SHA1):
        06:97:26:40:70:B0:8A:F9:5E:A6:7C:10:41:AE:45:16:4A:70:63:21
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3505: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144875 (0x3cdd6f2b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 15:05:43 2017
            Not After : Fri Oct 21 15:05:43 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:bf:8b:32:c0:bc:b2:85:4f:de:4e:2a:ca:a3:ba:a5:
                    08:19:a9:7a:6c:6e:18:91:c0:04:84:11:4a:44:9b:d5:
                    0e:83:6c:2a:7f:4b:6b:88:91:a9:e0:bf:b0:d1:53:d1:
                    4b:91:04:f1:dc:62:91:9e:82:14:bf:d7:54:74:29:88:
                    b8:26:c7:cf:4b:a1:40:9e:4b:fe:c6:54:b0:61:e9:4f:
                    1a:d3:c8:ad:e1:7d:27:92:cb:19:a0:07:83:e5:3f:3b:
                    6f:90:fe:10:bf:dc:e1:86:f2:ea:98:d7:c2:91:a3:e7:
                    a5:bc:f0:b2:b5:09:40:ef:4c:44:aa:9c:52:d8:97:68:
                    de:45:02:c0:31:8a:b5:25:ce:a7:54:cb:c9:f7:d5:94:
                    db:0f:6c:fa:9a:a7:47:ea:6a:c4:89:62:0c:9d:9c:7c:
                    50:2f:1b:c0:7e:97:6b:c9:56:cb:52:97:75:e6:37:6c:
                    87:79:4e:1e:a0:cf:93:93:35:e0:09:5a:bf:f7:56:04:
                    3c:dd:97:e0:fd:4c:48:f8:7a:70:83:3e:9a:3e:2f:4b:
                    50:da:fe:b6:f5:e0:90:96:ba:a5:9c:db:49:39:60:83:
                    43:4c:46:ba:cb:97:3b:41:17:1f:f5:c6:05:fc:af:cb:
                    9e:b7:cf:64:a0:95:3d:7e:52:71:ab:c0:a1:1a:a8:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:ce:6b:6d:bd:8a:01:d1:c4:e9:48:83:33:22:d9:14:
        c5:1b:05:7f:c8:40:5a:bd:59:05:34:05:87:f4:e9:07:
        0a:c1:aa:fb:25:85:9a:b3:8e:9f:b6:9f:f8:52:b7:e7:
        cc:01:18:7c:9b:bd:98:88:8d:2d:1e:b5:0f:3c:d4:9a:
        05:d7:96:e7:10:b6:fb:b4:ba:62:31:88:93:59:94:e3:
        ed:54:05:0a:ff:cf:1c:5c:eb:fa:f1:48:38:3b:5e:c9:
        f6:72:74:07:02:c4:a2:80:87:21:a2:d5:78:fd:c2:c7:
        f5:02:ad:3d:15:20:35:9d:ef:21:57:d9:a6:d3:67:c0:
        de:d9:58:e4:0a:70:5a:10:1d:60:30:db:51:00:b3:7b:
        3c:f2:cf:e3:f7:7d:de:f7:39:43:61:23:ac:0e:dd:7e:
        77:a8:52:8a:c0:e1:84:3b:2e:c7:c1:be:f3:53:69:27:
        e2:aa:ed:b1:10:68:91:ac:5e:20:2f:56:bf:12:f7:ca:
        af:59:ee:c6:17:c5:9b:6b:f5:4b:37:32:01:96:95:53:
        1e:43:e8:d6:08:e1:6b:e9:a3:66:44:b3:29:96:ac:09:
        47:99:3e:be:5e:80:29:4b:41:48:d2:6b:3b:6b:e4:ab:
        9a:92:fe:eb:6f:d0:b4:46:18:fe:5a:49:37:57:89:db
    Fingerprint (SHA-256):
        87:B6:03:BE:88:45:DE:F5:43:64:D3:38:15:27:CD:D0:DE:60:AA:C0:10:0D:7A:8E:05:BA:0A:50:31:84:CC:FA
    Fingerprint (SHA1):
        06:97:26:40:70:B0:8A:F9:5E:A6:7C:10:41:AE:45:16:4A:70:63:21
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3506: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #3507: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #3508: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3509: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #3510: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #3511: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144874 (0x3cdd6f2a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 15:05:37 2017
            Not After : Fri Oct 21 15:05:37 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:81:10:fe:c4:3d:16:15:63:6f:1b:f3:7d:13:5c:16:
                    0a:f1:9e:8c:13:9e:02:de:b1:c7:79:d6:d1:a8:30:d6:
                    06:12:3b:e7:bd:95:e7:9f:67:d4:7a:98:06:f8:cb:5f:
                    88:00:34:09:ef:01:ca:4c:87:5c:3d:5d:af:33:52:92:
                    e8:8b:30:e4:ff:41:b0:2a:8b:c8:e2:45:b6:68:57:06:
                    18:3b:4a:18:30:19:e0:e3:97:28:65:64:eb:ae:a1:50:
                    72:fa:06:83:36:9b:ce:17:8e:2a:15:8f:e0:24:29:36:
                    42:04:9c:61:00:ef:a7:63:91:79:db:df:0a:ef:a3:05:
                    d6:c6:29:f6:01:fd:48:e0:0d:b1:b1:78:a0:d4:75:6b:
                    b6:f2:da:69:52:c1:b0:2d:86:95:71:e7:d5:0c:70:49:
                    7b:35:dd:6b:7c:7f:06:e7:da:52:ea:94:24:b3:2b:56:
                    7c:2f:f7:3a:d0:2c:af:49:44:b5:e7:7f:b0:7f:ae:83:
                    82:7e:b2:49:0c:b3:0f:0f:e7:5e:9e:05:93:e2:15:26:
                    20:3d:77:76:95:4f:70:98:2f:4b:2a:95:ba:37:ba:3e:
                    30:4e:04:82:12:c9:a6:9a:8a:88:80:0c:08:37:35:22:
                    f8:1e:f7:e4:4a:99:9f:34:ec:20:76:2f:84:fd:7f:33
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:2c:94:15:df:26:48:5e:de:d3:42:42:c0:a6:2a:cd:
        05:12:09:fc:3c:27:90:c9:ac:ac:4a:9a:e8:d7:6c:7d:
        58:52:cc:9d:31:db:a3:16:fb:07:1d:7f:a1:fa:3b:23:
        26:d6:c7:a9:bc:fa:da:6a:59:9a:a0:46:71:b1:99:98:
        e4:13:49:58:d6:16:a6:63:57:34:43:2b:af:09:f6:1e:
        1d:cf:45:30:07:be:a2:5e:bb:85:17:1d:3d:b3:17:f5:
        31:52:8e:d9:40:74:20:05:f1:17:a5:db:ac:71:77:77:
        6d:e8:23:32:07:5d:6e:49:aa:cb:ce:7b:2b:a7:f3:5b:
        59:8e:d3:67:20:4f:60:94:ce:eb:bf:80:b6:c6:45:20:
        46:1b:4d:0f:b5:44:f7:01:9a:81:a0:5e:2f:3f:ea:23:
        d2:ea:6c:a4:7e:37:0b:3c:f8:19:9e:0f:40:5f:21:ec:
        5d:ac:72:9e:67:25:27:6e:24:fa:4f:99:33:35:ea:ac:
        50:25:0b:9b:a4:4f:7c:9d:8c:a0:04:84:dd:d6:dd:18:
        ed:43:b1:d2:52:d4:00:c0:c8:cb:34:f5:ec:d7:f2:86:
        ec:92:03:09:30:df:e3:3e:ca:10:f8:51:df:48:49:bd:
        80:23:cd:60:bb:7a:63:25:4f:46:50:81:e9:4d:a7:78
    Fingerprint (SHA-256):
        0F:99:75:5F:96:AB:70:FE:14:18:12:A5:51:17:68:60:7F:1F:08:77:30:6E:03:7E:F1:27:05:B2:6F:0B:80:AF
    Fingerprint (SHA1):
        28:49:8D:05:54:E1:A5:87:54:29:0A:59:40:3B:E2:0E:18:7D:AC:94
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3512: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144874 (0x3cdd6f2a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 15:05:37 2017
            Not After : Fri Oct 21 15:05:37 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:81:10:fe:c4:3d:16:15:63:6f:1b:f3:7d:13:5c:16:
                    0a:f1:9e:8c:13:9e:02:de:b1:c7:79:d6:d1:a8:30:d6:
                    06:12:3b:e7:bd:95:e7:9f:67:d4:7a:98:06:f8:cb:5f:
                    88:00:34:09:ef:01:ca:4c:87:5c:3d:5d:af:33:52:92:
                    e8:8b:30:e4:ff:41:b0:2a:8b:c8:e2:45:b6:68:57:06:
                    18:3b:4a:18:30:19:e0:e3:97:28:65:64:eb:ae:a1:50:
                    72:fa:06:83:36:9b:ce:17:8e:2a:15:8f:e0:24:29:36:
                    42:04:9c:61:00:ef:a7:63:91:79:db:df:0a:ef:a3:05:
                    d6:c6:29:f6:01:fd:48:e0:0d:b1:b1:78:a0:d4:75:6b:
                    b6:f2:da:69:52:c1:b0:2d:86:95:71:e7:d5:0c:70:49:
                    7b:35:dd:6b:7c:7f:06:e7:da:52:ea:94:24:b3:2b:56:
                    7c:2f:f7:3a:d0:2c:af:49:44:b5:e7:7f:b0:7f:ae:83:
                    82:7e:b2:49:0c:b3:0f:0f:e7:5e:9e:05:93:e2:15:26:
                    20:3d:77:76:95:4f:70:98:2f:4b:2a:95:ba:37:ba:3e:
                    30:4e:04:82:12:c9:a6:9a:8a:88:80:0c:08:37:35:22:
                    f8:1e:f7:e4:4a:99:9f:34:ec:20:76:2f:84:fd:7f:33
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:2c:94:15:df:26:48:5e:de:d3:42:42:c0:a6:2a:cd:
        05:12:09:fc:3c:27:90:c9:ac:ac:4a:9a:e8:d7:6c:7d:
        58:52:cc:9d:31:db:a3:16:fb:07:1d:7f:a1:fa:3b:23:
        26:d6:c7:a9:bc:fa:da:6a:59:9a:a0:46:71:b1:99:98:
        e4:13:49:58:d6:16:a6:63:57:34:43:2b:af:09:f6:1e:
        1d:cf:45:30:07:be:a2:5e:bb:85:17:1d:3d:b3:17:f5:
        31:52:8e:d9:40:74:20:05:f1:17:a5:db:ac:71:77:77:
        6d:e8:23:32:07:5d:6e:49:aa:cb:ce:7b:2b:a7:f3:5b:
        59:8e:d3:67:20:4f:60:94:ce:eb:bf:80:b6:c6:45:20:
        46:1b:4d:0f:b5:44:f7:01:9a:81:a0:5e:2f:3f:ea:23:
        d2:ea:6c:a4:7e:37:0b:3c:f8:19:9e:0f:40:5f:21:ec:
        5d:ac:72:9e:67:25:27:6e:24:fa:4f:99:33:35:ea:ac:
        50:25:0b:9b:a4:4f:7c:9d:8c:a0:04:84:dd:d6:dd:18:
        ed:43:b1:d2:52:d4:00:c0:c8:cb:34:f5:ec:d7:f2:86:
        ec:92:03:09:30:df:e3:3e:ca:10:f8:51:df:48:49:bd:
        80:23:cd:60:bb:7a:63:25:4f:46:50:81:e9:4d:a7:78
    Fingerprint (SHA-256):
        0F:99:75:5F:96:AB:70:FE:14:18:12:A5:51:17:68:60:7F:1F:08:77:30:6E:03:7E:F1:27:05:B2:6F:0B:80:AF
    Fingerprint (SHA1):
        28:49:8D:05:54:E1:A5:87:54:29:0A:59:40:3B:E2:0E:18:7D:AC:94
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3513: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #3514: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144879 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3515: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #3516: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #3517: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144880 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3518: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #3519: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #3520: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144881 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3521: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #3522: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #3523: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144882 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3524: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #3525: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #3526: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144883 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3527: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #3528: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #3529: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144884 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3530: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #3531: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #3532: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144885 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3533: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #3534: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #3535: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144886 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3536: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #3537: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #3538: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144887 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3539: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #3540: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #3541: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3542: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 1021144888 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3543: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3544: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 1021144889 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3545: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3546: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 1021144890 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3547: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3548: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #3549: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #3550: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3551: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 1021144891 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3552: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3553: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 1021144892 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3554: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3555: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 1021144893 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3556: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3557: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #3558: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #3559: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3560: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 1021144894 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3561: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3562: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 1021144895 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3563: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3564: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 1021144896 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3565: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3566: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #3567: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #3568: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3569: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 1021144897 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3570: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3571: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 1021144898 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3572: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3573: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 1021144899 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3574: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3575: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #3576: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3577: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3578: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 1021144900   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3579: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3580: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3581: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3582: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021144901   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3583: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3584: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144879 (0x3cdd6f2f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Sat Oct 21 15:06:18 2017
            Not After : Fri Oct 21 15:06:18 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f6:60:3e:ef:9f:eb:ca:61:38:3d:d6:4a:d7:f7:37:df:
                    79:0b:e9:b7:bc:42:64:8f:6b:2d:bc:1f:20:82:8b:82:
                    aa:be:3d:4e:f4:4e:14:0b:6d:9b:e1:6c:f1:57:4b:e8:
                    5b:fb:86:0d:37:ef:c7:3f:49:28:09:1a:d0:1a:55:e8:
                    40:44:f5:e9:91:ac:4a:eb:f6:99:41:5e:92:37:01:dd:
                    54:d5:be:7b:3e:41:ae:a9:a8:2d:13:81:65:14:76:4c:
                    0a:a2:0a:70:81:5a:58:b7:34:6b:4d:b4:c4:25:29:8a:
                    36:18:2a:05:95:d6:56:91:fa:32:7a:7f:0b:e6:ba:21:
                    04:3d:a9:29:0e:a6:81:b7:76:0a:d0:fa:b9:4f:a5:dd:
                    95:0a:5b:12:a9:a9:37:46:b2:d2:00:fb:0d:1c:c6:3a:
                    24:f7:3b:1e:b7:25:29:cc:5a:05:88:9e:5a:80:30:43:
                    e2:b2:d1:f4:c8:d6:97:f4:cd:24:26:d1:f7:4e:3c:62:
                    18:8b:65:11:4a:f4:1d:89:12:e3:1f:32:49:37:17:a9:
                    f2:b5:42:d6:22:07:44:4e:32:48:df:9e:7c:07:10:7c:
                    c9:09:c2:a0:68:bf:72:ea:49:cb:f9:30:b2:80:6b:7d:
                    07:c8:78:1b:31:98:eb:84:02:00:40:f1:48:c5:cf:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c2:ac:2c:45:af:68:a9:45:bb:1d:e7:9c:29:98:c5:e2:
        88:fb:e4:bf:76:e0:98:7b:ed:fc:d3:a5:05:3a:88:66:
        0d:cf:a3:23:5f:27:49:85:78:2b:aa:f8:86:0c:3a:f0:
        d9:10:88:1d:10:e5:de:cb:2f:c7:34:5c:0d:64:71:37:
        a0:2c:be:c6:d7:ce:fd:63:9e:b7:05:3f:2e:8d:14:d0:
        9f:1c:b9:d4:7d:5c:94:48:eb:64:2d:d9:11:0b:02:04:
        dc:ac:95:89:33:f2:07:13:c9:33:71:17:e1:8c:66:8e:
        cd:52:fc:e2:2b:fd:a7:bb:37:63:96:0d:9d:3b:14:b8:
        20:01:2a:be:a0:a9:f3:b3:80:fd:0f:4f:5c:77:29:06:
        a0:e1:99:35:13:60:c5:cb:b8:1c:33:44:89:c5:48:8e:
        aa:73:1f:65:9a:9f:0a:6a:29:47:d8:99:37:10:29:8a:
        57:f1:ca:4a:56:f7:0d:9e:f2:df:ce:db:10:df:21:6b:
        c6:2c:19:86:2b:d5:c5:e8:33:55:34:51:15:1f:fd:71:
        fe:c7:bc:fc:13:8b:fc:60:03:a0:a6:61:f9:3e:37:04:
        55:bd:eb:21:61:e5:94:03:28:28:1e:de:66:22:c6:19:
        18:7f:cc:c7:a7:10:6c:ad:9d:b8:bb:48:92:32:68:01
    Fingerprint (SHA-256):
        14:74:C5:F6:54:27:2C:38:F3:A0:72:98:83:86:D5:E8:76:15:BB:BE:16:A6:E0:2A:06:66:03:C3:5B:09:62:C0
    Fingerprint (SHA1):
        6E:A4:9B:4F:90:E8:DE:0F:A6:EF:0D:AA:60:75:86:7B:EE:03:DD:E4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #3585: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144880 (0x3cdd6f30)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Sat Oct 21 15:06:22 2017
            Not After : Fri Oct 21 15:06:22 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:58:58:83:9d:ce:64:5c:06:f2:64:17:80:8d:01:df:
                    07:5b:1f:2a:d1:a7:47:65:d5:84:05:6e:c9:d8:14:c9:
                    a2:64:90:d1:76:58:64:d4:8c:ca:1e:1e:7e:bc:1b:df:
                    3b:6e:0a:72:0b:05:ad:4f:23:72:3c:5d:97:46:62:1f:
                    ed:bb:ac:9b:73:b8:85:9b:89:25:3f:e5:40:21:d7:72:
                    c7:08:5a:1f:e9:6d:d2:8d:c1:ad:00:09:69:7f:0a:02:
                    3a:17:c6:2f:f4:ad:f3:46:45:00:fe:ca:06:33:78:55:
                    48:b9:36:1d:5a:01:32:99:af:0e:9b:02:8c:0a:ab:01:
                    dc:4a:eb:ec:64:0d:51:b6:d3:0f:10:11:33:7d:f3:06:
                    42:f8:86:93:ff:99:1c:4f:8e:12:ae:7c:1f:aa:78:27:
                    f6:6e:9e:db:cc:04:99:13:e4:a4:6e:92:68:88:cc:5c:
                    92:34:b2:a9:be:d5:04:b0:f7:d8:9b:65:af:b5:ab:1a:
                    92:92:79:03:71:68:b1:d7:07:64:d3:6a:b0:e5:80:a2:
                    9a:dc:d6:81:5f:92:36:02:a8:73:c2:17:3d:5a:bd:9f:
                    9f:18:62:8e:1e:b5:eb:4c:c1:97:35:81:2c:f2:cb:7d:
                    3f:dc:31:b5:5d:11:ef:dc:aa:af:78:21:bc:a4:d3:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        16:ce:a6:e9:e9:ef:7b:31:8b:b9:6e:2c:b8:64:a9:ec:
        77:a1:44:a7:23:3f:6c:3a:c3:c4:12:f7:12:f9:09:4d:
        eb:f5:b1:73:88:43:c1:38:8c:09:6d:21:48:62:62:27:
        20:32:8f:8f:09:7e:c6:46:8a:c1:f3:cb:ef:14:79:26:
        e3:20:00:5c:2b:3a:7c:ce:7f:5c:6a:36:7a:cb:31:7b:
        01:4c:1e:78:67:c5:65:20:4d:ed:3c:37:72:e4:53:91:
        ae:9e:9c:cd:67:85:bd:f2:b9:fd:c7:28:96:b6:a2:7d:
        ab:56:2b:96:35:f5:b7:25:0e:bd:cd:44:94:17:90:81:
        17:ee:e5:2f:11:5a:92:73:22:ce:d4:de:44:34:d3:4b:
        6f:56:9b:9c:95:54:b0:29:c7:dc:14:1f:2b:0b:2d:e6:
        6d:3a:c7:53:77:fe:5b:7d:a3:46:59:cd:54:89:b2:3c:
        97:f3:4a:1f:1c:0e:ca:9e:5a:4b:98:2e:a2:24:9e:df:
        6b:9c:5a:5b:53:48:d9:06:15:c0:88:fa:d7:89:a0:fc:
        a4:2d:c6:c5:b5:73:7b:a3:e8:4c:7c:07:82:70:1f:64:
        6d:e5:a3:5f:fe:a8:c1:40:cd:dc:17:84:61:71:c9:2c:
        da:0d:bd:06:39:de:25:88:8a:cd:aa:34:52:2d:6f:35
    Fingerprint (SHA-256):
        AF:8B:47:AF:94:91:FC:18:86:AD:8C:7B:7D:E0:59:F8:D7:6F:49:E5:8D:93:38:A9:5D:CE:36:A1:96:2A:0B:5F
    Fingerprint (SHA1):
        24:9B:54:95:53:10:18:13:36:EA:C1:48:49:43:FD:39:0F:A3:48:55
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #3586: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144881 (0x3cdd6f31)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Sat Oct 21 15:06:26 2017
            Not After : Fri Oct 21 15:06:26 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:62:99:94:d6:f7:ea:68:32:a9:1b:c9:a0:00:e7:94:
                    7a:53:27:e3:4c:02:4f:2f:ae:f8:81:f0:c6:08:75:76:
                    4a:12:34:af:39:8e:f2:62:6a:c9:b9:27:42:94:61:75:
                    8b:fd:16:fc:1a:2b:f5:45:88:c9:21:d1:42:f5:f8:d3:
                    36:9d:4e:ec:91:a0:cc:9a:62:38:83:a3:85:a9:36:d0:
                    46:8e:bf:8b:4f:8a:89:e3:b1:97:2b:fa:20:51:4d:ea:
                    6e:c1:ef:81:1e:88:fd:2b:bf:13:f0:0f:77:d1:12:4f:
                    ba:0c:f4:0f:a4:cb:5d:74:0e:10:79:f9:62:50:6b:c4:
                    a2:ff:1c:a7:76:7f:9b:17:d9:0f:7f:d7:d5:90:ba:67:
                    ef:d4:b3:bd:34:bd:d0:5e:e7:40:1d:62:2b:95:7e:b2:
                    d0:e0:cf:a9:93:85:f6:3f:dc:60:9b:b5:76:6a:60:cc:
                    b6:d9:25:e9:a9:93:c7:13:7d:d3:ce:14:7a:94:cc:78:
                    f1:e6:9b:bd:c3:f3:09:59:87:31:57:95:ee:ff:62:c7:
                    bb:d6:49:ba:bd:8f:f6:91:6d:a6:6e:d5:44:42:24:36:
                    85:b0:e9:0e:ce:57:6a:40:34:3e:cd:17:2f:a2:41:69:
                    4c:d4:b7:c8:1d:b2:df:0e:73:32:9d:49:5f:f6:54:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4a:5f:b0:73:94:c8:85:53:71:8f:ff:61:0c:21:de:39:
        dc:e2:b3:91:ed:b4:24:e6:d6:57:45:6f:67:42:19:bf:
        b2:ba:1b:4e:31:27:f8:3d:fa:b0:5a:1b:de:c8:d8:d3:
        87:57:f0:93:58:e1:d2:b7:e5:19:e9:09:89:22:87:55:
        91:7b:1a:c7:2c:e5:45:20:a4:25:87:d8:26:25:3e:3d:
        92:e1:60:6e:b7:01:31:4c:8f:a9:7b:cc:69:5d:3e:ae:
        39:73:56:d6:21:f3:f5:85:f8:31:ec:73:22:59:53:ae:
        c7:0e:7b:8a:fa:60:f9:0c:23:5d:c7:36:cc:e7:33:4c:
        97:07:0b:08:4a:44:04:66:a7:30:9b:f4:7a:97:b7:99:
        f8:de:fc:05:87:62:d8:17:41:70:0e:a3:df:c3:5d:5d:
        ff:2e:9f:99:5b:91:9e:d9:56:00:5f:14:15:c8:29:3d:
        78:53:10:36:e4:05:7c:9d:db:f8:1b:0a:32:d8:1a:0a:
        6b:59:1e:45:a5:27:b4:a4:e4:fd:ad:11:f2:2f:a3:b1:
        b6:62:86:0c:4c:04:a7:bb:48:68:db:6c:fd:f1:90:78:
        52:99:ce:33:17:05:8d:b4:df:30:cc:62:54:ff:e7:28:
        85:f0:32:80:e3:d6:be:2c:bb:63:55:7a:38:74:33:32
    Fingerprint (SHA-256):
        88:CE:7E:89:18:DF:50:98:89:B5:F5:B6:1B:08:61:7B:10:19:3D:61:4F:47:F6:B1:A2:84:74:C1:97:F4:76:1B
    Fingerprint (SHA1):
        53:39:37:D0:4F:F2:DC:F8:A7:73:A8:95:CE:E3:51:D6:72:C8:F2:24
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #3587: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144882 (0x3cdd6f32)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Sat Oct 21 15:06:33 2017
            Not After : Fri Oct 21 15:06:33 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:1e:77:62:85:1d:97:4b:d5:66:ad:82:02:31:ce:e0:
                    5e:c8:a7:9b:d1:f5:7a:a0:f4:35:f0:87:6c:98:7d:70:
                    a0:e7:d7:95:62:3d:4b:62:73:88:9f:da:70:3c:56:4a:
                    90:d0:75:c2:0b:97:0e:10:f0:63:31:e1:75:14:2c:a6:
                    82:08:28:d2:34:2b:c7:05:ad:0a:fc:93:2e:73:c0:01:
                    4a:04:34:23:8d:ab:01:f0:de:41:07:fa:75:c8:9a:37:
                    9a:da:c1:f2:aa:c9:2d:6c:0a:63:e5:7f:56:bc:c5:a9:
                    81:fe:bf:ef:45:f5:70:ff:83:e2:ea:44:75:19:16:3f:
                    1e:18:d7:42:2e:dd:3f:0e:36:98:00:f0:c8:22:bb:d1:
                    33:35:89:9e:2f:05:dc:24:6d:c0:89:2b:df:e7:a4:3d:
                    3b:c7:f1:fd:bd:7d:b0:57:ab:92:0a:5a:46:fe:e9:d0:
                    80:49:07:7b:b1:79:20:c5:72:31:4e:f2:6f:46:93:97:
                    2e:15:fc:fd:b7:5f:13:f2:63:02:f8:d1:11:61:e2:ab:
                    21:87:f4:b1:60:6f:dc:9a:4a:75:3f:11:cd:02:4d:32:
                    1c:64:a0:25:d1:21:f0:e5:1a:12:7e:e6:ed:2b:b0:be:
                    88:d3:d0:06:9f:6a:91:98:6b:12:73:5e:bf:ca:98:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7d:98:ef:00:36:24:eb:f0:2b:69:e1:b1:c6:4f:d3:92:
        46:45:a6:a4:54:7f:20:76:ee:ac:6a:b1:ce:24:56:5f:
        7c:66:f2:a9:df:0c:89:f6:1b:13:cd:87:0b:76:17:f9:
        98:da:4e:6f:7c:e5:5a:cb:5a:cb:05:0d:a8:c7:c4:cd:
        3c:00:05:53:be:81:46:82:99:6a:31:6d:cf:2e:b5:05:
        fb:e9:25:6d:14:8a:8a:62:4e:d8:dd:9f:4d:5a:29:ad:
        e3:83:54:89:3f:38:bf:59:42:43:13:80:8e:d9:30:22:
        e5:0f:4a:1b:bb:71:1a:7a:2d:6f:69:6b:75:50:40:6d:
        ba:89:9b:78:cf:c2:82:1f:29:9b:96:00:d9:f0:b5:61:
        be:ef:47:0b:ed:44:d4:0a:c7:0f:b8:0f:05:39:fc:0e:
        d9:bc:d4:c9:7c:8d:eb:66:a9:3a:71:5a:58:52:80:04:
        d7:c6:15:98:6f:30:35:45:dc:2f:00:7f:23:5b:53:6d:
        a6:14:37:68:14:86:94:d2:5e:71:36:de:a7:f7:0a:fd:
        ab:49:05:ec:53:3f:36:1a:e8:6d:27:46:8f:8b:62:a9:
        01:34:c3:86:de:7b:e5:c3:b5:e5:72:ce:3d:b5:59:7b:
        11:9e:6a:ef:2a:85:e2:9e:85:11:23:25:80:66:e0:f8
    Fingerprint (SHA-256):
        39:5E:53:A6:C7:6E:DA:A8:1B:FA:A3:9C:38:13:52:61:5F:3B:AC:50:8D:1C:64:3C:74:1A:86:1A:28:D1:EE:FA
    Fingerprint (SHA1):
        05:A0:36:F4:53:AC:A8:F6:1D:7E:A4:F1:E7:9F:C3:0E:B1:D3:69:F0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #3588: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144883 (0x3cdd6f33)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Sat Oct 21 15:06:39 2017
            Not After : Fri Oct 21 15:06:39 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a0:a0:ff:5b:f1:db:f5:28:85:97:3a:90:7d:d2:a0:d4:
                    ab:e6:7c:60:8d:34:bc:a3:da:a1:93:16:00:0e:94:b3:
                    e6:0f:0e:2c:70:b4:da:5e:56:82:5c:48:fb:90:b0:48:
                    73:b9:29:0d:af:88:19:7c:3f:11:d4:ec:66:53:48:4e:
                    8c:47:9f:23:bc:2d:09:02:cd:06:4f:1f:bf:1e:88:f2:
                    f4:1d:c3:f7:bd:8d:aa:27:53:73:a8:93:72:d3:97:6a:
                    16:14:35:40:3d:cd:04:da:72:56:bb:6e:3f:83:b0:d9:
                    a1:9d:27:2f:fb:09:47:c8:46:ff:b9:fe:8d:43:f7:03:
                    88:26:26:14:20:f6:66:98:b0:c0:8c:23:31:d8:00:6d:
                    b2:72:78:0a:09:24:85:57:2b:08:d5:df:41:ee:07:6e:
                    8e:c5:19:6c:60:7c:bf:c0:1a:d4:a3:9b:58:5e:73:24:
                    cd:9c:17:93:28:fc:ee:f4:d0:20:1f:6a:34:0f:a5:b2:
                    2f:76:8d:36:15:4e:85:38:90:26:e8:01:2b:e5:8f:2e:
                    b5:3e:06:20:db:a2:f6:69:c5:ef:d3:8e:5a:0f:36:05:
                    c3:96:88:e5:2e:55:7e:f7:5e:e4:59:10:7c:52:a0:ce:
                    0e:9f:8e:4f:fc:cb:52:f2:3d:f0:da:39:1a:8c:2b:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:36:e0:00:bc:2c:5f:e1:8c:bc:ed:54:3b:5d:f6:ba:
        86:ad:9b:64:5b:b1:32:21:ee:77:aa:cf:27:ad:05:43:
        3a:4c:e0:9e:c7:a1:76:20:17:7f:cc:17:f0:c3:5f:eb:
        ee:b6:3d:2b:8d:61:b2:d8:8e:8b:ea:aa:b8:63:96:cf:
        de:19:55:b9:ce:1d:12:34:e5:7b:d4:28:66:ee:2a:85:
        64:83:75:cf:a3:b7:22:4b:ef:40:5a:ac:2d:55:43:dd:
        8d:ff:dc:2b:d5:00:5d:94:d2:1a:97:fb:d1:77:ab:ff:
        4a:af:94:c1:f3:32:62:c6:57:5e:bb:cc:99:d7:69:fd:
        9d:44:04:0b:86:6f:81:2d:01:f0:44:97:f4:9a:70:8c:
        ae:3b:c2:57:55:01:06:3f:3d:2e:19:06:f3:4f:a8:31:
        c3:05:72:6d:f5:af:70:1b:3b:ce:5a:20:c5:90:ac:68:
        cb:7c:7a:d6:e2:ad:6b:fc:8a:2e:ea:f7:e3:54:a8:64:
        2b:8f:db:81:40:92:4a:e3:c6:9f:f8:59:31:99:a5:24:
        e3:0a:b2:f3:68:91:d6:cb:45:a8:12:65:d8:40:e2:e9:
        7e:9e:90:04:63:b1:12:58:cf:d0:ef:b5:46:4b:f0:d7:
        48:f3:5c:19:d4:d9:fa:ce:70:d2:93:24:87:2e:fd:d9
    Fingerprint (SHA-256):
        37:96:9D:CB:F0:BF:BB:E8:30:BC:32:98:16:33:AD:23:17:78:C5:FC:1D:D9:CA:97:F5:0C:EA:CE:DF:20:55:B8
    Fingerprint (SHA1):
        80:66:70:A2:30:74:20:38:73:1F:C9:AE:E3:AE:D4:2B:7F:26:B0:A6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #3589: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144884 (0x3cdd6f34)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Sat Oct 21 15:06:42 2017
            Not After : Fri Oct 21 15:06:42 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:a9:46:db:57:cf:eb:cd:67:c0:a9:69:ae:21:dd:ce:
                    3a:46:60:75:8b:49:03:5f:b2:61:f7:c5:62:77:2a:c2:
                    a1:b9:a6:69:36:08:ef:35:1f:22:c7:ed:ec:61:b7:38:
                    10:49:3f:d2:e3:5d:d0:44:a1:9d:04:44:dc:6c:c2:90:
                    d6:e1:db:7d:5a:bb:10:de:83:91:fb:dd:d4:14:43:db:
                    75:64:a0:10:42:fa:f0:fc:c5:b5:f8:3a:3a:c7:61:f3:
                    06:f6:d0:c5:c3:75:d3:5c:18:14:ad:71:87:3a:b5:6e:
                    54:9e:a7:e4:9f:fe:01:f6:59:f4:16:24:9f:61:c2:79:
                    bc:b3:79:44:78:d7:29:d3:5e:7d:74:09:b9:3a:2d:0f:
                    28:50:d6:2d:1a:a3:de:be:88:79:fb:97:c1:e5:a7:88:
                    15:39:c2:f4:88:43:20:4e:f7:e2:88:ad:02:1f:35:32:
                    02:aa:71:d5:7a:ec:62:21:36:bb:5c:53:7b:ab:e6:7a:
                    fd:c8:7a:ac:b1:71:9a:d9:8f:c1:8b:91:b9:96:3a:ac:
                    8f:64:6e:d5:54:f3:a3:64:f3:85:ff:08:fd:a8:3b:da:
                    a8:04:28:b4:06:36:db:54:38:12:ae:c7:94:3e:6c:f2:
                    84:02:83:5a:38:f5:02:cd:be:41:32:19:fa:5c:b3:d5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ab:59:b6:c4:f4:d5:e8:2d:4f:5f:c0:83:a3:2a:07:28:
        96:ae:f9:c9:ee:a8:85:7a:f0:08:86:46:8b:19:b7:bb:
        50:01:24:ab:a2:1d:c4:46:14:08:a7:d6:7c:a6:43:ea:
        3d:ce:15:17:26:60:9c:e8:46:39:61:23:ad:8f:fd:2b:
        79:ff:1d:59:3f:bd:0a:8d:34:79:e8:29:d3:e4:a2:35:
        8c:0e:11:7a:46:d9:e0:73:fa:41:c9:64:44:b0:2b:e3:
        bc:b8:bb:9f:be:e9:38:fa:68:c5:02:60:4c:01:7d:ba:
        1d:f9:40:2b:15:42:d7:6d:cb:a3:74:0e:04:58:19:62:
        56:b6:7a:41:20:fd:ca:35:93:ee:92:27:e7:cc:95:f8:
        1d:21:03:aa:cf:56:77:59:b9:bf:22:9f:88:c0:07:4f:
        7b:fa:01:35:ed:4c:a7:30:2f:f4:91:25:0c:3f:f6:6b:
        70:87:91:29:7e:3c:e9:8a:7b:43:a3:60:2c:c0:73:55:
        15:02:15:27:55:c0:ce:54:47:b7:ff:29:7c:eb:e2:78:
        37:61:04:16:82:27:41:27:34:82:03:3b:19:df:b3:4f:
        4a:9d:d2:e1:01:72:cf:bc:5d:0d:1f:b7:ee:60:0b:e3:
        20:ba:3f:3d:9a:fb:ec:a3:e6:e4:e5:ed:46:7f:9e:b1
    Fingerprint (SHA-256):
        A4:A0:2F:EA:7B:0A:1F:62:47:04:F7:26:67:CC:19:C5:3B:60:22:8B:1D:FE:8D:17:C3:25:1B:94:B4:31:FC:56
    Fingerprint (SHA1):
        8E:C5:C9:54:45:14:7E:2B:9C:0E:3C:0D:DA:72:A9:B4:EE:FF:2D:68
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #3590: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144885 (0x3cdd6f35)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Sat Oct 21 15:06:48 2017
            Not After : Fri Oct 21 15:06:48 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:65:4c:ef:86:91:90:05:b6:f1:ef:4d:ce:af:c9:1a:
                    1b:b5:c7:33:2b:3d:ce:fb:ec:02:2e:fb:44:f9:c0:7d:
                    33:54:95:73:70:0d:d2:5a:ab:66:75:58:c8:85:a1:d1:
                    14:61:e0:70:cc:05:cd:82:65:93:eb:8e:55:92:04:0b:
                    54:de:bc:bb:1d:d2:40:9b:f9:99:50:3a:e4:17:c7:bc:
                    5d:75:ef:d7:c6:6f:dc:34:61:5e:15:b1:1d:1e:2e:02:
                    cb:9d:09:c5:0f:ed:62:b7:19:c3:b3:8e:a8:c2:81:78:
                    b7:11:f2:cc:65:53:1f:da:7a:f1:ff:68:4f:5b:15:27:
                    ef:84:5c:43:67:20:8d:4e:78:8f:c9:45:42:5a:39:13:
                    55:7f:fd:7f:cc:bc:11:48:72:3c:20:6a:bf:af:b3:6d:
                    46:3c:18:8c:be:d3:24:fe:f4:34:e7:a3:63:e9:65:5e:
                    3b:95:bc:b7:b6:33:36:ac:aa:0f:45:4e:b0:33:34:6a:
                    67:22:78:01:c9:d7:7c:23:9e:47:df:48:36:c0:e2:9d:
                    40:9b:47:66:90:04:d4:3a:f7:ca:df:69:e4:79:2f:a2:
                    48:6c:b7:02:83:db:07:5e:85:1c:20:d8:9f:c7:cc:60:
                    1c:e1:5c:8f:01:97:a0:7e:33:94:d4:ef:b4:d8:b8:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7b:69:14:26:c3:8f:56:13:c1:b7:b0:56:73:3f:a2:4d:
        18:8e:5f:a3:df:27:cf:e4:65:b2:04:64:57:ce:81:2b:
        da:e7:e6:a8:d5:eb:72:30:94:62:83:b6:a3:e0:71:93:
        3f:56:03:34:61:8e:18:c3:f9:a9:45:f7:cd:d8:99:3f:
        3d:bc:01:26:d4:f9:f6:96:b8:8c:ff:39:ba:3c:b8:0f:
        1c:85:4d:1f:27:9e:2c:b0:3e:64:05:ce:52:b7:00:8c:
        8c:0d:45:c4:4b:b3:a0:43:75:85:2b:3b:0c:ac:90:41:
        4f:22:87:40:df:dc:b0:6f:7c:44:34:6f:5e:54:4b:3d:
        25:06:37:08:9b:11:8d:5c:3a:8d:34:65:2a:f9:dd:ec:
        6b:fc:47:84:c4:30:1a:05:51:2c:b5:11:d3:55:a7:fd:
        58:81:d6:d3:41:2f:ae:f0:6b:f5:b7:83:03:91:2b:f7:
        a5:e9:2e:5b:aa:c1:fb:73:21:06:cf:5e:8e:49:d5:7c:
        e4:b2:d3:26:a5:51:c4:a2:ea:b0:54:22:34:f9:36:55:
        52:10:58:80:3e:21:a4:0f:ae:3a:f3:7e:bc:23:ef:32:
        35:b5:32:33:41:e7:0f:e4:ce:b2:59:f3:c2:9d:6c:4c:
        ca:bc:5a:09:1d:fd:c0:19:b7:0a:52:ab:a0:55:b5:1f
    Fingerprint (SHA-256):
        5A:38:D8:32:F9:A2:57:6A:85:5F:31:85:B0:76:30:0C:AD:BB:76:11:58:90:C0:C8:0E:22:ED:46:54:C9:C8:9F
    Fingerprint (SHA1):
        03:36:BE:63:68:5A:6E:BC:1D:2E:97:30:96:98:7C:03:A1:4F:3C:A0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #3591: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144886 (0x3cdd6f36)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Sat Oct 21 15:06:53 2017
            Not After : Fri Oct 21 15:06:53 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:7d:53:a6:aa:4e:ee:ac:6a:21:70:d8:fd:88:33:d7:
                    e3:14:11:04:15:60:cb:85:14:55:5b:28:c0:d1:ae:28:
                    51:23:e7:5f:ed:fe:92:63:1a:6b:7c:a5:1e:4c:b4:6b:
                    74:e1:ed:18:42:2f:93:dc:ae:67:75:9c:d0:5f:75:74:
                    a0:7f:fa:19:40:29:5b:90:22:58:35:be:5d:0f:09:9f:
                    b3:dc:7e:b9:d9:cc:51:4a:b9:79:2f:22:80:a7:fb:af:
                    4d:fc:cf:9a:e5:2e:1c:55:ac:4e:67:3e:64:66:10:60:
                    1e:d7:25:fb:c0:5c:a7:1e:cf:c4:1e:c5:0f:5d:12:0a:
                    a7:bb:b5:6c:cd:76:8a:0d:dd:e3:54:b1:9e:bd:48:8a:
                    29:ec:5b:76:93:55:f8:bb:1a:fe:86:a2:8b:e2:d6:bb:
                    f1:8c:fa:fa:6b:05:bd:a9:6e:b5:e3:81:65:cc:79:3e:
                    75:51:c1:32:c3:f7:44:21:73:95:c6:e7:08:bc:5c:fd:
                    bd:23:57:e6:2f:c1:e5:3c:c9:a3:1a:f9:05:11:09:97:
                    6a:62:4c:68:89:ce:be:d4:a0:67:3b:69:fa:c5:41:e4:
                    a3:b5:1f:b7:c1:b8:31:65:be:18:58:2b:5b:b3:47:35:
                    1a:66:bd:5c:15:f9:40:42:60:6e:03:7f:6d:3a:aa:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6b:8e:43:16:7c:10:f6:00:5c:66:75:fc:90:76:a3:88:
        80:9c:02:5a:be:bc:5f:e3:6c:ab:ba:91:a3:62:52:c8:
        b5:19:26:73:5f:f2:4c:1e:b9:83:03:f5:e0:68:08:d2:
        9a:91:9a:29:8c:db:78:6e:1c:13:32:14:8a:2b:ee:c9:
        65:53:58:c7:6a:1e:d9:3b:51:b1:1a:f4:cf:11:5a:0e:
        8e:86:d4:5f:c9:c3:85:55:9c:e7:24:a3:cb:8c:df:22:
        50:22:88:5a:0b:da:84:9c:ec:cb:6e:2b:a6:d1:47:03:
        fe:72:4b:0b:47:32:78:a7:a8:0c:f8:47:c4:10:2d:28:
        56:3c:2e:95:e4:1a:ed:df:fb:ec:a8:14:1d:94:c2:a1:
        a7:47:90:0c:96:db:86:b1:54:b5:55:a2:dc:c6:3e:62:
        70:6a:a0:91:7f:dc:05:a0:9d:25:7c:bf:0d:8a:99:61:
        40:22:24:9b:54:51:21:9e:86:8f:e0:fb:fc:9d:97:2e:
        b2:11:86:d4:72:44:6e:fa:92:d4:26:14:47:26:5f:de:
        bf:f7:b8:2e:7c:50:90:59:ee:b8:4c:13:03:90:d2:2f:
        0c:26:e2:31:74:e0:63:a8:d6:68:c0:5e:1f:cd:0c:49:
        aa:45:e8:8a:36:21:b6:92:1c:a6:d5:c6:28:7b:66:18
    Fingerprint (SHA-256):
        26:80:44:DB:B1:BF:7A:2A:74:DB:18:D3:00:C0:46:CC:BA:66:CD:B0:2F:DF:59:9C:34:15:6E:57:3C:69:C8:4A
    Fingerprint (SHA1):
        8F:AC:AA:F1:09:55:C4:FB:17:B3:A2:F2:5F:D3:1A:24:2C:8C:14:51
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #3592: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144887 (0x3cdd6f37)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Sat Oct 21 15:07:01 2017
            Not After : Fri Oct 21 15:07:01 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:f4:c1:1e:bd:53:c3:5b:86:27:9e:3a:24:86:cf:cd:
                    a0:78:b8:4f:ef:39:ad:06:f1:6a:e0:72:ff:d1:3a:dc:
                    7e:2c:c9:4c:f9:a8:0c:32:48:0c:f2:51:a7:72:01:4d:
                    a2:1d:34:df:69:7b:f3:7b:59:6d:5b:64:fa:32:68:aa:
                    93:d9:cb:54:e8:3a:db:bb:b0:fb:cf:54:5f:21:01:7b:
                    eb:aa:ea:49:7e:9c:a5:2b:60:f5:f1:b8:35:e6:c2:50:
                    aa:a4:64:5c:ca:c5:fa:44:40:99:70:c0:63:a5:63:84:
                    51:f7:f7:39:24:56:94:a1:c8:65:fb:98:c9:94:4c:7b:
                    95:ec:32:b2:2f:03:92:2d:7b:2f:d6:f5:cc:90:51:d9:
                    f0:ee:94:59:df:f8:91:6d:4f:d0:78:70:be:8b:e0:30:
                    6c:c0:bb:74:85:60:43:2d:79:5a:6c:0c:ba:0a:28:fb:
                    81:1d:34:4f:9f:6c:0f:c5:24:b8:5b:52:6b:59:03:20:
                    8f:14:89:90:ca:eb:68:bb:45:a1:7c:ac:4a:72:ce:f2:
                    c2:fd:7f:5f:ad:da:9a:81:35:ee:b8:f2:ed:75:7d:88:
                    96:e7:00:20:c7:0c:71:a4:2f:fe:77:20:b4:f7:74:01:
                    96:11:d3:a4:22:9b:d8:ba:af:8d:72:ce:40:e3:83:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        53:0c:dc:e4:0e:24:2b:d1:b7:db:51:03:30:c5:b0:38:
        aa:51:b9:d5:66:72:9d:44:2a:53:c0:22:e7:48:b8:11:
        c4:a9:fc:f2:20:d2:ca:87:3d:41:16:bd:d1:b8:63:f6:
        70:86:e7:ca:6f:c6:74:3f:e6:02:e1:43:ed:82:84:2f:
        0d:32:8e:e8:90:08:d4:ff:d8:16:7a:c1:5b:50:35:5c:
        bd:3f:09:31:63:e0:ff:0c:69:f2:27:0b:4a:da:5d:a6:
        95:4c:c7:cb:ef:a9:9a:81:ad:b1:85:13:1d:67:9c:4e:
        28:99:75:21:22:ce:21:b8:e2:3c:7b:b2:fc:87:f2:75:
        22:01:7b:f0:38:a9:c4:97:68:f8:d8:10:44:d1:8c:6a:
        ef:b0:69:ad:6c:a8:c1:75:c0:a9:21:00:0e:5f:c1:7f:
        e2:3f:3b:06:89:a1:5f:24:35:5c:78:fc:63:2b:24:b4:
        84:02:16:61:ba:c9:26:b4:e5:d1:d4:87:72:6a:5e:af:
        7f:f7:88:f4:c5:92:d5:60:b8:5b:9a:03:f3:97:12:53:
        6d:d5:e6:2a:0d:23:c3:73:5f:87:cc:e8:58:d0:d0:08:
        7d:fc:ed:71:5a:f0:d5:76:55:a1:04:d3:f7:b2:1f:de:
        35:22:bd:1b:6d:1d:a2:67:81:06:ae:11:bd:79:88:19
    Fingerprint (SHA-256):
        DE:4C:8B:46:2D:77:A9:36:83:64:AD:7B:6F:14:92:7F:5E:BF:F9:2B:B7:25:AC:30:F0:69:D7:67:A6:55:9D:64
    Fingerprint (SHA1):
        6B:01:02:AF:6D:4A:03:07:B5:A1:52:21:D1:5D:7E:48:96:46:72:C5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #3593: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3594: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144902 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3595: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3596: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3597: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3598: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021144903   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3599: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3600: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3601: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3602: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021144904   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3603: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3604: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3605: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3606: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 1021144905   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3607: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3608: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3609: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144902 (0x3cdd6f46)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:07:56 2017
            Not After : Fri Oct 21 15:07:56 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:76:32:1d:75:8e:f8:c8:06:48:40:f5:10:e5:24:0e:
                    15:22:bf:30:d5:5f:bb:ac:eb:e4:87:51:d2:e0:9f:d2:
                    7f:5b:e5:fe:e4:5c:3b:a7:ac:86:78:6f:0e:50:11:87:
                    22:4b:7c:d8:ef:8c:3e:88:e7:bc:a8:59:fc:a9:7a:42:
                    22:00:9a:05:7b:92:b5:c3:7f:92:b5:26:f2:0f:aa:50:
                    95:e8:58:cd:80:98:83:e8:97:6f:9b:f3:45:c6:1a:a3:
                    b7:85:2f:b2:30:52:74:94:71:cd:a0:d3:3f:ea:f3:d6:
                    84:84:f9:68:a4:54:77:30:5d:b0:6d:f0:67:e8:a0:64:
                    2d:cb:52:df:33:3e:85:e2:77:de:fe:a0:f1:32:0e:e3:
                    b1:73:ec:cb:c6:ff:a3:07:8c:ce:6a:cd:34:25:a0:7f:
                    42:b6:bf:39:f1:37:8d:da:13:e3:b1:88:51:ca:ba:cb:
                    8d:bf:e6:2a:50:5e:47:53:88:2a:83:87:ce:ca:c3:1c:
                    1a:b4:38:3e:82:83:5c:22:61:90:19:88:fb:e4:4f:87:
                    25:27:76:be:52:3c:5a:8a:57:8f:31:ba:15:12:58:6e:
                    00:1c:ec:f6:f7:5e:84:0d:43:ed:3f:df:b1:bb:30:67:
                    7d:3c:a4:e7:b1:a8:48:e0:a3:ad:97:6a:93:f2:2b:21
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5f:78:9a:d9:79:6f:98:06:c1:d8:4f:59:27:24:47:8b:
        f6:e0:04:38:3c:4c:62:05:69:c6:65:8e:58:9a:32:90:
        81:0b:79:01:41:b6:b0:0b:3a:f3:27:11:b9:6d:d4:5b:
        ac:43:9b:03:54:46:80:70:fd:03:1f:79:2c:a0:9a:c4:
        0e:e4:e1:fa:29:92:37:79:7e:1d:f3:0f:00:88:11:8e:
        fc:87:68:ae:3a:72:17:9d:06:80:48:b8:d9:3f:13:5c:
        dc:a7:ec:4b:0b:51:bc:ca:6f:3d:ef:96:1c:c8:1f:17:
        a4:71:f6:ef:77:f0:76:68:7d:e7:d7:4d:a7:f2:a7:1a:
        a4:db:bc:e4:2f:77:f8:46:d0:6a:00:ac:eb:32:5f:ed:
        62:94:db:f8:db:ca:5b:c8:bb:80:a9:d4:35:fd:0b:71:
        0e:d9:88:b0:66:5a:c8:b2:95:9e:43:db:24:2e:d8:b7:
        60:0a:ae:9a:a7:0c:87:ee:30:4e:8e:db:7d:b5:b0:36:
        f8:d7:57:89:52:2f:bb:34:dd:f2:1c:c8:e1:d0:0b:3a:
        ab:04:75:0e:7a:b5:c9:27:8d:68:b5:df:d2:4c:c7:6b:
        7f:72:95:66:89:d5:c8:b1:60:7e:04:d6:6d:30:19:5e:
        fd:bc:5e:d2:11:e2:c1:5c:91:cf:97:74:92:e8:ec:e7
    Fingerprint (SHA-256):
        91:15:F3:A9:3D:F8:16:CE:06:8F:3C:0E:D4:F4:A2:CD:45:CC:C5:60:E4:9D:BB:84:2C:50:DA:52:BA:76:3E:09
    Fingerprint (SHA1):
        8B:02:C2:42:AE:A7:65:D6:AE:56:BA:BC:B5:AB:42:85:4C:2A:70:07
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3610: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3611: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144903 (0x3cdd6f47)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:08:00 2017
            Not After : Fri Oct 21 15:08:00 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:1e:d9:ca:a5:54:44:b4:c2:d2:ad:21:35:22:6d:62:
                    42:50:73:70:a5:81:98:25:74:32:a0:29:a5:b6:9d:1a:
                    b4:2b:1e:01:35:ad:6e:e7:a2:06:b7:d8:6a:aa:ad:98:
                    e8:05:1b:f0:f0:28:2e:8c:50:e6:35:2d:9e:63:dc:7f:
                    99:c2:37:8b:58:ee:68:ce:a6:b1:f2:5c:1a:23:49:44:
                    4c:81:46:c1:8b:e8:79:50:83:c7:ed:8a:c0:e3:4f:de:
                    d0:ae:a4:6b:3a:25:18:54:6c:70:5e:91:d6:ca:4f:af:
                    79:72:a1:f5:48:d0:f6:02:e2:67:2b:f0:ac:a1:46:c4:
                    71:5d:0e:e7:d2:e4:40:11:50:33:98:f4:31:59:ee:87:
                    c3:b4:07:f3:5a:c9:b8:1b:d7:ac:5f:ac:3a:a1:54:7c:
                    cc:ab:54:3c:4d:08:ff:e8:65:26:a3:06:0b:4a:50:68:
                    49:80:31:22:e7:b5:20:8d:13:f8:ac:2c:82:a6:6d:fa:
                    c9:a4:7d:75:dd:c2:f3:2d:c9:87:65:e3:49:23:a6:31:
                    c9:89:d9:8c:86:59:40:f0:43:aa:2c:4a:90:90:ed:a0:
                    95:4f:6d:85:92:26:27:47:5a:8d:5c:1f:55:2b:d3:21:
                    07:40:af:04:93:be:2b:1f:cd:73:95:21:8e:83:de:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0c:05:16:d1:9f:b3:01:ee:b5:4d:e0:67:fd:27:ae:4a:
        55:2a:42:3f:24:45:02:59:f1:f2:e2:3f:71:93:5d:63:
        85:21:5d:65:5c:21:53:2e:93:9f:6b:6d:3f:27:d0:cc:
        e9:da:c1:06:d7:a9:15:40:25:e2:5a:40:90:5f:08:6e:
        9f:de:29:13:4e:d9:85:ab:4c:8e:d3:72:84:ee:db:37:
        b2:7b:d7:d4:51:e1:9f:f4:8b:8a:8c:72:58:8c:61:3a:
        b2:c9:ef:be:a5:f2:65:22:39:95:d3:c2:72:80:0b:d2:
        33:da:9a:13:c2:75:6b:ee:84:1f:bf:b4:6f:d4:5a:88:
        fd:a3:84:92:42:84:cc:35:85:7a:cf:ef:d0:2c:6f:0e:
        4a:9b:d2:6c:c9:ee:00:a4:49:a5:28:d0:60:91:2e:a2:
        57:07:f4:79:7b:5f:03:3c:41:cd:20:9f:93:bb:ee:a2:
        35:2d:c9:08:6d:72:03:75:3f:42:e2:fb:1d:42:d1:af:
        8c:07:c4:25:91:b2:f1:e3:ac:5b:a9:9c:e6:c1:71:e4:
        e0:71:2a:1c:ac:d4:fb:ab:43:9b:f9:b5:a3:c9:1d:46:
        97:92:76:b8:ae:eb:97:a1:ae:8f:7e:d1:a8:6d:62:61:
        06:be:98:56:66:68:aa:e9:f2:9a:7e:22:ac:41:f0:b9
    Fingerprint (SHA-256):
        C8:C8:96:6B:40:0A:B5:1F:CC:64:53:DA:85:D2:10:D6:A0:B1:C7:1F:9C:B6:CC:75:8C:EE:72:EA:D4:4D:F7:3C
    Fingerprint (SHA1):
        17:BC:56:73:17:19:16:49:F9:A1:76:DD:D9:9E:BC:8E:5C:B2:E8:B4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3612: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3613: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144904 (0x3cdd6f48)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 15:08:06 2017
            Not After : Fri Oct 21 15:08:06 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:c0:13:70:2c:dd:63:76:c3:93:4a:4a:ad:e8:59:eb:
                    b9:1f:20:d1:56:f4:f9:24:d2:17:b2:39:db:7d:53:89:
                    fc:f3:80:b0:65:b8:e4:1d:76:0d:7d:32:cd:f1:1e:80:
                    25:3b:70:d1:80:60:6d:86:f0:9b:30:0b:70:86:4e:9a:
                    35:4f:8e:7c:a0:a9:5c:96:23:1e:e6:fe:8f:59:42:f5:
                    7d:97:10:a3:c6:8f:a3:ba:a7:a6:ff:00:f7:8f:d3:cd:
                    15:81:a6:5f:14:b8:d0:2e:f4:e0:f3:86:59:40:48:12:
                    04:16:b9:c5:6b:8b:23:1c:71:58:82:02:2c:8d:93:ce:
                    75:4c:e6:93:39:e7:56:94:19:cc:8f:09:ee:82:18:58:
                    aa:8b:27:3e:1e:47:1e:87:bd:87:5a:a4:a0:b8:06:5e:
                    a0:fa:87:f8:f8:2f:1d:33:98:a7:10:d9:80:38:75:0f:
                    96:0d:c2:72:26:b6:e3:6c:70:22:83:4b:4e:83:9a:0b:
                    f5:5f:e1:e4:d1:a1:d0:c8:42:da:69:70:1f:db:2d:b5:
                    56:52:d3:e1:f7:ab:01:4e:3d:1a:06:94:cf:c8:f2:25:
                    d0:b4:e1:f6:ee:1e:d4:f2:03:ac:bc:2f:c1:5c:ad:1a:
                    dd:c2:14:58:71:8b:e4:46:49:8a:cb:38:65:c4:00:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:e3:8b:ce:ba:52:14:e5:e5:26:3d:56:42:c7:eb:12:
        41:0d:11:27:e0:f0:5d:36:45:31:bf:30:1b:55:cf:0a:
        b6:3a:25:bb:a1:12:30:53:68:52:01:21:3e:1f:67:87:
        f2:f2:a3:98:47:30:92:23:26:8f:58:98:c7:b4:70:e5:
        cf:2c:b3:6f:e3:cd:d5:a1:f0:7a:f1:f1:e7:18:36:f3:
        f0:00:dc:cb:3f:64:88:49:b1:16:2b:08:9a:f0:cf:85:
        3c:ce:c3:77:c1:31:41:ca:11:02:d9:dc:a3:0e:1c:12:
        6b:42:cb:4c:b5:67:77:11:20:ce:2a:57:f2:78:f6:11:
        15:94:6d:2f:91:da:ea:3a:13:48:55:48:3f:78:9e:8c:
        cf:31:2a:a2:a4:82:c2:fc:56:95:06:30:fb:6b:1a:2b:
        53:3f:13:11:38:98:5b:32:13:34:91:e0:74:95:24:fc:
        27:81:bb:d3:e9:88:06:1b:32:1f:04:ab:75:97:23:d3:
        32:a0:d7:bb:bd:44:49:e2:49:56:9b:ae:91:97:10:ac:
        a8:59:21:60:e3:d5:96:a6:18:07:f6:ec:49:9b:7a:cb:
        01:9b:9d:43:13:93:61:16:8e:b2:f3:df:1f:35:c5:a5:
        71:7c:96:a9:b2:47:f6:6d:6f:38:bd:22:e0:af:a6:0d
    Fingerprint (SHA-256):
        31:AC:DC:62:1B:CD:D6:69:11:E0:65:1B:F3:C8:6B:FD:AB:AD:D1:05:F7:DF:86:A3:A0:14:99:1B:73:3B:9B:8F
    Fingerprint (SHA1):
        64:10:67:82:E5:1A:B5:43:10:A7:B1:0F:13:00:C5:F1:8F:22:65:E9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3614: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3615: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3616: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3617: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3618: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144902 (0x3cdd6f46)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:07:56 2017
            Not After : Fri Oct 21 15:07:56 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:76:32:1d:75:8e:f8:c8:06:48:40:f5:10:e5:24:0e:
                    15:22:bf:30:d5:5f:bb:ac:eb:e4:87:51:d2:e0:9f:d2:
                    7f:5b:e5:fe:e4:5c:3b:a7:ac:86:78:6f:0e:50:11:87:
                    22:4b:7c:d8:ef:8c:3e:88:e7:bc:a8:59:fc:a9:7a:42:
                    22:00:9a:05:7b:92:b5:c3:7f:92:b5:26:f2:0f:aa:50:
                    95:e8:58:cd:80:98:83:e8:97:6f:9b:f3:45:c6:1a:a3:
                    b7:85:2f:b2:30:52:74:94:71:cd:a0:d3:3f:ea:f3:d6:
                    84:84:f9:68:a4:54:77:30:5d:b0:6d:f0:67:e8:a0:64:
                    2d:cb:52:df:33:3e:85:e2:77:de:fe:a0:f1:32:0e:e3:
                    b1:73:ec:cb:c6:ff:a3:07:8c:ce:6a:cd:34:25:a0:7f:
                    42:b6:bf:39:f1:37:8d:da:13:e3:b1:88:51:ca:ba:cb:
                    8d:bf:e6:2a:50:5e:47:53:88:2a:83:87:ce:ca:c3:1c:
                    1a:b4:38:3e:82:83:5c:22:61:90:19:88:fb:e4:4f:87:
                    25:27:76:be:52:3c:5a:8a:57:8f:31:ba:15:12:58:6e:
                    00:1c:ec:f6:f7:5e:84:0d:43:ed:3f:df:b1:bb:30:67:
                    7d:3c:a4:e7:b1:a8:48:e0:a3:ad:97:6a:93:f2:2b:21
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5f:78:9a:d9:79:6f:98:06:c1:d8:4f:59:27:24:47:8b:
        f6:e0:04:38:3c:4c:62:05:69:c6:65:8e:58:9a:32:90:
        81:0b:79:01:41:b6:b0:0b:3a:f3:27:11:b9:6d:d4:5b:
        ac:43:9b:03:54:46:80:70:fd:03:1f:79:2c:a0:9a:c4:
        0e:e4:e1:fa:29:92:37:79:7e:1d:f3:0f:00:88:11:8e:
        fc:87:68:ae:3a:72:17:9d:06:80:48:b8:d9:3f:13:5c:
        dc:a7:ec:4b:0b:51:bc:ca:6f:3d:ef:96:1c:c8:1f:17:
        a4:71:f6:ef:77:f0:76:68:7d:e7:d7:4d:a7:f2:a7:1a:
        a4:db:bc:e4:2f:77:f8:46:d0:6a:00:ac:eb:32:5f:ed:
        62:94:db:f8:db:ca:5b:c8:bb:80:a9:d4:35:fd:0b:71:
        0e:d9:88:b0:66:5a:c8:b2:95:9e:43:db:24:2e:d8:b7:
        60:0a:ae:9a:a7:0c:87:ee:30:4e:8e:db:7d:b5:b0:36:
        f8:d7:57:89:52:2f:bb:34:dd:f2:1c:c8:e1:d0:0b:3a:
        ab:04:75:0e:7a:b5:c9:27:8d:68:b5:df:d2:4c:c7:6b:
        7f:72:95:66:89:d5:c8:b1:60:7e:04:d6:6d:30:19:5e:
        fd:bc:5e:d2:11:e2:c1:5c:91:cf:97:74:92:e8:ec:e7
    Fingerprint (SHA-256):
        91:15:F3:A9:3D:F8:16:CE:06:8F:3C:0E:D4:F4:A2:CD:45:CC:C5:60:E4:9D:BB:84:2C:50:DA:52:BA:76:3E:09
    Fingerprint (SHA1):
        8B:02:C2:42:AE:A7:65:D6:AE:56:BA:BC:B5:AB:42:85:4C:2A:70:07
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3619: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3620: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144903 (0x3cdd6f47)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:08:00 2017
            Not After : Fri Oct 21 15:08:00 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:1e:d9:ca:a5:54:44:b4:c2:d2:ad:21:35:22:6d:62:
                    42:50:73:70:a5:81:98:25:74:32:a0:29:a5:b6:9d:1a:
                    b4:2b:1e:01:35:ad:6e:e7:a2:06:b7:d8:6a:aa:ad:98:
                    e8:05:1b:f0:f0:28:2e:8c:50:e6:35:2d:9e:63:dc:7f:
                    99:c2:37:8b:58:ee:68:ce:a6:b1:f2:5c:1a:23:49:44:
                    4c:81:46:c1:8b:e8:79:50:83:c7:ed:8a:c0:e3:4f:de:
                    d0:ae:a4:6b:3a:25:18:54:6c:70:5e:91:d6:ca:4f:af:
                    79:72:a1:f5:48:d0:f6:02:e2:67:2b:f0:ac:a1:46:c4:
                    71:5d:0e:e7:d2:e4:40:11:50:33:98:f4:31:59:ee:87:
                    c3:b4:07:f3:5a:c9:b8:1b:d7:ac:5f:ac:3a:a1:54:7c:
                    cc:ab:54:3c:4d:08:ff:e8:65:26:a3:06:0b:4a:50:68:
                    49:80:31:22:e7:b5:20:8d:13:f8:ac:2c:82:a6:6d:fa:
                    c9:a4:7d:75:dd:c2:f3:2d:c9:87:65:e3:49:23:a6:31:
                    c9:89:d9:8c:86:59:40:f0:43:aa:2c:4a:90:90:ed:a0:
                    95:4f:6d:85:92:26:27:47:5a:8d:5c:1f:55:2b:d3:21:
                    07:40:af:04:93:be:2b:1f:cd:73:95:21:8e:83:de:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0c:05:16:d1:9f:b3:01:ee:b5:4d:e0:67:fd:27:ae:4a:
        55:2a:42:3f:24:45:02:59:f1:f2:e2:3f:71:93:5d:63:
        85:21:5d:65:5c:21:53:2e:93:9f:6b:6d:3f:27:d0:cc:
        e9:da:c1:06:d7:a9:15:40:25:e2:5a:40:90:5f:08:6e:
        9f:de:29:13:4e:d9:85:ab:4c:8e:d3:72:84:ee:db:37:
        b2:7b:d7:d4:51:e1:9f:f4:8b:8a:8c:72:58:8c:61:3a:
        b2:c9:ef:be:a5:f2:65:22:39:95:d3:c2:72:80:0b:d2:
        33:da:9a:13:c2:75:6b:ee:84:1f:bf:b4:6f:d4:5a:88:
        fd:a3:84:92:42:84:cc:35:85:7a:cf:ef:d0:2c:6f:0e:
        4a:9b:d2:6c:c9:ee:00:a4:49:a5:28:d0:60:91:2e:a2:
        57:07:f4:79:7b:5f:03:3c:41:cd:20:9f:93:bb:ee:a2:
        35:2d:c9:08:6d:72:03:75:3f:42:e2:fb:1d:42:d1:af:
        8c:07:c4:25:91:b2:f1:e3:ac:5b:a9:9c:e6:c1:71:e4:
        e0:71:2a:1c:ac:d4:fb:ab:43:9b:f9:b5:a3:c9:1d:46:
        97:92:76:b8:ae:eb:97:a1:ae:8f:7e:d1:a8:6d:62:61:
        06:be:98:56:66:68:aa:e9:f2:9a:7e:22:ac:41:f0:b9
    Fingerprint (SHA-256):
        C8:C8:96:6B:40:0A:B5:1F:CC:64:53:DA:85:D2:10:D6:A0:B1:C7:1F:9C:B6:CC:75:8C:EE:72:EA:D4:4D:F7:3C
    Fingerprint (SHA1):
        17:BC:56:73:17:19:16:49:F9:A1:76:DD:D9:9E:BC:8E:5C:B2:E8:B4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3621: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3622: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144904 (0x3cdd6f48)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 15:08:06 2017
            Not After : Fri Oct 21 15:08:06 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:c0:13:70:2c:dd:63:76:c3:93:4a:4a:ad:e8:59:eb:
                    b9:1f:20:d1:56:f4:f9:24:d2:17:b2:39:db:7d:53:89:
                    fc:f3:80:b0:65:b8:e4:1d:76:0d:7d:32:cd:f1:1e:80:
                    25:3b:70:d1:80:60:6d:86:f0:9b:30:0b:70:86:4e:9a:
                    35:4f:8e:7c:a0:a9:5c:96:23:1e:e6:fe:8f:59:42:f5:
                    7d:97:10:a3:c6:8f:a3:ba:a7:a6:ff:00:f7:8f:d3:cd:
                    15:81:a6:5f:14:b8:d0:2e:f4:e0:f3:86:59:40:48:12:
                    04:16:b9:c5:6b:8b:23:1c:71:58:82:02:2c:8d:93:ce:
                    75:4c:e6:93:39:e7:56:94:19:cc:8f:09:ee:82:18:58:
                    aa:8b:27:3e:1e:47:1e:87:bd:87:5a:a4:a0:b8:06:5e:
                    a0:fa:87:f8:f8:2f:1d:33:98:a7:10:d9:80:38:75:0f:
                    96:0d:c2:72:26:b6:e3:6c:70:22:83:4b:4e:83:9a:0b:
                    f5:5f:e1:e4:d1:a1:d0:c8:42:da:69:70:1f:db:2d:b5:
                    56:52:d3:e1:f7:ab:01:4e:3d:1a:06:94:cf:c8:f2:25:
                    d0:b4:e1:f6:ee:1e:d4:f2:03:ac:bc:2f:c1:5c:ad:1a:
                    dd:c2:14:58:71:8b:e4:46:49:8a:cb:38:65:c4:00:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:e3:8b:ce:ba:52:14:e5:e5:26:3d:56:42:c7:eb:12:
        41:0d:11:27:e0:f0:5d:36:45:31:bf:30:1b:55:cf:0a:
        b6:3a:25:bb:a1:12:30:53:68:52:01:21:3e:1f:67:87:
        f2:f2:a3:98:47:30:92:23:26:8f:58:98:c7:b4:70:e5:
        cf:2c:b3:6f:e3:cd:d5:a1:f0:7a:f1:f1:e7:18:36:f3:
        f0:00:dc:cb:3f:64:88:49:b1:16:2b:08:9a:f0:cf:85:
        3c:ce:c3:77:c1:31:41:ca:11:02:d9:dc:a3:0e:1c:12:
        6b:42:cb:4c:b5:67:77:11:20:ce:2a:57:f2:78:f6:11:
        15:94:6d:2f:91:da:ea:3a:13:48:55:48:3f:78:9e:8c:
        cf:31:2a:a2:a4:82:c2:fc:56:95:06:30:fb:6b:1a:2b:
        53:3f:13:11:38:98:5b:32:13:34:91:e0:74:95:24:fc:
        27:81:bb:d3:e9:88:06:1b:32:1f:04:ab:75:97:23:d3:
        32:a0:d7:bb:bd:44:49:e2:49:56:9b:ae:91:97:10:ac:
        a8:59:21:60:e3:d5:96:a6:18:07:f6:ec:49:9b:7a:cb:
        01:9b:9d:43:13:93:61:16:8e:b2:f3:df:1f:35:c5:a5:
        71:7c:96:a9:b2:47:f6:6d:6f:38:bd:22:e0:af:a6:0d
    Fingerprint (SHA-256):
        31:AC:DC:62:1B:CD:D6:69:11:E0:65:1B:F3:C8:6B:FD:AB:AD:D1:05:F7:DF:86:A3:A0:14:99:1B:73:3B:9B:8F
    Fingerprint (SHA1):
        64:10:67:82:E5:1A:B5:43:10:A7:B1:0F:13:00:C5:F1:8F:22:65:E9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3623: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3624: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3625: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144906 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3626: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3627: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3628: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3629: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021144907   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3630: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3631: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3632: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3633: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021144908   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3634: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3635: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #3636: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3637: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 1021144909   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3638: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3639: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #3640: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3641: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 1021144910   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3642: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3643: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3644: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144906 (0x3cdd6f4a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:08:29 2017
            Not After : Fri Oct 21 15:08:29 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:96:c3:5f:22:98:cc:ff:e5:b6:b8:10:76:aa:80:08:
                    2f:c8:ab:2b:41:3a:3a:2a:cb:95:c7:96:b7:fc:84:75:
                    3e:7a:ea:03:13:18:4a:11:bb:8c:59:9c:62:d4:9b:eb:
                    fe:2e:91:29:fb:1a:80:63:00:f9:26:57:3a:f8:a1:e7:
                    a1:31:75:c3:eb:19:02:e1:f8:b0:80:fb:a2:ef:63:32:
                    7a:fa:18:63:39:bf:b7:1f:13:7a:0d:6f:e5:86:3b:5c:
                    20:85:33:93:9f:cb:06:ca:f2:b7:a0:0b:20:09:c6:04:
                    e0:6c:f1:a3:f2:d2:2f:7c:12:91:96:8a:7c:66:78:d8:
                    31:a6:93:5e:5b:76:a2:cc:98:cd:fd:ab:48:5c:be:da:
                    d2:5e:4d:b7:37:78:fd:c3:98:18:2e:fd:83:ea:57:8f:
                    e2:ff:ef:81:14:b0:46:28:56:23:4f:b1:b0:20:b3:14:
                    83:c1:f9:9f:c0:ae:8d:04:4d:78:ba:90:f2:6e:71:79:
                    29:ec:e1:75:f2:ed:68:11:1e:3f:bc:bb:4e:76:c1:36:
                    34:73:44:81:84:e1:09:7d:95:51:ed:9c:15:a1:9a:23:
                    e0:20:7e:ea:0f:6a:9c:b0:70:43:07:f4:73:58:66:f9:
                    87:11:23:2e:46:22:67:28:24:fc:99:8c:cd:e4:14:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:36:1d:5f:7a:f4:e8:6e:94:7d:0b:d5:86:1f:9b:6f:
        d3:d2:ef:4d:88:dd:de:df:39:7a:2c:76:fe:35:63:61:
        1e:50:f9:89:60:0a:84:a9:5b:b9:d7:e4:ba:cd:c1:3a:
        00:ef:d6:9c:f2:27:d5:ab:37:98:27:fa:c3:a2:e1:83:
        2f:b3:c8:b7:00:f8:85:1b:2d:1b:0b:23:c0:0a:21:9c:
        ea:bd:b8:3b:20:4b:10:0b:da:d1:d3:9b:15:21:78:eb:
        e9:02:58:8a:df:6e:da:c6:3e:80:ff:0a:2e:1c:50:32:
        ba:0d:38:97:0d:23:dc:41:86:d0:87:87:bc:95:4d:63:
        1a:67:4b:cd:b1:33:a0:f9:60:5a:c5:cb:f6:fb:86:d1:
        28:fa:83:2f:ca:60:14:1a:03:50:06:d7:f8:57:00:6b:
        61:74:31:6d:21:14:8c:0a:23:38:d2:e5:5b:f1:d4:cd:
        35:00:b1:7c:df:1e:79:62:5c:ce:8a:75:3d:8b:f2:27:
        5e:f1:da:7f:aa:b5:44:ba:70:5d:b3:9d:bd:be:58:46:
        9f:de:e6:7a:4f:ed:7e:3f:3f:04:d0:f8:fa:19:46:f6:
        c4:91:f2:05:b6:88:0e:be:8d:bc:ed:23:c9:1e:10:cc:
        ad:ae:ac:e6:b7:42:01:e8:e6:10:72:bc:ac:f3:f7:a7
    Fingerprint (SHA-256):
        D8:C4:C4:5F:37:6F:47:92:03:99:1A:6C:E6:F7:CF:08:CC:D1:77:1A:41:0F:26:CD:6D:49:32:A9:94:4D:7A:35
    Fingerprint (SHA1):
        1E:AE:19:FC:32:54:0F:92:90:2C:F4:8F:D3:B3:3A:61:99:99:9A:2D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3645: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3646: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144907 (0x3cdd6f4b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:08:35 2017
            Not After : Fri Oct 21 15:08:35 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:8b:c5:3c:58:f4:51:e3:ce:45:84:92:f4:2b:76:ee:
                    db:e3:59:da:95:12:1e:2b:50:e2:95:f4:22:cf:ab:a5:
                    d7:3a:69:7d:4f:ac:27:3f:41:c0:ee:2f:71:74:8e:ec:
                    ce:81:86:6f:f5:7e:97:4c:28:6b:a5:c0:6f:c8:a9:d5:
                    95:42:cc:fe:a3:f0:e2:ae:3b:76:fb:69:08:61:5d:28:
                    f5:c0:a2:92:33:38:1a:f3:2d:72:9a:fb:28:df:6a:b7:
                    30:fc:ef:2e:57:2c:0a:5d:43:72:2a:ec:87:7f:3d:a9:
                    0e:b8:c4:ca:e5:24:53:a7:f4:b3:d8:37:32:7f:0d:31:
                    e1:f6:08:2d:c8:9a:78:67:71:88:d2:3d:d6:c2:d1:e2:
                    4e:70:5c:57:ec:c3:16:63:1e:3b:5a:8e:bb:ad:7a:41:
                    43:8a:e4:bc:87:02:4b:1b:e6:26:d9:aa:46:7b:63:de:
                    8d:43:b3:02:b6:e9:c1:1c:46:ff:19:46:c5:d3:b1:c3:
                    b1:9c:51:32:23:54:36:f4:93:c2:10:e0:9c:42:51:1e:
                    8b:bc:c1:67:78:16:67:52:3f:14:1c:f4:39:a6:22:1e:
                    ad:a4:35:0f:9b:90:69:be:05:33:1c:1c:2f:7d:d3:cd:
                    96:6c:3a:5b:0b:2f:48:ce:2b:8a:1d:d4:98:cc:b8:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        23:4c:12:48:d8:fb:7b:3d:ad:7d:65:1f:56:35:1b:d7:
        e6:82:a9:c2:1f:51:88:44:7c:51:ce:9e:0a:aa:01:e3:
        f8:c7:ed:29:52:ed:3e:6f:d9:01:ff:41:9e:60:b2:ca:
        c1:a5:37:b3:3d:3b:7a:4c:07:ff:72:da:62:dc:fc:cb:
        36:bc:7b:cc:2a:d6:26:d0:63:08:5f:96:df:5a:01:36:
        6d:dd:54:d7:e2:d3:0c:fc:c4:c5:0d:c8:88:e3:25:8d:
        88:21:74:fa:e9:7f:97:33:f5:2d:7d:6e:53:29:ac:fc:
        9e:dc:bd:e5:64:97:89:79:8f:53:7b:00:af:1f:35:ed:
        ec:a7:de:31:37:7c:68:fe:5d:c6:ff:9a:e6:1b:f9:2a:
        ab:67:19:d1:b2:38:56:19:de:83:b3:0d:09:37:64:6e:
        e9:97:42:49:df:7f:3d:4c:44:70:d6:43:1b:89:68:6e:
        af:4d:bb:d8:27:18:b4:72:cc:1d:af:45:e3:da:31:0c:
        6f:ea:c4:63:01:e8:2d:7e:c4:30:43:d1:a6:de:9d:f7:
        c9:0e:0a:f2:fe:32:7c:49:26:91:b4:ae:50:a5:d4:7b:
        d7:8b:7b:ac:96:39:5e:c5:19:9e:c6:f8:6b:7d:62:e4:
        71:ae:a2:f6:af:be:b7:6d:83:0d:29:ff:00:dd:3e:ff
    Fingerprint (SHA-256):
        5B:62:88:C4:51:72:CB:87:E6:14:1F:23:35:4C:32:9D:BA:C7:DD:2F:17:20:7B:B0:C8:2B:6E:1B:74:80:9D:3B
    Fingerprint (SHA1):
        29:BD:E4:89:83:28:2C:7E:CA:B7:EC:E3:2E:92:35:B2:C3:C2:99:5C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3647: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3648: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144908 (0x3cdd6f4c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 15:08:42 2017
            Not After : Fri Oct 21 15:08:42 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:4e:36:00:6d:7d:77:1b:22:bf:87:0e:84:4f:05:56:
                    e5:5e:18:5c:5c:f1:ff:b3:2b:20:52:9b:8e:a9:96:43:
                    9e:e1:a9:3c:ce:1d:38:02:91:17:90:ae:b0:b4:86:b4:
                    a4:25:c5:32:17:fc:07:47:29:90:19:0f:7a:cf:7f:d6:
                    bb:ff:9c:8b:19:16:3b:f4:b8:8d:dd:fd:44:be:dc:ac:
                    e2:72:09:0c:6f:e9:cf:78:6d:be:4a:f6:67:b9:83:4d:
                    8c:c6:5f:f7:fc:ff:01:51:79:82:99:c3:59:04:5c:5b:
                    bf:80:99:c6:1c:cd:67:fa:75:99:0a:ad:05:b6:1a:45:
                    54:bd:30:b1:7d:6c:fe:27:b1:07:5f:55:69:c4:b4:a5:
                    cc:2a:12:28:02:ce:09:3f:3e:41:67:8f:34:e1:bd:33:
                    63:cb:b5:34:1c:e4:42:16:c5:d1:d0:67:c5:1f:11:e1:
                    59:c7:8e:f4:9a:82:0e:9b:dd:8c:e1:a8:45:f2:3c:17:
                    8f:68:3a:57:85:45:7a:70:92:e6:d1:b3:0d:ab:18:05:
                    d4:31:5a:0c:63:82:51:77:a3:6d:6b:e2:f9:49:da:5b:
                    9a:7e:a9:93:76:2c:e1:64:6e:3f:96:85:77:03:94:72:
                    bc:2e:75:f5:60:6d:a0:08:bf:8b:c4:d9:1d:36:02:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:82:db:88:d2:d7:96:84:c7:79:a1:20:30:89:87:29:
        90:21:de:78:10:ff:3a:71:10:41:79:9e:f6:d8:0c:5f:
        1d:85:eb:f7:13:6d:ab:83:3d:91:99:97:a4:af:e4:5e:
        39:e6:9f:08:a1:94:32:94:8a:65:98:99:5f:25:d4:7f:
        92:ca:f3:cf:da:b9:c1:7f:fb:7b:ff:a9:6b:f6:70:1a:
        94:aa:c8:de:de:80:af:a0:76:10:c1:35:eb:a4:89:8a:
        2c:b6:10:3e:15:4b:8b:27:d9:71:33:b8:f3:da:5e:1a:
        97:35:93:32:32:de:fa:2a:8e:a3:93:2a:4f:f7:1c:e7:
        45:cc:cc:bf:a4:ab:68:3e:ce:d3:f0:38:8d:f6:cd:e1:
        0c:d7:6d:aa:47:e7:34:26:27:dc:62:1c:94:1f:f1:77:
        26:b8:5c:13:fe:55:b7:e1:40:a3:66:b4:65:3b:85:46:
        2a:ee:1b:4a:d5:20:f9:f4:66:36:cb:a4:98:fa:a2:d3:
        1a:d8:c6:f2:3c:23:91:bb:e9:eb:c8:89:28:f2:f4:c4:
        4c:9a:18:98:37:bf:bd:63:da:87:82:0c:83:48:d5:c5:
        0c:5b:7e:ec:b5:ba:76:41:6f:b0:8d:a5:a3:d7:5d:90:
        70:51:3d:9c:8c:ba:7b:c8:5b:02:fc:c8:19:a5:e5:97
    Fingerprint (SHA-256):
        43:85:41:23:5B:8E:75:44:8E:70:C2:5B:09:45:E8:BD:D5:BC:90:7A:EC:00:63:02:C8:9C:7B:5D:99:E7:DC:AE
    Fingerprint (SHA1):
        D4:52:E2:53:55:A0:E6:0B:FA:1F:E7:05:3B:ED:7D:68:2A:98:24:06
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3649: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3650: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3651: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3652: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3653: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144906 (0x3cdd6f4a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:08:29 2017
            Not After : Fri Oct 21 15:08:29 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:96:c3:5f:22:98:cc:ff:e5:b6:b8:10:76:aa:80:08:
                    2f:c8:ab:2b:41:3a:3a:2a:cb:95:c7:96:b7:fc:84:75:
                    3e:7a:ea:03:13:18:4a:11:bb:8c:59:9c:62:d4:9b:eb:
                    fe:2e:91:29:fb:1a:80:63:00:f9:26:57:3a:f8:a1:e7:
                    a1:31:75:c3:eb:19:02:e1:f8:b0:80:fb:a2:ef:63:32:
                    7a:fa:18:63:39:bf:b7:1f:13:7a:0d:6f:e5:86:3b:5c:
                    20:85:33:93:9f:cb:06:ca:f2:b7:a0:0b:20:09:c6:04:
                    e0:6c:f1:a3:f2:d2:2f:7c:12:91:96:8a:7c:66:78:d8:
                    31:a6:93:5e:5b:76:a2:cc:98:cd:fd:ab:48:5c:be:da:
                    d2:5e:4d:b7:37:78:fd:c3:98:18:2e:fd:83:ea:57:8f:
                    e2:ff:ef:81:14:b0:46:28:56:23:4f:b1:b0:20:b3:14:
                    83:c1:f9:9f:c0:ae:8d:04:4d:78:ba:90:f2:6e:71:79:
                    29:ec:e1:75:f2:ed:68:11:1e:3f:bc:bb:4e:76:c1:36:
                    34:73:44:81:84:e1:09:7d:95:51:ed:9c:15:a1:9a:23:
                    e0:20:7e:ea:0f:6a:9c:b0:70:43:07:f4:73:58:66:f9:
                    87:11:23:2e:46:22:67:28:24:fc:99:8c:cd:e4:14:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:36:1d:5f:7a:f4:e8:6e:94:7d:0b:d5:86:1f:9b:6f:
        d3:d2:ef:4d:88:dd:de:df:39:7a:2c:76:fe:35:63:61:
        1e:50:f9:89:60:0a:84:a9:5b:b9:d7:e4:ba:cd:c1:3a:
        00:ef:d6:9c:f2:27:d5:ab:37:98:27:fa:c3:a2:e1:83:
        2f:b3:c8:b7:00:f8:85:1b:2d:1b:0b:23:c0:0a:21:9c:
        ea:bd:b8:3b:20:4b:10:0b:da:d1:d3:9b:15:21:78:eb:
        e9:02:58:8a:df:6e:da:c6:3e:80:ff:0a:2e:1c:50:32:
        ba:0d:38:97:0d:23:dc:41:86:d0:87:87:bc:95:4d:63:
        1a:67:4b:cd:b1:33:a0:f9:60:5a:c5:cb:f6:fb:86:d1:
        28:fa:83:2f:ca:60:14:1a:03:50:06:d7:f8:57:00:6b:
        61:74:31:6d:21:14:8c:0a:23:38:d2:e5:5b:f1:d4:cd:
        35:00:b1:7c:df:1e:79:62:5c:ce:8a:75:3d:8b:f2:27:
        5e:f1:da:7f:aa:b5:44:ba:70:5d:b3:9d:bd:be:58:46:
        9f:de:e6:7a:4f:ed:7e:3f:3f:04:d0:f8:fa:19:46:f6:
        c4:91:f2:05:b6:88:0e:be:8d:bc:ed:23:c9:1e:10:cc:
        ad:ae:ac:e6:b7:42:01:e8:e6:10:72:bc:ac:f3:f7:a7
    Fingerprint (SHA-256):
        D8:C4:C4:5F:37:6F:47:92:03:99:1A:6C:E6:F7:CF:08:CC:D1:77:1A:41:0F:26:CD:6D:49:32:A9:94:4D:7A:35
    Fingerprint (SHA1):
        1E:AE:19:FC:32:54:0F:92:90:2C:F4:8F:D3:B3:3A:61:99:99:9A:2D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3654: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3655: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144907 (0x3cdd6f4b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:08:35 2017
            Not After : Fri Oct 21 15:08:35 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:8b:c5:3c:58:f4:51:e3:ce:45:84:92:f4:2b:76:ee:
                    db:e3:59:da:95:12:1e:2b:50:e2:95:f4:22:cf:ab:a5:
                    d7:3a:69:7d:4f:ac:27:3f:41:c0:ee:2f:71:74:8e:ec:
                    ce:81:86:6f:f5:7e:97:4c:28:6b:a5:c0:6f:c8:a9:d5:
                    95:42:cc:fe:a3:f0:e2:ae:3b:76:fb:69:08:61:5d:28:
                    f5:c0:a2:92:33:38:1a:f3:2d:72:9a:fb:28:df:6a:b7:
                    30:fc:ef:2e:57:2c:0a:5d:43:72:2a:ec:87:7f:3d:a9:
                    0e:b8:c4:ca:e5:24:53:a7:f4:b3:d8:37:32:7f:0d:31:
                    e1:f6:08:2d:c8:9a:78:67:71:88:d2:3d:d6:c2:d1:e2:
                    4e:70:5c:57:ec:c3:16:63:1e:3b:5a:8e:bb:ad:7a:41:
                    43:8a:e4:bc:87:02:4b:1b:e6:26:d9:aa:46:7b:63:de:
                    8d:43:b3:02:b6:e9:c1:1c:46:ff:19:46:c5:d3:b1:c3:
                    b1:9c:51:32:23:54:36:f4:93:c2:10:e0:9c:42:51:1e:
                    8b:bc:c1:67:78:16:67:52:3f:14:1c:f4:39:a6:22:1e:
                    ad:a4:35:0f:9b:90:69:be:05:33:1c:1c:2f:7d:d3:cd:
                    96:6c:3a:5b:0b:2f:48:ce:2b:8a:1d:d4:98:cc:b8:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        23:4c:12:48:d8:fb:7b:3d:ad:7d:65:1f:56:35:1b:d7:
        e6:82:a9:c2:1f:51:88:44:7c:51:ce:9e:0a:aa:01:e3:
        f8:c7:ed:29:52:ed:3e:6f:d9:01:ff:41:9e:60:b2:ca:
        c1:a5:37:b3:3d:3b:7a:4c:07:ff:72:da:62:dc:fc:cb:
        36:bc:7b:cc:2a:d6:26:d0:63:08:5f:96:df:5a:01:36:
        6d:dd:54:d7:e2:d3:0c:fc:c4:c5:0d:c8:88:e3:25:8d:
        88:21:74:fa:e9:7f:97:33:f5:2d:7d:6e:53:29:ac:fc:
        9e:dc:bd:e5:64:97:89:79:8f:53:7b:00:af:1f:35:ed:
        ec:a7:de:31:37:7c:68:fe:5d:c6:ff:9a:e6:1b:f9:2a:
        ab:67:19:d1:b2:38:56:19:de:83:b3:0d:09:37:64:6e:
        e9:97:42:49:df:7f:3d:4c:44:70:d6:43:1b:89:68:6e:
        af:4d:bb:d8:27:18:b4:72:cc:1d:af:45:e3:da:31:0c:
        6f:ea:c4:63:01:e8:2d:7e:c4:30:43:d1:a6:de:9d:f7:
        c9:0e:0a:f2:fe:32:7c:49:26:91:b4:ae:50:a5:d4:7b:
        d7:8b:7b:ac:96:39:5e:c5:19:9e:c6:f8:6b:7d:62:e4:
        71:ae:a2:f6:af:be:b7:6d:83:0d:29:ff:00:dd:3e:ff
    Fingerprint (SHA-256):
        5B:62:88:C4:51:72:CB:87:E6:14:1F:23:35:4C:32:9D:BA:C7:DD:2F:17:20:7B:B0:C8:2B:6E:1B:74:80:9D:3B
    Fingerprint (SHA1):
        29:BD:E4:89:83:28:2C:7E:CA:B7:EC:E3:2E:92:35:B2:C3:C2:99:5C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3656: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3657: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144908 (0x3cdd6f4c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 15:08:42 2017
            Not After : Fri Oct 21 15:08:42 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:4e:36:00:6d:7d:77:1b:22:bf:87:0e:84:4f:05:56:
                    e5:5e:18:5c:5c:f1:ff:b3:2b:20:52:9b:8e:a9:96:43:
                    9e:e1:a9:3c:ce:1d:38:02:91:17:90:ae:b0:b4:86:b4:
                    a4:25:c5:32:17:fc:07:47:29:90:19:0f:7a:cf:7f:d6:
                    bb:ff:9c:8b:19:16:3b:f4:b8:8d:dd:fd:44:be:dc:ac:
                    e2:72:09:0c:6f:e9:cf:78:6d:be:4a:f6:67:b9:83:4d:
                    8c:c6:5f:f7:fc:ff:01:51:79:82:99:c3:59:04:5c:5b:
                    bf:80:99:c6:1c:cd:67:fa:75:99:0a:ad:05:b6:1a:45:
                    54:bd:30:b1:7d:6c:fe:27:b1:07:5f:55:69:c4:b4:a5:
                    cc:2a:12:28:02:ce:09:3f:3e:41:67:8f:34:e1:bd:33:
                    63:cb:b5:34:1c:e4:42:16:c5:d1:d0:67:c5:1f:11:e1:
                    59:c7:8e:f4:9a:82:0e:9b:dd:8c:e1:a8:45:f2:3c:17:
                    8f:68:3a:57:85:45:7a:70:92:e6:d1:b3:0d:ab:18:05:
                    d4:31:5a:0c:63:82:51:77:a3:6d:6b:e2:f9:49:da:5b:
                    9a:7e:a9:93:76:2c:e1:64:6e:3f:96:85:77:03:94:72:
                    bc:2e:75:f5:60:6d:a0:08:bf:8b:c4:d9:1d:36:02:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:82:db:88:d2:d7:96:84:c7:79:a1:20:30:89:87:29:
        90:21:de:78:10:ff:3a:71:10:41:79:9e:f6:d8:0c:5f:
        1d:85:eb:f7:13:6d:ab:83:3d:91:99:97:a4:af:e4:5e:
        39:e6:9f:08:a1:94:32:94:8a:65:98:99:5f:25:d4:7f:
        92:ca:f3:cf:da:b9:c1:7f:fb:7b:ff:a9:6b:f6:70:1a:
        94:aa:c8:de:de:80:af:a0:76:10:c1:35:eb:a4:89:8a:
        2c:b6:10:3e:15:4b:8b:27:d9:71:33:b8:f3:da:5e:1a:
        97:35:93:32:32:de:fa:2a:8e:a3:93:2a:4f:f7:1c:e7:
        45:cc:cc:bf:a4:ab:68:3e:ce:d3:f0:38:8d:f6:cd:e1:
        0c:d7:6d:aa:47:e7:34:26:27:dc:62:1c:94:1f:f1:77:
        26:b8:5c:13:fe:55:b7:e1:40:a3:66:b4:65:3b:85:46:
        2a:ee:1b:4a:d5:20:f9:f4:66:36:cb:a4:98:fa:a2:d3:
        1a:d8:c6:f2:3c:23:91:bb:e9:eb:c8:89:28:f2:f4:c4:
        4c:9a:18:98:37:bf:bd:63:da:87:82:0c:83:48:d5:c5:
        0c:5b:7e:ec:b5:ba:76:41:6f:b0:8d:a5:a3:d7:5d:90:
        70:51:3d:9c:8c:ba:7b:c8:5b:02:fc:c8:19:a5:e5:97
    Fingerprint (SHA-256):
        43:85:41:23:5B:8E:75:44:8E:70:C2:5B:09:45:E8:BD:D5:BC:90:7A:EC:00:63:02:C8:9C:7B:5D:99:E7:DC:AE
    Fingerprint (SHA1):
        D4:52:E2:53:55:A0:E6:0B:FA:1F:E7:05:3B:ED:7D:68:2A:98:24:06
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3658: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3659: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144906 (0x3cdd6f4a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:08:29 2017
            Not After : Fri Oct 21 15:08:29 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:96:c3:5f:22:98:cc:ff:e5:b6:b8:10:76:aa:80:08:
                    2f:c8:ab:2b:41:3a:3a:2a:cb:95:c7:96:b7:fc:84:75:
                    3e:7a:ea:03:13:18:4a:11:bb:8c:59:9c:62:d4:9b:eb:
                    fe:2e:91:29:fb:1a:80:63:00:f9:26:57:3a:f8:a1:e7:
                    a1:31:75:c3:eb:19:02:e1:f8:b0:80:fb:a2:ef:63:32:
                    7a:fa:18:63:39:bf:b7:1f:13:7a:0d:6f:e5:86:3b:5c:
                    20:85:33:93:9f:cb:06:ca:f2:b7:a0:0b:20:09:c6:04:
                    e0:6c:f1:a3:f2:d2:2f:7c:12:91:96:8a:7c:66:78:d8:
                    31:a6:93:5e:5b:76:a2:cc:98:cd:fd:ab:48:5c:be:da:
                    d2:5e:4d:b7:37:78:fd:c3:98:18:2e:fd:83:ea:57:8f:
                    e2:ff:ef:81:14:b0:46:28:56:23:4f:b1:b0:20:b3:14:
                    83:c1:f9:9f:c0:ae:8d:04:4d:78:ba:90:f2:6e:71:79:
                    29:ec:e1:75:f2:ed:68:11:1e:3f:bc:bb:4e:76:c1:36:
                    34:73:44:81:84:e1:09:7d:95:51:ed:9c:15:a1:9a:23:
                    e0:20:7e:ea:0f:6a:9c:b0:70:43:07:f4:73:58:66:f9:
                    87:11:23:2e:46:22:67:28:24:fc:99:8c:cd:e4:14:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:36:1d:5f:7a:f4:e8:6e:94:7d:0b:d5:86:1f:9b:6f:
        d3:d2:ef:4d:88:dd:de:df:39:7a:2c:76:fe:35:63:61:
        1e:50:f9:89:60:0a:84:a9:5b:b9:d7:e4:ba:cd:c1:3a:
        00:ef:d6:9c:f2:27:d5:ab:37:98:27:fa:c3:a2:e1:83:
        2f:b3:c8:b7:00:f8:85:1b:2d:1b:0b:23:c0:0a:21:9c:
        ea:bd:b8:3b:20:4b:10:0b:da:d1:d3:9b:15:21:78:eb:
        e9:02:58:8a:df:6e:da:c6:3e:80:ff:0a:2e:1c:50:32:
        ba:0d:38:97:0d:23:dc:41:86:d0:87:87:bc:95:4d:63:
        1a:67:4b:cd:b1:33:a0:f9:60:5a:c5:cb:f6:fb:86:d1:
        28:fa:83:2f:ca:60:14:1a:03:50:06:d7:f8:57:00:6b:
        61:74:31:6d:21:14:8c:0a:23:38:d2:e5:5b:f1:d4:cd:
        35:00:b1:7c:df:1e:79:62:5c:ce:8a:75:3d:8b:f2:27:
        5e:f1:da:7f:aa:b5:44:ba:70:5d:b3:9d:bd:be:58:46:
        9f:de:e6:7a:4f:ed:7e:3f:3f:04:d0:f8:fa:19:46:f6:
        c4:91:f2:05:b6:88:0e:be:8d:bc:ed:23:c9:1e:10:cc:
        ad:ae:ac:e6:b7:42:01:e8:e6:10:72:bc:ac:f3:f7:a7
    Fingerprint (SHA-256):
        D8:C4:C4:5F:37:6F:47:92:03:99:1A:6C:E6:F7:CF:08:CC:D1:77:1A:41:0F:26:CD:6D:49:32:A9:94:4D:7A:35
    Fingerprint (SHA1):
        1E:AE:19:FC:32:54:0F:92:90:2C:F4:8F:D3:B3:3A:61:99:99:9A:2D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3660: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144906 (0x3cdd6f4a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:08:29 2017
            Not After : Fri Oct 21 15:08:29 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:96:c3:5f:22:98:cc:ff:e5:b6:b8:10:76:aa:80:08:
                    2f:c8:ab:2b:41:3a:3a:2a:cb:95:c7:96:b7:fc:84:75:
                    3e:7a:ea:03:13:18:4a:11:bb:8c:59:9c:62:d4:9b:eb:
                    fe:2e:91:29:fb:1a:80:63:00:f9:26:57:3a:f8:a1:e7:
                    a1:31:75:c3:eb:19:02:e1:f8:b0:80:fb:a2:ef:63:32:
                    7a:fa:18:63:39:bf:b7:1f:13:7a:0d:6f:e5:86:3b:5c:
                    20:85:33:93:9f:cb:06:ca:f2:b7:a0:0b:20:09:c6:04:
                    e0:6c:f1:a3:f2:d2:2f:7c:12:91:96:8a:7c:66:78:d8:
                    31:a6:93:5e:5b:76:a2:cc:98:cd:fd:ab:48:5c:be:da:
                    d2:5e:4d:b7:37:78:fd:c3:98:18:2e:fd:83:ea:57:8f:
                    e2:ff:ef:81:14:b0:46:28:56:23:4f:b1:b0:20:b3:14:
                    83:c1:f9:9f:c0:ae:8d:04:4d:78:ba:90:f2:6e:71:79:
                    29:ec:e1:75:f2:ed:68:11:1e:3f:bc:bb:4e:76:c1:36:
                    34:73:44:81:84:e1:09:7d:95:51:ed:9c:15:a1:9a:23:
                    e0:20:7e:ea:0f:6a:9c:b0:70:43:07:f4:73:58:66:f9:
                    87:11:23:2e:46:22:67:28:24:fc:99:8c:cd:e4:14:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:36:1d:5f:7a:f4:e8:6e:94:7d:0b:d5:86:1f:9b:6f:
        d3:d2:ef:4d:88:dd:de:df:39:7a:2c:76:fe:35:63:61:
        1e:50:f9:89:60:0a:84:a9:5b:b9:d7:e4:ba:cd:c1:3a:
        00:ef:d6:9c:f2:27:d5:ab:37:98:27:fa:c3:a2:e1:83:
        2f:b3:c8:b7:00:f8:85:1b:2d:1b:0b:23:c0:0a:21:9c:
        ea:bd:b8:3b:20:4b:10:0b:da:d1:d3:9b:15:21:78:eb:
        e9:02:58:8a:df:6e:da:c6:3e:80:ff:0a:2e:1c:50:32:
        ba:0d:38:97:0d:23:dc:41:86:d0:87:87:bc:95:4d:63:
        1a:67:4b:cd:b1:33:a0:f9:60:5a:c5:cb:f6:fb:86:d1:
        28:fa:83:2f:ca:60:14:1a:03:50:06:d7:f8:57:00:6b:
        61:74:31:6d:21:14:8c:0a:23:38:d2:e5:5b:f1:d4:cd:
        35:00:b1:7c:df:1e:79:62:5c:ce:8a:75:3d:8b:f2:27:
        5e:f1:da:7f:aa:b5:44:ba:70:5d:b3:9d:bd:be:58:46:
        9f:de:e6:7a:4f:ed:7e:3f:3f:04:d0:f8:fa:19:46:f6:
        c4:91:f2:05:b6:88:0e:be:8d:bc:ed:23:c9:1e:10:cc:
        ad:ae:ac:e6:b7:42:01:e8:e6:10:72:bc:ac:f3:f7:a7
    Fingerprint (SHA-256):
        D8:C4:C4:5F:37:6F:47:92:03:99:1A:6C:E6:F7:CF:08:CC:D1:77:1A:41:0F:26:CD:6D:49:32:A9:94:4D:7A:35
    Fingerprint (SHA1):
        1E:AE:19:FC:32:54:0F:92:90:2C:F4:8F:D3:B3:3A:61:99:99:9A:2D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3661: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144907 (0x3cdd6f4b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:08:35 2017
            Not After : Fri Oct 21 15:08:35 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:8b:c5:3c:58:f4:51:e3:ce:45:84:92:f4:2b:76:ee:
                    db:e3:59:da:95:12:1e:2b:50:e2:95:f4:22:cf:ab:a5:
                    d7:3a:69:7d:4f:ac:27:3f:41:c0:ee:2f:71:74:8e:ec:
                    ce:81:86:6f:f5:7e:97:4c:28:6b:a5:c0:6f:c8:a9:d5:
                    95:42:cc:fe:a3:f0:e2:ae:3b:76:fb:69:08:61:5d:28:
                    f5:c0:a2:92:33:38:1a:f3:2d:72:9a:fb:28:df:6a:b7:
                    30:fc:ef:2e:57:2c:0a:5d:43:72:2a:ec:87:7f:3d:a9:
                    0e:b8:c4:ca:e5:24:53:a7:f4:b3:d8:37:32:7f:0d:31:
                    e1:f6:08:2d:c8:9a:78:67:71:88:d2:3d:d6:c2:d1:e2:
                    4e:70:5c:57:ec:c3:16:63:1e:3b:5a:8e:bb:ad:7a:41:
                    43:8a:e4:bc:87:02:4b:1b:e6:26:d9:aa:46:7b:63:de:
                    8d:43:b3:02:b6:e9:c1:1c:46:ff:19:46:c5:d3:b1:c3:
                    b1:9c:51:32:23:54:36:f4:93:c2:10:e0:9c:42:51:1e:
                    8b:bc:c1:67:78:16:67:52:3f:14:1c:f4:39:a6:22:1e:
                    ad:a4:35:0f:9b:90:69:be:05:33:1c:1c:2f:7d:d3:cd:
                    96:6c:3a:5b:0b:2f:48:ce:2b:8a:1d:d4:98:cc:b8:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        23:4c:12:48:d8:fb:7b:3d:ad:7d:65:1f:56:35:1b:d7:
        e6:82:a9:c2:1f:51:88:44:7c:51:ce:9e:0a:aa:01:e3:
        f8:c7:ed:29:52:ed:3e:6f:d9:01:ff:41:9e:60:b2:ca:
        c1:a5:37:b3:3d:3b:7a:4c:07:ff:72:da:62:dc:fc:cb:
        36:bc:7b:cc:2a:d6:26:d0:63:08:5f:96:df:5a:01:36:
        6d:dd:54:d7:e2:d3:0c:fc:c4:c5:0d:c8:88:e3:25:8d:
        88:21:74:fa:e9:7f:97:33:f5:2d:7d:6e:53:29:ac:fc:
        9e:dc:bd:e5:64:97:89:79:8f:53:7b:00:af:1f:35:ed:
        ec:a7:de:31:37:7c:68:fe:5d:c6:ff:9a:e6:1b:f9:2a:
        ab:67:19:d1:b2:38:56:19:de:83:b3:0d:09:37:64:6e:
        e9:97:42:49:df:7f:3d:4c:44:70:d6:43:1b:89:68:6e:
        af:4d:bb:d8:27:18:b4:72:cc:1d:af:45:e3:da:31:0c:
        6f:ea:c4:63:01:e8:2d:7e:c4:30:43:d1:a6:de:9d:f7:
        c9:0e:0a:f2:fe:32:7c:49:26:91:b4:ae:50:a5:d4:7b:
        d7:8b:7b:ac:96:39:5e:c5:19:9e:c6:f8:6b:7d:62:e4:
        71:ae:a2:f6:af:be:b7:6d:83:0d:29:ff:00:dd:3e:ff
    Fingerprint (SHA-256):
        5B:62:88:C4:51:72:CB:87:E6:14:1F:23:35:4C:32:9D:BA:C7:DD:2F:17:20:7B:B0:C8:2B:6E:1B:74:80:9D:3B
    Fingerprint (SHA1):
        29:BD:E4:89:83:28:2C:7E:CA:B7:EC:E3:2E:92:35:B2:C3:C2:99:5C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3662: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144907 (0x3cdd6f4b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:08:35 2017
            Not After : Fri Oct 21 15:08:35 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:8b:c5:3c:58:f4:51:e3:ce:45:84:92:f4:2b:76:ee:
                    db:e3:59:da:95:12:1e:2b:50:e2:95:f4:22:cf:ab:a5:
                    d7:3a:69:7d:4f:ac:27:3f:41:c0:ee:2f:71:74:8e:ec:
                    ce:81:86:6f:f5:7e:97:4c:28:6b:a5:c0:6f:c8:a9:d5:
                    95:42:cc:fe:a3:f0:e2:ae:3b:76:fb:69:08:61:5d:28:
                    f5:c0:a2:92:33:38:1a:f3:2d:72:9a:fb:28:df:6a:b7:
                    30:fc:ef:2e:57:2c:0a:5d:43:72:2a:ec:87:7f:3d:a9:
                    0e:b8:c4:ca:e5:24:53:a7:f4:b3:d8:37:32:7f:0d:31:
                    e1:f6:08:2d:c8:9a:78:67:71:88:d2:3d:d6:c2:d1:e2:
                    4e:70:5c:57:ec:c3:16:63:1e:3b:5a:8e:bb:ad:7a:41:
                    43:8a:e4:bc:87:02:4b:1b:e6:26:d9:aa:46:7b:63:de:
                    8d:43:b3:02:b6:e9:c1:1c:46:ff:19:46:c5:d3:b1:c3:
                    b1:9c:51:32:23:54:36:f4:93:c2:10:e0:9c:42:51:1e:
                    8b:bc:c1:67:78:16:67:52:3f:14:1c:f4:39:a6:22:1e:
                    ad:a4:35:0f:9b:90:69:be:05:33:1c:1c:2f:7d:d3:cd:
                    96:6c:3a:5b:0b:2f:48:ce:2b:8a:1d:d4:98:cc:b8:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        23:4c:12:48:d8:fb:7b:3d:ad:7d:65:1f:56:35:1b:d7:
        e6:82:a9:c2:1f:51:88:44:7c:51:ce:9e:0a:aa:01:e3:
        f8:c7:ed:29:52:ed:3e:6f:d9:01:ff:41:9e:60:b2:ca:
        c1:a5:37:b3:3d:3b:7a:4c:07:ff:72:da:62:dc:fc:cb:
        36:bc:7b:cc:2a:d6:26:d0:63:08:5f:96:df:5a:01:36:
        6d:dd:54:d7:e2:d3:0c:fc:c4:c5:0d:c8:88:e3:25:8d:
        88:21:74:fa:e9:7f:97:33:f5:2d:7d:6e:53:29:ac:fc:
        9e:dc:bd:e5:64:97:89:79:8f:53:7b:00:af:1f:35:ed:
        ec:a7:de:31:37:7c:68:fe:5d:c6:ff:9a:e6:1b:f9:2a:
        ab:67:19:d1:b2:38:56:19:de:83:b3:0d:09:37:64:6e:
        e9:97:42:49:df:7f:3d:4c:44:70:d6:43:1b:89:68:6e:
        af:4d:bb:d8:27:18:b4:72:cc:1d:af:45:e3:da:31:0c:
        6f:ea:c4:63:01:e8:2d:7e:c4:30:43:d1:a6:de:9d:f7:
        c9:0e:0a:f2:fe:32:7c:49:26:91:b4:ae:50:a5:d4:7b:
        d7:8b:7b:ac:96:39:5e:c5:19:9e:c6:f8:6b:7d:62:e4:
        71:ae:a2:f6:af:be:b7:6d:83:0d:29:ff:00:dd:3e:ff
    Fingerprint (SHA-256):
        5B:62:88:C4:51:72:CB:87:E6:14:1F:23:35:4C:32:9D:BA:C7:DD:2F:17:20:7B:B0:C8:2B:6E:1B:74:80:9D:3B
    Fingerprint (SHA1):
        29:BD:E4:89:83:28:2C:7E:CA:B7:EC:E3:2E:92:35:B2:C3:C2:99:5C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3663: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144908 (0x3cdd6f4c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 15:08:42 2017
            Not After : Fri Oct 21 15:08:42 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:4e:36:00:6d:7d:77:1b:22:bf:87:0e:84:4f:05:56:
                    e5:5e:18:5c:5c:f1:ff:b3:2b:20:52:9b:8e:a9:96:43:
                    9e:e1:a9:3c:ce:1d:38:02:91:17:90:ae:b0:b4:86:b4:
                    a4:25:c5:32:17:fc:07:47:29:90:19:0f:7a:cf:7f:d6:
                    bb:ff:9c:8b:19:16:3b:f4:b8:8d:dd:fd:44:be:dc:ac:
                    e2:72:09:0c:6f:e9:cf:78:6d:be:4a:f6:67:b9:83:4d:
                    8c:c6:5f:f7:fc:ff:01:51:79:82:99:c3:59:04:5c:5b:
                    bf:80:99:c6:1c:cd:67:fa:75:99:0a:ad:05:b6:1a:45:
                    54:bd:30:b1:7d:6c:fe:27:b1:07:5f:55:69:c4:b4:a5:
                    cc:2a:12:28:02:ce:09:3f:3e:41:67:8f:34:e1:bd:33:
                    63:cb:b5:34:1c:e4:42:16:c5:d1:d0:67:c5:1f:11:e1:
                    59:c7:8e:f4:9a:82:0e:9b:dd:8c:e1:a8:45:f2:3c:17:
                    8f:68:3a:57:85:45:7a:70:92:e6:d1:b3:0d:ab:18:05:
                    d4:31:5a:0c:63:82:51:77:a3:6d:6b:e2:f9:49:da:5b:
                    9a:7e:a9:93:76:2c:e1:64:6e:3f:96:85:77:03:94:72:
                    bc:2e:75:f5:60:6d:a0:08:bf:8b:c4:d9:1d:36:02:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:82:db:88:d2:d7:96:84:c7:79:a1:20:30:89:87:29:
        90:21:de:78:10:ff:3a:71:10:41:79:9e:f6:d8:0c:5f:
        1d:85:eb:f7:13:6d:ab:83:3d:91:99:97:a4:af:e4:5e:
        39:e6:9f:08:a1:94:32:94:8a:65:98:99:5f:25:d4:7f:
        92:ca:f3:cf:da:b9:c1:7f:fb:7b:ff:a9:6b:f6:70:1a:
        94:aa:c8:de:de:80:af:a0:76:10:c1:35:eb:a4:89:8a:
        2c:b6:10:3e:15:4b:8b:27:d9:71:33:b8:f3:da:5e:1a:
        97:35:93:32:32:de:fa:2a:8e:a3:93:2a:4f:f7:1c:e7:
        45:cc:cc:bf:a4:ab:68:3e:ce:d3:f0:38:8d:f6:cd:e1:
        0c:d7:6d:aa:47:e7:34:26:27:dc:62:1c:94:1f:f1:77:
        26:b8:5c:13:fe:55:b7:e1:40:a3:66:b4:65:3b:85:46:
        2a:ee:1b:4a:d5:20:f9:f4:66:36:cb:a4:98:fa:a2:d3:
        1a:d8:c6:f2:3c:23:91:bb:e9:eb:c8:89:28:f2:f4:c4:
        4c:9a:18:98:37:bf:bd:63:da:87:82:0c:83:48:d5:c5:
        0c:5b:7e:ec:b5:ba:76:41:6f:b0:8d:a5:a3:d7:5d:90:
        70:51:3d:9c:8c:ba:7b:c8:5b:02:fc:c8:19:a5:e5:97
    Fingerprint (SHA-256):
        43:85:41:23:5B:8E:75:44:8E:70:C2:5B:09:45:E8:BD:D5:BC:90:7A:EC:00:63:02:C8:9C:7B:5D:99:E7:DC:AE
    Fingerprint (SHA1):
        D4:52:E2:53:55:A0:E6:0B:FA:1F:E7:05:3B:ED:7D:68:2A:98:24:06
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3664: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144908 (0x3cdd6f4c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 15:08:42 2017
            Not After : Fri Oct 21 15:08:42 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:4e:36:00:6d:7d:77:1b:22:bf:87:0e:84:4f:05:56:
                    e5:5e:18:5c:5c:f1:ff:b3:2b:20:52:9b:8e:a9:96:43:
                    9e:e1:a9:3c:ce:1d:38:02:91:17:90:ae:b0:b4:86:b4:
                    a4:25:c5:32:17:fc:07:47:29:90:19:0f:7a:cf:7f:d6:
                    bb:ff:9c:8b:19:16:3b:f4:b8:8d:dd:fd:44:be:dc:ac:
                    e2:72:09:0c:6f:e9:cf:78:6d:be:4a:f6:67:b9:83:4d:
                    8c:c6:5f:f7:fc:ff:01:51:79:82:99:c3:59:04:5c:5b:
                    bf:80:99:c6:1c:cd:67:fa:75:99:0a:ad:05:b6:1a:45:
                    54:bd:30:b1:7d:6c:fe:27:b1:07:5f:55:69:c4:b4:a5:
                    cc:2a:12:28:02:ce:09:3f:3e:41:67:8f:34:e1:bd:33:
                    63:cb:b5:34:1c:e4:42:16:c5:d1:d0:67:c5:1f:11:e1:
                    59:c7:8e:f4:9a:82:0e:9b:dd:8c:e1:a8:45:f2:3c:17:
                    8f:68:3a:57:85:45:7a:70:92:e6:d1:b3:0d:ab:18:05:
                    d4:31:5a:0c:63:82:51:77:a3:6d:6b:e2:f9:49:da:5b:
                    9a:7e:a9:93:76:2c:e1:64:6e:3f:96:85:77:03:94:72:
                    bc:2e:75:f5:60:6d:a0:08:bf:8b:c4:d9:1d:36:02:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:82:db:88:d2:d7:96:84:c7:79:a1:20:30:89:87:29:
        90:21:de:78:10:ff:3a:71:10:41:79:9e:f6:d8:0c:5f:
        1d:85:eb:f7:13:6d:ab:83:3d:91:99:97:a4:af:e4:5e:
        39:e6:9f:08:a1:94:32:94:8a:65:98:99:5f:25:d4:7f:
        92:ca:f3:cf:da:b9:c1:7f:fb:7b:ff:a9:6b:f6:70:1a:
        94:aa:c8:de:de:80:af:a0:76:10:c1:35:eb:a4:89:8a:
        2c:b6:10:3e:15:4b:8b:27:d9:71:33:b8:f3:da:5e:1a:
        97:35:93:32:32:de:fa:2a:8e:a3:93:2a:4f:f7:1c:e7:
        45:cc:cc:bf:a4:ab:68:3e:ce:d3:f0:38:8d:f6:cd:e1:
        0c:d7:6d:aa:47:e7:34:26:27:dc:62:1c:94:1f:f1:77:
        26:b8:5c:13:fe:55:b7:e1:40:a3:66:b4:65:3b:85:46:
        2a:ee:1b:4a:d5:20:f9:f4:66:36:cb:a4:98:fa:a2:d3:
        1a:d8:c6:f2:3c:23:91:bb:e9:eb:c8:89:28:f2:f4:c4:
        4c:9a:18:98:37:bf:bd:63:da:87:82:0c:83:48:d5:c5:
        0c:5b:7e:ec:b5:ba:76:41:6f:b0:8d:a5:a3:d7:5d:90:
        70:51:3d:9c:8c:ba:7b:c8:5b:02:fc:c8:19:a5:e5:97
    Fingerprint (SHA-256):
        43:85:41:23:5B:8E:75:44:8E:70:C2:5B:09:45:E8:BD:D5:BC:90:7A:EC:00:63:02:C8:9C:7B:5D:99:E7:DC:AE
    Fingerprint (SHA1):
        D4:52:E2:53:55:A0:E6:0B:FA:1F:E7:05:3B:ED:7D:68:2A:98:24:06
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3665: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #3666: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144911 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3667: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #3668: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3669: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3670: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 1021144912   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3671: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3672: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3673: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3674: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021144913   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3675: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3676: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3677: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3678: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 1021144914   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3679: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3680: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #3681: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3682: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 1021144915   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3683: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3684: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #3685: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3686: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 1021144916   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3687: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3688: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #3689: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3690: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 1021144917   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3691: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3692: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3693: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #3694: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #3695: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3696: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #3697: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144911 (0x3cdd6f4f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 15:09:15 2017
            Not After : Fri Oct 21 15:09:15 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:ad:3c:6a:79:21:53:0f:d5:a1:fd:bf:1c:d7:fe:59:
                    18:91:54:18:aa:16:d5:b6:79:29:e5:23:10:66:64:8e:
                    f8:3b:71:97:1b:34:05:f8:82:ef:a3:34:f0:9a:72:d9:
                    98:0d:b3:38:de:b9:31:ba:79:c8:d5:a2:90:9c:5c:21:
                    79:b7:01:71:e4:45:5e:2e:de:a8:9c:bd:12:66:32:fd:
                    a8:a4:4a:22:c6:73:3d:f2:e0:0b:cb:e7:8f:ac:d3:e1:
                    ae:80:59:be:4e:47:ac:29:fe:22:ea:ca:02:c0:10:92:
                    2c:f7:05:d1:9a:ba:67:76:1a:8b:da:0d:6b:26:35:69:
                    1f:2b:e9:cb:87:c8:2d:90:2c:93:70:d7:a2:a5:46:09:
                    ea:4e:e5:f0:bd:a3:64:f8:eb:81:74:c4:52:bc:f9:57:
                    c4:b4:55:f2:da:8a:cf:57:02:9d:5c:20:2d:0d:02:10:
                    2c:d2:3b:83:ca:b9:a5:b6:c0:26:34:a2:13:47:3e:80:
                    ba:dc:01:98:dc:ab:35:5a:5e:39:7a:b7:56:f8:7f:41:
                    4c:99:0c:ab:00:c8:37:ca:19:0c:7a:1b:70:e6:85:2f:
                    fa:5a:bf:c9:85:be:9e:a3:43:b3:db:e9:94:33:23:76:
                    5d:1c:5c:91:4a:7e:46:4a:a2:24:bf:d2:31:78:54:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:5a:75:3d:b4:bd:18:a6:ba:f6:8a:4f:e5:56:24:08:
        b8:64:ac:73:fd:ce:b0:21:5c:71:a0:0f:59:4d:7c:4d:
        8b:0c:3b:05:9f:86:60:d5:fa:b4:61:5f:6a:c4:73:93:
        04:96:23:90:4e:02:38:26:e5:b2:70:e9:b9:22:9b:df:
        1c:16:56:fd:8b:1c:53:bb:9b:64:af:f4:c2:13:c0:af:
        3f:a5:f4:a5:9d:54:d7:1c:85:3d:5d:63:65:4d:d0:d8:
        72:f2:87:83:58:2e:7a:bf:45:ad:e5:3c:69:98:a8:8f:
        7f:38:10:e7:27:d5:64:53:f9:9d:a7:d1:35:43:2c:b0:
        d7:16:57:27:8c:d5:59:83:ed:3d:18:10:f3:31:72:08:
        f3:09:8b:bb:42:55:8e:d4:25:3b:0e:1a:aa:91:ac:fc:
        e6:cd:f0:dd:86:f9:a7:d9:c7:cc:c6:81:01:b4:42:a1:
        ba:9a:43:35:39:3a:4b:bf:02:b8:7c:5b:9a:e0:51:48:
        56:b0:21:c1:d0:c4:84:aa:d0:4a:bf:83:0c:48:34:32:
        4d:28:3a:f0:57:03:bf:e9:47:7f:12:6e:93:bd:3c:99:
        c1:46:13:a6:ac:ee:d2:5c:c7:e5:a6:e6:4e:c6:6e:b8:
        d1:f3:ee:06:e3:8b:d8:52:1f:cd:ec:49:cb:47:99:ef
    Fingerprint (SHA-256):
        8E:8F:CC:1B:67:24:5E:F9:DF:21:88:CA:3F:62:30:99:A4:97:CA:2D:EA:A3:40:23:AD:E8:B5:B2:AD:07:E1:24
    Fingerprint (SHA1):
        E7:AD:62:72:C5:6F:11:A6:9B:35:08:4A:92:66:C2:69:38:E2:36:B9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3698: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3699: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3700: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3701: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144911 (0x3cdd6f4f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 15:09:15 2017
            Not After : Fri Oct 21 15:09:15 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:ad:3c:6a:79:21:53:0f:d5:a1:fd:bf:1c:d7:fe:59:
                    18:91:54:18:aa:16:d5:b6:79:29:e5:23:10:66:64:8e:
                    f8:3b:71:97:1b:34:05:f8:82:ef:a3:34:f0:9a:72:d9:
                    98:0d:b3:38:de:b9:31:ba:79:c8:d5:a2:90:9c:5c:21:
                    79:b7:01:71:e4:45:5e:2e:de:a8:9c:bd:12:66:32:fd:
                    a8:a4:4a:22:c6:73:3d:f2:e0:0b:cb:e7:8f:ac:d3:e1:
                    ae:80:59:be:4e:47:ac:29:fe:22:ea:ca:02:c0:10:92:
                    2c:f7:05:d1:9a:ba:67:76:1a:8b:da:0d:6b:26:35:69:
                    1f:2b:e9:cb:87:c8:2d:90:2c:93:70:d7:a2:a5:46:09:
                    ea:4e:e5:f0:bd:a3:64:f8:eb:81:74:c4:52:bc:f9:57:
                    c4:b4:55:f2:da:8a:cf:57:02:9d:5c:20:2d:0d:02:10:
                    2c:d2:3b:83:ca:b9:a5:b6:c0:26:34:a2:13:47:3e:80:
                    ba:dc:01:98:dc:ab:35:5a:5e:39:7a:b7:56:f8:7f:41:
                    4c:99:0c:ab:00:c8:37:ca:19:0c:7a:1b:70:e6:85:2f:
                    fa:5a:bf:c9:85:be:9e:a3:43:b3:db:e9:94:33:23:76:
                    5d:1c:5c:91:4a:7e:46:4a:a2:24:bf:d2:31:78:54:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:5a:75:3d:b4:bd:18:a6:ba:f6:8a:4f:e5:56:24:08:
        b8:64:ac:73:fd:ce:b0:21:5c:71:a0:0f:59:4d:7c:4d:
        8b:0c:3b:05:9f:86:60:d5:fa:b4:61:5f:6a:c4:73:93:
        04:96:23:90:4e:02:38:26:e5:b2:70:e9:b9:22:9b:df:
        1c:16:56:fd:8b:1c:53:bb:9b:64:af:f4:c2:13:c0:af:
        3f:a5:f4:a5:9d:54:d7:1c:85:3d:5d:63:65:4d:d0:d8:
        72:f2:87:83:58:2e:7a:bf:45:ad:e5:3c:69:98:a8:8f:
        7f:38:10:e7:27:d5:64:53:f9:9d:a7:d1:35:43:2c:b0:
        d7:16:57:27:8c:d5:59:83:ed:3d:18:10:f3:31:72:08:
        f3:09:8b:bb:42:55:8e:d4:25:3b:0e:1a:aa:91:ac:fc:
        e6:cd:f0:dd:86:f9:a7:d9:c7:cc:c6:81:01:b4:42:a1:
        ba:9a:43:35:39:3a:4b:bf:02:b8:7c:5b:9a:e0:51:48:
        56:b0:21:c1:d0:c4:84:aa:d0:4a:bf:83:0c:48:34:32:
        4d:28:3a:f0:57:03:bf:e9:47:7f:12:6e:93:bd:3c:99:
        c1:46:13:a6:ac:ee:d2:5c:c7:e5:a6:e6:4e:c6:6e:b8:
        d1:f3:ee:06:e3:8b:d8:52:1f:cd:ec:49:cb:47:99:ef
    Fingerprint (SHA-256):
        8E:8F:CC:1B:67:24:5E:F9:DF:21:88:CA:3F:62:30:99:A4:97:CA:2D:EA:A3:40:23:AD:E8:B5:B2:AD:07:E1:24
    Fingerprint (SHA1):
        E7:AD:62:72:C5:6F:11:A6:9B:35:08:4A:92:66:C2:69:38:E2:36:B9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3702: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3703: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #3704: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144918 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3705: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #3706: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3707: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3708: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 1021144919   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3709: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3710: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #3711: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3712: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 1021144920   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3713: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3714: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #3715: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3716: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 1021144921   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3717: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3718: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3719: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3720: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 1021144922   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3721: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3722: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #3723: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3724: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 1021144923   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3725: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3726: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #3727: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3728: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 1021144924   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3729: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3730: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3731: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3732: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 1021144925   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3733: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3734: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #3735: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3736: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 1021144926   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3737: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3738: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #3739: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3740: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 1021144927   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3741: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3742: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #3743: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3744: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 1021144928   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3745: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3746: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #3747: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3748: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 1021144929   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3749: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3750: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #3751: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3752: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 1021144930   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3753: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3754: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #3755: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3756: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 1021144931   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3757: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3758: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #3759: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3760: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 1021144932   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3761: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3762: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #3763: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3764: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 1021144933   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3765: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3766: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #3767: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3768: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 1021144934   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3769: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3770: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #3771: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3772: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 1021144935   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3773: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3774: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #3775: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3776: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 1021144936   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3777: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3778: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #3779: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3780: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 1021144937   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3781: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3782: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #3783: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3784: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 1021144938   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3785: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3786: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #3787: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3788: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 1021144939   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3789: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3790: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #3791: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3792: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 1021144940   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3793: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3794: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #3795: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3796: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 1021144941   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3797: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3798: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #3799: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3800: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 1021144942   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3801: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3802: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #3803: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3804: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 1021144943   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3805: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3806: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #3807: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3808: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 1021144944   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3809: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3810: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #3811: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3812: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 1021144945   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3813: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3814: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #3815: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3816: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 1021144946   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3817: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3818: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #3819: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3820: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 1021144947   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3821: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3822: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3823: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144918 (0x3cdd6f56)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 15:10:02 2017
            Not After : Fri Oct 21 15:10:02 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f3:cb:f6:0c:5b:20:e9:43:14:3c:b5:b2:6d:55:e3:54:
                    2b:e6:1c:b7:8b:90:3a:6b:b4:77:73:04:01:f9:46:16:
                    6a:4f:02:0d:a6:bc:30:34:d7:e6:75:d0:4a:8d:aa:ef:
                    88:ba:26:f5:bf:01:75:37:41:43:12:9d:64:b6:3d:19:
                    a2:90:d0:d0:c8:8e:11:09:bb:4c:ce:60:5e:7a:c8:fa:
                    bc:01:02:ca:d8:98:62:44:f6:01:b9:a3:ae:37:a5:cd:
                    bd:50:64:46:43:4c:47:ab:39:23:d6:3a:87:6f:4f:2b:
                    5b:20:86:bb:1d:78:1f:57:74:96:56:84:75:80:dd:31:
                    74:93:70:83:ea:6a:cf:da:c9:d6:96:ec:77:06:7f:ce:
                    c6:82:10:8d:ed:c8:6b:81:42:4c:ac:ae:e3:e4:68:a6:
                    4b:a1:b8:a0:1f:6e:8a:0e:50:23:c9:98:8c:d4:c4:cf:
                    42:ef:6f:20:ab:26:9e:ff:df:68:06:00:1f:20:bb:3e:
                    a2:7b:fd:bf:59:11:1f:11:61:c0:1d:ad:80:c9:3f:d3:
                    d2:b7:4a:cf:a9:e3:39:c5:9b:58:9f:d8:4a:55:24:73:
                    b5:fc:98:8b:44:f8:8c:58:18:e5:47:f9:fc:f1:1e:b9:
                    20:74:fd:3f:1a:96:82:ca:46:ec:f5:24:12:a1:fe:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:18:92:33:5e:93:f4:73:22:87:2c:75:55:55:f9:53:
        d9:fb:5e:f1:05:f8:cf:34:ba:90:7a:aa:d1:cc:54:16:
        35:54:c6:75:bf:0a:a3:5f:49:f7:88:aa:11:2b:31:71:
        ff:2e:c3:77:4c:2d:c0:ff:9e:e7:21:75:65:d0:06:56:
        34:e5:0a:ca:83:d6:a4:c7:64:0f:98:38:09:df:fe:88:
        55:10:5b:0a:94:29:29:f7:06:98:d1:13:f4:e3:fc:ad:
        6e:09:dc:2e:73:54:7f:31:e6:ca:2d:ac:77:5d:c9:17:
        3e:94:c2:ef:04:9a:7b:65:63:79:d8:3f:0f:2b:1d:c4:
        f5:1d:98:0b:d3:c1:09:b8:43:16:ce:6b:5d:c6:d7:60:
        95:83:3d:ff:2d:6c:42:83:cf:d7:02:5d:27:9b:0c:3f:
        81:e2:5d:85:f5:e8:9e:18:e7:19:26:ed:b1:35:77:28:
        96:c6:5f:7a:bf:ce:c1:5f:30:f2:2e:32:ea:26:5d:ac:
        ef:51:c9:b2:84:d7:dc:f6:86:94:b1:7e:8b:95:dd:08:
        75:1a:60:7c:46:9e:b5:2d:84:f2:e4:14:51:ca:33:94:
        b2:41:fc:fc:90:59:65:9e:04:ee:0a:c1:04:a9:c3:84:
        a1:c7:fe:a0:f7:5b:ac:d3:94:b9:4d:3c:14:94:58:0f
    Fingerprint (SHA-256):
        71:90:8B:F1:00:37:DA:4D:31:55:D0:3F:25:01:00:0F:4D:A4:26:1E:F2:A5:4C:F5:34:0A:A6:8B:29:C6:D9:9C
    Fingerprint (SHA1):
        8A:C0:4D:F7:2C:C3:9A:0C:F0:3E:D6:43:DC:7D:B3:7B:50:49:F0:56
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3824: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3825: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144918 (0x3cdd6f56)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 15:10:02 2017
            Not After : Fri Oct 21 15:10:02 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f3:cb:f6:0c:5b:20:e9:43:14:3c:b5:b2:6d:55:e3:54:
                    2b:e6:1c:b7:8b:90:3a:6b:b4:77:73:04:01:f9:46:16:
                    6a:4f:02:0d:a6:bc:30:34:d7:e6:75:d0:4a:8d:aa:ef:
                    88:ba:26:f5:bf:01:75:37:41:43:12:9d:64:b6:3d:19:
                    a2:90:d0:d0:c8:8e:11:09:bb:4c:ce:60:5e:7a:c8:fa:
                    bc:01:02:ca:d8:98:62:44:f6:01:b9:a3:ae:37:a5:cd:
                    bd:50:64:46:43:4c:47:ab:39:23:d6:3a:87:6f:4f:2b:
                    5b:20:86:bb:1d:78:1f:57:74:96:56:84:75:80:dd:31:
                    74:93:70:83:ea:6a:cf:da:c9:d6:96:ec:77:06:7f:ce:
                    c6:82:10:8d:ed:c8:6b:81:42:4c:ac:ae:e3:e4:68:a6:
                    4b:a1:b8:a0:1f:6e:8a:0e:50:23:c9:98:8c:d4:c4:cf:
                    42:ef:6f:20:ab:26:9e:ff:df:68:06:00:1f:20:bb:3e:
                    a2:7b:fd:bf:59:11:1f:11:61:c0:1d:ad:80:c9:3f:d3:
                    d2:b7:4a:cf:a9:e3:39:c5:9b:58:9f:d8:4a:55:24:73:
                    b5:fc:98:8b:44:f8:8c:58:18:e5:47:f9:fc:f1:1e:b9:
                    20:74:fd:3f:1a:96:82:ca:46:ec:f5:24:12:a1:fe:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:18:92:33:5e:93:f4:73:22:87:2c:75:55:55:f9:53:
        d9:fb:5e:f1:05:f8:cf:34:ba:90:7a:aa:d1:cc:54:16:
        35:54:c6:75:bf:0a:a3:5f:49:f7:88:aa:11:2b:31:71:
        ff:2e:c3:77:4c:2d:c0:ff:9e:e7:21:75:65:d0:06:56:
        34:e5:0a:ca:83:d6:a4:c7:64:0f:98:38:09:df:fe:88:
        55:10:5b:0a:94:29:29:f7:06:98:d1:13:f4:e3:fc:ad:
        6e:09:dc:2e:73:54:7f:31:e6:ca:2d:ac:77:5d:c9:17:
        3e:94:c2:ef:04:9a:7b:65:63:79:d8:3f:0f:2b:1d:c4:
        f5:1d:98:0b:d3:c1:09:b8:43:16:ce:6b:5d:c6:d7:60:
        95:83:3d:ff:2d:6c:42:83:cf:d7:02:5d:27:9b:0c:3f:
        81:e2:5d:85:f5:e8:9e:18:e7:19:26:ed:b1:35:77:28:
        96:c6:5f:7a:bf:ce:c1:5f:30:f2:2e:32:ea:26:5d:ac:
        ef:51:c9:b2:84:d7:dc:f6:86:94:b1:7e:8b:95:dd:08:
        75:1a:60:7c:46:9e:b5:2d:84:f2:e4:14:51:ca:33:94:
        b2:41:fc:fc:90:59:65:9e:04:ee:0a:c1:04:a9:c3:84:
        a1:c7:fe:a0:f7:5b:ac:d3:94:b9:4d:3c:14:94:58:0f
    Fingerprint (SHA-256):
        71:90:8B:F1:00:37:DA:4D:31:55:D0:3F:25:01:00:0F:4D:A4:26:1E:F2:A5:4C:F5:34:0A:A6:8B:29:C6:D9:9C
    Fingerprint (SHA1):
        8A:C0:4D:F7:2C:C3:9A:0C:F0:3E:D6:43:DC:7D:B3:7B:50:49:F0:56
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3826: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3827: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3828: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3829: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144918 (0x3cdd6f56)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 15:10:02 2017
            Not After : Fri Oct 21 15:10:02 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f3:cb:f6:0c:5b:20:e9:43:14:3c:b5:b2:6d:55:e3:54:
                    2b:e6:1c:b7:8b:90:3a:6b:b4:77:73:04:01:f9:46:16:
                    6a:4f:02:0d:a6:bc:30:34:d7:e6:75:d0:4a:8d:aa:ef:
                    88:ba:26:f5:bf:01:75:37:41:43:12:9d:64:b6:3d:19:
                    a2:90:d0:d0:c8:8e:11:09:bb:4c:ce:60:5e:7a:c8:fa:
                    bc:01:02:ca:d8:98:62:44:f6:01:b9:a3:ae:37:a5:cd:
                    bd:50:64:46:43:4c:47:ab:39:23:d6:3a:87:6f:4f:2b:
                    5b:20:86:bb:1d:78:1f:57:74:96:56:84:75:80:dd:31:
                    74:93:70:83:ea:6a:cf:da:c9:d6:96:ec:77:06:7f:ce:
                    c6:82:10:8d:ed:c8:6b:81:42:4c:ac:ae:e3:e4:68:a6:
                    4b:a1:b8:a0:1f:6e:8a:0e:50:23:c9:98:8c:d4:c4:cf:
                    42:ef:6f:20:ab:26:9e:ff:df:68:06:00:1f:20:bb:3e:
                    a2:7b:fd:bf:59:11:1f:11:61:c0:1d:ad:80:c9:3f:d3:
                    d2:b7:4a:cf:a9:e3:39:c5:9b:58:9f:d8:4a:55:24:73:
                    b5:fc:98:8b:44:f8:8c:58:18:e5:47:f9:fc:f1:1e:b9:
                    20:74:fd:3f:1a:96:82:ca:46:ec:f5:24:12:a1:fe:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:18:92:33:5e:93:f4:73:22:87:2c:75:55:55:f9:53:
        d9:fb:5e:f1:05:f8:cf:34:ba:90:7a:aa:d1:cc:54:16:
        35:54:c6:75:bf:0a:a3:5f:49:f7:88:aa:11:2b:31:71:
        ff:2e:c3:77:4c:2d:c0:ff:9e:e7:21:75:65:d0:06:56:
        34:e5:0a:ca:83:d6:a4:c7:64:0f:98:38:09:df:fe:88:
        55:10:5b:0a:94:29:29:f7:06:98:d1:13:f4:e3:fc:ad:
        6e:09:dc:2e:73:54:7f:31:e6:ca:2d:ac:77:5d:c9:17:
        3e:94:c2:ef:04:9a:7b:65:63:79:d8:3f:0f:2b:1d:c4:
        f5:1d:98:0b:d3:c1:09:b8:43:16:ce:6b:5d:c6:d7:60:
        95:83:3d:ff:2d:6c:42:83:cf:d7:02:5d:27:9b:0c:3f:
        81:e2:5d:85:f5:e8:9e:18:e7:19:26:ed:b1:35:77:28:
        96:c6:5f:7a:bf:ce:c1:5f:30:f2:2e:32:ea:26:5d:ac:
        ef:51:c9:b2:84:d7:dc:f6:86:94:b1:7e:8b:95:dd:08:
        75:1a:60:7c:46:9e:b5:2d:84:f2:e4:14:51:ca:33:94:
        b2:41:fc:fc:90:59:65:9e:04:ee:0a:c1:04:a9:c3:84:
        a1:c7:fe:a0:f7:5b:ac:d3:94:b9:4d:3c:14:94:58:0f
    Fingerprint (SHA-256):
        71:90:8B:F1:00:37:DA:4D:31:55:D0:3F:25:01:00:0F:4D:A4:26:1E:F2:A5:4C:F5:34:0A:A6:8B:29:C6:D9:9C
    Fingerprint (SHA1):
        8A:C0:4D:F7:2C:C3:9A:0C:F0:3E:D6:43:DC:7D:B3:7B:50:49:F0:56
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3830: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3831: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3832: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3833: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144918 (0x3cdd6f56)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 15:10:02 2017
            Not After : Fri Oct 21 15:10:02 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f3:cb:f6:0c:5b:20:e9:43:14:3c:b5:b2:6d:55:e3:54:
                    2b:e6:1c:b7:8b:90:3a:6b:b4:77:73:04:01:f9:46:16:
                    6a:4f:02:0d:a6:bc:30:34:d7:e6:75:d0:4a:8d:aa:ef:
                    88:ba:26:f5:bf:01:75:37:41:43:12:9d:64:b6:3d:19:
                    a2:90:d0:d0:c8:8e:11:09:bb:4c:ce:60:5e:7a:c8:fa:
                    bc:01:02:ca:d8:98:62:44:f6:01:b9:a3:ae:37:a5:cd:
                    bd:50:64:46:43:4c:47:ab:39:23:d6:3a:87:6f:4f:2b:
                    5b:20:86:bb:1d:78:1f:57:74:96:56:84:75:80:dd:31:
                    74:93:70:83:ea:6a:cf:da:c9:d6:96:ec:77:06:7f:ce:
                    c6:82:10:8d:ed:c8:6b:81:42:4c:ac:ae:e3:e4:68:a6:
                    4b:a1:b8:a0:1f:6e:8a:0e:50:23:c9:98:8c:d4:c4:cf:
                    42:ef:6f:20:ab:26:9e:ff:df:68:06:00:1f:20:bb:3e:
                    a2:7b:fd:bf:59:11:1f:11:61:c0:1d:ad:80:c9:3f:d3:
                    d2:b7:4a:cf:a9:e3:39:c5:9b:58:9f:d8:4a:55:24:73:
                    b5:fc:98:8b:44:f8:8c:58:18:e5:47:f9:fc:f1:1e:b9:
                    20:74:fd:3f:1a:96:82:ca:46:ec:f5:24:12:a1:fe:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:18:92:33:5e:93:f4:73:22:87:2c:75:55:55:f9:53:
        d9:fb:5e:f1:05:f8:cf:34:ba:90:7a:aa:d1:cc:54:16:
        35:54:c6:75:bf:0a:a3:5f:49:f7:88:aa:11:2b:31:71:
        ff:2e:c3:77:4c:2d:c0:ff:9e:e7:21:75:65:d0:06:56:
        34:e5:0a:ca:83:d6:a4:c7:64:0f:98:38:09:df:fe:88:
        55:10:5b:0a:94:29:29:f7:06:98:d1:13:f4:e3:fc:ad:
        6e:09:dc:2e:73:54:7f:31:e6:ca:2d:ac:77:5d:c9:17:
        3e:94:c2:ef:04:9a:7b:65:63:79:d8:3f:0f:2b:1d:c4:
        f5:1d:98:0b:d3:c1:09:b8:43:16:ce:6b:5d:c6:d7:60:
        95:83:3d:ff:2d:6c:42:83:cf:d7:02:5d:27:9b:0c:3f:
        81:e2:5d:85:f5:e8:9e:18:e7:19:26:ed:b1:35:77:28:
        96:c6:5f:7a:bf:ce:c1:5f:30:f2:2e:32:ea:26:5d:ac:
        ef:51:c9:b2:84:d7:dc:f6:86:94:b1:7e:8b:95:dd:08:
        75:1a:60:7c:46:9e:b5:2d:84:f2:e4:14:51:ca:33:94:
        b2:41:fc:fc:90:59:65:9e:04:ee:0a:c1:04:a9:c3:84:
        a1:c7:fe:a0:f7:5b:ac:d3:94:b9:4d:3c:14:94:58:0f
    Fingerprint (SHA-256):
        71:90:8B:F1:00:37:DA:4D:31:55:D0:3F:25:01:00:0F:4D:A4:26:1E:F2:A5:4C:F5:34:0A:A6:8B:29:C6:D9:9C
    Fingerprint (SHA1):
        8A:C0:4D:F7:2C:C3:9A:0C:F0:3E:D6:43:DC:7D:B3:7B:50:49:F0:56
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3834: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144918 (0x3cdd6f56)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 15:10:02 2017
            Not After : Fri Oct 21 15:10:02 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f3:cb:f6:0c:5b:20:e9:43:14:3c:b5:b2:6d:55:e3:54:
                    2b:e6:1c:b7:8b:90:3a:6b:b4:77:73:04:01:f9:46:16:
                    6a:4f:02:0d:a6:bc:30:34:d7:e6:75:d0:4a:8d:aa:ef:
                    88:ba:26:f5:bf:01:75:37:41:43:12:9d:64:b6:3d:19:
                    a2:90:d0:d0:c8:8e:11:09:bb:4c:ce:60:5e:7a:c8:fa:
                    bc:01:02:ca:d8:98:62:44:f6:01:b9:a3:ae:37:a5:cd:
                    bd:50:64:46:43:4c:47:ab:39:23:d6:3a:87:6f:4f:2b:
                    5b:20:86:bb:1d:78:1f:57:74:96:56:84:75:80:dd:31:
                    74:93:70:83:ea:6a:cf:da:c9:d6:96:ec:77:06:7f:ce:
                    c6:82:10:8d:ed:c8:6b:81:42:4c:ac:ae:e3:e4:68:a6:
                    4b:a1:b8:a0:1f:6e:8a:0e:50:23:c9:98:8c:d4:c4:cf:
                    42:ef:6f:20:ab:26:9e:ff:df:68:06:00:1f:20:bb:3e:
                    a2:7b:fd:bf:59:11:1f:11:61:c0:1d:ad:80:c9:3f:d3:
                    d2:b7:4a:cf:a9:e3:39:c5:9b:58:9f:d8:4a:55:24:73:
                    b5:fc:98:8b:44:f8:8c:58:18:e5:47:f9:fc:f1:1e:b9:
                    20:74:fd:3f:1a:96:82:ca:46:ec:f5:24:12:a1:fe:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:18:92:33:5e:93:f4:73:22:87:2c:75:55:55:f9:53:
        d9:fb:5e:f1:05:f8:cf:34:ba:90:7a:aa:d1:cc:54:16:
        35:54:c6:75:bf:0a:a3:5f:49:f7:88:aa:11:2b:31:71:
        ff:2e:c3:77:4c:2d:c0:ff:9e:e7:21:75:65:d0:06:56:
        34:e5:0a:ca:83:d6:a4:c7:64:0f:98:38:09:df:fe:88:
        55:10:5b:0a:94:29:29:f7:06:98:d1:13:f4:e3:fc:ad:
        6e:09:dc:2e:73:54:7f:31:e6:ca:2d:ac:77:5d:c9:17:
        3e:94:c2:ef:04:9a:7b:65:63:79:d8:3f:0f:2b:1d:c4:
        f5:1d:98:0b:d3:c1:09:b8:43:16:ce:6b:5d:c6:d7:60:
        95:83:3d:ff:2d:6c:42:83:cf:d7:02:5d:27:9b:0c:3f:
        81:e2:5d:85:f5:e8:9e:18:e7:19:26:ed:b1:35:77:28:
        96:c6:5f:7a:bf:ce:c1:5f:30:f2:2e:32:ea:26:5d:ac:
        ef:51:c9:b2:84:d7:dc:f6:86:94:b1:7e:8b:95:dd:08:
        75:1a:60:7c:46:9e:b5:2d:84:f2:e4:14:51:ca:33:94:
        b2:41:fc:fc:90:59:65:9e:04:ee:0a:c1:04:a9:c3:84:
        a1:c7:fe:a0:f7:5b:ac:d3:94:b9:4d:3c:14:94:58:0f
    Fingerprint (SHA-256):
        71:90:8B:F1:00:37:DA:4D:31:55:D0:3F:25:01:00:0F:4D:A4:26:1E:F2:A5:4C:F5:34:0A:A6:8B:29:C6:D9:9C
    Fingerprint (SHA1):
        8A:C0:4D:F7:2C:C3:9A:0C:F0:3E:D6:43:DC:7D:B3:7B:50:49:F0:56
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3835: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3836: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144918 (0x3cdd6f56)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 15:10:02 2017
            Not After : Fri Oct 21 15:10:02 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f3:cb:f6:0c:5b:20:e9:43:14:3c:b5:b2:6d:55:e3:54:
                    2b:e6:1c:b7:8b:90:3a:6b:b4:77:73:04:01:f9:46:16:
                    6a:4f:02:0d:a6:bc:30:34:d7:e6:75:d0:4a:8d:aa:ef:
                    88:ba:26:f5:bf:01:75:37:41:43:12:9d:64:b6:3d:19:
                    a2:90:d0:d0:c8:8e:11:09:bb:4c:ce:60:5e:7a:c8:fa:
                    bc:01:02:ca:d8:98:62:44:f6:01:b9:a3:ae:37:a5:cd:
                    bd:50:64:46:43:4c:47:ab:39:23:d6:3a:87:6f:4f:2b:
                    5b:20:86:bb:1d:78:1f:57:74:96:56:84:75:80:dd:31:
                    74:93:70:83:ea:6a:cf:da:c9:d6:96:ec:77:06:7f:ce:
                    c6:82:10:8d:ed:c8:6b:81:42:4c:ac:ae:e3:e4:68:a6:
                    4b:a1:b8:a0:1f:6e:8a:0e:50:23:c9:98:8c:d4:c4:cf:
                    42:ef:6f:20:ab:26:9e:ff:df:68:06:00:1f:20:bb:3e:
                    a2:7b:fd:bf:59:11:1f:11:61:c0:1d:ad:80:c9:3f:d3:
                    d2:b7:4a:cf:a9:e3:39:c5:9b:58:9f:d8:4a:55:24:73:
                    b5:fc:98:8b:44:f8:8c:58:18:e5:47:f9:fc:f1:1e:b9:
                    20:74:fd:3f:1a:96:82:ca:46:ec:f5:24:12:a1:fe:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:18:92:33:5e:93:f4:73:22:87:2c:75:55:55:f9:53:
        d9:fb:5e:f1:05:f8:cf:34:ba:90:7a:aa:d1:cc:54:16:
        35:54:c6:75:bf:0a:a3:5f:49:f7:88:aa:11:2b:31:71:
        ff:2e:c3:77:4c:2d:c0:ff:9e:e7:21:75:65:d0:06:56:
        34:e5:0a:ca:83:d6:a4:c7:64:0f:98:38:09:df:fe:88:
        55:10:5b:0a:94:29:29:f7:06:98:d1:13:f4:e3:fc:ad:
        6e:09:dc:2e:73:54:7f:31:e6:ca:2d:ac:77:5d:c9:17:
        3e:94:c2:ef:04:9a:7b:65:63:79:d8:3f:0f:2b:1d:c4:
        f5:1d:98:0b:d3:c1:09:b8:43:16:ce:6b:5d:c6:d7:60:
        95:83:3d:ff:2d:6c:42:83:cf:d7:02:5d:27:9b:0c:3f:
        81:e2:5d:85:f5:e8:9e:18:e7:19:26:ed:b1:35:77:28:
        96:c6:5f:7a:bf:ce:c1:5f:30:f2:2e:32:ea:26:5d:ac:
        ef:51:c9:b2:84:d7:dc:f6:86:94:b1:7e:8b:95:dd:08:
        75:1a:60:7c:46:9e:b5:2d:84:f2:e4:14:51:ca:33:94:
        b2:41:fc:fc:90:59:65:9e:04:ee:0a:c1:04:a9:c3:84:
        a1:c7:fe:a0:f7:5b:ac:d3:94:b9:4d:3c:14:94:58:0f
    Fingerprint (SHA-256):
        71:90:8B:F1:00:37:DA:4D:31:55:D0:3F:25:01:00:0F:4D:A4:26:1E:F2:A5:4C:F5:34:0A:A6:8B:29:C6:D9:9C
    Fingerprint (SHA1):
        8A:C0:4D:F7:2C:C3:9A:0C:F0:3E:D6:43:DC:7D:B3:7B:50:49:F0:56
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3837: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3838: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3839: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3840: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144918 (0x3cdd6f56)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 15:10:02 2017
            Not After : Fri Oct 21 15:10:02 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f3:cb:f6:0c:5b:20:e9:43:14:3c:b5:b2:6d:55:e3:54:
                    2b:e6:1c:b7:8b:90:3a:6b:b4:77:73:04:01:f9:46:16:
                    6a:4f:02:0d:a6:bc:30:34:d7:e6:75:d0:4a:8d:aa:ef:
                    88:ba:26:f5:bf:01:75:37:41:43:12:9d:64:b6:3d:19:
                    a2:90:d0:d0:c8:8e:11:09:bb:4c:ce:60:5e:7a:c8:fa:
                    bc:01:02:ca:d8:98:62:44:f6:01:b9:a3:ae:37:a5:cd:
                    bd:50:64:46:43:4c:47:ab:39:23:d6:3a:87:6f:4f:2b:
                    5b:20:86:bb:1d:78:1f:57:74:96:56:84:75:80:dd:31:
                    74:93:70:83:ea:6a:cf:da:c9:d6:96:ec:77:06:7f:ce:
                    c6:82:10:8d:ed:c8:6b:81:42:4c:ac:ae:e3:e4:68:a6:
                    4b:a1:b8:a0:1f:6e:8a:0e:50:23:c9:98:8c:d4:c4:cf:
                    42:ef:6f:20:ab:26:9e:ff:df:68:06:00:1f:20:bb:3e:
                    a2:7b:fd:bf:59:11:1f:11:61:c0:1d:ad:80:c9:3f:d3:
                    d2:b7:4a:cf:a9:e3:39:c5:9b:58:9f:d8:4a:55:24:73:
                    b5:fc:98:8b:44:f8:8c:58:18:e5:47:f9:fc:f1:1e:b9:
                    20:74:fd:3f:1a:96:82:ca:46:ec:f5:24:12:a1:fe:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:18:92:33:5e:93:f4:73:22:87:2c:75:55:55:f9:53:
        d9:fb:5e:f1:05:f8:cf:34:ba:90:7a:aa:d1:cc:54:16:
        35:54:c6:75:bf:0a:a3:5f:49:f7:88:aa:11:2b:31:71:
        ff:2e:c3:77:4c:2d:c0:ff:9e:e7:21:75:65:d0:06:56:
        34:e5:0a:ca:83:d6:a4:c7:64:0f:98:38:09:df:fe:88:
        55:10:5b:0a:94:29:29:f7:06:98:d1:13:f4:e3:fc:ad:
        6e:09:dc:2e:73:54:7f:31:e6:ca:2d:ac:77:5d:c9:17:
        3e:94:c2:ef:04:9a:7b:65:63:79:d8:3f:0f:2b:1d:c4:
        f5:1d:98:0b:d3:c1:09:b8:43:16:ce:6b:5d:c6:d7:60:
        95:83:3d:ff:2d:6c:42:83:cf:d7:02:5d:27:9b:0c:3f:
        81:e2:5d:85:f5:e8:9e:18:e7:19:26:ed:b1:35:77:28:
        96:c6:5f:7a:bf:ce:c1:5f:30:f2:2e:32:ea:26:5d:ac:
        ef:51:c9:b2:84:d7:dc:f6:86:94:b1:7e:8b:95:dd:08:
        75:1a:60:7c:46:9e:b5:2d:84:f2:e4:14:51:ca:33:94:
        b2:41:fc:fc:90:59:65:9e:04:ee:0a:c1:04:a9:c3:84:
        a1:c7:fe:a0:f7:5b:ac:d3:94:b9:4d:3c:14:94:58:0f
    Fingerprint (SHA-256):
        71:90:8B:F1:00:37:DA:4D:31:55:D0:3F:25:01:00:0F:4D:A4:26:1E:F2:A5:4C:F5:34:0A:A6:8B:29:C6:D9:9C
    Fingerprint (SHA1):
        8A:C0:4D:F7:2C:C3:9A:0C:F0:3E:D6:43:DC:7D:B3:7B:50:49:F0:56
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3841: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144918 (0x3cdd6f56)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 15:10:02 2017
            Not After : Fri Oct 21 15:10:02 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f3:cb:f6:0c:5b:20:e9:43:14:3c:b5:b2:6d:55:e3:54:
                    2b:e6:1c:b7:8b:90:3a:6b:b4:77:73:04:01:f9:46:16:
                    6a:4f:02:0d:a6:bc:30:34:d7:e6:75:d0:4a:8d:aa:ef:
                    88:ba:26:f5:bf:01:75:37:41:43:12:9d:64:b6:3d:19:
                    a2:90:d0:d0:c8:8e:11:09:bb:4c:ce:60:5e:7a:c8:fa:
                    bc:01:02:ca:d8:98:62:44:f6:01:b9:a3:ae:37:a5:cd:
                    bd:50:64:46:43:4c:47:ab:39:23:d6:3a:87:6f:4f:2b:
                    5b:20:86:bb:1d:78:1f:57:74:96:56:84:75:80:dd:31:
                    74:93:70:83:ea:6a:cf:da:c9:d6:96:ec:77:06:7f:ce:
                    c6:82:10:8d:ed:c8:6b:81:42:4c:ac:ae:e3:e4:68:a6:
                    4b:a1:b8:a0:1f:6e:8a:0e:50:23:c9:98:8c:d4:c4:cf:
                    42:ef:6f:20:ab:26:9e:ff:df:68:06:00:1f:20:bb:3e:
                    a2:7b:fd:bf:59:11:1f:11:61:c0:1d:ad:80:c9:3f:d3:
                    d2:b7:4a:cf:a9:e3:39:c5:9b:58:9f:d8:4a:55:24:73:
                    b5:fc:98:8b:44:f8:8c:58:18:e5:47:f9:fc:f1:1e:b9:
                    20:74:fd:3f:1a:96:82:ca:46:ec:f5:24:12:a1:fe:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:18:92:33:5e:93:f4:73:22:87:2c:75:55:55:f9:53:
        d9:fb:5e:f1:05:f8:cf:34:ba:90:7a:aa:d1:cc:54:16:
        35:54:c6:75:bf:0a:a3:5f:49:f7:88:aa:11:2b:31:71:
        ff:2e:c3:77:4c:2d:c0:ff:9e:e7:21:75:65:d0:06:56:
        34:e5:0a:ca:83:d6:a4:c7:64:0f:98:38:09:df:fe:88:
        55:10:5b:0a:94:29:29:f7:06:98:d1:13:f4:e3:fc:ad:
        6e:09:dc:2e:73:54:7f:31:e6:ca:2d:ac:77:5d:c9:17:
        3e:94:c2:ef:04:9a:7b:65:63:79:d8:3f:0f:2b:1d:c4:
        f5:1d:98:0b:d3:c1:09:b8:43:16:ce:6b:5d:c6:d7:60:
        95:83:3d:ff:2d:6c:42:83:cf:d7:02:5d:27:9b:0c:3f:
        81:e2:5d:85:f5:e8:9e:18:e7:19:26:ed:b1:35:77:28:
        96:c6:5f:7a:bf:ce:c1:5f:30:f2:2e:32:ea:26:5d:ac:
        ef:51:c9:b2:84:d7:dc:f6:86:94:b1:7e:8b:95:dd:08:
        75:1a:60:7c:46:9e:b5:2d:84:f2:e4:14:51:ca:33:94:
        b2:41:fc:fc:90:59:65:9e:04:ee:0a:c1:04:a9:c3:84:
        a1:c7:fe:a0:f7:5b:ac:d3:94:b9:4d:3c:14:94:58:0f
    Fingerprint (SHA-256):
        71:90:8B:F1:00:37:DA:4D:31:55:D0:3F:25:01:00:0F:4D:A4:26:1E:F2:A5:4C:F5:34:0A:A6:8B:29:C6:D9:9C
    Fingerprint (SHA1):
        8A:C0:4D:F7:2C:C3:9A:0C:F0:3E:D6:43:DC:7D:B3:7B:50:49:F0:56
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3842: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144918 (0x3cdd6f56)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 15:10:02 2017
            Not After : Fri Oct 21 15:10:02 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f3:cb:f6:0c:5b:20:e9:43:14:3c:b5:b2:6d:55:e3:54:
                    2b:e6:1c:b7:8b:90:3a:6b:b4:77:73:04:01:f9:46:16:
                    6a:4f:02:0d:a6:bc:30:34:d7:e6:75:d0:4a:8d:aa:ef:
                    88:ba:26:f5:bf:01:75:37:41:43:12:9d:64:b6:3d:19:
                    a2:90:d0:d0:c8:8e:11:09:bb:4c:ce:60:5e:7a:c8:fa:
                    bc:01:02:ca:d8:98:62:44:f6:01:b9:a3:ae:37:a5:cd:
                    bd:50:64:46:43:4c:47:ab:39:23:d6:3a:87:6f:4f:2b:
                    5b:20:86:bb:1d:78:1f:57:74:96:56:84:75:80:dd:31:
                    74:93:70:83:ea:6a:cf:da:c9:d6:96:ec:77:06:7f:ce:
                    c6:82:10:8d:ed:c8:6b:81:42:4c:ac:ae:e3:e4:68:a6:
                    4b:a1:b8:a0:1f:6e:8a:0e:50:23:c9:98:8c:d4:c4:cf:
                    42:ef:6f:20:ab:26:9e:ff:df:68:06:00:1f:20:bb:3e:
                    a2:7b:fd:bf:59:11:1f:11:61:c0:1d:ad:80:c9:3f:d3:
                    d2:b7:4a:cf:a9:e3:39:c5:9b:58:9f:d8:4a:55:24:73:
                    b5:fc:98:8b:44:f8:8c:58:18:e5:47:f9:fc:f1:1e:b9:
                    20:74:fd:3f:1a:96:82:ca:46:ec:f5:24:12:a1:fe:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:18:92:33:5e:93:f4:73:22:87:2c:75:55:55:f9:53:
        d9:fb:5e:f1:05:f8:cf:34:ba:90:7a:aa:d1:cc:54:16:
        35:54:c6:75:bf:0a:a3:5f:49:f7:88:aa:11:2b:31:71:
        ff:2e:c3:77:4c:2d:c0:ff:9e:e7:21:75:65:d0:06:56:
        34:e5:0a:ca:83:d6:a4:c7:64:0f:98:38:09:df:fe:88:
        55:10:5b:0a:94:29:29:f7:06:98:d1:13:f4:e3:fc:ad:
        6e:09:dc:2e:73:54:7f:31:e6:ca:2d:ac:77:5d:c9:17:
        3e:94:c2:ef:04:9a:7b:65:63:79:d8:3f:0f:2b:1d:c4:
        f5:1d:98:0b:d3:c1:09:b8:43:16:ce:6b:5d:c6:d7:60:
        95:83:3d:ff:2d:6c:42:83:cf:d7:02:5d:27:9b:0c:3f:
        81:e2:5d:85:f5:e8:9e:18:e7:19:26:ed:b1:35:77:28:
        96:c6:5f:7a:bf:ce:c1:5f:30:f2:2e:32:ea:26:5d:ac:
        ef:51:c9:b2:84:d7:dc:f6:86:94:b1:7e:8b:95:dd:08:
        75:1a:60:7c:46:9e:b5:2d:84:f2:e4:14:51:ca:33:94:
        b2:41:fc:fc:90:59:65:9e:04:ee:0a:c1:04:a9:c3:84:
        a1:c7:fe:a0:f7:5b:ac:d3:94:b9:4d:3c:14:94:58:0f
    Fingerprint (SHA-256):
        71:90:8B:F1:00:37:DA:4D:31:55:D0:3F:25:01:00:0F:4D:A4:26:1E:F2:A5:4C:F5:34:0A:A6:8B:29:C6:D9:9C
    Fingerprint (SHA1):
        8A:C0:4D:F7:2C:C3:9A:0C:F0:3E:D6:43:DC:7D:B3:7B:50:49:F0:56
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3843: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144918 (0x3cdd6f56)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 15:10:02 2017
            Not After : Fri Oct 21 15:10:02 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f3:cb:f6:0c:5b:20:e9:43:14:3c:b5:b2:6d:55:e3:54:
                    2b:e6:1c:b7:8b:90:3a:6b:b4:77:73:04:01:f9:46:16:
                    6a:4f:02:0d:a6:bc:30:34:d7:e6:75:d0:4a:8d:aa:ef:
                    88:ba:26:f5:bf:01:75:37:41:43:12:9d:64:b6:3d:19:
                    a2:90:d0:d0:c8:8e:11:09:bb:4c:ce:60:5e:7a:c8:fa:
                    bc:01:02:ca:d8:98:62:44:f6:01:b9:a3:ae:37:a5:cd:
                    bd:50:64:46:43:4c:47:ab:39:23:d6:3a:87:6f:4f:2b:
                    5b:20:86:bb:1d:78:1f:57:74:96:56:84:75:80:dd:31:
                    74:93:70:83:ea:6a:cf:da:c9:d6:96:ec:77:06:7f:ce:
                    c6:82:10:8d:ed:c8:6b:81:42:4c:ac:ae:e3:e4:68:a6:
                    4b:a1:b8:a0:1f:6e:8a:0e:50:23:c9:98:8c:d4:c4:cf:
                    42:ef:6f:20:ab:26:9e:ff:df:68:06:00:1f:20:bb:3e:
                    a2:7b:fd:bf:59:11:1f:11:61:c0:1d:ad:80:c9:3f:d3:
                    d2:b7:4a:cf:a9:e3:39:c5:9b:58:9f:d8:4a:55:24:73:
                    b5:fc:98:8b:44:f8:8c:58:18:e5:47:f9:fc:f1:1e:b9:
                    20:74:fd:3f:1a:96:82:ca:46:ec:f5:24:12:a1:fe:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:18:92:33:5e:93:f4:73:22:87:2c:75:55:55:f9:53:
        d9:fb:5e:f1:05:f8:cf:34:ba:90:7a:aa:d1:cc:54:16:
        35:54:c6:75:bf:0a:a3:5f:49:f7:88:aa:11:2b:31:71:
        ff:2e:c3:77:4c:2d:c0:ff:9e:e7:21:75:65:d0:06:56:
        34:e5:0a:ca:83:d6:a4:c7:64:0f:98:38:09:df:fe:88:
        55:10:5b:0a:94:29:29:f7:06:98:d1:13:f4:e3:fc:ad:
        6e:09:dc:2e:73:54:7f:31:e6:ca:2d:ac:77:5d:c9:17:
        3e:94:c2:ef:04:9a:7b:65:63:79:d8:3f:0f:2b:1d:c4:
        f5:1d:98:0b:d3:c1:09:b8:43:16:ce:6b:5d:c6:d7:60:
        95:83:3d:ff:2d:6c:42:83:cf:d7:02:5d:27:9b:0c:3f:
        81:e2:5d:85:f5:e8:9e:18:e7:19:26:ed:b1:35:77:28:
        96:c6:5f:7a:bf:ce:c1:5f:30:f2:2e:32:ea:26:5d:ac:
        ef:51:c9:b2:84:d7:dc:f6:86:94:b1:7e:8b:95:dd:08:
        75:1a:60:7c:46:9e:b5:2d:84:f2:e4:14:51:ca:33:94:
        b2:41:fc:fc:90:59:65:9e:04:ee:0a:c1:04:a9:c3:84:
        a1:c7:fe:a0:f7:5b:ac:d3:94:b9:4d:3c:14:94:58:0f
    Fingerprint (SHA-256):
        71:90:8B:F1:00:37:DA:4D:31:55:D0:3F:25:01:00:0F:4D:A4:26:1E:F2:A5:4C:F5:34:0A:A6:8B:29:C6:D9:9C
    Fingerprint (SHA1):
        8A:C0:4D:F7:2C:C3:9A:0C:F0:3E:D6:43:DC:7D:B3:7B:50:49:F0:56
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3844: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144918 (0x3cdd6f56)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 15:10:02 2017
            Not After : Fri Oct 21 15:10:02 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f3:cb:f6:0c:5b:20:e9:43:14:3c:b5:b2:6d:55:e3:54:
                    2b:e6:1c:b7:8b:90:3a:6b:b4:77:73:04:01:f9:46:16:
                    6a:4f:02:0d:a6:bc:30:34:d7:e6:75:d0:4a:8d:aa:ef:
                    88:ba:26:f5:bf:01:75:37:41:43:12:9d:64:b6:3d:19:
                    a2:90:d0:d0:c8:8e:11:09:bb:4c:ce:60:5e:7a:c8:fa:
                    bc:01:02:ca:d8:98:62:44:f6:01:b9:a3:ae:37:a5:cd:
                    bd:50:64:46:43:4c:47:ab:39:23:d6:3a:87:6f:4f:2b:
                    5b:20:86:bb:1d:78:1f:57:74:96:56:84:75:80:dd:31:
                    74:93:70:83:ea:6a:cf:da:c9:d6:96:ec:77:06:7f:ce:
                    c6:82:10:8d:ed:c8:6b:81:42:4c:ac:ae:e3:e4:68:a6:
                    4b:a1:b8:a0:1f:6e:8a:0e:50:23:c9:98:8c:d4:c4:cf:
                    42:ef:6f:20:ab:26:9e:ff:df:68:06:00:1f:20:bb:3e:
                    a2:7b:fd:bf:59:11:1f:11:61:c0:1d:ad:80:c9:3f:d3:
                    d2:b7:4a:cf:a9:e3:39:c5:9b:58:9f:d8:4a:55:24:73:
                    b5:fc:98:8b:44:f8:8c:58:18:e5:47:f9:fc:f1:1e:b9:
                    20:74:fd:3f:1a:96:82:ca:46:ec:f5:24:12:a1:fe:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:18:92:33:5e:93:f4:73:22:87:2c:75:55:55:f9:53:
        d9:fb:5e:f1:05:f8:cf:34:ba:90:7a:aa:d1:cc:54:16:
        35:54:c6:75:bf:0a:a3:5f:49:f7:88:aa:11:2b:31:71:
        ff:2e:c3:77:4c:2d:c0:ff:9e:e7:21:75:65:d0:06:56:
        34:e5:0a:ca:83:d6:a4:c7:64:0f:98:38:09:df:fe:88:
        55:10:5b:0a:94:29:29:f7:06:98:d1:13:f4:e3:fc:ad:
        6e:09:dc:2e:73:54:7f:31:e6:ca:2d:ac:77:5d:c9:17:
        3e:94:c2:ef:04:9a:7b:65:63:79:d8:3f:0f:2b:1d:c4:
        f5:1d:98:0b:d3:c1:09:b8:43:16:ce:6b:5d:c6:d7:60:
        95:83:3d:ff:2d:6c:42:83:cf:d7:02:5d:27:9b:0c:3f:
        81:e2:5d:85:f5:e8:9e:18:e7:19:26:ed:b1:35:77:28:
        96:c6:5f:7a:bf:ce:c1:5f:30:f2:2e:32:ea:26:5d:ac:
        ef:51:c9:b2:84:d7:dc:f6:86:94:b1:7e:8b:95:dd:08:
        75:1a:60:7c:46:9e:b5:2d:84:f2:e4:14:51:ca:33:94:
        b2:41:fc:fc:90:59:65:9e:04:ee:0a:c1:04:a9:c3:84:
        a1:c7:fe:a0:f7:5b:ac:d3:94:b9:4d:3c:14:94:58:0f
    Fingerprint (SHA-256):
        71:90:8B:F1:00:37:DA:4D:31:55:D0:3F:25:01:00:0F:4D:A4:26:1E:F2:A5:4C:F5:34:0A:A6:8B:29:C6:D9:9C
    Fingerprint (SHA1):
        8A:C0:4D:F7:2C:C3:9A:0C:F0:3E:D6:43:DC:7D:B3:7B:50:49:F0:56
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3845: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144918 (0x3cdd6f56)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 15:10:02 2017
            Not After : Fri Oct 21 15:10:02 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f3:cb:f6:0c:5b:20:e9:43:14:3c:b5:b2:6d:55:e3:54:
                    2b:e6:1c:b7:8b:90:3a:6b:b4:77:73:04:01:f9:46:16:
                    6a:4f:02:0d:a6:bc:30:34:d7:e6:75:d0:4a:8d:aa:ef:
                    88:ba:26:f5:bf:01:75:37:41:43:12:9d:64:b6:3d:19:
                    a2:90:d0:d0:c8:8e:11:09:bb:4c:ce:60:5e:7a:c8:fa:
                    bc:01:02:ca:d8:98:62:44:f6:01:b9:a3:ae:37:a5:cd:
                    bd:50:64:46:43:4c:47:ab:39:23:d6:3a:87:6f:4f:2b:
                    5b:20:86:bb:1d:78:1f:57:74:96:56:84:75:80:dd:31:
                    74:93:70:83:ea:6a:cf:da:c9:d6:96:ec:77:06:7f:ce:
                    c6:82:10:8d:ed:c8:6b:81:42:4c:ac:ae:e3:e4:68:a6:
                    4b:a1:b8:a0:1f:6e:8a:0e:50:23:c9:98:8c:d4:c4:cf:
                    42:ef:6f:20:ab:26:9e:ff:df:68:06:00:1f:20:bb:3e:
                    a2:7b:fd:bf:59:11:1f:11:61:c0:1d:ad:80:c9:3f:d3:
                    d2:b7:4a:cf:a9:e3:39:c5:9b:58:9f:d8:4a:55:24:73:
                    b5:fc:98:8b:44:f8:8c:58:18:e5:47:f9:fc:f1:1e:b9:
                    20:74:fd:3f:1a:96:82:ca:46:ec:f5:24:12:a1:fe:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:18:92:33:5e:93:f4:73:22:87:2c:75:55:55:f9:53:
        d9:fb:5e:f1:05:f8:cf:34:ba:90:7a:aa:d1:cc:54:16:
        35:54:c6:75:bf:0a:a3:5f:49:f7:88:aa:11:2b:31:71:
        ff:2e:c3:77:4c:2d:c0:ff:9e:e7:21:75:65:d0:06:56:
        34:e5:0a:ca:83:d6:a4:c7:64:0f:98:38:09:df:fe:88:
        55:10:5b:0a:94:29:29:f7:06:98:d1:13:f4:e3:fc:ad:
        6e:09:dc:2e:73:54:7f:31:e6:ca:2d:ac:77:5d:c9:17:
        3e:94:c2:ef:04:9a:7b:65:63:79:d8:3f:0f:2b:1d:c4:
        f5:1d:98:0b:d3:c1:09:b8:43:16:ce:6b:5d:c6:d7:60:
        95:83:3d:ff:2d:6c:42:83:cf:d7:02:5d:27:9b:0c:3f:
        81:e2:5d:85:f5:e8:9e:18:e7:19:26:ed:b1:35:77:28:
        96:c6:5f:7a:bf:ce:c1:5f:30:f2:2e:32:ea:26:5d:ac:
        ef:51:c9:b2:84:d7:dc:f6:86:94:b1:7e:8b:95:dd:08:
        75:1a:60:7c:46:9e:b5:2d:84:f2:e4:14:51:ca:33:94:
        b2:41:fc:fc:90:59:65:9e:04:ee:0a:c1:04:a9:c3:84:
        a1:c7:fe:a0:f7:5b:ac:d3:94:b9:4d:3c:14:94:58:0f
    Fingerprint (SHA-256):
        71:90:8B:F1:00:37:DA:4D:31:55:D0:3F:25:01:00:0F:4D:A4:26:1E:F2:A5:4C:F5:34:0A:A6:8B:29:C6:D9:9C
    Fingerprint (SHA1):
        8A:C0:4D:F7:2C:C3:9A:0C:F0:3E:D6:43:DC:7D:B3:7B:50:49:F0:56
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3846: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3847: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3848: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144948 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3849: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3850: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #3851: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3852: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 1021144949   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3853: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3854: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #3855: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3856: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 1021144950   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3857: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3858: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #3859: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3860: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 1021144951   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3861: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3862: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #3863: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3864: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 1021144952   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3865: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3866: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #3867: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3868: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 1021144953   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3869: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3870: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #3871: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3872: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 1021144954   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3873: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3874: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3875: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144948 (0x3cdd6f74)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:13:22 2017
            Not After : Fri Oct 21 15:13:22 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:f8:5e:c9:4d:97:5c:8a:0d:17:01:ca:87:b0:f1:45:
                    7c:52:55:2d:8c:17:01:f2:6a:66:c9:73:ab:4d:07:85:
                    7f:d5:6c:a5:90:3c:5e:6a:d1:9f:df:bb:a0:40:17:65:
                    84:ef:24:88:87:54:9d:89:28:06:d3:84:89:96:53:57:
                    8c:30:76:29:9f:f3:04:9d:40:53:fe:fc:fe:8b:bb:1a:
                    1c:a5:bc:1e:26:31:e4:33:6e:89:58:fc:ac:a3:75:4f:
                    85:56:47:03:81:28:f0:fb:f1:a8:fb:b7:fd:a2:ec:f2:
                    ab:97:d8:11:b9:81:0e:39:99:22:c4:5c:3e:31:aa:d5:
                    34:0a:d4:cb:71:39:f5:c9:82:f8:22:f0:ec:e3:f1:89:
                    3b:69:80:50:8e:06:01:d5:a2:3f:01:56:d4:80:ec:8a:
                    bc:6a:27:b7:59:f3:a0:08:73:e6:51:52:ef:af:51:98:
                    61:2b:03:4e:bf:b4:4d:17:61:70:8c:7b:cf:b0:56:cd:
                    50:c9:ca:c7:b7:c4:48:3d:4a:9b:25:6a:19:5b:d0:45:
                    0b:6a:9c:ea:6a:76:cf:7d:91:df:a9:5f:e3:a6:5e:ca:
                    0d:55:3d:3d:83:62:db:ff:7a:be:54:8a:40:23:24:0c:
                    4c:ac:59:31:3e:17:4a:89:ca:ff:ed:91:03:ad:c1:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:ff:f8:bb:d9:28:8e:fd:73:7e:c2:d8:d8:ca:4d:4d:
        c1:7b:fc:23:f5:b5:8d:c6:23:8d:a2:c8:3d:41:12:40:
        ae:21:ec:a9:e2:d1:09:58:f8:dc:68:67:64:82:5b:4a:
        43:17:9d:3d:90:31:6d:0c:83:0b:a6:ba:92:75:56:12:
        3b:82:9b:dd:2f:9a:7a:4b:6f:49:4c:62:dd:12:8b:b7:
        d9:85:80:7d:c8:5d:37:d1:dd:ab:31:01:c3:f8:fe:52:
        27:f5:e2:59:63:02:81:29:6f:69:83:6f:49:55:de:ee:
        45:73:99:50:ab:68:d8:e2:07:d1:61:12:f1:65:51:b6:
        0e:7a:8e:dc:36:28:9e:53:c4:9d:5e:da:e7:a6:89:1a:
        61:95:b6:78:fa:39:35:21:bd:ec:80:14:d1:71:fe:89:
        01:d6:76:86:b1:41:49:3b:0f:97:62:8f:74:34:8d:56:
        90:da:2a:11:38:80:27:4b:86:ca:a0:2c:d5:ac:15:85:
        cf:4a:d9:62:72:78:69:16:66:8a:ea:72:e0:ab:13:fe:
        e4:55:22:46:44:75:cb:07:95:53:01:0f:38:8d:f8:46:
        2a:a1:f0:95:2a:76:99:fe:4b:d5:11:11:8d:e5:12:c9:
        ce:f6:97:65:62:0d:5d:9d:1d:11:82:43:e7:b6:c9:65
    Fingerprint (SHA-256):
        C0:17:1A:E2:07:CA:11:D2:38:A6:2E:56:68:F1:DF:0F:8A:0B:A3:84:37:CE:26:59:C4:DA:1F:3F:20:F9:1B:3A
    Fingerprint (SHA1):
        8F:36:1B:03:E8:9D:F1:27:2D:01:15:5A:2D:03:5C:2B:F7:7E:90:20
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3876: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3877: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3878: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3879: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144948 (0x3cdd6f74)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:13:22 2017
            Not After : Fri Oct 21 15:13:22 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:f8:5e:c9:4d:97:5c:8a:0d:17:01:ca:87:b0:f1:45:
                    7c:52:55:2d:8c:17:01:f2:6a:66:c9:73:ab:4d:07:85:
                    7f:d5:6c:a5:90:3c:5e:6a:d1:9f:df:bb:a0:40:17:65:
                    84:ef:24:88:87:54:9d:89:28:06:d3:84:89:96:53:57:
                    8c:30:76:29:9f:f3:04:9d:40:53:fe:fc:fe:8b:bb:1a:
                    1c:a5:bc:1e:26:31:e4:33:6e:89:58:fc:ac:a3:75:4f:
                    85:56:47:03:81:28:f0:fb:f1:a8:fb:b7:fd:a2:ec:f2:
                    ab:97:d8:11:b9:81:0e:39:99:22:c4:5c:3e:31:aa:d5:
                    34:0a:d4:cb:71:39:f5:c9:82:f8:22:f0:ec:e3:f1:89:
                    3b:69:80:50:8e:06:01:d5:a2:3f:01:56:d4:80:ec:8a:
                    bc:6a:27:b7:59:f3:a0:08:73:e6:51:52:ef:af:51:98:
                    61:2b:03:4e:bf:b4:4d:17:61:70:8c:7b:cf:b0:56:cd:
                    50:c9:ca:c7:b7:c4:48:3d:4a:9b:25:6a:19:5b:d0:45:
                    0b:6a:9c:ea:6a:76:cf:7d:91:df:a9:5f:e3:a6:5e:ca:
                    0d:55:3d:3d:83:62:db:ff:7a:be:54:8a:40:23:24:0c:
                    4c:ac:59:31:3e:17:4a:89:ca:ff:ed:91:03:ad:c1:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:ff:f8:bb:d9:28:8e:fd:73:7e:c2:d8:d8:ca:4d:4d:
        c1:7b:fc:23:f5:b5:8d:c6:23:8d:a2:c8:3d:41:12:40:
        ae:21:ec:a9:e2:d1:09:58:f8:dc:68:67:64:82:5b:4a:
        43:17:9d:3d:90:31:6d:0c:83:0b:a6:ba:92:75:56:12:
        3b:82:9b:dd:2f:9a:7a:4b:6f:49:4c:62:dd:12:8b:b7:
        d9:85:80:7d:c8:5d:37:d1:dd:ab:31:01:c3:f8:fe:52:
        27:f5:e2:59:63:02:81:29:6f:69:83:6f:49:55:de:ee:
        45:73:99:50:ab:68:d8:e2:07:d1:61:12:f1:65:51:b6:
        0e:7a:8e:dc:36:28:9e:53:c4:9d:5e:da:e7:a6:89:1a:
        61:95:b6:78:fa:39:35:21:bd:ec:80:14:d1:71:fe:89:
        01:d6:76:86:b1:41:49:3b:0f:97:62:8f:74:34:8d:56:
        90:da:2a:11:38:80:27:4b:86:ca:a0:2c:d5:ac:15:85:
        cf:4a:d9:62:72:78:69:16:66:8a:ea:72:e0:ab:13:fe:
        e4:55:22:46:44:75:cb:07:95:53:01:0f:38:8d:f8:46:
        2a:a1:f0:95:2a:76:99:fe:4b:d5:11:11:8d:e5:12:c9:
        ce:f6:97:65:62:0d:5d:9d:1d:11:82:43:e7:b6:c9:65
    Fingerprint (SHA-256):
        C0:17:1A:E2:07:CA:11:D2:38:A6:2E:56:68:F1:DF:0F:8A:0B:A3:84:37:CE:26:59:C4:DA:1F:3F:20:F9:1B:3A
    Fingerprint (SHA1):
        8F:36:1B:03:E8:9D:F1:27:2D:01:15:5A:2D:03:5C:2B:F7:7E:90:20
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3880: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3881: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3882: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3883: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144955 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3884: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3885: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3886: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3887: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021144956   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3888: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3889: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3890: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3891: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021144957   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3892: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3893: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3894: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3895: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 1021144958   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3896: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3897: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3898: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3899: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3900: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3901: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144955 (0x3cdd6f7b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:14:09 2017
            Not After : Fri Oct 21 15:14:09 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:30:db:33:6c:ab:8b:0f:80:4d:ac:3b:c0:2d:fb:81:
                    a2:ad:1f:62:51:ba:7a:54:ae:74:2e:fb:9e:54:65:51:
                    13:a3:02:dd:74:6a:e8:18:de:57:93:5e:c0:20:a9:33:
                    f1:9b:a9:47:fa:49:32:73:7b:b5:65:9a:45:f7:ba:b8:
                    64:46:52:d0:ec:1b:f9:dc:d6:d0:df:c1:cf:c9:dd:44:
                    9d:ff:12:54:22:b6:3a:bd:8d:49:92:25:47:77:b6:a4:
                    46:fc:56:5e:ef:55:68:09:7d:20:73:ce:8e:aa:d7:3d:
                    48:da:c2:3e:f1:1f:10:6d:f3:9a:8d:83:3d:da:22:d4:
                    81:77:68:78:b7:25:a4:ab:4d:aa:ed:0c:91:3a:d4:c4:
                    0d:68:9e:46:e7:93:a6:be:50:b7:e6:39:14:6a:43:ae:
                    c7:83:c9:dc:e0:3d:bc:28:30:94:ee:99:82:99:05:55:
                    23:17:13:ac:3c:91:0f:87:be:cc:6e:81:6a:bf:47:b2:
                    a8:17:e4:88:00:13:c4:79:61:00:bb:00:70:2b:5e:af:
                    b3:f3:2a:22:9f:43:6d:cb:c4:82:52:ab:b6:fa:a0:5c:
                    e1:cb:54:19:92:b4:db:aa:f8:1b:6c:d8:83:bf:49:00:
                    70:21:b6:8b:a9:86:03:56:9b:59:97:dd:7d:6d:4c:bd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:4c:32:48:91:91:be:cb:e5:ab:ea:cc:e3:c8:19:a0:
        7b:a2:37:71:d1:df:41:55:7c:b7:e8:80:75:28:de:b6:
        7e:96:84:f8:4a:41:d4:6d:82:45:0e:81:1b:38:f8:05:
        1d:74:7e:db:af:f6:21:c6:72:bd:79:61:14:d9:98:97:
        0d:c4:aa:ae:d2:bb:d6:52:8a:26:0a:3f:3b:b4:cd:36:
        63:d9:48:3c:15:4c:c2:4f:52:f1:e0:e6:c8:0a:03:46:
        b5:46:6f:33:03:50:b7:bd:89:2d:0e:b9:ca:ea:4f:3b:
        4a:87:92:08:a3:e7:a2:d9:c0:41:b6:c5:6b:4e:a4:20:
        d5:9d:b9:84:74:46:e7:b5:60:8b:87:8e:b8:8d:93:06:
        90:8e:15:9e:1a:3a:c0:8e:04:fa:78:78:4d:12:4a:22:
        b5:fa:c0:fb:50:83:97:a7:41:7b:2c:06:d0:65:35:6a:
        63:3e:0b:c7:74:48:c6:19:b7:31:c0:ec:f1:f8:dc:bf:
        9e:70:67:c3:c1:42:be:c9:59:17:82:96:a3:42:90:5d:
        a9:a0:98:09:97:bd:16:9f:42:1c:74:f2:98:c3:47:34:
        0d:df:b7:f9:95:e8:8a:b3:d0:e5:63:8c:a8:a8:3f:be:
        dd:3d:6d:6a:9d:fc:16:7b:6a:03:17:37:62:b8:40:2c
    Fingerprint (SHA-256):
        1F:20:F0:05:6F:0D:89:F9:F1:DC:69:E6:7A:46:9C:02:D4:56:B9:99:C7:6A:62:BC:8D:AB:23:CD:B5:8D:E6:FE
    Fingerprint (SHA1):
        70:C5:DE:98:53:40:38:80:43:03:07:1E:68:38:C8:E3:38:02:D9:B8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3902: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3903: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3904: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144956 (0x3cdd6f7c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:14:13 2017
            Not After : Fri Oct 21 15:14:13 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:9a:e3:78:a6:68:fa:21:89:88:67:71:1a:a5:2b:04:
                    66:49:a3:ee:2f:9f:59:cc:4d:a8:a7:86:7d:e6:c9:1a:
                    07:f5:c9:86:e9:2d:26:c5:4d:1e:a2:f3:d2:6f:cf:39:
                    de:b6:b7:8b:03:ee:cd:a9:bb:4f:a0:91:c9:b4:30:2f:
                    3c:6c:a7:a9:7b:fc:6a:d8:be:91:65:df:87:3e:70:23:
                    f6:e7:a8:3a:ef:81:1e:39:c5:12:c3:6a:22:c1:5a:8b:
                    7e:37:f1:46:03:30:ba:2c:09:ed:11:57:1d:69:27:df:
                    e7:76:9c:59:84:f8:59:2c:1d:95:c3:e0:b4:d3:f8:64:
                    6f:5a:6d:90:93:73:06:f6:99:7d:6f:44:e8:22:6e:94:
                    2d:e7:ee:34:2e:2c:5a:3d:d0:f8:a6:0e:5b:06:f2:ed:
                    46:8c:05:59:95:75:14:1a:e5:15:57:96:1f:42:19:c9:
                    34:33:b9:61:8e:63:fb:fd:03:33:1d:c5:10:15:82:3d:
                    3d:a2:91:81:08:a4:94:7f:f4:33:ea:cf:af:d1:5d:4b:
                    47:53:e9:48:60:dc:5d:69:c2:ef:76:20:6d:1e:4f:d9:
                    a4:7d:ec:00:96:d6:f4:25:26:e4:a4:30:a5:9b:8f:fd:
                    b6:b5:d3:13:d9:5c:f0:e4:e7:4e:26:d6:8e:8a:a3:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        20:ba:c1:ae:a9:0e:f5:d4:5c:31:ed:ad:10:23:de:ce:
        72:3d:2d:2b:42:52:4a:fd:70:53:73:74:93:1c:b4:92:
        d1:cb:c4:db:71:06:08:1e:d5:1d:0e:f6:ce:08:cd:86:
        d6:86:8a:cb:42:98:27:2d:2c:eb:39:49:96:83:ce:18:
        dc:7e:e3:8b:40:53:bf:fc:fe:cf:54:9c:8e:a1:67:75:
        7b:1b:dc:d1:9c:4f:b5:5a:0d:0c:74:55:c3:6e:b3:3d:
        79:50:0d:75:7b:bb:b6:db:96:86:05:70:13:26:ee:70:
        34:51:b5:e1:61:f9:1c:a1:3c:ac:42:9a:39:27:5e:c7:
        c5:28:4c:0f:08:51:7a:9e:fc:26:a0:60:6f:c7:b9:f1:
        f2:dc:d4:a0:23:e3:18:8e:8b:ef:49:d1:db:8f:55:4e:
        a1:c6:5f:09:5e:9e:7e:87:8f:d0:a4:f4:cf:d4:be:d0:
        e4:1e:bd:80:6d:f1:a8:96:a5:b9:ab:cc:fc:10:d4:8c:
        e2:cc:b7:90:3a:a6:25:5e:a3:8a:d9:d4:0e:0c:d2:b7:
        2c:58:60:c3:03:48:9d:7c:bc:c7:9e:ce:6c:1f:2e:5d:
        eb:24:10:8b:67:bd:64:f1:c9:c6:41:8f:3e:dc:7d:a6:
        cb:0a:5e:83:4a:43:76:09:39:37:a5:83:27:36:19:7b
    Fingerprint (SHA-256):
        A5:85:99:F6:46:CA:01:3B:3A:F3:FD:C4:D4:AA:84:E2:0C:54:D4:4D:D4:21:DC:F2:45:46:91:2D:56:D4:06:C6
    Fingerprint (SHA1):
        C3:74:8E:5B:73:54:E1:89:32:43:74:04:1E:8C:71:8A:AB:C5:C9:4D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3905: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3906: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144957 (0x3cdd6f7d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 15:14:20 2017
            Not After : Fri Oct 21 15:14:20 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:56:57:3a:6d:0f:f7:d4:ea:b3:d6:8c:ed:73:11:7d:
                    e0:76:64:b3:15:15:b9:fb:8d:40:89:a5:58:fc:a6:40:
                    07:4a:a9:f1:50:6e:66:fc:bc:d7:f1:da:4c:90:aa:63:
                    66:3a:23:ae:d9:5a:84:19:43:98:05:ce:7f:aa:14:41:
                    14:c0:f3:a8:5a:ac:f9:3d:70:4d:63:54:8a:e6:2c:d3:
                    c8:81:e7:db:a8:eb:ca:ca:fd:d2:48:a3:ab:67:27:3b:
                    a4:ba:2c:30:b2:6d:96:16:47:9b:75:73:58:b6:91:3d:
                    46:0d:70:0d:95:cd:09:72:de:d9:b9:e6:c9:52:10:b0:
                    fc:3a:d9:68:95:b5:d3:87:5d:e1:8f:ab:f7:da:7f:fa:
                    fd:08:96:98:86:7b:25:d3:72:4b:d7:2d:c9:c3:cc:0f:
                    4b:98:ff:92:a3:25:fd:e1:18:54:56:77:27:3e:51:9a:
                    81:f3:f8:c6:01:d9:37:14:f6:3a:57:19:e7:6b:ca:94:
                    f6:95:ac:fe:2c:82:97:5b:ae:d5:6b:3c:d3:9e:f2:d7:
                    79:ea:f3:59:64:7c:6d:2f:5a:aa:3a:d9:d0:db:27:35:
                    94:b3:e8:5c:ad:7e:8d:22:1c:aa:6d:a0:8b:b9:df:92:
                    ce:5b:9d:1e:54:de:a4:5a:2b:f1:91:bd:6b:e6:f6:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0d:c2:91:a3:35:e5:ef:8b:bd:36:16:9b:e4:7f:12:22:
        f6:41:1e:c7:9d:6d:dd:18:f4:74:af:5d:ba:23:eb:41:
        32:f3:be:58:a2:d6:73:d9:3d:55:6b:a8:4d:c6:df:5a:
        d5:fe:f2:29:fa:84:40:6e:fb:53:71:51:06:d3:f5:8b:
        b3:d1:55:c5:64:0c:92:4f:a4:7c:8e:94:1f:51:f4:9c:
        44:79:22:4d:c7:04:20:2e:c8:bc:dd:56:61:6b:61:bb:
        8b:d0:eb:18:80:9e:f7:9c:a4:3e:b6:22:29:2a:b6:c7:
        eb:57:36:5f:c5:0c:cc:e2:10:48:c5:02:b5:7e:d5:b8:
        c0:11:fb:d6:70:1b:7d:24:80:b7:5d:a6:6b:f3:b1:2f:
        24:d2:1d:bd:fc:05:94:dc:b7:73:ae:7c:00:ac:03:44:
        f4:09:73:c8:e2:ef:52:fc:0b:c7:01:de:ba:a9:ae:6b:
        6d:1f:9e:f1:bd:37:60:09:5b:25:e3:09:69:6d:f3:98:
        2f:11:77:70:61:98:6d:7a:79:75:74:5d:b8:57:a6:78:
        3e:6d:a2:94:f7:4c:de:6f:c1:71:53:0c:67:6e:d9:92:
        3f:c9:8c:5d:3e:53:1a:81:d5:cd:95:cc:1e:bd:2b:06:
        b0:59:a5:a6:ad:74:10:6c:bc:40:04:ca:b2:9f:7e:92
    Fingerprint (SHA-256):
        C1:4A:31:D7:FA:CA:BC:32:36:FD:02:C1:0E:1F:66:5D:AE:F4:AB:BB:CA:7A:61:0A:D2:19:FB:FA:EE:46:1B:82
    Fingerprint (SHA1):
        92:07:F8:6B:DD:9A:85:10:6C:77:6E:F1:16:B9:DF:F7:3D:D6:CD:2B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3907: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3908: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144959 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3909: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3910: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3911: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3912: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021144960   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3913: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3914: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3915: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3916: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021144961   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3917: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3918: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3919: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3920: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 1021144962   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3921: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3922: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3923: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3924: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 1021144963   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3925: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3926: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3927: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3928: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3929: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3930: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #3931: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144959 (0x3cdd6f7f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:14:36 2017
            Not After : Fri Oct 21 15:14:36 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:5e:8e:1c:ac:31:8a:fe:5c:62:ea:02:19:d2:3f:d9:
                    8b:68:82:2e:6f:1a:41:94:30:3e:4c:0a:29:cd:d8:9e:
                    20:60:42:03:68:bf:92:f1:6e:c0:91:60:18:d8:a4:70:
                    43:2b:00:92:60:77:b1:f5:1d:8b:26:4f:49:62:1c:2c:
                    3a:70:f4:97:5b:8f:71:31:6b:03:ec:f8:86:44:82:42:
                    99:3d:2e:23:56:bb:58:40:ce:0c:48:77:c3:b8:fe:cb:
                    0f:99:a0:c4:43:d4:4e:13:f7:c1:6c:09:e5:0e:cf:ec:
                    b5:a5:4a:6b:5a:61:e8:49:84:90:3d:fa:22:30:77:ec:
                    ee:d4:26:8e:de:9b:e6:64:35:b7:62:fd:01:53:35:35:
                    20:34:af:42:22:13:17:59:63:95:04:67:71:77:f9:39:
                    8a:c5:d9:91:27:2a:11:61:0f:35:0a:bf:44:cb:f8:df:
                    60:f6:30:5d:8a:84:48:9b:bb:3e:51:9b:1d:6d:5b:93:
                    87:76:80:fb:f6:29:e2:df:08:9c:ca:5b:7b:3c:c1:fc:
                    18:dc:dd:62:e6:1b:14:99:6f:a1:94:b1:a5:43:51:4a:
                    0c:29:ab:93:3b:72:42:df:1d:89:29:40:6f:82:40:a2:
                    1a:54:60:e3:3a:e6:af:3e:20:fa:c6:d4:39:13:2c:73
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:00:3d:cf:88:47:24:82:82:80:64:6e:72:b0:f1:52:
        75:86:04:a1:22:b0:17:c9:21:1a:41:48:d0:8b:de:e4:
        4f:b3:24:8c:df:7e:8a:09:ee:a6:1f:6e:fc:ca:ec:7a:
        09:0a:10:e8:4b:88:1d:5c:5a:7c:f1:1a:81:fb:fa:2c:
        ad:e4:a2:c4:db:13:a4:46:a4:ff:36:55:17:94:bc:13:
        a9:1c:e3:e7:74:7f:45:58:82:e4:f0:cd:51:95:fa:35:
        46:80:fe:32:3e:02:4a:d7:54:3a:a1:ec:74:62:a5:59:
        b5:0c:db:0d:0e:9b:d9:65:f7:c3:1c:de:dd:35:f6:4d:
        d3:79:67:a5:2f:88:47:eb:0a:c3:61:85:0d:26:70:df:
        db:6f:f4:40:a9:c0:99:14:6f:96:0a:13:ba:3d:15:4c:
        0b:f2:47:ce:68:fd:da:e7:99:ba:e3:e4:6c:0a:7e:aa:
        c6:a9:84:6f:88:f7:78:ea:f1:73:1d:ac:96:5c:fe:10:
        e7:c7:a9:94:db:e0:78:61:99:1c:56:8d:a7:0d:ce:00:
        45:2d:29:e7:4b:6e:f4:b2:36:2e:01:01:2f:85:10:00:
        0d:7d:34:77:c6:ce:53:f1:f6:93:02:3d:97:db:ea:ff:
        6c:50:01:3d:7c:94:3a:21:b7:7c:d9:9b:a5:54:cc:57
    Fingerprint (SHA-256):
        6B:34:57:04:5C:61:52:24:7A:45:75:76:61:74:38:63:4D:55:89:5A:B0:F0:E1:A0:8B:94:8F:A4:0B:DE:19:AD
    Fingerprint (SHA1):
        82:FB:03:27:92:DD:3A:56:92:8E:37:46:39:1A:F9:6D:AE:6C:F8:27
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3932: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3933: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144960 (0x3cdd6f80)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:14:40 2017
            Not After : Fri Oct 21 15:14:40 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:0e:0c:72:2e:22:f8:19:0d:77:d7:ed:91:4c:55:5c:
                    a2:e0:29:98:77:46:47:3c:fc:5b:0f:72:13:24:97:df:
                    c4:28:70:54:24:46:14:ce:1f:51:f8:8b:4b:06:70:1b:
                    c4:e2:c5:53:89:ab:38:5b:20:fa:f5:6c:18:4b:f0:bd:
                    bd:48:3a:1d:7a:88:6a:55:76:bf:14:a9:09:61:34:ed:
                    20:3a:79:3c:a2:c2:db:4f:ba:73:88:cf:4b:66:62:ce:
                    a9:0e:15:fa:80:6d:2d:4c:6d:12:6a:5d:85:75:e4:bd:
                    0d:72:a5:21:6c:ef:be:3b:3b:27:9d:5b:db:9f:2f:11:
                    92:e8:e5:99:25:82:da:53:e9:68:e4:86:1d:6f:de:c6:
                    4e:a9:f9:5e:53:7c:e0:49:ec:b8:83:9d:fc:99:a6:a4:
                    a3:34:ec:ce:2d:96:2c:69:e7:4c:3c:ac:fb:8c:a0:db:
                    b7:ab:c8:58:1d:97:ce:ab:2d:97:42:f5:40:c0:b3:6a:
                    6c:63:b4:19:a5:9f:ef:72:94:ce:cd:be:39:51:84:82:
                    a7:d6:13:5e:8d:0b:a8:af:fe:84:ff:85:6c:29:13:6d:
                    19:e2:19:26:54:76:32:78:ae:4d:b6:0e:2e:ff:72:91:
                    bd:ef:40:ea:52:0c:79:fa:b1:20:ea:68:a4:dc:53:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:e1:e4:a9:ad:60:b3:32:f3:cf:20:c4:97:f2:ac:98:
        d3:f1:ae:98:bb:53:c6:76:68:46:b1:03:bd:fb:02:08:
        08:54:53:2f:5a:b2:3a:de:02:13:44:12:2e:4b:8e:0e:
        cb:bd:78:e2:2b:a3:fb:20:83:e3:fc:03:e4:40:4b:e9:
        dc:0c:2e:91:93:23:79:1f:ae:7d:f0:dc:31:e4:36:4b:
        2e:3b:c0:79:05:09:75:09:da:ef:7c:c0:dd:e6:49:10:
        9c:29:c0:25:9d:24:06:83:cc:e2:b6:f3:6f:7e:2f:03:
        d4:6b:0f:59:fb:6e:0a:1e:fc:6f:f4:df:6c:9b:75:76:
        60:a2:26:d0:a7:e3:ec:28:4c:25:fb:19:91:fe:83:38:
        3e:6d:e3:84:a2:ca:62:8b:b4:35:e7:18:7b:17:01:86:
        81:c9:b0:d2:c7:b3:e2:0f:2f:9d:86:24:f3:74:3a:a7:
        cc:39:57:c9:14:de:05:f8:62:72:05:cb:2f:30:07:28:
        48:b4:7d:59:3d:fe:b9:46:f7:f3:a8:1f:7b:00:e1:de:
        ab:6f:cd:6b:66:28:ea:43:27:c2:22:26:aa:eb:f5:2d:
        ed:6e:98:2f:e2:19:fa:54:b2:f6:7e:e0:b0:f9:d4:15:
        e9:bd:6f:a2:5f:0f:2e:10:81:1a:99:b9:05:09:96:b9
    Fingerprint (SHA-256):
        60:BB:0C:F0:CB:BD:5E:BC:C0:6A:0B:9D:64:63:94:5B:63:55:28:47:56:EB:6B:07:24:7E:D0:CB:23:19:A9:9B
    Fingerprint (SHA1):
        EC:2B:F5:E4:11:43:67:33:5D:7C:E6:CC:EB:BA:90:AB:E9:57:8A:6D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3934: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3935: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3936: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144961 (0x3cdd6f81)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 15:14:45 2017
            Not After : Fri Oct 21 15:14:45 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:a0:ac:24:7d:c6:78:9c:f0:d9:24:c8:b2:a1:03:2f:
                    73:7b:e6:e8:f1:bf:fb:be:b1:c0:05:43:d1:99:c6:da:
                    55:7c:6e:36:4b:52:d1:6e:d5:5a:16:57:86:73:be:29:
                    37:ac:4d:22:89:b0:75:41:6e:a5:ed:cc:28:11:27:b5:
                    c1:e9:ee:b1:6f:ce:94:06:25:fa:a2:83:07:f6:4b:d9:
                    a8:79:c2:0a:99:bf:f0:a9:16:db:42:79:89:40:ae:1d:
                    97:20:34:1f:87:0c:90:95:26:5f:d3:32:4c:44:37:b9:
                    20:94:08:b3:4b:36:e0:d2:00:86:86:03:9c:77:ab:38:
                    91:11:af:8e:39:48:da:29:4f:29:08:54:df:2f:ac:7c:
                    d6:e9:62:3c:cb:56:da:66:ab:ee:80:55:ec:b3:7b:62:
                    f4:c6:be:f9:e2:57:1b:19:7b:45:c0:97:21:ac:b1:d3:
                    84:9c:31:96:bb:f2:f9:8d:8b:8d:77:7f:47:06:6f:c8:
                    d5:48:7f:6c:4f:12:ab:cd:bc:9a:3b:37:57:d3:24:98:
                    45:d8:e7:68:fa:82:90:bb:3b:6b:87:c3:70:bd:c4:54:
                    ae:b9:c9:bb:15:68:b9:ce:e9:d5:3c:63:06:9c:4e:ee:
                    95:d5:71:69:5e:d4:b1:ad:9a:b8:21:fd:f6:3c:b6:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:16:c5:df:92:3a:e9:b2:cc:6e:d5:d5:66:c4:5d:7e:
        39:c9:44:80:4e:3d:d0:17:60:28:a6:05:ff:e7:ac:49:
        7d:15:51:8e:d8:2c:90:a1:52:b9:9b:d6:f9:9a:d4:be:
        0f:62:7d:46:f0:df:9a:2a:fc:ad:13:af:2d:c6:0d:45:
        80:da:e8:23:3a:76:84:4c:73:f7:93:fc:32:5e:2d:17:
        6d:fa:e4:b1:79:13:e8:ef:86:19:99:7c:2c:ad:06:3a:
        7e:0f:52:a6:63:9c:bc:d1:43:41:84:13:15:11:1e:00:
        a3:1f:85:c4:9f:87:5a:82:4e:95:ed:6a:e6:ba:e9:3d:
        22:72:6c:a3:13:0b:f0:28:44:af:2c:7a:04:6a:5d:75:
        5e:53:46:75:52:8b:2f:32:e8:e8:49:8e:6c:a5:f1:e3:
        01:81:d6:46:3f:79:d1:b0:78:47:83:23:b0:e4:05:66:
        fd:af:e5:81:5b:a5:d2:6f:68:a7:26:0e:b4:86:d6:48:
        e3:cb:a1:a9:c2:77:71:d7:c8:81:e4:63:8b:1a:fb:94:
        87:66:0f:d6:ba:74:cf:2c:b7:ba:02:59:33:1d:44:f4:
        b4:d5:3e:44:d9:4e:5a:f7:96:c8:bf:c4:9e:4e:d3:02:
        42:6d:03:4b:67:a4:36:4c:41:95:29:5e:1c:50:11:0b
    Fingerprint (SHA-256):
        39:D0:5E:24:D5:94:4A:3A:02:9B:82:75:32:E7:9E:40:AC:00:6A:0C:D1:82:D6:A4:C8:F9:64:F9:7D:F7:53:90
    Fingerprint (SHA1):
        43:C5:38:01:E0:4D:7C:EA:15:52:24:D7:B2:B0:3C:D7:7A:CD:9C:97
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #3937: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3938: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144964 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3939: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3940: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3941: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3942: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021144965   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3943: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3944: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3945: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3946: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021144966   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA1Root-1021144743.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3947: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3948: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3949: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3950: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 1021144967   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3951: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3952: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #3953: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144964 (0x3cdd6f84)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:15:09 2017
            Not After : Fri Oct 21 15:15:09 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:65:d1:6a:ad:4f:4d:ed:13:22:fd:f5:89:9b:35:ef:
                    e1:7e:41:48:5c:8c:0d:c4:d9:92:4e:2a:5d:f3:b5:64:
                    cc:a3:3b:93:79:89:57:04:39:fe:ce:02:63:32:3f:e4:
                    3d:51:0e:59:11:29:fe:ab:2f:bd:2c:f7:02:5f:d5:16:
                    bc:10:b3:d0:46:b4:08:f0:55:45:65:7b:7b:06:6c:43:
                    35:fc:40:8f:9c:a8:e8:f4:58:62:6d:13:3b:8e:2e:52:
                    ba:a5:c4:1f:44:70:29:0f:c5:ae:52:34:e8:9a:c7:04:
                    bc:62:eb:45:ef:ab:6f:5c:0f:81:eb:9c:8b:73:6d:37:
                    d5:a6:3b:e4:4b:d3:bc:5b:ac:5f:dd:b9:d4:99:26:2d:
                    0a:a0:ee:6f:14:49:85:d7:16:79:45:3d:45:c3:f6:87:
                    ae:75:2e:78:2d:5c:9d:9a:9b:93:09:ce:e0:0c:d8:58:
                    c0:aa:60:f6:c2:48:ad:1b:a6:6b:0d:47:5e:fb:c1:d7:
                    74:b9:f3:86:94:c5:37:46:7c:0a:08:e1:fe:90:50:45:
                    b8:96:45:16:a1:41:6a:83:dc:07:1d:c8:53:b6:82:7f:
                    97:1b:4b:9d:24:3b:2f:3e:bc:30:b5:f3:a2:f7:77:8b:
                    4b:ad:e5:5f:7b:d1:5c:8c:22:bc:e3:b0:6a:d0:2b:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        38:7b:e6:1f:cd:27:74:94:3f:77:de:72:9f:11:86:c1:
        a3:4d:fe:2e:b7:f5:be:6c:02:3b:29:f2:15:86:3a:f5:
        1d:69:94:03:3a:b4:49:fd:ff:d3:7d:b4:94:c7:50:77:
        4a:a1:54:52:15:7c:5c:7d:3f:d2:cb:6b:fe:dd:d0:e8:
        f6:3e:2e:fb:69:22:a5:04:3f:1e:f2:99:96:99:0e:9f:
        90:8b:42:f9:7e:87:5f:9d:ae:d6:06:4b:15:c9:06:de:
        48:f0:3a:70:31:7d:d3:6f:14:02:94:e2:ad:d4:c6:11:
        53:b9:82:7b:e3:20:89:85:9f:9e:5e:7e:21:53:09:eb:
        fe:a6:57:e2:6e:c5:f7:21:f0:0c:f4:9b:ad:43:f4:26:
        1a:61:ea:b7:df:9d:99:0b:ba:d7:d1:91:78:be:53:df:
        34:43:f2:97:f0:be:68:e6:72:89:1e:02:45:d0:e3:07:
        59:cc:ce:f7:fc:a5:e7:aa:09:02:07:b5:a1:8b:9a:c0:
        f5:94:61:bd:f2:df:e9:9b:57:99:70:f3:99:00:c5:35:
        8d:29:97:7c:6b:48:5d:07:27:1f:9b:e5:10:7e:f1:5a:
        84:9f:e1:b8:d4:0b:df:2f:18:9c:2a:a9:d3:93:2d:33:
        ab:79:61:ed:ff:b6:cc:a9:f7:f4:00:d2:eb:c1:65:1d
    Fingerprint (SHA-256):
        59:13:B1:0A:9A:EF:FC:AD:C7:99:1B:89:BF:C0:D4:A3:11:53:EA:5C:55:F1:BE:C9:C3:CF:9E:B7:AF:40:69:D7
    Fingerprint (SHA1):
        32:5A:DF:34:80:85:8F:B0:18:7A:AE:78:5D:86:EE:F7:6E:58:D5:D5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3954: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3955: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144968 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3956: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3957: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3958: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144969 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3959: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3960: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3961: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3962: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 1021144970 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3963: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3964: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 1021144971 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3965: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3966: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3967: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3968: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3969: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 1021144972   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-Bridge-1021144744.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3970: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3971: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3972: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3973: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021144973   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3974: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3975: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3976: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3977: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144969 (0x3cdd6f89)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 15:15:42 2017
            Not After : Fri Oct 21 15:15:42 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:a6:2c:38:df:1b:7d:e4:7e:34:d3:6b:02:e3:d3:6b:
                    c0:cc:4d:ee:7a:b1:a1:92:d9:50:41:40:d5:a9:8e:55:
                    1c:78:28:ee:d3:3c:ea:c8:f9:7e:2f:45:a8:4e:3e:88:
                    16:d3:e8:8a:56:76:92:07:f8:fb:3d:41:92:7e:c3:0a:
                    60:3b:c7:75:7d:9e:a4:af:5e:81:01:58:58:5e:5d:64:
                    d3:c0:36:c2:9e:23:ef:df:24:6b:6d:ac:88:bd:fb:9b:
                    05:78:c2:96:bc:59:d5:30:48:34:c2:1a:27:4e:5b:2c:
                    cb:d0:6e:c3:64:4b:5b:4b:04:f8:a0:34:20:20:3e:f1:
                    5c:1f:f0:eb:fc:01:96:9f:a1:51:6d:cc:39:97:3e:d2:
                    0a:d3:06:01:8b:14:73:9a:e4:5b:96:e1:9f:59:3c:90:
                    fc:ff:2b:48:74:6b:c3:41:bb:4d:a6:ca:55:f2:7b:c1:
                    f5:ca:02:cd:56:3f:4e:ef:92:98:81:32:f2:d7:e8:92:
                    27:76:0b:21:3d:9e:77:4e:f6:52:9b:82:5f:f3:f4:38:
                    6c:ae:79:31:0d:35:65:1d:07:49:22:48:6e:74:61:71:
                    2c:b3:74:9c:12:5a:23:3f:a6:16:14:b2:11:9a:97:5f:
                    d5:d9:9a:e2:7f:49:8f:2d:d0:10:c9:4d:9c:8b:43:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:3b:c1:00:01:ff:99:08:4a:86:7d:7e:be:ec:da:13:
        90:aa:50:fc:cb:91:4b:32:a7:b4:b4:2c:ee:b6:e8:d7:
        96:f4:29:be:9e:31:78:6c:d6:50:36:29:c1:58:a0:6e:
        4d:12:0d:00:76:de:09:c0:75:3a:aa:bd:0c:c0:43:d4:
        57:48:e2:ef:11:97:ba:cd:aa:9b:b6:87:5b:a3:e3:7d:
        5c:5a:f6:38:3d:25:a8:d8:32:a3:97:ee:74:8f:15:61:
        33:fb:83:6b:6d:83:3d:d9:dd:4b:12:96:3a:14:3e:8e:
        3c:c5:d4:7b:9b:ef:b3:5d:ec:a3:98:b3:e2:50:c5:59:
        71:14:31:b3:04:bf:78:40:55:92:1f:3a:22:31:ae:b6:
        c7:1e:be:e1:a2:43:bf:0d:c4:08:22:f5:60:92:7c:52:
        c3:25:49:1c:ad:9d:41:5c:17:f1:e1:d2:fb:de:c3:c9:
        ea:10:05:42:1f:ea:37:54:e9:60:85:df:60:8e:92:77:
        a7:e3:cd:b2:1e:d4:ba:5c:64:65:c6:c4:53:c9:d3:2e:
        bc:72:f1:57:c1:73:a4:e2:68:1b:05:80:43:cf:c0:3e:
        bf:35:1c:53:18:27:9d:54:65:f0:17:7b:ba:05:44:ed:
        80:fd:22:31:88:ef:20:48:a4:9f:1b:5b:79:ba:2b:3f
    Fingerprint (SHA-256):
        CD:4D:59:03:3A:D1:06:13:38:4F:8A:78:57:F8:7E:04:E3:A0:03:73:9C:98:05:BF:6C:86:9C:F0:DE:B4:E9:C2
    Fingerprint (SHA1):
        E4:A8:6D:9E:EE:F4:F3:E5:B1:B8:EC:42:F2:D8:F4:F6:92:E0:1D:0B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3978: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144969 (0x3cdd6f89)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 15:15:42 2017
            Not After : Fri Oct 21 15:15:42 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:a6:2c:38:df:1b:7d:e4:7e:34:d3:6b:02:e3:d3:6b:
                    c0:cc:4d:ee:7a:b1:a1:92:d9:50:41:40:d5:a9:8e:55:
                    1c:78:28:ee:d3:3c:ea:c8:f9:7e:2f:45:a8:4e:3e:88:
                    16:d3:e8:8a:56:76:92:07:f8:fb:3d:41:92:7e:c3:0a:
                    60:3b:c7:75:7d:9e:a4:af:5e:81:01:58:58:5e:5d:64:
                    d3:c0:36:c2:9e:23:ef:df:24:6b:6d:ac:88:bd:fb:9b:
                    05:78:c2:96:bc:59:d5:30:48:34:c2:1a:27:4e:5b:2c:
                    cb:d0:6e:c3:64:4b:5b:4b:04:f8:a0:34:20:20:3e:f1:
                    5c:1f:f0:eb:fc:01:96:9f:a1:51:6d:cc:39:97:3e:d2:
                    0a:d3:06:01:8b:14:73:9a:e4:5b:96:e1:9f:59:3c:90:
                    fc:ff:2b:48:74:6b:c3:41:bb:4d:a6:ca:55:f2:7b:c1:
                    f5:ca:02:cd:56:3f:4e:ef:92:98:81:32:f2:d7:e8:92:
                    27:76:0b:21:3d:9e:77:4e:f6:52:9b:82:5f:f3:f4:38:
                    6c:ae:79:31:0d:35:65:1d:07:49:22:48:6e:74:61:71:
                    2c:b3:74:9c:12:5a:23:3f:a6:16:14:b2:11:9a:97:5f:
                    d5:d9:9a:e2:7f:49:8f:2d:d0:10:c9:4d:9c:8b:43:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:3b:c1:00:01:ff:99:08:4a:86:7d:7e:be:ec:da:13:
        90:aa:50:fc:cb:91:4b:32:a7:b4:b4:2c:ee:b6:e8:d7:
        96:f4:29:be:9e:31:78:6c:d6:50:36:29:c1:58:a0:6e:
        4d:12:0d:00:76:de:09:c0:75:3a:aa:bd:0c:c0:43:d4:
        57:48:e2:ef:11:97:ba:cd:aa:9b:b6:87:5b:a3:e3:7d:
        5c:5a:f6:38:3d:25:a8:d8:32:a3:97:ee:74:8f:15:61:
        33:fb:83:6b:6d:83:3d:d9:dd:4b:12:96:3a:14:3e:8e:
        3c:c5:d4:7b:9b:ef:b3:5d:ec:a3:98:b3:e2:50:c5:59:
        71:14:31:b3:04:bf:78:40:55:92:1f:3a:22:31:ae:b6:
        c7:1e:be:e1:a2:43:bf:0d:c4:08:22:f5:60:92:7c:52:
        c3:25:49:1c:ad:9d:41:5c:17:f1:e1:d2:fb:de:c3:c9:
        ea:10:05:42:1f:ea:37:54:e9:60:85:df:60:8e:92:77:
        a7:e3:cd:b2:1e:d4:ba:5c:64:65:c6:c4:53:c9:d3:2e:
        bc:72:f1:57:c1:73:a4:e2:68:1b:05:80:43:cf:c0:3e:
        bf:35:1c:53:18:27:9d:54:65:f0:17:7b:ba:05:44:ed:
        80:fd:22:31:88:ef:20:48:a4:9f:1b:5b:79:ba:2b:3f
    Fingerprint (SHA-256):
        CD:4D:59:03:3A:D1:06:13:38:4F:8A:78:57:F8:7E:04:E3:A0:03:73:9C:98:05:BF:6C:86:9C:F0:DE:B4:E9:C2
    Fingerprint (SHA1):
        E4:A8:6D:9E:EE:F4:F3:E5:B1:B8:EC:42:F2:D8:F4:F6:92:E0:1D:0B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3979: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3980: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144974 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3981: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3982: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3983: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144975 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3984: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3985: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3986: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3987: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 1021144976 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3988: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3989: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 1021144977 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3990: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3991: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3992: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3993: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3994: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 1021144978   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-Bridge-1021144745.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3995: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3996: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3997: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3998: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021144979   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3999: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4000: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4001: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4002: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 1021144980   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-BridgeNavy-1021144746.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4003: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4004: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4005: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4006: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 1021144981   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4007: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4008: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #4009: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #4010: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144975 (0x3cdd6f8f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 15:16:16 2017
            Not After : Fri Oct 21 15:16:16 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9a:bd:9f:34:25:e0:87:16:c7:0b:e8:4f:50:fd:16:20:
                    2a:6f:c0:24:be:f8:89:62:6a:b9:94:46:f0:b1:ff:f7:
                    0b:e0:f5:6d:94:67:d7:48:82:79:10:2d:02:8a:a3:dc:
                    93:b1:19:a5:8b:f8:d9:00:2b:44:61:86:b2:4c:5a:b9:
                    de:d7:f7:e3:e7:0f:c9:2b:96:b1:f6:fa:c7:3f:1a:1d:
                    1a:6b:a6:3a:7c:5e:0f:d9:10:9b:98:e4:f7:1d:67:ff:
                    bd:29:52:93:68:b3:c3:a6:fa:68:b3:f3:eb:74:56:3d:
                    53:14:41:04:86:a1:36:b1:c7:a2:44:a2:ca:f4:6e:26:
                    ab:5a:8d:d4:d4:d3:44:44:15:53:fd:2a:28:c7:c9:ee:
                    5b:28:2a:61:c9:d6:16:ce:d6:f4:8b:ef:9e:59:09:cf:
                    ce:41:a1:89:67:be:a9:27:f6:ce:2c:28:c0:9f:b0:54:
                    f8:2e:52:dc:84:69:0e:a6:66:78:2b:5d:b9:85:65:f0:
                    80:9a:a1:ca:8f:e3:18:2a:80:88:bd:30:bc:e7:f7:66:
                    31:97:d7:62:8e:7e:ed:aa:f6:e6:70:45:39:9e:5a:50:
                    01:03:9e:83:4d:02:3c:72:fe:f1:4b:5b:8a:2e:e9:2f:
                    18:62:1d:90:13:c2:bc:67:43:eb:56:b6:11:e8:b1:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        32:a1:c1:08:ac:5e:b3:0c:e2:7f:29:6d:c3:d4:3c:a6:
        52:6c:a9:ab:ee:6b:e1:74:05:8d:73:8e:03:b3:fa:fe:
        57:c9:ac:19:61:da:1f:c5:91:03:00:b1:95:b6:36:9f:
        99:92:f3:a2:49:24:c1:1c:d1:29:d1:ce:04:a9:e4:64:
        e8:93:1d:73:ca:be:dc:5a:53:db:40:b9:f5:3d:f4:3c:
        0c:ac:47:48:e7:23:69:a4:e9:76:44:d8:3c:6b:87:ce:
        1d:b8:9f:0d:91:ff:d8:98:dd:59:16:3c:a6:f3:d4:e0:
        40:21:c5:ec:88:1a:a7:ee:fa:2f:51:cd:7e:4d:ca:8a:
        0b:c9:cb:3a:e2:df:e5:74:bd:ae:44:09:a5:a4:dc:d5:
        21:cb:28:5a:df:09:13:0b:a4:6c:f0:53:43:58:cc:06:
        b8:3d:7e:f8:bb:be:c4:92:d1:c4:7f:de:37:59:94:e7:
        53:7a:eb:15:c1:89:f9:1e:6f:04:4f:09:18:9f:27:23:
        8e:a5:2c:ba:74:5d:66:05:d5:62:d3:b4:4a:2a:a5:8b:
        45:a1:37:0f:6e:fc:99:3c:a2:4c:60:b1:19:26:14:e1:
        30:81:dd:e5:a3:b9:f2:a4:8e:6d:48:e9:16:2e:be:bb:
        12:66:b5:e1:56:90:bf:2f:92:76:ac:d2:d1:46:34:3f
    Fingerprint (SHA-256):
        D1:C5:AC:06:60:72:20:66:B1:3A:2E:BC:70:08:F7:BD:24:7A:64:21:1E:B6:23:23:F2:BF:A6:AB:57:13:B8:28
    Fingerprint (SHA1):
        A8:61:C0:80:2F:1C:8B:45:9F:8A:D4:97:7B:8F:88:69:8B:D4:D3:FE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #4011: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144975 (0x3cdd6f8f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 15:16:16 2017
            Not After : Fri Oct 21 15:16:16 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9a:bd:9f:34:25:e0:87:16:c7:0b:e8:4f:50:fd:16:20:
                    2a:6f:c0:24:be:f8:89:62:6a:b9:94:46:f0:b1:ff:f7:
                    0b:e0:f5:6d:94:67:d7:48:82:79:10:2d:02:8a:a3:dc:
                    93:b1:19:a5:8b:f8:d9:00:2b:44:61:86:b2:4c:5a:b9:
                    de:d7:f7:e3:e7:0f:c9:2b:96:b1:f6:fa:c7:3f:1a:1d:
                    1a:6b:a6:3a:7c:5e:0f:d9:10:9b:98:e4:f7:1d:67:ff:
                    bd:29:52:93:68:b3:c3:a6:fa:68:b3:f3:eb:74:56:3d:
                    53:14:41:04:86:a1:36:b1:c7:a2:44:a2:ca:f4:6e:26:
                    ab:5a:8d:d4:d4:d3:44:44:15:53:fd:2a:28:c7:c9:ee:
                    5b:28:2a:61:c9:d6:16:ce:d6:f4:8b:ef:9e:59:09:cf:
                    ce:41:a1:89:67:be:a9:27:f6:ce:2c:28:c0:9f:b0:54:
                    f8:2e:52:dc:84:69:0e:a6:66:78:2b:5d:b9:85:65:f0:
                    80:9a:a1:ca:8f:e3:18:2a:80:88:bd:30:bc:e7:f7:66:
                    31:97:d7:62:8e:7e:ed:aa:f6:e6:70:45:39:9e:5a:50:
                    01:03:9e:83:4d:02:3c:72:fe:f1:4b:5b:8a:2e:e9:2f:
                    18:62:1d:90:13:c2:bc:67:43:eb:56:b6:11:e8:b1:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        32:a1:c1:08:ac:5e:b3:0c:e2:7f:29:6d:c3:d4:3c:a6:
        52:6c:a9:ab:ee:6b:e1:74:05:8d:73:8e:03:b3:fa:fe:
        57:c9:ac:19:61:da:1f:c5:91:03:00:b1:95:b6:36:9f:
        99:92:f3:a2:49:24:c1:1c:d1:29:d1:ce:04:a9:e4:64:
        e8:93:1d:73:ca:be:dc:5a:53:db:40:b9:f5:3d:f4:3c:
        0c:ac:47:48:e7:23:69:a4:e9:76:44:d8:3c:6b:87:ce:
        1d:b8:9f:0d:91:ff:d8:98:dd:59:16:3c:a6:f3:d4:e0:
        40:21:c5:ec:88:1a:a7:ee:fa:2f:51:cd:7e:4d:ca:8a:
        0b:c9:cb:3a:e2:df:e5:74:bd:ae:44:09:a5:a4:dc:d5:
        21:cb:28:5a:df:09:13:0b:a4:6c:f0:53:43:58:cc:06:
        b8:3d:7e:f8:bb:be:c4:92:d1:c4:7f:de:37:59:94:e7:
        53:7a:eb:15:c1:89:f9:1e:6f:04:4f:09:18:9f:27:23:
        8e:a5:2c:ba:74:5d:66:05:d5:62:d3:b4:4a:2a:a5:8b:
        45:a1:37:0f:6e:fc:99:3c:a2:4c:60:b1:19:26:14:e1:
        30:81:dd:e5:a3:b9:f2:a4:8e:6d:48:e9:16:2e:be:bb:
        12:66:b5:e1:56:90:bf:2f:92:76:ac:d2:d1:46:34:3f
    Fingerprint (SHA-256):
        D1:C5:AC:06:60:72:20:66:B1:3A:2E:BC:70:08:F7:BD:24:7A:64:21:1E:B6:23:23:F2:BF:A6:AB:57:13:B8:28
    Fingerprint (SHA1):
        A8:61:C0:80:2F:1C:8B:45:9F:8A:D4:97:7B:8F:88:69:8B:D4:D3:FE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #4012: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #4013: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144974 (0x3cdd6f8e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 15:16:10 2017
            Not After : Fri Oct 21 15:16:10 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:31:84:85:d9:fc:a6:11:46:9a:3f:32:57:fa:04:d6:
                    e8:fe:ea:ad:fc:68:3d:d6:d3:f9:b1:29:d9:4a:bf:86:
                    21:b3:a4:ae:69:0c:ed:a0:f8:6e:64:a9:e5:83:75:a4:
                    cb:dd:5e:13:95:db:91:fb:bf:3b:26:23:20:f7:70:a9:
                    fd:2a:6f:69:0c:b5:0c:a7:35:67:58:7c:e0:82:0c:f1:
                    c6:06:45:fa:40:72:27:cf:b5:88:17:94:fb:31:fe:90:
                    92:b3:16:76:c0:51:42:4b:4e:1b:60:aa:04:af:b1:1a:
                    b1:f3:05:f4:4d:d2:30:bf:7f:17:85:c6:51:cd:ed:c4:
                    df:c4:4a:6e:d7:8b:eb:88:e1:89:e2:6d:09:3d:0b:dc:
                    6a:b9:ee:28:dd:9d:aa:bb:ff:9f:53:bf:aa:c8:51:93:
                    5c:a9:6e:65:3f:48:14:ae:70:db:28:e0:5e:11:b1:a3:
                    5b:69:45:d9:43:5c:0d:79:5c:64:ef:0a:83:0a:c0:6c:
                    1a:25:72:88:ad:04:d0:1f:48:a0:8b:3e:25:c3:41:e9:
                    72:0c:b7:3e:0b:c6:0b:1e:34:82:55:3f:9d:36:bf:c2:
                    91:13:37:34:11:41:e3:1a:81:ee:b5:7c:07:33:45:e2:
                    91:6b:df:57:76:14:bc:8e:cf:ac:d9:ae:e9:e1:bc:03
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:f2:df:44:2c:1c:d5:83:ae:8c:06:50:1f:ca:94:d0:
        c4:ed:71:c8:fd:c1:ba:a2:0f:66:16:aa:f6:64:09:07:
        96:fa:01:5d:7d:16:d5:a6:70:25:19:80:f3:10:a7:64:
        37:fb:03:31:82:09:ee:e8:b5:04:63:3f:29:7b:ef:b5:
        ab:2f:39:3b:0e:7a:45:ee:0c:e5:03:f3:e0:42:48:be:
        90:9a:93:f0:53:2d:26:2f:3c:dc:db:7b:b6:92:65:2b:
        c4:2d:a3:18:30:c0:38:fc:43:76:f8:a2:f9:8c:6d:b2:
        bb:e2:e3:31:c9:1d:55:5f:9b:ed:1c:fd:b3:ab:ff:68:
        01:6b:0e:9c:4c:1a:dd:31:54:ab:76:25:58:46:6e:72:
        f5:81:04:24:88:82:c4:34:f0:ff:68:0f:c0:3d:c3:db:
        e6:d0:01:3c:f1:fb:08:2a:c4:d6:ac:80:c4:e4:7b:29:
        9a:22:d1:a1:35:e2:77:ff:a1:c1:8c:8c:09:b6:c7:4c:
        84:c4:e1:31:26:81:2f:65:eb:b9:cc:40:49:c1:5a:a4:
        df:f6:ab:24:13:3e:a0:73:0b:eb:e6:5c:54:78:c2:d2:
        a7:5f:b4:aa:e1:f7:e7:57:81:79:48:4b:4d:e0:1d:41:
        4b:64:8f:c7:2b:1c:cd:74:16:b8:6e:c3:e6:e9:6f:35
    Fingerprint (SHA-256):
        B5:09:77:0E:6D:A5:54:46:CE:E5:52:0D:56:A2:3B:B9:9E:48:74:39:9F:B9:45:71:56:57:C7:09:58:AF:C1:80
    Fingerprint (SHA1):
        91:72:A6:6A:8F:74:B6:DA:6A:54:83:D6:BB:80:60:5E:14:74:7D:28
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #4014: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144975 (0x3cdd6f8f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 15:16:16 2017
            Not After : Fri Oct 21 15:16:16 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9a:bd:9f:34:25:e0:87:16:c7:0b:e8:4f:50:fd:16:20:
                    2a:6f:c0:24:be:f8:89:62:6a:b9:94:46:f0:b1:ff:f7:
                    0b:e0:f5:6d:94:67:d7:48:82:79:10:2d:02:8a:a3:dc:
                    93:b1:19:a5:8b:f8:d9:00:2b:44:61:86:b2:4c:5a:b9:
                    de:d7:f7:e3:e7:0f:c9:2b:96:b1:f6:fa:c7:3f:1a:1d:
                    1a:6b:a6:3a:7c:5e:0f:d9:10:9b:98:e4:f7:1d:67:ff:
                    bd:29:52:93:68:b3:c3:a6:fa:68:b3:f3:eb:74:56:3d:
                    53:14:41:04:86:a1:36:b1:c7:a2:44:a2:ca:f4:6e:26:
                    ab:5a:8d:d4:d4:d3:44:44:15:53:fd:2a:28:c7:c9:ee:
                    5b:28:2a:61:c9:d6:16:ce:d6:f4:8b:ef:9e:59:09:cf:
                    ce:41:a1:89:67:be:a9:27:f6:ce:2c:28:c0:9f:b0:54:
                    f8:2e:52:dc:84:69:0e:a6:66:78:2b:5d:b9:85:65:f0:
                    80:9a:a1:ca:8f:e3:18:2a:80:88:bd:30:bc:e7:f7:66:
                    31:97:d7:62:8e:7e:ed:aa:f6:e6:70:45:39:9e:5a:50:
                    01:03:9e:83:4d:02:3c:72:fe:f1:4b:5b:8a:2e:e9:2f:
                    18:62:1d:90:13:c2:bc:67:43:eb:56:b6:11:e8:b1:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        32:a1:c1:08:ac:5e:b3:0c:e2:7f:29:6d:c3:d4:3c:a6:
        52:6c:a9:ab:ee:6b:e1:74:05:8d:73:8e:03:b3:fa:fe:
        57:c9:ac:19:61:da:1f:c5:91:03:00:b1:95:b6:36:9f:
        99:92:f3:a2:49:24:c1:1c:d1:29:d1:ce:04:a9:e4:64:
        e8:93:1d:73:ca:be:dc:5a:53:db:40:b9:f5:3d:f4:3c:
        0c:ac:47:48:e7:23:69:a4:e9:76:44:d8:3c:6b:87:ce:
        1d:b8:9f:0d:91:ff:d8:98:dd:59:16:3c:a6:f3:d4:e0:
        40:21:c5:ec:88:1a:a7:ee:fa:2f:51:cd:7e:4d:ca:8a:
        0b:c9:cb:3a:e2:df:e5:74:bd:ae:44:09:a5:a4:dc:d5:
        21:cb:28:5a:df:09:13:0b:a4:6c:f0:53:43:58:cc:06:
        b8:3d:7e:f8:bb:be:c4:92:d1:c4:7f:de:37:59:94:e7:
        53:7a:eb:15:c1:89:f9:1e:6f:04:4f:09:18:9f:27:23:
        8e:a5:2c:ba:74:5d:66:05:d5:62:d3:b4:4a:2a:a5:8b:
        45:a1:37:0f:6e:fc:99:3c:a2:4c:60:b1:19:26:14:e1:
        30:81:dd:e5:a3:b9:f2:a4:8e:6d:48:e9:16:2e:be:bb:
        12:66:b5:e1:56:90:bf:2f:92:76:ac:d2:d1:46:34:3f
    Fingerprint (SHA-256):
        D1:C5:AC:06:60:72:20:66:B1:3A:2E:BC:70:08:F7:BD:24:7A:64:21:1E:B6:23:23:F2:BF:A6:AB:57:13:B8:28
    Fingerprint (SHA1):
        A8:61:C0:80:2F:1C:8B:45:9F:8A:D4:97:7B:8F:88:69:8B:D4:D3:FE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #4015: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144975 (0x3cdd6f8f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 15:16:16 2017
            Not After : Fri Oct 21 15:16:16 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9a:bd:9f:34:25:e0:87:16:c7:0b:e8:4f:50:fd:16:20:
                    2a:6f:c0:24:be:f8:89:62:6a:b9:94:46:f0:b1:ff:f7:
                    0b:e0:f5:6d:94:67:d7:48:82:79:10:2d:02:8a:a3:dc:
                    93:b1:19:a5:8b:f8:d9:00:2b:44:61:86:b2:4c:5a:b9:
                    de:d7:f7:e3:e7:0f:c9:2b:96:b1:f6:fa:c7:3f:1a:1d:
                    1a:6b:a6:3a:7c:5e:0f:d9:10:9b:98:e4:f7:1d:67:ff:
                    bd:29:52:93:68:b3:c3:a6:fa:68:b3:f3:eb:74:56:3d:
                    53:14:41:04:86:a1:36:b1:c7:a2:44:a2:ca:f4:6e:26:
                    ab:5a:8d:d4:d4:d3:44:44:15:53:fd:2a:28:c7:c9:ee:
                    5b:28:2a:61:c9:d6:16:ce:d6:f4:8b:ef:9e:59:09:cf:
                    ce:41:a1:89:67:be:a9:27:f6:ce:2c:28:c0:9f:b0:54:
                    f8:2e:52:dc:84:69:0e:a6:66:78:2b:5d:b9:85:65:f0:
                    80:9a:a1:ca:8f:e3:18:2a:80:88:bd:30:bc:e7:f7:66:
                    31:97:d7:62:8e:7e:ed:aa:f6:e6:70:45:39:9e:5a:50:
                    01:03:9e:83:4d:02:3c:72:fe:f1:4b:5b:8a:2e:e9:2f:
                    18:62:1d:90:13:c2:bc:67:43:eb:56:b6:11:e8:b1:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        32:a1:c1:08:ac:5e:b3:0c:e2:7f:29:6d:c3:d4:3c:a6:
        52:6c:a9:ab:ee:6b:e1:74:05:8d:73:8e:03:b3:fa:fe:
        57:c9:ac:19:61:da:1f:c5:91:03:00:b1:95:b6:36:9f:
        99:92:f3:a2:49:24:c1:1c:d1:29:d1:ce:04:a9:e4:64:
        e8:93:1d:73:ca:be:dc:5a:53:db:40:b9:f5:3d:f4:3c:
        0c:ac:47:48:e7:23:69:a4:e9:76:44:d8:3c:6b:87:ce:
        1d:b8:9f:0d:91:ff:d8:98:dd:59:16:3c:a6:f3:d4:e0:
        40:21:c5:ec:88:1a:a7:ee:fa:2f:51:cd:7e:4d:ca:8a:
        0b:c9:cb:3a:e2:df:e5:74:bd:ae:44:09:a5:a4:dc:d5:
        21:cb:28:5a:df:09:13:0b:a4:6c:f0:53:43:58:cc:06:
        b8:3d:7e:f8:bb:be:c4:92:d1:c4:7f:de:37:59:94:e7:
        53:7a:eb:15:c1:89:f9:1e:6f:04:4f:09:18:9f:27:23:
        8e:a5:2c:ba:74:5d:66:05:d5:62:d3:b4:4a:2a:a5:8b:
        45:a1:37:0f:6e:fc:99:3c:a2:4c:60:b1:19:26:14:e1:
        30:81:dd:e5:a3:b9:f2:a4:8e:6d:48:e9:16:2e:be:bb:
        12:66:b5:e1:56:90:bf:2f:92:76:ac:d2:d1:46:34:3f
    Fingerprint (SHA-256):
        D1:C5:AC:06:60:72:20:66:B1:3A:2E:BC:70:08:F7:BD:24:7A:64:21:1E:B6:23:23:F2:BF:A6:AB:57:13:B8:28
    Fingerprint (SHA1):
        A8:61:C0:80:2F:1C:8B:45:9F:8A:D4:97:7B:8F:88:69:8B:D4:D3:FE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #4016: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #4017: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144982 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4018: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #4019: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #4020: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144983 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4021: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #4022: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #4023: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4024: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 1021144984   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4025: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4026: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #4027: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4028: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 1021144985   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4029: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4030: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #4031: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4032: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 1021144986 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #4033: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4034: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 1021144987 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #4035: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4036: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #4037: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4038: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4039: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 1021144988   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4040: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4041: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4042: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4043: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 1021144989   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4044: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4045: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #4046: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4047: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021144990   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4048: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4049: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4050: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4051: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 1021144991   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4052: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4053: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4054: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144982 (0x3cdd6f96)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 15:16:59 2017
            Not After : Fri Oct 21 15:16:59 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:76:78:4c:fc:a2:1b:a6:82:a3:75:20:5e:5e:ee:5d:
                    80:2e:e2:45:68:a0:4f:68:6a:a0:93:9e:7d:5b:03:72:
                    d2:c2:05:1f:7e:1e:dc:b5:1b:91:fe:9e:f3:36:7c:11:
                    f6:f9:b6:a2:60:94:c7:d1:3a:5e:dd:80:25:a5:21:61:
                    68:0a:52:39:36:2c:c6:e8:42:ca:06:ef:09:dc:0b:31:
                    58:a9:d1:22:db:15:e5:43:12:58:d5:c1:d0:97:ab:0f:
                    e4:f7:b2:7a:55:92:05:54:77:e9:92:ba:6f:d1:2c:57:
                    05:f6:10:e0:1d:68:c6:85:60:03:7d:77:5e:7e:dd:80:
                    15:4f:18:c3:da:5b:7d:3f:de:5d:ac:ac:bc:41:e4:8b:
                    41:41:c8:11:68:dd:82:20:ec:a9:b7:c6:bf:2e:ac:20:
                    d5:24:08:7a:7e:fe:fd:55:9f:6e:16:91:a3:e2:7c:6a:
                    a2:ce:57:45:35:cc:4a:32:90:48:ff:ff:29:55:90:47:
                    34:f7:18:86:c5:2f:51:06:c6:15:48:72:2a:5d:6d:d8:
                    d2:fc:b2:99:59:2a:ed:08:25:94:be:1a:7b:6e:4e:d1:
                    05:32:c1:8c:f9:c0:98:c0:76:f7:c6:47:06:1b:d6:63:
                    b5:08:ff:bd:25:0c:b5:6a:7a:0d:c0:b4:c3:4b:75:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8a:62:45:c8:72:f8:2d:00:f2:3e:32:b2:29:2c:ab:62:
        e9:e5:7b:58:eb:8e:3c:5d:55:f9:92:f4:5c:dd:ff:16:
        f4:d5:6a:0a:f7:71:96:4f:34:bb:73:3b:58:89:c2:d2:
        a9:98:40:57:f7:4c:d3:9b:c1:72:94:ed:7f:6f:3f:a9:
        cd:ba:24:f2:af:fe:07:c8:f8:e4:d9:c2:cd:15:88:dc:
        ce:46:d2:78:85:d1:d7:67:f5:62:43:94:84:d3:63:fd:
        a7:b5:66:ba:29:be:76:bf:62:ff:d2:01:6b:74:9d:61:
        b2:0d:17:c7:99:51:db:c3:23:67:5a:d6:54:20:a0:e0:
        43:b9:db:5d:54:75:81:4d:2c:ee:05:aa:71:12:46:73:
        67:6a:90:84:f4:ce:a1:73:1d:ab:ec:30:08:91:a6:1e:
        c3:f3:e2:74:ee:96:18:a3:f8:ea:70:51:ef:ce:da:72:
        22:17:10:b5:42:a5:fa:b3:7c:00:e5:72:b3:8c:08:0e:
        7a:fc:7e:fb:0b:dd:f9:2f:6a:ec:bc:91:d3:da:50:7d:
        1d:dc:ee:30:57:8f:fa:e3:9b:12:22:27:fb:3b:1a:54:
        32:d3:28:9f:e4:17:74:02:75:33:2b:13:01:ce:bf:55:
        81:7c:bf:b8:f1:6a:36:5f:62:7e:32:af:5e:62:2f:b3
    Fingerprint (SHA-256):
        C7:85:AD:57:7E:13:5F:59:CB:17:94:8B:14:3E:EA:F6:1C:BA:BB:38:9E:94:A1:40:9F:00:1B:EC:FB:C8:D9:14
    Fingerprint (SHA1):
        65:87:1F:A0:6D:BE:00:9A:74:56:C2:2B:AA:3C:6F:55:16:6B:A3:AA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #4055: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4056: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4057: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4058: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4059: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4060: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4061: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4062: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4063: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144983 (0x3cdd6f97)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 15:17:03 2017
            Not After : Fri Oct 21 15:17:03 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:63:84:ca:22:31:89:d8:59:37:49:d1:c1:b8:8d:e8:
                    60:25:08:8f:77:29:ca:5c:b8:36:c3:c2:e2:d5:be:ab:
                    66:16:4f:67:81:19:74:eb:89:2d:ce:40:33:09:00:84:
                    ac:c2:c3:b1:29:c4:66:92:c1:28:89:29:2f:3a:ef:40:
                    d9:d0:7b:8e:84:64:14:14:40:d1:b1:57:96:02:88:7c:
                    05:dd:6d:15:5c:dc:5c:2d:23:eb:97:ca:36:59:09:08:
                    41:93:5b:09:fc:c5:d7:8f:db:97:53:74:06:ae:f5:35:
                    07:c0:f4:a9:1d:33:14:fe:91:f4:72:99:4e:4f:bc:ab:
                    f6:5e:06:37:19:10:47:d8:78:0a:d5:42:78:20:c0:7c:
                    c0:c9:a6:35:ed:5e:5b:09:58:08:6b:77:41:6a:63:25:
                    fe:14:25:4d:af:3f:78:59:61:0f:a9:a5:a2:c2:aa:d9:
                    2a:e5:f7:7f:85:93:7b:a0:13:cf:64:46:ef:df:86:d2:
                    96:23:fd:2a:6d:61:dd:f3:b5:e6:14:ea:07:21:b8:e4:
                    2e:ad:82:46:40:1a:e0:25:3a:ee:40:71:63:c3:1e:5e:
                    8c:f7:ec:65:bc:f0:0d:ea:b5:7a:0d:9a:a9:dd:65:cd:
                    24:a8:4f:f7:8e:9a:e3:e3:3e:d8:27:fa:43:66:24:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cc:33:86:4c:9b:34:34:29:53:cc:6b:5f:ed:07:e3:0f:
        3e:9d:0d:79:db:7f:34:3c:35:dc:d7:34:18:ca:02:d9:
        ad:cd:f9:0a:7e:2b:b2:3b:1d:88:12:b3:62:e5:e1:54:
        e7:9a:69:76:3a:11:04:0c:c5:15:b2:e2:02:f9:3b:9e:
        2a:52:c9:6c:8e:32:04:e4:3a:d0:c1:4f:dd:8a:fe:a8:
        20:c8:54:98:85:8b:0a:d1:0d:f9:96:70:56:8e:35:27:
        77:07:c9:a2:fa:22:ff:3f:e0:79:68:c2:04:93:77:e5:
        88:f5:1f:51:61:23:30:98:cc:aa:4a:48:50:2b:a7:c5:
        76:8b:c5:14:23:d4:ef:3e:32:ef:87:d5:92:78:b5:9d:
        16:3f:b2:f3:69:96:36:11:96:a2:76:97:83:4f:a6:7e:
        ad:d4:75:cf:67:b2:f3:63:b3:ef:1c:fc:bd:9e:ea:35:
        51:3e:1d:0c:72:b9:a0:c7:ea:72:ed:f8:51:03:bf:c4:
        c5:01:53:c5:b7:a1:a2:fe:5e:0c:73:66:f9:f4:8c:b1:
        72:00:51:0c:83:f8:04:e9:36:1c:a2:03:f3:2a:5f:e3:
        f6:9a:58:41:f3:d5:43:cb:d1:c7:49:2f:10:b9:e8:ea:
        6e:71:26:b7:64:43:ec:dc:0f:0a:78:db:f7:13:80:d8
    Fingerprint (SHA-256):
        E3:11:EF:1C:76:1F:86:74:18:71:37:46:DB:D2:1E:AE:78:2F:2A:45:5D:33:12:8F:CC:78:CC:BC:D6:1B:E2:75
    Fingerprint (SHA1):
        1E:1D:F8:FF:C2:CC:40:47:AF:A2:AE:35:58:17:9D:50:B4:4D:E3:E5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #4064: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4065: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4066: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4067: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4068: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4069: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #4070: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #4071: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #4072: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #4073: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #4074: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #4075: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #4076: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #4077: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4078: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4079: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #4080: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #4081: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #4082: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021144992 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4083: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #4084: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4085: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4086: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021144993   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4087: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4088: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #4089: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4090: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021144994   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4091: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4092: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4093: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4094: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 1021144995   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4095: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4096: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4097: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4098: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 1021144996   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4099: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4100: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #4101: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4102: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 1021144997   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4103: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4104: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #4105: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4106: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 1021144998   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4107: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4108: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #4109: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4110: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 1021144999   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4111: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4112: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #4113: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4114: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 1021145000   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4115: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4116: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #4117: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144992 (0x3cdd6fa0)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:18:08 2017
            Not After : Fri Oct 21 15:18:08 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    6d:13:32:bc:ba:3d:ab:bd:58:7a:e9:f2:0b:f4:84:96:
                    f3:2e:f1:54:c2:81:6a:e2:6f:1c:cc:1c:2d:6f:4e:e8:
                    cf:be:14:14:c9:a2:55:87:16:de:0d:c1:22:86:0d:39:
                    e3:c2:5c:b5:44:08:94:d7:7d:66:85:4c:cf:23:87:cc:
                    55:b7:e1:40:e2:18:d3:40:f9:06:3f:92:7a:14:fc:d4:
                    00:86:2e:64:67:f1:7f:9b:6d:39:da:0e:3a:2b:45:bd:
                    bc:10:d1:9e:81:b5:c5:61:26:3c:c6:3a:df:ab:c3:39:
                    97:89:d1:be:28:73:80:49:09:66:5b:b0:63:e4:99:a2:
                    50:3f:a9:ed:07:ff:86:bb:e9:fc:7c:4b:b5:e8:dd:ce:
                    96:ce:5f:f0:5c:5a:17:ea:89:04:21:22:e6:e9:e2:71:
                    ed:b4:13:83:36:96:6e:28:b2:f8:13:82:88:b1:0f:f8:
                    e6:55:b3:69:a9:2a:66:4c:e1:fe:51:98:b5:f5:28:34:
                    1c:85:4e:2b:fd:e2:08:90:b0:4b:48:01:91:82:6e:f8:
                    a6:0a:14:99:fa:e8:e7:73:92:f7:f1:13:be:16:97:d6:
                    ff:b6:41:92:4c:c0:3a:3d:bc:e4:c1:3f:2d:94:9f:49:
                    d7:d8:96:ad:c3:28:a3:70:bf:1d:46:92:c4:88:44:8c
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1c:0f:3c:35:61:99:f7:cc:9c:19:d0:91:05:
        fd:88:f0:fb:a9:eb:a6:fb:80:bb:4a:2c:f3:c9:f2:0b:
        02:1d:00:90:f3:fe:b3:6b:5b:49:b1:13:eb:00:3d:1f:
        1b:70:90:b4:fe:09:53:2b:a4:fe:fa:d3:05:8d:06
    Fingerprint (SHA-256):
        1A:3A:D0:09:8D:9A:36:A7:FD:C5:9D:D4:A9:39:EE:97:48:10:EA:A8:6F:5A:D0:11:11:9B:2C:C1:09:1A:2F:34
    Fingerprint (SHA1):
        45:DF:FB:C8:C1:16:90:1E:DF:4B:E2:89:A4:A8:13:CD:DB:73:8F:AA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4118: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144992 (0x3cdd6fa0)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:18:08 2017
            Not After : Fri Oct 21 15:18:08 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    6d:13:32:bc:ba:3d:ab:bd:58:7a:e9:f2:0b:f4:84:96:
                    f3:2e:f1:54:c2:81:6a:e2:6f:1c:cc:1c:2d:6f:4e:e8:
                    cf:be:14:14:c9:a2:55:87:16:de:0d:c1:22:86:0d:39:
                    e3:c2:5c:b5:44:08:94:d7:7d:66:85:4c:cf:23:87:cc:
                    55:b7:e1:40:e2:18:d3:40:f9:06:3f:92:7a:14:fc:d4:
                    00:86:2e:64:67:f1:7f:9b:6d:39:da:0e:3a:2b:45:bd:
                    bc:10:d1:9e:81:b5:c5:61:26:3c:c6:3a:df:ab:c3:39:
                    97:89:d1:be:28:73:80:49:09:66:5b:b0:63:e4:99:a2:
                    50:3f:a9:ed:07:ff:86:bb:e9:fc:7c:4b:b5:e8:dd:ce:
                    96:ce:5f:f0:5c:5a:17:ea:89:04:21:22:e6:e9:e2:71:
                    ed:b4:13:83:36:96:6e:28:b2:f8:13:82:88:b1:0f:f8:
                    e6:55:b3:69:a9:2a:66:4c:e1:fe:51:98:b5:f5:28:34:
                    1c:85:4e:2b:fd:e2:08:90:b0:4b:48:01:91:82:6e:f8:
                    a6:0a:14:99:fa:e8:e7:73:92:f7:f1:13:be:16:97:d6:
                    ff:b6:41:92:4c:c0:3a:3d:bc:e4:c1:3f:2d:94:9f:49:
                    d7:d8:96:ad:c3:28:a3:70:bf:1d:46:92:c4:88:44:8c
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1c:0f:3c:35:61:99:f7:cc:9c:19:d0:91:05:
        fd:88:f0:fb:a9:eb:a6:fb:80:bb:4a:2c:f3:c9:f2:0b:
        02:1d:00:90:f3:fe:b3:6b:5b:49:b1:13:eb:00:3d:1f:
        1b:70:90:b4:fe:09:53:2b:a4:fe:fa:d3:05:8d:06
    Fingerprint (SHA-256):
        1A:3A:D0:09:8D:9A:36:A7:FD:C5:9D:D4:A9:39:EE:97:48:10:EA:A8:6F:5A:D0:11:11:9B:2C:C1:09:1A:2F:34
    Fingerprint (SHA1):
        45:DF:FB:C8:C1:16:90:1E:DF:4B:E2:89:A4:A8:13:CD:DB:73:8F:AA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #4119: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144992 (0x3cdd6fa0)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:18:08 2017
            Not After : Fri Oct 21 15:18:08 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    6d:13:32:bc:ba:3d:ab:bd:58:7a:e9:f2:0b:f4:84:96:
                    f3:2e:f1:54:c2:81:6a:e2:6f:1c:cc:1c:2d:6f:4e:e8:
                    cf:be:14:14:c9:a2:55:87:16:de:0d:c1:22:86:0d:39:
                    e3:c2:5c:b5:44:08:94:d7:7d:66:85:4c:cf:23:87:cc:
                    55:b7:e1:40:e2:18:d3:40:f9:06:3f:92:7a:14:fc:d4:
                    00:86:2e:64:67:f1:7f:9b:6d:39:da:0e:3a:2b:45:bd:
                    bc:10:d1:9e:81:b5:c5:61:26:3c:c6:3a:df:ab:c3:39:
                    97:89:d1:be:28:73:80:49:09:66:5b:b0:63:e4:99:a2:
                    50:3f:a9:ed:07:ff:86:bb:e9:fc:7c:4b:b5:e8:dd:ce:
                    96:ce:5f:f0:5c:5a:17:ea:89:04:21:22:e6:e9:e2:71:
                    ed:b4:13:83:36:96:6e:28:b2:f8:13:82:88:b1:0f:f8:
                    e6:55:b3:69:a9:2a:66:4c:e1:fe:51:98:b5:f5:28:34:
                    1c:85:4e:2b:fd:e2:08:90:b0:4b:48:01:91:82:6e:f8:
                    a6:0a:14:99:fa:e8:e7:73:92:f7:f1:13:be:16:97:d6:
                    ff:b6:41:92:4c:c0:3a:3d:bc:e4:c1:3f:2d:94:9f:49:
                    d7:d8:96:ad:c3:28:a3:70:bf:1d:46:92:c4:88:44:8c
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1c:0f:3c:35:61:99:f7:cc:9c:19:d0:91:05:
        fd:88:f0:fb:a9:eb:a6:fb:80:bb:4a:2c:f3:c9:f2:0b:
        02:1d:00:90:f3:fe:b3:6b:5b:49:b1:13:eb:00:3d:1f:
        1b:70:90:b4:fe:09:53:2b:a4:fe:fa:d3:05:8d:06
    Fingerprint (SHA-256):
        1A:3A:D0:09:8D:9A:36:A7:FD:C5:9D:D4:A9:39:EE:97:48:10:EA:A8:6F:5A:D0:11:11:9B:2C:C1:09:1A:2F:34
    Fingerprint (SHA1):
        45:DF:FB:C8:C1:16:90:1E:DF:4B:E2:89:A4:A8:13:CD:DB:73:8F:AA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #4120: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021144992 (0x3cdd6fa0)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:18:08 2017
            Not After : Fri Oct 21 15:18:08 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    6d:13:32:bc:ba:3d:ab:bd:58:7a:e9:f2:0b:f4:84:96:
                    f3:2e:f1:54:c2:81:6a:e2:6f:1c:cc:1c:2d:6f:4e:e8:
                    cf:be:14:14:c9:a2:55:87:16:de:0d:c1:22:86:0d:39:
                    e3:c2:5c:b5:44:08:94:d7:7d:66:85:4c:cf:23:87:cc:
                    55:b7:e1:40:e2:18:d3:40:f9:06:3f:92:7a:14:fc:d4:
                    00:86:2e:64:67:f1:7f:9b:6d:39:da:0e:3a:2b:45:bd:
                    bc:10:d1:9e:81:b5:c5:61:26:3c:c6:3a:df:ab:c3:39:
                    97:89:d1:be:28:73:80:49:09:66:5b:b0:63:e4:99:a2:
                    50:3f:a9:ed:07:ff:86:bb:e9:fc:7c:4b:b5:e8:dd:ce:
                    96:ce:5f:f0:5c:5a:17:ea:89:04:21:22:e6:e9:e2:71:
                    ed:b4:13:83:36:96:6e:28:b2:f8:13:82:88:b1:0f:f8:
                    e6:55:b3:69:a9:2a:66:4c:e1:fe:51:98:b5:f5:28:34:
                    1c:85:4e:2b:fd:e2:08:90:b0:4b:48:01:91:82:6e:f8:
                    a6:0a:14:99:fa:e8:e7:73:92:f7:f1:13:be:16:97:d6:
                    ff:b6:41:92:4c:c0:3a:3d:bc:e4:c1:3f:2d:94:9f:49:
                    d7:d8:96:ad:c3:28:a3:70:bf:1d:46:92:c4:88:44:8c
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1c:0f:3c:35:61:99:f7:cc:9c:19:d0:91:05:
        fd:88:f0:fb:a9:eb:a6:fb:80:bb:4a:2c:f3:c9:f2:0b:
        02:1d:00:90:f3:fe:b3:6b:5b:49:b1:13:eb:00:3d:1f:
        1b:70:90:b4:fe:09:53:2b:a4:fe:fa:d3:05:8d:06
    Fingerprint (SHA-256):
        1A:3A:D0:09:8D:9A:36:A7:FD:C5:9D:D4:A9:39:EE:97:48:10:EA:A8:6F:5A:D0:11:11:9B:2C:C1:09:1A:2F:34
    Fingerprint (SHA1):
        45:DF:FB:C8:C1:16:90:1E:DF:4B:E2:89:A4:A8:13:CD:DB:73:8F:AA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #4121: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #4122: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 10 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4123: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #4124: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #4125: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4126: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4127: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4128: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4129: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4130: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4131: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4132: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #4133: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4134: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4135: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4136: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #4137: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4138: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4139: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4140: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4141: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4142: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4143: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4144: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #4145: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4146: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4147: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4148: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20171021151922Z
nextupdate=20181021151922Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Sat Oct 21 15:19:22 2017
    Next Update: Sun Oct 21 15:19:22 2018
    CRL Extensions:
chains.sh: #4149: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021151922Z
nextupdate=20181021151922Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 15:19:22 2017
    Next Update: Sun Oct 21 15:19:22 2018
    CRL Extensions:
chains.sh: #4150: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20171021151923Z
nextupdate=20181021151923Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Sat Oct 21 15:19:23 2017
    Next Update: Sun Oct 21 15:19:23 2018
    CRL Extensions:
chains.sh: #4151: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20171021151924Z
nextupdate=20181021151924Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Sat Oct 21 15:19:24 2017
    Next Update: Sun Oct 21 15:19:24 2018
    CRL Extensions:
chains.sh: #4152: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20171021151925Z
addcert 14 20171021151925Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Sat Oct 21 15:19:25 2017
    Next Update: Sun Oct 21 15:19:23 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Sat Oct 21 15:19:25 2017
    CRL Extensions:
chains.sh: #4153: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021151926Z
addcert 15 20171021151926Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 15:19:26 2017
    Next Update: Sun Oct 21 15:19:22 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Sat Oct 21 15:19:26 2017
    CRL Extensions:
chains.sh: #4154: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #4155: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4156: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #4157: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #4158: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #4159: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #4160: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #4161: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #4162: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #4163: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:18:47 2017
            Not After : Fri Oct 21 15:18:47 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    93:f2:56:d2:03:24:7e:4f:16:86:e6:f8:bc:64:f4:37:
                    52:ba:6f:a2:01:98:bd:81:fb:b7:c6:43:52:e6:cb:ab:
                    02:16:74:99:1f:06:48:9b:60:0f:27:eb:4d:aa:dd:c7:
                    9a:7b:34:36:8c:c0:66:82:2b:bd:e1:72:2e:9c:a2:f6:
                    b1:35:e2:7c:11:d4:a7:3a:ae:e4:ea:e3:7e:29:00:ec:
                    1b:42:f7:cb:f8:11:68:3e:45:90:75:0d:7e:af:2f:0f:
                    ef:7a:a7:b1:12:0d:13:ed:a1:6a:21:4d:c4:76:55:d3:
                    34:15:a5:78:d0:0e:48:1a:77:03:e1:78:9f:ad:4b:db:
                    09:48:58:b4:45:f0:7d:e1:a7:fe:b9:49:0a:73:c1:02:
                    96:25:cc:21:d3:2f:4a:d6:5f:36:23:89:08:e4:d6:04:
                    b7:e0:be:cd:88:34:ef:3d:02:3a:d6:2c:ad:ed:be:35:
                    8d:b9:fd:c7:66:cb:64:93:a3:f8:61:fd:07:eb:ef:8d:
                    1c:ba:a4:2e:47:d6:21:7c:10:ff:7a:0a:cf:96:a5:0e:
                    32:36:f0:cc:3e:44:c9:bc:80:54:9f:5c:81:35:c9:ea:
                    ab:b8:fd:2f:97:bc:dc:02:b6:41:a6:c4:53:41:cb:3c:
                    76:5d:6a:a7:b2:bd:95:52:18:07:80:d3:49:4b:ad:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        91:59:8e:7f:5d:90:5b:1c:98:40:7b:47:13:30:98:d8:
        ed:7c:de:eb:ea:3d:1c:60:c1:68:5c:cb:13:2b:ec:8e:
        8c:50:d1:33:1f:4a:0d:f4:e1:6b:f6:aa:e3:88:7d:31:
        0f:40:be:15:97:25:01:3c:20:7b:8e:07:dc:64:bc:b4:
        47:57:e9:5f:4a:b5:2b:37:87:2d:02:e1:5f:7b:87:a7:
        f9:46:a2:31:ab:25:3c:97:11:00:d6:1a:42:a4:ab:a6:
        0f:62:1d:49:b5:bb:47:19:f2:d3:a2:0b:dc:b5:36:2e:
        a9:31:81:11:ac:43:66:36:8a:eb:85:d6:a1:9c:38:b9:
        71:af:f6:65:41:5d:00:89:9c:ff:e5:66:ad:47:36:c3:
        c2:4a:d2:17:14:1e:80:cc:6d:54:bf:0b:7a:3e:f6:08:
        3b:20:94:52:84:bb:10:ae:b3:06:b1:b9:b9:7c:a0:85:
        13:68:21:98:8b:71:ab:6a:5b:79:a4:b9:2c:e6:ae:17:
        09:2e:7f:75:4f:55:96:53:d9:c6:85:b9:84:c7:37:99:
        08:b0:a0:a8:f5:6c:57:7e:4d:ca:6e:dd:7a:67:8b:8c:
        76:a8:99:db:e1:6e:20:70:f3:b7:ad:41:45:5a:03:fb:
        e4:08:3b:43:42:11:b9:f4:68:5f:4b:6d:af:47:13:51
    Fingerprint (SHA-256):
        F5:E9:3A:75:59:09:30:DD:B8:AC:9E:48:22:A8:B2:47:94:E9:C6:7D:26:E3:5E:83:3A:3B:DB:3E:46:DD:30:FE
    Fingerprint (SHA1):
        C6:3C:FA:3F:0E:5E:09:D0:16:E2:88:93:38:EC:49:3B:DD:8A:4E:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4164: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4165: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:18:47 2017
            Not After : Fri Oct 21 15:18:47 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    93:f2:56:d2:03:24:7e:4f:16:86:e6:f8:bc:64:f4:37:
                    52:ba:6f:a2:01:98:bd:81:fb:b7:c6:43:52:e6:cb:ab:
                    02:16:74:99:1f:06:48:9b:60:0f:27:eb:4d:aa:dd:c7:
                    9a:7b:34:36:8c:c0:66:82:2b:bd:e1:72:2e:9c:a2:f6:
                    b1:35:e2:7c:11:d4:a7:3a:ae:e4:ea:e3:7e:29:00:ec:
                    1b:42:f7:cb:f8:11:68:3e:45:90:75:0d:7e:af:2f:0f:
                    ef:7a:a7:b1:12:0d:13:ed:a1:6a:21:4d:c4:76:55:d3:
                    34:15:a5:78:d0:0e:48:1a:77:03:e1:78:9f:ad:4b:db:
                    09:48:58:b4:45:f0:7d:e1:a7:fe:b9:49:0a:73:c1:02:
                    96:25:cc:21:d3:2f:4a:d6:5f:36:23:89:08:e4:d6:04:
                    b7:e0:be:cd:88:34:ef:3d:02:3a:d6:2c:ad:ed:be:35:
                    8d:b9:fd:c7:66:cb:64:93:a3:f8:61:fd:07:eb:ef:8d:
                    1c:ba:a4:2e:47:d6:21:7c:10:ff:7a:0a:cf:96:a5:0e:
                    32:36:f0:cc:3e:44:c9:bc:80:54:9f:5c:81:35:c9:ea:
                    ab:b8:fd:2f:97:bc:dc:02:b6:41:a6:c4:53:41:cb:3c:
                    76:5d:6a:a7:b2:bd:95:52:18:07:80:d3:49:4b:ad:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        91:59:8e:7f:5d:90:5b:1c:98:40:7b:47:13:30:98:d8:
        ed:7c:de:eb:ea:3d:1c:60:c1:68:5c:cb:13:2b:ec:8e:
        8c:50:d1:33:1f:4a:0d:f4:e1:6b:f6:aa:e3:88:7d:31:
        0f:40:be:15:97:25:01:3c:20:7b:8e:07:dc:64:bc:b4:
        47:57:e9:5f:4a:b5:2b:37:87:2d:02:e1:5f:7b:87:a7:
        f9:46:a2:31:ab:25:3c:97:11:00:d6:1a:42:a4:ab:a6:
        0f:62:1d:49:b5:bb:47:19:f2:d3:a2:0b:dc:b5:36:2e:
        a9:31:81:11:ac:43:66:36:8a:eb:85:d6:a1:9c:38:b9:
        71:af:f6:65:41:5d:00:89:9c:ff:e5:66:ad:47:36:c3:
        c2:4a:d2:17:14:1e:80:cc:6d:54:bf:0b:7a:3e:f6:08:
        3b:20:94:52:84:bb:10:ae:b3:06:b1:b9:b9:7c:a0:85:
        13:68:21:98:8b:71:ab:6a:5b:79:a4:b9:2c:e6:ae:17:
        09:2e:7f:75:4f:55:96:53:d9:c6:85:b9:84:c7:37:99:
        08:b0:a0:a8:f5:6c:57:7e:4d:ca:6e:dd:7a:67:8b:8c:
        76:a8:99:db:e1:6e:20:70:f3:b7:ad:41:45:5a:03:fb:
        e4:08:3b:43:42:11:b9:f4:68:5f:4b:6d:af:47:13:51
    Fingerprint (SHA-256):
        F5:E9:3A:75:59:09:30:DD:B8:AC:9E:48:22:A8:B2:47:94:E9:C6:7D:26:E3:5E:83:3A:3B:DB:3E:46:DD:30:FE
    Fingerprint (SHA1):
        C6:3C:FA:3F:0E:5E:09:D0:16:E2:88:93:38:EC:49:3B:DD:8A:4E:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4166: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4167: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #4168: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021145001 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4169: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #4170: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #4171: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4172: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 1021145002   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4173: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4174: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4175: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021144773.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4176: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0Root-1021144747.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4177: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4178: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #4179: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021144773.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4180: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 1021145003   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4181: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4182: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4183: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021144773.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4184: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0Root-1021144748.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4185: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4186: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #4187: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4188: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 1021145004   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4189: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4190: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #4191: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021144773.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4192: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0Root-1021144749.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4193: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4194: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4195: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021144773.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4196: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0Root-1021144750.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4197: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4198: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20171021152022Z
nextupdate=20181021152022Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Sat Oct 21 15:20:22 2017
    Next Update: Sun Oct 21 15:20:22 2018
    CRL Extensions:
chains.sh: #4199: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021152022Z
nextupdate=20181021152023Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 15:20:22 2017
    Next Update: Sun Oct 21 15:20:23 2018
    CRL Extensions:
chains.sh: #4200: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20171021152023Z
nextupdate=20181021152023Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Sat Oct 21 15:20:23 2017
    Next Update: Sun Oct 21 15:20:23 2018
    CRL Extensions:
chains.sh: #4201: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20171021152024Z
nextupdate=20181021152024Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Sat Oct 21 15:20:24 2017
    Next Update: Sun Oct 21 15:20:24 2018
    CRL Extensions:
chains.sh: #4202: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021152025Z
addcert 20 20171021152025Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 15:20:25 2017
    Next Update: Sun Oct 21 15:20:23 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Sat Oct 21 15:20:25 2017
    CRL Extensions:
chains.sh: #4203: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021152026Z
addcert 40 20171021152026Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 15:20:26 2017
    Next Update: Sun Oct 21 15:20:23 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Sat Oct 21 15:20:25 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Sat Oct 21 15:20:26 2017
    CRL Extensions:
chains.sh: #4204: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #4205: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4206: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #4207: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021145001 (0x3cdd6fa9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:19:39 2017
            Not After : Fri Oct 21 15:19:39 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:97:3b:22:4f:85:b9:45:e4:98:60:56:75:02:29:ea:
                    d2:d1:87:1e:c6:c4:7c:a1:26:c7:28:27:0e:9b:5f:31:
                    dd:64:8d:f0:1e:93:44:d9:da:e6:6e:10:0c:a9:29:42:
                    8d:7d:2c:11:a8:eb:82:dc:8b:d5:79:6f:3d:54:7e:e1:
                    06:fd:b3:86:91:9c:4b:f7:5b:b9:11:f6:49:d8:dc:9f:
                    4b:5a:0d:e1:f5:4d:94:f9:5d:33:a8:cd:86:6a:d0:e9:
                    0f:51:31:e1:fb:de:1c:ef:9b:69:1e:0f:c5:8b:b5:d5:
                    3f:79:57:0b:16:45:bb:dd:f1:ed:26:ff:a7:28:8d:4b:
                    a6:7b:8e:1e:24:65:32:aa:de:6d:52:be:ca:54:87:18:
                    8f:a6:34:7e:15:64:e7:de:91:50:a1:72:fc:9c:3f:ab:
                    c9:49:dd:f8:11:a9:c2:2b:64:5f:95:20:35:1b:aa:da:
                    90:77:54:9c:19:99:21:4c:b4:83:77:c6:6d:bf:56:10:
                    a2:9b:f0:e2:c2:64:5b:08:50:4c:5f:08:ea:c6:14:c6:
                    e9:2c:13:48:cd:e6:0d:35:d5:66:10:e4:54:79:3f:16:
                    a5:79:10:c9:42:bd:74:68:f0:f0:03:1b:5c:c0:65:0d:
                    52:76:5f:74:b8:a4:37:ed:73:24:9b:ac:e2:5a:1e:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6b:60:57:77:fa:e2:36:18:80:1b:b4:99:d1:f0:e9:06:
        10:4a:7d:5f:5b:c2:18:99:99:70:27:5b:53:55:87:cd:
        57:84:9f:84:4e:c2:a4:6c:6b:85:5b:4f:89:54:bc:48:
        2b:da:3c:01:bf:30:3f:8a:63:43:db:49:86:7d:dd:c5:
        f5:bd:6f:94:7a:6e:7a:cb:a7:1d:a9:39:a5:a5:02:91:
        fc:3d:76:98:08:cc:4e:8b:2a:cf:41:63:48:c3:ec:59:
        04:41:1a:2b:4b:2d:15:67:96:82:8d:3f:3f:0c:39:2c:
        bc:53:3b:e3:6e:3b:85:88:d6:01:c4:81:36:b4:a6:2e:
        b0:69:a5:18:51:9a:bf:6f:4d:61:f7:5b:c9:93:40:86:
        24:fe:8b:e2:27:9b:d1:76:7e:43:bd:56:4e:17:19:34:
        4c:01:4c:87:a6:5a:1a:63:f1:2c:c9:bb:16:e2:3b:8c:
        1f:5f:91:5c:69:c5:a8:ff:be:fb:68:fc:e1:51:a2:a6:
        90:98:63:93:ce:91:93:9a:55:f8:71:8d:dc:7c:aa:1c:
        2e:b6:f4:ca:cb:84:53:85:95:ff:e7:94:f8:48:fc:f7:
        04:78:ad:95:ab:6f:e5:1c:d3:43:09:32:e2:09:ca:06:
        1c:13:7a:67:f4:b2:ba:3f:29:d9:1c:bf:73:85:cf:02
    Fingerprint (SHA-256):
        F8:8C:F7:47:AB:CC:36:E4:3F:64:83:9E:54:FE:AE:CA:FC:AC:2B:43:7E:79:1D:0D:0E:F8:46:5A:C9:C9:F4:3F
    Fingerprint (SHA1):
        C6:94:51:9D:FF:41:FF:75:D4:75:B7:ED:20:5E:FD:C1:AE:23:D0:E2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4208: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4209: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021145001 (0x3cdd6fa9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 15:19:39 2017
            Not After : Fri Oct 21 15:19:39 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:97:3b:22:4f:85:b9:45:e4:98:60:56:75:02:29:ea:
                    d2:d1:87:1e:c6:c4:7c:a1:26:c7:28:27:0e:9b:5f:31:
                    dd:64:8d:f0:1e:93:44:d9:da:e6:6e:10:0c:a9:29:42:
                    8d:7d:2c:11:a8:eb:82:dc:8b:d5:79:6f:3d:54:7e:e1:
                    06:fd:b3:86:91:9c:4b:f7:5b:b9:11:f6:49:d8:dc:9f:
                    4b:5a:0d:e1:f5:4d:94:f9:5d:33:a8:cd:86:6a:d0:e9:
                    0f:51:31:e1:fb:de:1c:ef:9b:69:1e:0f:c5:8b:b5:d5:
                    3f:79:57:0b:16:45:bb:dd:f1:ed:26:ff:a7:28:8d:4b:
                    a6:7b:8e:1e:24:65:32:aa:de:6d:52:be:ca:54:87:18:
                    8f:a6:34:7e:15:64:e7:de:91:50:a1:72:fc:9c:3f:ab:
                    c9:49:dd:f8:11:a9:c2:2b:64:5f:95:20:35:1b:aa:da:
                    90:77:54:9c:19:99:21:4c:b4:83:77:c6:6d:bf:56:10:
                    a2:9b:f0:e2:c2:64:5b:08:50:4c:5f:08:ea:c6:14:c6:
                    e9:2c:13:48:cd:e6:0d:35:d5:66:10:e4:54:79:3f:16:
                    a5:79:10:c9:42:bd:74:68:f0:f0:03:1b:5c:c0:65:0d:
                    52:76:5f:74:b8:a4:37:ed:73:24:9b:ac:e2:5a:1e:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6b:60:57:77:fa:e2:36:18:80:1b:b4:99:d1:f0:e9:06:
        10:4a:7d:5f:5b:c2:18:99:99:70:27:5b:53:55:87:cd:
        57:84:9f:84:4e:c2:a4:6c:6b:85:5b:4f:89:54:bc:48:
        2b:da:3c:01:bf:30:3f:8a:63:43:db:49:86:7d:dd:c5:
        f5:bd:6f:94:7a:6e:7a:cb:a7:1d:a9:39:a5:a5:02:91:
        fc:3d:76:98:08:cc:4e:8b:2a:cf:41:63:48:c3:ec:59:
        04:41:1a:2b:4b:2d:15:67:96:82:8d:3f:3f:0c:39:2c:
        bc:53:3b:e3:6e:3b:85:88:d6:01:c4:81:36:b4:a6:2e:
        b0:69:a5:18:51:9a:bf:6f:4d:61:f7:5b:c9:93:40:86:
        24:fe:8b:e2:27:9b:d1:76:7e:43:bd:56:4e:17:19:34:
        4c:01:4c:87:a6:5a:1a:63:f1:2c:c9:bb:16:e2:3b:8c:
        1f:5f:91:5c:69:c5:a8:ff:be:fb:68:fc:e1:51:a2:a6:
        90:98:63:93:ce:91:93:9a:55:f8:71:8d:dc:7c:aa:1c:
        2e:b6:f4:ca:cb:84:53:85:95:ff:e7:94:f8:48:fc:f7:
        04:78:ad:95:ab:6f:e5:1c:d3:43:09:32:e2:09:ca:06:
        1c:13:7a:67:f4:b2:ba:3f:29:d9:1c:bf:73:85:cf:02
    Fingerprint (SHA-256):
        F8:8C:F7:47:AB:CC:36:E4:3F:64:83:9E:54:FE:AE:CA:FC:AC:2B:43:7E:79:1D:0D:0E:F8:46:5A:C9:C9:F4:3F
    Fingerprint (SHA1):
        C6:94:51:9D:FF:41:FF:75:D4:75:B7:ED:20:5E:FD:C1:AE:23:D0:E2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4210: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4211: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #4212: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021145005 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4213: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #4214: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4215: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4216: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 1021145006   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4217: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4218: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4219: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4220: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021145007   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4221: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4222: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #4223: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4224: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 1021145008   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4225: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4226: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #4227: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -m 1021145009 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4228: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #4229: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #4230: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4231: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 1021145010   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4232: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4233: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4234: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4235: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 1021145011   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4236: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4237: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #4238: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #4239: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #4240: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021145005 (0x3cdd6fad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 15:20:39 2017
            Not After : Fri Oct 21 15:20:39 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:15:8a:12:3d:1f:10:e6:22:06:ea:10:f7:29:54:fc:
                    30:81:30:05:46:08:cf:64:c1:11:f6:78:58:e5:95:f5:
                    48:33:fa:5c:a3:f9:98:6f:db:d7:84:5e:d3:19:4c:50:
                    19:d3:53:8c:bb:5c:63:b7:b4:27:b7:b1:0a:59:c0:88:
                    e0:6a:b7:20:01:f4:50:55:8c:c6:54:39:84:73:f2:79:
                    6a:83:a1:e2:2a:91:3d:ae:1f:b6:ac:ce:23:ca:8f:80:
                    27:21:05:65:10:01:e0:df:b2:c6:0b:f7:ec:a6:48:08:
                    ac:bb:21:e7:94:91:81:bf:88:9e:15:4e:cc:e7:52:eb:
                    5b:91:f7:3a:58:8a:0e:17:b1:aa:6d:d6:86:3a:e4:fa:
                    50:de:b3:49:6d:0a:d4:ae:f2:20:47:f6:76:a8:34:2e:
                    68:91:5e:91:22:63:49:dd:0a:cb:ac:8c:04:dd:53:56:
                    99:dd:0f:16:b8:2f:23:d5:36:13:3c:63:a0:7c:af:1c:
                    73:da:61:ff:33:be:23:f1:77:11:23:3c:18:ae:b0:af:
                    05:8c:4e:d3:6e:07:49:d8:fb:4f:ba:6b:6b:c8:08:28:
                    12:fb:85:33:4b:2d:57:95:e0:49:c0:78:45:03:f1:16:
                    de:38:c5:74:ce:5a:8b:fd:77:48:58:f0:3a:98:61:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4d:d1:52:21:69:ac:ca:b7:d6:53:a6:dc:8b:20:62:ab:
        a6:7b:69:f2:a0:5a:94:fb:52:e1:b1:87:9e:ec:f3:73:
        4e:8d:28:db:b7:3c:e3:7b:fc:43:11:a0:fc:e2:46:ca:
        b2:c2:6f:27:e9:75:df:bf:ac:c3:3d:e0:fd:87:ac:92:
        8f:2f:c6:e9:44:4f:4f:fc:62:b0:7d:79:0d:87:aa:11:
        7b:d5:bd:2b:04:41:4e:d5:9a:08:39:5b:40:df:92:d9:
        9b:19:17:9f:da:0f:d0:22:37:be:cd:72:33:21:f0:72:
        7b:25:66:28:9a:ea:55:2e:88:65:fe:a4:48:a9:3b:66:
        92:d0:f3:ba:53:e6:e9:da:4e:72:cf:80:83:6f:d4:92:
        bf:5f:c0:d0:a6:9e:dc:51:99:53:88:d7:12:2c:1b:a7:
        76:3d:e0:f8:1e:19:98:35:79:fc:a7:98:48:6f:a2:e5:
        19:22:2b:3c:4c:72:22:7e:42:5d:7a:39:ea:f9:97:fb:
        2a:0d:b8:17:e5:17:48:df:2c:23:fc:9b:b0:84:6e:ca:
        12:e6:48:fe:45:bb:37:d7:3e:9f:f0:40:05:8d:73:53:
        f7:fa:73:c8:b5:d6:8d:71:81:63:a6:ba:a0:73:03:40:
        fb:88:ad:7c:7d:0e:0f:25:bb:2f:8e:ff:a4:94:cc:b2
    Fingerprint (SHA-256):
        D3:2B:6F:94:F3:40:82:2D:9A:49:19:A4:3A:D3:0F:0F:FA:84:91:30:22:7D:9D:AF:B8:43:D6:25:48:1E:13:D2
    Fingerprint (SHA1):
        CC:23:03:8D:D5:11:88:00:A1:62:F4:36:AF:88:E6:93:86:13:D6:BA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4241: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021145007 (0x3cdd6faf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 15:20:49 2017
            Not After : Fri Oct 21 15:20:49 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:55:64:72:2b:4f:d7:ae:2c:71:c7:19:86:94:30:3e:
                    6e:d1:e0:32:23:88:94:52:4b:d9:19:3b:49:73:d6:6b:
                    4d:38:78:f3:fd:29:38:ff:a2:a1:c5:0f:c1:2a:ed:7e:
                    f2:ff:b8:86:0b:af:a4:d1:34:3b:f1:7e:f3:a0:2e:25:
                    76:5e:b3:6c:f4:c2:20:fe:13:97:0e:c7:ef:83:35:ea:
                    9c:20:e1:ee:dd:83:f8:55:b1:7d:fe:3d:6d:d6:b2:41:
                    31:96:74:48:d3:c8:22:19:b6:5f:fd:6c:b4:b0:6e:84:
                    31:40:06:63:0d:cd:3a:f2:fe:be:dc:40:35:08:4a:83:
                    0a:5c:7e:56:11:88:1c:50:a9:24:87:1a:76:e6:42:a2:
                    3b:87:35:a1:e6:4a:e1:7b:31:ef:42:91:32:1b:f7:a1:
                    98:7a:92:e6:bc:0e:c2:24:17:9c:ca:d5:8f:1b:e6:be:
                    c6:dd:20:f7:ef:8d:dc:96:4e:67:da:09:4c:3f:e5:5c:
                    7f:fd:45:eb:87:1a:7e:e8:f5:a9:b9:d8:3f:20:50:f4:
                    d3:f8:32:21:49:2a:b5:fa:d3:31:69:ee:32:32:12:f7:
                    9f:f4:df:4a:26:d9:e0:bf:0e:f9:5a:a0:51:9b:20:56:
                    9f:78:24:cf:38:dc:54:95:11:44:d8:a2:4c:b8:b4:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        80:7d:c4:d7:83:ff:40:89:31:ca:7f:01:bc:b2:fb:e3:
        00:a7:0d:b4:06:b6:47:df:4e:4d:15:3d:92:3a:89:3d:
        e5:27:a4:a1:48:28:af:b2:ff:55:c1:65:1f:aa:b6:c5:
        c5:6a:f1:ab:68:7f:6f:a8:90:0f:7f:8d:52:c0:41:a2:
        24:ef:7f:31:6e:d9:69:ce:42:47:ed:4d:08:6b:89:a3:
        36:d1:a4:a8:82:e9:c5:0f:16:7f:99:d2:cf:50:58:40:
        9a:c5:10:fe:6f:6b:5c:e7:4d:e6:5e:52:f3:26:9e:48:
        dc:a8:79:38:0b:2b:ef:76:0e:18:cd:3d:f6:83:ad:d0:
        cb:54:df:d4:13:89:e1:5e:3b:8b:86:76:83:c1:72:25:
        22:b2:57:8b:c3:cf:20:98:0a:f8:a8:a9:de:b2:27:b6:
        31:2f:e5:d8:db:5c:18:3f:a9:fe:1f:24:64:53:40:61:
        47:08:e1:f8:64:14:9d:ff:8b:4c:2b:a1:6a:2b:13:83:
        87:6b:69:bd:c8:6e:bb:65:7e:e1:36:c0:1b:d6:99:14:
        2d:20:67:5a:7e:47:a3:59:7a:1c:ad:60:24:de:93:cb:
        98:e2:bf:a4:87:98:15:2b:10:8c:72:30:61:0f:24:58:
        b7:cc:9f:2f:f9:4b:4d:17:18:03:4f:17:b6:ab:22:55
    Fingerprint (SHA-256):
        1B:05:D7:19:5B:A5:B1:EC:13:B4:D8:EF:05:9D:49:CF:80:5B:52:08:1D:EF:E9:AE:6C:91:6F:6F:BA:03:D5:14
    Fingerprint (SHA1):
        FE:6F:C0:00:02:83:4C:8B:08:2E:D8:6C:E3:BE:72:C0:E9:78:8D:D0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4242: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021145005 (0x3cdd6fad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 15:20:39 2017
            Not After : Fri Oct 21 15:20:39 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:15:8a:12:3d:1f:10:e6:22:06:ea:10:f7:29:54:fc:
                    30:81:30:05:46:08:cf:64:c1:11:f6:78:58:e5:95:f5:
                    48:33:fa:5c:a3:f9:98:6f:db:d7:84:5e:d3:19:4c:50:
                    19:d3:53:8c:bb:5c:63:b7:b4:27:b7:b1:0a:59:c0:88:
                    e0:6a:b7:20:01:f4:50:55:8c:c6:54:39:84:73:f2:79:
                    6a:83:a1:e2:2a:91:3d:ae:1f:b6:ac:ce:23:ca:8f:80:
                    27:21:05:65:10:01:e0:df:b2:c6:0b:f7:ec:a6:48:08:
                    ac:bb:21:e7:94:91:81:bf:88:9e:15:4e:cc:e7:52:eb:
                    5b:91:f7:3a:58:8a:0e:17:b1:aa:6d:d6:86:3a:e4:fa:
                    50:de:b3:49:6d:0a:d4:ae:f2:20:47:f6:76:a8:34:2e:
                    68:91:5e:91:22:63:49:dd:0a:cb:ac:8c:04:dd:53:56:
                    99:dd:0f:16:b8:2f:23:d5:36:13:3c:63:a0:7c:af:1c:
                    73:da:61:ff:33:be:23:f1:77:11:23:3c:18:ae:b0:af:
                    05:8c:4e:d3:6e:07:49:d8:fb:4f:ba:6b:6b:c8:08:28:
                    12:fb:85:33:4b:2d:57:95:e0:49:c0:78:45:03:f1:16:
                    de:38:c5:74:ce:5a:8b:fd:77:48:58:f0:3a:98:61:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4d:d1:52:21:69:ac:ca:b7:d6:53:a6:dc:8b:20:62:ab:
        a6:7b:69:f2:a0:5a:94:fb:52:e1:b1:87:9e:ec:f3:73:
        4e:8d:28:db:b7:3c:e3:7b:fc:43:11:a0:fc:e2:46:ca:
        b2:c2:6f:27:e9:75:df:bf:ac:c3:3d:e0:fd:87:ac:92:
        8f:2f:c6:e9:44:4f:4f:fc:62:b0:7d:79:0d:87:aa:11:
        7b:d5:bd:2b:04:41:4e:d5:9a:08:39:5b:40:df:92:d9:
        9b:19:17:9f:da:0f:d0:22:37:be:cd:72:33:21:f0:72:
        7b:25:66:28:9a:ea:55:2e:88:65:fe:a4:48:a9:3b:66:
        92:d0:f3:ba:53:e6:e9:da:4e:72:cf:80:83:6f:d4:92:
        bf:5f:c0:d0:a6:9e:dc:51:99:53:88:d7:12:2c:1b:a7:
        76:3d:e0:f8:1e:19:98:35:79:fc:a7:98:48:6f:a2:e5:
        19:22:2b:3c:4c:72:22:7e:42:5d:7a:39:ea:f9:97:fb:
        2a:0d:b8:17:e5:17:48:df:2c:23:fc:9b:b0:84:6e:ca:
        12:e6:48:fe:45:bb:37:d7:3e:9f:f0:40:05:8d:73:53:
        f7:fa:73:c8:b5:d6:8d:71:81:63:a6:ba:a0:73:03:40:
        fb:88:ad:7c:7d:0e:0f:25:bb:2f:8e:ff:a4:94:cc:b2
    Fingerprint (SHA-256):
        D3:2B:6F:94:F3:40:82:2D:9A:49:19:A4:3A:D3:0F:0F:FA:84:91:30:22:7D:9D:AF:B8:43:D6:25:48:1E:13:D2
    Fingerprint (SHA1):
        CC:23:03:8D:D5:11:88:00:A1:62:F4:36:AF:88:E6:93:86:13:D6:BA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4243: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #4244: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021145005 (0x3cdd6fad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 15:20:39 2017
            Not After : Fri Oct 21 15:20:39 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:15:8a:12:3d:1f:10:e6:22:06:ea:10:f7:29:54:fc:
                    30:81:30:05:46:08:cf:64:c1:11:f6:78:58:e5:95:f5:
                    48:33:fa:5c:a3:f9:98:6f:db:d7:84:5e:d3:19:4c:50:
                    19:d3:53:8c:bb:5c:63:b7:b4:27:b7:b1:0a:59:c0:88:
                    e0:6a:b7:20:01:f4:50:55:8c:c6:54:39:84:73:f2:79:
                    6a:83:a1:e2:2a:91:3d:ae:1f:b6:ac:ce:23:ca:8f:80:
                    27:21:05:65:10:01:e0:df:b2:c6:0b:f7:ec:a6:48:08:
                    ac:bb:21:e7:94:91:81:bf:88:9e:15:4e:cc:e7:52:eb:
                    5b:91:f7:3a:58:8a:0e:17:b1:aa:6d:d6:86:3a:e4:fa:
                    50:de:b3:49:6d:0a:d4:ae:f2:20:47:f6:76:a8:34:2e:
                    68:91:5e:91:22:63:49:dd:0a:cb:ac:8c:04:dd:53:56:
                    99:dd:0f:16:b8:2f:23:d5:36:13:3c:63:a0:7c:af:1c:
                    73:da:61:ff:33:be:23:f1:77:11:23:3c:18:ae:b0:af:
                    05:8c:4e:d3:6e:07:49:d8:fb:4f:ba:6b:6b:c8:08:28:
                    12:fb:85:33:4b:2d:57:95:e0:49:c0:78:45:03:f1:16:
                    de:38:c5:74:ce:5a:8b:fd:77:48:58:f0:3a:98:61:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4d:d1:52:21:69:ac:ca:b7:d6:53:a6:dc:8b:20:62:ab:
        a6:7b:69:f2:a0:5a:94:fb:52:e1:b1:87:9e:ec:f3:73:
        4e:8d:28:db:b7:3c:e3:7b:fc:43:11:a0:fc:e2:46:ca:
        b2:c2:6f:27:e9:75:df:bf:ac:c3:3d:e0:fd:87:ac:92:
        8f:2f:c6:e9:44:4f:4f:fc:62:b0:7d:79:0d:87:aa:11:
        7b:d5:bd:2b:04:41:4e:d5:9a:08:39:5b:40:df:92:d9:
        9b:19:17:9f:da:0f:d0:22:37:be:cd:72:33:21:f0:72:
        7b:25:66:28:9a:ea:55:2e:88:65:fe:a4:48:a9:3b:66:
        92:d0:f3:ba:53:e6:e9:da:4e:72:cf:80:83:6f:d4:92:
        bf:5f:c0:d0:a6:9e:dc:51:99:53:88:d7:12:2c:1b:a7:
        76:3d:e0:f8:1e:19:98:35:79:fc:a7:98:48:6f:a2:e5:
        19:22:2b:3c:4c:72:22:7e:42:5d:7a:39:ea:f9:97:fb:
        2a:0d:b8:17:e5:17:48:df:2c:23:fc:9b:b0:84:6e:ca:
        12:e6:48:fe:45:bb:37:d7:3e:9f:f0:40:05:8d:73:53:
        f7:fa:73:c8:b5:d6:8d:71:81:63:a6:ba:a0:73:03:40:
        fb:88:ad:7c:7d:0e:0f:25:bb:2f:8e:ff:a4:94:cc:b2
    Fingerprint (SHA-256):
        D3:2B:6F:94:F3:40:82:2D:9A:49:19:A4:3A:D3:0F:0F:FA:84:91:30:22:7D:9D:AF:B8:43:D6:25:48:1E:13:D2
    Fingerprint (SHA1):
        CC:23:03:8D:D5:11:88:00:A1:62:F4:36:AF:88:E6:93:86:13:D6:BA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4245: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021145007 (0x3cdd6faf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 15:20:49 2017
            Not After : Fri Oct 21 15:20:49 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:55:64:72:2b:4f:d7:ae:2c:71:c7:19:86:94:30:3e:
                    6e:d1:e0:32:23:88:94:52:4b:d9:19:3b:49:73:d6:6b:
                    4d:38:78:f3:fd:29:38:ff:a2:a1:c5:0f:c1:2a:ed:7e:
                    f2:ff:b8:86:0b:af:a4:d1:34:3b:f1:7e:f3:a0:2e:25:
                    76:5e:b3:6c:f4:c2:20:fe:13:97:0e:c7:ef:83:35:ea:
                    9c:20:e1:ee:dd:83:f8:55:b1:7d:fe:3d:6d:d6:b2:41:
                    31:96:74:48:d3:c8:22:19:b6:5f:fd:6c:b4:b0:6e:84:
                    31:40:06:63:0d:cd:3a:f2:fe:be:dc:40:35:08:4a:83:
                    0a:5c:7e:56:11:88:1c:50:a9:24:87:1a:76:e6:42:a2:
                    3b:87:35:a1:e6:4a:e1:7b:31:ef:42:91:32:1b:f7:a1:
                    98:7a:92:e6:bc:0e:c2:24:17:9c:ca:d5:8f:1b:e6:be:
                    c6:dd:20:f7:ef:8d:dc:96:4e:67:da:09:4c:3f:e5:5c:
                    7f:fd:45:eb:87:1a:7e:e8:f5:a9:b9:d8:3f:20:50:f4:
                    d3:f8:32:21:49:2a:b5:fa:d3:31:69:ee:32:32:12:f7:
                    9f:f4:df:4a:26:d9:e0:bf:0e:f9:5a:a0:51:9b:20:56:
                    9f:78:24:cf:38:dc:54:95:11:44:d8:a2:4c:b8:b4:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        80:7d:c4:d7:83:ff:40:89:31:ca:7f:01:bc:b2:fb:e3:
        00:a7:0d:b4:06:b6:47:df:4e:4d:15:3d:92:3a:89:3d:
        e5:27:a4:a1:48:28:af:b2:ff:55:c1:65:1f:aa:b6:c5:
        c5:6a:f1:ab:68:7f:6f:a8:90:0f:7f:8d:52:c0:41:a2:
        24:ef:7f:31:6e:d9:69:ce:42:47:ed:4d:08:6b:89:a3:
        36:d1:a4:a8:82:e9:c5:0f:16:7f:99:d2:cf:50:58:40:
        9a:c5:10:fe:6f:6b:5c:e7:4d:e6:5e:52:f3:26:9e:48:
        dc:a8:79:38:0b:2b:ef:76:0e:18:cd:3d:f6:83:ad:d0:
        cb:54:df:d4:13:89:e1:5e:3b:8b:86:76:83:c1:72:25:
        22:b2:57:8b:c3:cf:20:98:0a:f8:a8:a9:de:b2:27:b6:
        31:2f:e5:d8:db:5c:18:3f:a9:fe:1f:24:64:53:40:61:
        47:08:e1:f8:64:14:9d:ff:8b:4c:2b:a1:6a:2b:13:83:
        87:6b:69:bd:c8:6e:bb:65:7e:e1:36:c0:1b:d6:99:14:
        2d:20:67:5a:7e:47:a3:59:7a:1c:ad:60:24:de:93:cb:
        98:e2:bf:a4:87:98:15:2b:10:8c:72:30:61:0f:24:58:
        b7:cc:9f:2f:f9:4b:4d:17:18:03:4f:17:b6:ab:22:55
    Fingerprint (SHA-256):
        1B:05:D7:19:5B:A5:B1:EC:13:B4:D8:EF:05:9D:49:CF:80:5B:52:08:1D:EF:E9:AE:6C:91:6F:6F:BA:03:D5:14
    Fingerprint (SHA1):
        FE:6F:C0:00:02:83:4C:8B:08:2E:D8:6C:E3:BE:72:C0:E9:78:8D:D0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4246: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #4247: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #4248: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #4249: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021145005 (0x3cdd6fad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 15:20:39 2017
            Not After : Fri Oct 21 15:20:39 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:15:8a:12:3d:1f:10:e6:22:06:ea:10:f7:29:54:fc:
                    30:81:30:05:46:08:cf:64:c1:11:f6:78:58:e5:95:f5:
                    48:33:fa:5c:a3:f9:98:6f:db:d7:84:5e:d3:19:4c:50:
                    19:d3:53:8c:bb:5c:63:b7:b4:27:b7:b1:0a:59:c0:88:
                    e0:6a:b7:20:01:f4:50:55:8c:c6:54:39:84:73:f2:79:
                    6a:83:a1:e2:2a:91:3d:ae:1f:b6:ac:ce:23:ca:8f:80:
                    27:21:05:65:10:01:e0:df:b2:c6:0b:f7:ec:a6:48:08:
                    ac:bb:21:e7:94:91:81:bf:88:9e:15:4e:cc:e7:52:eb:
                    5b:91:f7:3a:58:8a:0e:17:b1:aa:6d:d6:86:3a:e4:fa:
                    50:de:b3:49:6d:0a:d4:ae:f2:20:47:f6:76:a8:34:2e:
                    68:91:5e:91:22:63:49:dd:0a:cb:ac:8c:04:dd:53:56:
                    99:dd:0f:16:b8:2f:23:d5:36:13:3c:63:a0:7c:af:1c:
                    73:da:61:ff:33:be:23:f1:77:11:23:3c:18:ae:b0:af:
                    05:8c:4e:d3:6e:07:49:d8:fb:4f:ba:6b:6b:c8:08:28:
                    12:fb:85:33:4b:2d:57:95:e0:49:c0:78:45:03:f1:16:
                    de:38:c5:74:ce:5a:8b:fd:77:48:58:f0:3a:98:61:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4d:d1:52:21:69:ac:ca:b7:d6:53:a6:dc:8b:20:62:ab:
        a6:7b:69:f2:a0:5a:94:fb:52:e1:b1:87:9e:ec:f3:73:
        4e:8d:28:db:b7:3c:e3:7b:fc:43:11:a0:fc:e2:46:ca:
        b2:c2:6f:27:e9:75:df:bf:ac:c3:3d:e0:fd:87:ac:92:
        8f:2f:c6:e9:44:4f:4f:fc:62:b0:7d:79:0d:87:aa:11:
        7b:d5:bd:2b:04:41:4e:d5:9a:08:39:5b:40:df:92:d9:
        9b:19:17:9f:da:0f:d0:22:37:be:cd:72:33:21:f0:72:
        7b:25:66:28:9a:ea:55:2e:88:65:fe:a4:48:a9:3b:66:
        92:d0:f3:ba:53:e6:e9:da:4e:72:cf:80:83:6f:d4:92:
        bf:5f:c0:d0:a6:9e:dc:51:99:53:88:d7:12:2c:1b:a7:
        76:3d:e0:f8:1e:19:98:35:79:fc:a7:98:48:6f:a2:e5:
        19:22:2b:3c:4c:72:22:7e:42:5d:7a:39:ea:f9:97:fb:
        2a:0d:b8:17:e5:17:48:df:2c:23:fc:9b:b0:84:6e:ca:
        12:e6:48:fe:45:bb:37:d7:3e:9f:f0:40:05:8d:73:53:
        f7:fa:73:c8:b5:d6:8d:71:81:63:a6:ba:a0:73:03:40:
        fb:88:ad:7c:7d:0e:0f:25:bb:2f:8e:ff:a4:94:cc:b2
    Fingerprint (SHA-256):
        D3:2B:6F:94:F3:40:82:2D:9A:49:19:A4:3A:D3:0F:0F:FA:84:91:30:22:7D:9D:AF:B8:43:D6:25:48:1E:13:D2
    Fingerprint (SHA1):
        CC:23:03:8D:D5:11:88:00:A1:62:F4:36:AF:88:E6:93:86:13:D6:BA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4250: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021145009 (0x3cdd6fb1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Sat Oct 21 15:21:00 2017
            Not After : Fri Oct 21 15:21:00 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:cb:fa:fd:9e:4d:61:c0:7c:2e:fe:a7:c6:7b:ce:43:
                    81:b7:af:51:69:e7:c4:fd:44:26:13:fc:be:11:1b:68:
                    77:50:3a:2f:d9:e2:4d:f2:89:4d:95:5b:49:2d:4c:4e:
                    58:6d:54:f3:68:dc:34:2d:a8:54:d0:08:1f:54:53:20:
                    7d:e3:66:1a:a5:dd:4c:2a:c8:97:cc:18:db:8c:88:4c:
                    ca:ef:e1:0a:06:55:92:f5:c2:de:5b:a4:e9:51:00:cb:
                    6e:73:61:fc:a5:1d:9d:92:95:78:dc:44:fd:09:08:93:
                    5a:a0:05:f8:a6:d9:77:85:f3:a4:53:52:23:b7:c7:7a:
                    18:44:b1:e5:ce:8f:b2:ef:7b:29:61:75:ac:6a:8f:78:
                    cc:17:64:d2:e8:0b:86:f7:be:9e:33:0a:00:16:60:5c:
                    c5:d7:ac:76:b8:c0:5c:82:12:ef:d8:da:73:19:07:d5:
                    f8:a7:0a:f4:f9:28:fd:d8:99:67:ec:6e:d3:0d:73:45:
                    3f:60:0f:55:43:95:f1:e7:c9:c6:aa:8e:c8:12:83:a2:
                    74:57:52:10:46:24:e6:80:0c:32:61:56:19:68:9f:4f:
                    e2:37:3d:f7:2e:22:7f:d4:b3:35:fd:79:dd:76:30:f3:
                    9b:d6:c8:23:0d:e2:46:18:12:01:dd:6c:21:24:60:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:f1:be:1a:cd:d5:a2:b4:2e:28:d3:9b:2a:ef:b8:34:
        b1:d8:40:3c:ea:59:40:7e:81:65:b1:18:10:59:86:7e:
        39:22:b4:9b:ff:0e:c6:5e:db:37:0f:94:48:bd:53:7f:
        78:d2:ff:c1:0e:29:1a:0f:c3:e1:a9:3b:9c:e9:ef:d5:
        ad:ea:af:68:fb:c9:52:6a:9c:8c:ae:e7:7f:bf:61:10:
        7d:ff:27:c9:64:77:6d:4c:50:f7:00:ce:4a:c1:17:81:
        9a:83:3d:d5:d8:dc:94:a6:b2:e8:ad:93:63:6b:cc:e3:
        93:08:24:34:e6:f6:6f:ec:04:3b:3b:ab:04:d3:75:78:
        b6:7c:05:38:78:e5:45:64:35:f1:c0:77:f3:d7:6b:17:
        e7:b3:be:1c:6b:a0:41:5e:8b:ee:f1:25:a0:67:3c:85:
        4a:b9:03:22:03:a9:e3:f0:83:cd:a8:c1:88:17:cd:d9:
        db:86:a0:64:76:da:97:9e:61:d4:91:c5:a8:76:0a:fd:
        5f:e1:61:48:b5:6b:a1:ea:79:90:46:e5:25:5e:8e:0f:
        4a:f7:69:6c:fe:c4:32:7b:a3:3c:bd:ff:bd:a7:a7:74:
        61:2a:11:81:d1:ee:42:1c:ea:24:4f:5b:51:2d:c7:ea:
        57:47:ba:e0:fb:cc:30:f4:41:97:bc:b6:a7:fe:6a:64
    Fingerprint (SHA-256):
        6E:7A:C7:32:69:86:17:D0:0B:90:C5:CE:B1:31:19:3C:A5:3B:12:FA:8C:1E:51:93:D6:C4:DA:B1:8A:67:9E:31
    Fingerprint (SHA1):
        63:00:16:8C:F3:57:6B:93:AD:82:9C:12:11:C0:C5:71:54:3F:C1:CD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #4251: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021145005 (0x3cdd6fad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 15:20:39 2017
            Not After : Fri Oct 21 15:20:39 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:15:8a:12:3d:1f:10:e6:22:06:ea:10:f7:29:54:fc:
                    30:81:30:05:46:08:cf:64:c1:11:f6:78:58:e5:95:f5:
                    48:33:fa:5c:a3:f9:98:6f:db:d7:84:5e:d3:19:4c:50:
                    19:d3:53:8c:bb:5c:63:b7:b4:27:b7:b1:0a:59:c0:88:
                    e0:6a:b7:20:01:f4:50:55:8c:c6:54:39:84:73:f2:79:
                    6a:83:a1:e2:2a:91:3d:ae:1f:b6:ac:ce:23:ca:8f:80:
                    27:21:05:65:10:01:e0:df:b2:c6:0b:f7:ec:a6:48:08:
                    ac:bb:21:e7:94:91:81:bf:88:9e:15:4e:cc:e7:52:eb:
                    5b:91:f7:3a:58:8a:0e:17:b1:aa:6d:d6:86:3a:e4:fa:
                    50:de:b3:49:6d:0a:d4:ae:f2:20:47:f6:76:a8:34:2e:
                    68:91:5e:91:22:63:49:dd:0a:cb:ac:8c:04:dd:53:56:
                    99:dd:0f:16:b8:2f:23:d5:36:13:3c:63:a0:7c:af:1c:
                    73:da:61:ff:33:be:23:f1:77:11:23:3c:18:ae:b0:af:
                    05:8c:4e:d3:6e:07:49:d8:fb:4f:ba:6b:6b:c8:08:28:
                    12:fb:85:33:4b:2d:57:95:e0:49:c0:78:45:03:f1:16:
                    de:38:c5:74:ce:5a:8b:fd:77:48:58:f0:3a:98:61:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4d:d1:52:21:69:ac:ca:b7:d6:53:a6:dc:8b:20:62:ab:
        a6:7b:69:f2:a0:5a:94:fb:52:e1:b1:87:9e:ec:f3:73:
        4e:8d:28:db:b7:3c:e3:7b:fc:43:11:a0:fc:e2:46:ca:
        b2:c2:6f:27:e9:75:df:bf:ac:c3:3d:e0:fd:87:ac:92:
        8f:2f:c6:e9:44:4f:4f:fc:62:b0:7d:79:0d:87:aa:11:
        7b:d5:bd:2b:04:41:4e:d5:9a:08:39:5b:40:df:92:d9:
        9b:19:17:9f:da:0f:d0:22:37:be:cd:72:33:21:f0:72:
        7b:25:66:28:9a:ea:55:2e:88:65:fe:a4:48:a9:3b:66:
        92:d0:f3:ba:53:e6:e9:da:4e:72:cf:80:83:6f:d4:92:
        bf:5f:c0:d0:a6:9e:dc:51:99:53:88:d7:12:2c:1b:a7:
        76:3d:e0:f8:1e:19:98:35:79:fc:a7:98:48:6f:a2:e5:
        19:22:2b:3c:4c:72:22:7e:42:5d:7a:39:ea:f9:97:fb:
        2a:0d:b8:17:e5:17:48:df:2c:23:fc:9b:b0:84:6e:ca:
        12:e6:48:fe:45:bb:37:d7:3e:9f:f0:40:05:8d:73:53:
        f7:fa:73:c8:b5:d6:8d:71:81:63:a6:ba:a0:73:03:40:
        fb:88:ad:7c:7d:0e:0f:25:bb:2f:8e:ff:a4:94:cc:b2
    Fingerprint (SHA-256):
        D3:2B:6F:94:F3:40:82:2D:9A:49:19:A4:3A:D3:0F:0F:FA:84:91:30:22:7D:9D:AF:B8:43:D6:25:48:1E:13:D2
    Fingerprint (SHA1):
        CC:23:03:8D:D5:11:88:00:A1:62:F4:36:AF:88:E6:93:86:13:D6:BA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4252: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #4253: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #4254: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #4255: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #4256: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #4257: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021145010 (0x3cdd6fb2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Sat Oct 21 15:21:05 2017
            Not After : Fri Oct 21 15:21:05 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e8:6b:d4:47:bc:83:b1:ad:ff:7e:93:9e:32:b9:e1:b5:
                    c6:a0:55:5e:6e:ea:10:c1:ec:32:bb:cb:e6:75:57:50:
                    37:12:d7:17:48:64:16:4d:d8:90:90:18:1a:b8:74:e9:
                    4e:82:18:59:fa:fc:a7:b3:fa:35:cf:45:7f:d5:66:25:
                    f2:89:07:36:b0:88:ac:4f:10:25:6d:42:40:66:07:c6:
                    25:e2:50:bf:23:7f:6d:78:81:c3:05:ea:5f:4b:eb:d6:
                    d8:f4:89:53:ac:03:c0:f3:d8:a6:5e:da:53:9d:f6:52:
                    de:d2:4c:f3:0c:20:cb:a4:b7:56:af:89:06:4e:96:5e:
                    3b:b6:35:fb:8d:2c:e3:88:c3:9d:d4:b5:69:b1:46:36:
                    39:48:b1:4c:f0:2f:28:13:aa:40:bc:f1:f0:0b:7f:fc:
                    c6:1f:44:ad:c0:50:48:48:38:0e:15:d4:bb:f8:7f:4e:
                    61:6b:97:bd:48:06:72:8d:ba:95:ec:15:59:27:fd:4b:
                    6d:c6:00:6b:10:2b:f5:51:87:5f:99:39:75:57:68:4d:
                    24:a5:39:88:c7:fd:27:56:c1:bc:ba:d7:42:00:6a:36:
                    ef:21:ee:74:dd:69:e9:47:23:9a:e9:ee:0d:47:53:91:
                    a6:53:c3:31:4b:1f:5e:b4:c7:b2:14:b1:50:02:4d:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:e8:04:91:4c:db:e9:99:33:b3:59:ac:2a:5b:42:3c:
        f9:31:44:e7:5f:48:95:f9:ea:83:2c:af:4b:71:3c:b4:
        14:54:ee:67:a7:4c:26:37:f8:bc:78:a4:e4:39:4e:6e:
        2f:4d:f2:46:43:65:5a:36:d9:83:72:5a:b3:ca:c3:5b:
        ff:b1:ec:8e:bf:e5:87:05:ce:6e:39:eb:68:1b:40:f2:
        c0:14:be:4b:1b:94:c4:33:f3:a2:59:b9:b3:88:03:85:
        ab:33:92:98:a2:e2:62:e0:25:f0:a1:a9:83:fd:1a:23:
        06:7d:56:0f:b5:db:6e:65:7f:eb:7b:cd:49:b8:52:dd:
        a7:7d:c8:25:fc:f2:8e:1b:28:38:92:38:7d:fb:22:64:
        44:bf:87:07:d5:af:38:34:36:2c:7a:d1:6a:50:34:b5:
        42:3a:e8:8e:50:79:b4:03:3a:ec:c0:9a:36:d0:02:9e:
        72:49:8a:03:3a:ff:51:b4:41:ca:e1:ff:15:21:87:f4:
        49:2c:18:d8:58:5e:70:01:63:00:8b:5b:76:eb:7b:c4:
        e3:3f:0d:39:80:af:3b:f5:1d:4c:ef:ab:be:9c:85:aa:
        03:4e:2a:79:0b:9a:0a:53:7a:3a:9e:3d:4d:28:d0:c3:
        71:52:99:e8:8a:af:f2:e7:0d:c4:a1:3a:49:9f:bd:7a
    Fingerprint (SHA-256):
        77:33:F5:26:27:D0:83:C6:95:52:8E:66:6E:BB:8A:28:13:A1:59:FD:E7:B5:39:44:9D:53:17:C1:E0:16:31:8E
    Fingerprint (SHA1):
        67:95:FB:12:F9:FF:56:C8:AC:F0:2C:31:5F:29:4E:24:EB:58:0E:5C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #4258: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #4259: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #4260: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #4261: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #4262: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4263: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4264: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4265: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4266: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4267: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4268: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4269: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4270: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4271: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4272: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4273: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4274: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4275: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4276: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #4277: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4278: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #4279: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4280: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #4281: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 29542 at Sat Oct 21 15:21:44 UTC 2017
kill -USR1 29542
httpserv: normal termination
httpserv -b -p 9193 2>/dev/null;
httpserv with PID 29542 killed at Sat Oct 21 15:21:44 UTC 2017
TIMESTAMP chains END: Sat Oct 21 15:21:44 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Sat Oct 21 15:21:44 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Sat Oct 21 15:21:45 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #4282: ec(perf) test - PASSED
TIMESTAMP ecperf END: Sat Oct 21 15:21:45 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Sat Oct 21 15:21:45 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4283: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4284: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4285: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4286: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #4287: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #4288: pk11 ec tests - PASSED
TIMESTAMP ectest END: Sat Oct 21 15:21:49 UTC 2017
TIMESTAMP ec END: Sat Oct 21 15:21:49 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Sat Oct 21 15:21:49 UTC 2017
gtests: der_gtest pk11_gtest
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (2 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (1 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (1 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (3 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #4289: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #4290: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #4291: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #4292: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #4293: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #4294: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #4295: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #4296: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #4297: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #4298: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #4299: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #4300: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #4301: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #4302: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #4303: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #4304: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #4305: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: pk11_gtest ===============================
executing pk11_gtest
[==========] Running 21 tests from 7 test cases.
[----------] Global test environment set-up.
[----------] 6 tests from Pkcs11AESKeyWrapTest
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest1
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest1 (1 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest2
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest2 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest3
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest3 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest4
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest4 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest5
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest5 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest6
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest6 (0 ms)
[----------] 6 tests from Pkcs11AESKeyWrapTest (3 ms total)
[----------] 3 tests from Pkcs11ChaCha20Poly1305Test
[ RUN      ] Pkcs11ChaCha20Poly1305Test.GenerateEncryptDecrypt
[       OK ] Pkcs11ChaCha20Poly1305Test.GenerateEncryptDecrypt (0 ms)
[ RUN      ] Pkcs11ChaCha20Poly1305Test.CheckTestVector1
[       OK ] Pkcs11ChaCha20Poly1305Test.CheckTestVector1 (1 ms)
[ RUN      ] Pkcs11ChaCha20Poly1305Test.CheckTestVector2
[       OK ] Pkcs11ChaCha20Poly1305Test.CheckTestVector2 (0 ms)
[----------] 3 tests from Pkcs11ChaCha20Poly1305Test (3 ms total)
[----------] 2 tests from Pkcs11ExportTest
[ RUN      ] Pkcs11ExportTest.DeriveNonExport
[       OK ] Pkcs11ExportTest.DeriveNonExport (1 ms)
[ RUN      ] Pkcs11ExportTest.DeriveExport
[       OK ] Pkcs11ExportTest.DeriveExport (0 ms)
[----------] 2 tests from Pkcs11ExportTest (1 ms total)
[----------] 2 tests from Pkcs11Pbkdf2Test
[ RUN      ] Pkcs11Pbkdf2Test.DeriveKnown1
[       OK ] Pkcs11Pbkdf2Test.DeriveKnown1 (154 ms)
[ RUN      ] Pkcs11Pbkdf2Test.DeriveKnown2
[       OK ] Pkcs11Pbkdf2Test.DeriveKnown2 (334 ms)
[----------] 2 tests from Pkcs11Pbkdf2Test (488 ms total)
[----------] 5 tests from TlsPrfTest
[ RUN      ] TlsPrfTest.ExtendedMsParamErr
[       OK ] TlsPrfTest.ExtendedMsParamErr (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsDhTlsPrf
[       OK ] TlsPrfTest.ExtendedMsDhTlsPrf (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsRsaTlsPrf
[       OK ] TlsPrfTest.ExtendedMsRsaTlsPrf (1 ms)
[ RUN      ] TlsPrfTest.ExtendedMsDhSha256
[       OK ] TlsPrfTest.ExtendedMsDhSha256 (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsRsaSha256
[       OK ] TlsPrfTest.ExtendedMsRsaSha256 (0 ms)
[----------] 5 tests from TlsPrfTest (3 ms total)
[----------] 1 test from Pkcs11RsaPssTest
[ RUN      ] Pkcs11RsaPssTest.GenerateAndSignAndVerify
[       OK ] Pkcs11RsaPssTest.GenerateAndSignAndVerify (419 ms)
[----------] 1 test from Pkcs11RsaPssTest (419 ms total)
[----------] 2 tests from Pkcs11RsaPssVectorTest
[ RUN      ] Pkcs11RsaPssVectorTest.VerifyKnownSignature1
[       OK ] Pkcs11RsaPssVectorTest.VerifyKnownSignature1 (1 ms)
[ RUN      ] Pkcs11RsaPssVectorTest.VerifyKnownSignature2
[       OK ] Pkcs11RsaPssVectorTest.VerifyKnownSignature2 (2 ms)
[----------] 2 tests from Pkcs11RsaPssVectorTest (3 ms total)
[----------] Global test environment tear-down
[==========] 21 tests from 7 test cases ran. (925 ms total)
[  PASSED  ] 21 tests.
gtests.sh: #4306: pk11_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pk11_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #4307: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest1' - PASSED
gtests.sh: #4308: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest2' - PASSED
gtests.sh: #4309: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest3' - PASSED
gtests.sh: #4310: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest4' - PASSED
gtests.sh: #4311: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest5' - PASSED
gtests.sh: #4312: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest6' - PASSED
gtests.sh: #4313: 'Pkcs11ChaCha20Poly1305Test: GenerateEncryptDecrypt' - PASSED
gtests.sh: #4314: 'Pkcs11ChaCha20Poly1305Test: CheckTestVector1' - PASSED
gtests.sh: #4315: 'Pkcs11ChaCha20Poly1305Test: CheckTestVector2' - PASSED
gtests.sh: #4316: 'Pkcs11ExportTest: DeriveNonExport' - PASSED
gtests.sh: #4317: 'Pkcs11ExportTest: DeriveExport' - PASSED
gtests.sh: #4318: 'Pkcs11Pbkdf2Test: DeriveKnown1' - PASSED
gtests.sh: #4319: 'Pkcs11Pbkdf2Test: DeriveKnown2' - PASSED
gtests.sh: #4320: 'TlsPrfTest: ExtendedMsParamErr' - PASSED
gtests.sh: #4321: 'TlsPrfTest: ExtendedMsDhTlsPrf' - PASSED
gtests.sh: #4322: 'TlsPrfTest: ExtendedMsRsaTlsPrf' - PASSED
gtests.sh: #4323: 'TlsPrfTest: ExtendedMsDhSha256' - PASSED
gtests.sh: #4324: 'TlsPrfTest: ExtendedMsRsaSha256' - PASSED
gtests.sh: #4325: 'Pkcs11RsaPssTest: GenerateAndSignAndVerify' - PASSED
gtests.sh: #4326: 'Pkcs11RsaPssVectorTest: VerifyKnownSignature1' - PASSED
gtests.sh: #4327: 'Pkcs11RsaPssVectorTest: VerifyKnownSignature2' - PASSED
TIMESTAMP gtests END: Sat Oct 21 15:21:52 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Sat Oct 21 15:21:53 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #4328: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4329: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4330: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4331: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4332: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4333: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4334: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4335: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4336: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4337: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4338: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4339: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4340: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4341: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4342: create certificate: sign  - PASSED
executing ssl_gtest
[==========] Running 816 tests from 15 test cases.
[----------] Global test environment set-up.
[----------] 60 tests from CipherSuiteRC4/TlsCipherSuiteTest
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/0 (71 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/1 (55 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/2 (103 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/3 (60 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/4 (86 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/5 (43 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/6 (55 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/7 (89 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/8 (60 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/9 (86 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/10 (42 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/11 (57 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/12 (88 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/13 (59 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/14 (85 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/0 (97 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/1 (104 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/2 (138 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/3 (111 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/4 (143 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/5 (96 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/6 (104 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/7 (137 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/8 (110 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/9 (144 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/10 (96 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/11 (103 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/12 (137 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/13 (111 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/14 (143 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/0 (43 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/1 (55 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/2 (89 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/3 (61 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/4 (87 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/5 (44 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/6 (56 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/7 (83 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/8 (55 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/9 (80 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/10 (37 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/11 (50 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/12 (89 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/13 (60 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/14 (86 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/0 (42 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/1 (54 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/2 (88 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/3 (60 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/4 (85 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/5 (42 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/6 (54 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/7 (87 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/8 (59 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/9 (85 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/10 (42 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/11 (54 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/12 (88 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/13 (59 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/14 (85 ms)
[----------] 60 tests from CipherSuiteRC4/TlsCipherSuiteTest (4796 ms total)
[----------] 48 tests from CipherSuiteAEAD12/TlsCipherSuiteTest
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/0 (42 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/1 (43 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/2 (208 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/3 (208 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/4 (90 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/5 (88 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/6 (43 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/7 (44 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/8 (208 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/9 (209 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/10 (91 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/11 (85 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/0 (92 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/1 (97 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/2 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/3 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/4 (141 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/5 (147 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/6 (96 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/7 (98 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/8 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/9 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/10 (142 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/11 (146 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/0 (44 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/1 (44 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/2 (209 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/3 (209 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/4 (91 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/5 (88 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/6 (44 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/7 (45 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/8 (210 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/9 (211 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/10 (92 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/11 (89 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/0 (42 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/1 (42 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/2 (207 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/3 (208 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/4 (89 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/5 (87 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/6 (42 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/7 (43 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/8 (208 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/9 (209 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/10 (90 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/11 (87 ms)
[----------] 48 tests from CipherSuiteAEAD12/TlsCipherSuiteTest (5087 ms total)
[----------] 72 tests from CipherSuiteAEAD/TlsCipherSuiteTest
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/0 (88 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/1 (89 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/2 (85 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/3 (80 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/4 (137 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/5 (138 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/6 (82 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/7 (79 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/8 (137 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/9 (86 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/10 (90 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/11 (85 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/12 (87 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/13 (144 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/14 (145 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/15 (89 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/16 (86 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/17 (142 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/0 (137 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/1 (138 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/2 (141 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/3 (144 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/4 (200 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/5 (204 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/6 (137 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/7 (142 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/8 (201 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/9 (138 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/10 (139 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/11 (144 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/12 (145 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/13 (202 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/14 (204 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/15 (138 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/16 (144 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/17 (200 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/0 (89 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/1 (89 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/2 (86 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/3 (85 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/4 (144 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/5 (144 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/6 (89 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/7 (86 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/8 (143 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/9 (90 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/10 (91 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/11 (86 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/12 (90 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/13 (145 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/14 (146 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/15 (90 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/16 (86 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/17 (144 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/0 (87 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/1 (88 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/2 (85 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/3 (85 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/4 (142 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/5 (141 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/6 (87 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/7 (84 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/8 (142 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/9 (89 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/10 (93 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/11 (86 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/12 (87 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/13 (143 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/14 (143 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/15 (88 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/16 (85 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/17 (139 ms)
[----------] 72 tests from CipherSuiteAEAD/TlsCipherSuiteTest (8606 ms total)
[----------] 64 tests from CipherSuiteCBC12/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/0 (138 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/1 (37 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/2 (83 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/3 (80 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/4 (137 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/5 (37 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/6 (202 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/7 (202 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/8 (142 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/9 (43 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/10 (90 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/11 (88 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/12 (144 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/13 (44 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/14 (209 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/15 (209 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/0 (203 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/1 (98 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/2 (139 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/3 (144 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/4 (203 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/5 (98 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/6 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/7 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/8 (203 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/9 (98 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/10 (139 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/11 (145 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/12 (204 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/13 (98 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/14 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/15 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/0 (142 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/1 (44 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/2 (89 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/3 (86 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/4 (144 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/5 (44 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/6 (207 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/7 (209 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/8 (145 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/9 (44 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/10 (91 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/11 (87 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/12 (146 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/13 (44 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/14 (209 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/15 (210 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/0 (143 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/1 (42 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/2 (88 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/3 (85 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/4 (143 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/5 (42 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/6 (207 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/7 (207 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/8 (144 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/9 (42 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/10 (89 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/11 (87 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/12 (144 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/13 (43 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/14 (208 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/15 (208 ms)
[----------] 64 tests from CipherSuiteCBC12/TlsCipherSuiteTest (7568 ms total)
[----------] 192 tests from CipherSuiteCBCStream/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/0 (54 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/1 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/2 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/3 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/4 (88 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/5 (89 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/6 (89 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/7 (90 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/8 (59 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/9 (60 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/10 (60 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/11 (60 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/12 (85 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/13 (86 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/14 (86 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/15 (87 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/16 (55 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/17 (54 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/18 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/19 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/20 (88 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/21 (89 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/22 (89 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/23 (89 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/24 (59 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/25 (60 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/26 (60 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/27 (61 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/28 (85 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/29 (86 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/30 (86 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/31 (87 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/32 (54 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/33 (55 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/34 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/35 (55 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/36 (89 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/37 (89 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/38 (89 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/39 (88 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/40 (59 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/41 (60 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/42 (61 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/43 (60 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/44 (85 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/45 (86 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/46 (87 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/47 (86 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/0 (103 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/1 (105 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/2 (105 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/3 (105 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/4 (137 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/5 (139 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/6 (135 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/7 (128 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/8 (99 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/9 (102 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/10 (102 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/11 (102 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/12 (131 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/13 (134 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/14 (134 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/15 (134 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/16 (92 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/17 (94 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/18 (94 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/19 (103 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/20 (137 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/21 (138 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/22 (138 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/23 (138 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/24 (110 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/25 (111 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/26 (112 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/27 (113 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/28 (142 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/29 (144 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/30 (144 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/31 (144 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/32 (103 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/33 (104 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/34 (104 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/35 (105 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/36 (136 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/37 (138 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/38 (138 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/39 (137 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/40 (109 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/41 (111 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/42 (111 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/43 (112 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/44 (142 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/45 (143 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/46 (144 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/47 (144 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/0 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/1 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/2 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/3 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/4 (89 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/5 (90 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/6 (89 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/7 (89 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/8 (60 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/9 (61 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/10 (61 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/11 (61 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/12 (85 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/13 (86 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/14 (87 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/15 (86 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/16 (55 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/17 (57 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/18 (57 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/19 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/20 (89 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/21 (90 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/22 (90 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/23 (91 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/24 (61 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/25 (61 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/26 (62 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/27 (62 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/28 (86 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/29 (87 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/30 (87 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/31 (87 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/32 (55 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/33 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/34 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/35 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/36 (88 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/37 (91 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/38 (89 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/39 (90 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/40 (68 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/41 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/42 (54 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/43 (55 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/44 (79 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/45 (80 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/46 (80 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/47 (80 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/0 (48 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/1 (49 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/2 (50 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/3 (50 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/4 (82 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/5 (83 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/6 (84 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/7 (83 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/8 (54 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/9 (54 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/10 (55 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/11 (55 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/12 (79 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/13 (80 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/14 (80 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/15 (82 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/16 (53 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/17 (54 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/18 (55 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/19 (55 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/20 (88 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/21 (88 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/22 (88 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/23 (89 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/24 (60 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/25 (60 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/26 (60 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/27 (60 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/28 (85 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/29 (86 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/30 (85 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/31 (86 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/32 (53 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/33 (54 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/34 (55 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/35 (54 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/36 (87 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/37 (88 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/38 (89 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/39 (88 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/40 (58 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/41 (60 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/42 (60 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/43 (59 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/44 (84 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/45 (86 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/46 (85 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/47 (86 ms)
[----------] 192 tests from CipherSuiteCBCStream/TlsCipherSuiteTest (16223 ms total)
[----------] 96 tests from CipherSuiteCBCDatagram/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/0 (56 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/1 (56 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/2 (56 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/3 (90 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/4 (91 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/5 (91 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/6 (61 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/7 (61 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/8 (62 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/9 (88 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/10 (87 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/11 (88 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/12 (56 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/13 (55 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/14 (55 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/15 (89 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/16 (90 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/17 (91 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/18 (60 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/19 (60 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/20 (61 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/21 (88 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/22 (87 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/23 (87 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/0 (106 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/1 (106 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/2 (106 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/3 (140 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/4 (140 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/5 (141 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/6 (113 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/7 (113 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/8 (122 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/9 (146 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/10 (146 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/11 (146 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/12 (105 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/13 (105 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/14 (105 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/15 (139 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/16 (139 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/17 (139 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/18 (112 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/19 (111 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/20 (113 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/21 (146 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/22 (145 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/23 (145 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/0 (57 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/1 (57 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/2 (57 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/3 (88 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/4 (92 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/5 (92 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/6 (63 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/7 (62 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/8 (62 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/9 (88 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/10 (90 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/11 (89 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/12 (57 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/13 (57 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/14 (57 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/15 (91 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/16 (91 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/17 (90 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/18 (61 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/19 (62 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/20 (61 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/21 (88 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/22 (88 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/23 (89 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/0 (55 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/1 (55 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/2 (56 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/3 (90 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/4 (90 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/5 (90 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/6 (60 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/7 (60 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/8 (60 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/9 (88 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/10 (87 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/11 (87 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/12 (54 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/13 (55 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/14 (55 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/15 (89 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/16 (89 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/17 (89 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/18 (60 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/19 (60 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/20 (60 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/21 (86 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/22 (86 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/23 (87 ms)
[----------] 96 tests from CipherSuiteCBCDatagram/TlsCipherSuiteTest (8365 ms total)
[----------] 8 tests from TestSecurityStatus/SecurityStatusTest
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/0
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/0 (85 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/1
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/1 (43 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/2 (87 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/3
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/3 (44 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/4
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/4 (43 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/5 (42 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/6
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/6 (43 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/7 (85 ms)
[----------] 8 tests from TestSecurityStatus/SecurityStatusTest (476 ms total)
[----------] 72 tests from DamageYStream/TlsDamageDHYTest
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301fceb5883eae758c48ae4507371f056c4e1284fb60e4be6213d20...
record new: [1184] 020000510301fceb5883eae758c48ae4507371f056c4e1284fb60e4be6213d20...
server: Original packet: [1189] 16030104a0020000510301fceb5883eae758c48ae4507371f056c4e1284fb60e...
server: Filtered packet: [1189] 16030104a0020000510301fceb5883eae758c48ae4507371f056c4e1284fb60e...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/0 (76 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/1
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301319ac8665b584290d617b78f0b053a306e49d3734bfea18ebbea...
record new: [1184] 020000510301319ac8665b584290d617b78f0b053a306e49d3734bfea18ebbea...
server: Original packet: [1189] 16030104a0020000510301319ac8665b584290d617b78f0b053a306e49d3734b...
server: Filtered packet: [1189] 16030104a0020000510301319ac8665b584290d617b78f0b053a306e49d3734b...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/1 (73 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/2
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030128c00ea09f5ac4e31ba06dac06903276c310ce340bb6a05b154a...
record new: [1184] 02000051030128c00ea09f5ac4e31ba06dac06903276c310ce340bb6a05b154a...
server: Original packet: [1189] 16030104a002000051030128c00ea09f5ac4e31ba06dac06903276c310ce340b...
server: Filtered packet: [1189] 16030104a002000051030128c00ea09f5ac4e31ba06dac06903276c310ce340b...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/2 (73 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/3
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301d81e143ccfd77aa11aaa7f41ef27192bda7cbe828d7c02b21bc8...
record new: [1184] 020000510301d81e143ccfd77aa11aaa7f41ef27192bda7cbe828d7c02b21bc8...
server: Original packet: [1189] 16030104a0020000510301d81e143ccfd77aa11aaa7f41ef27192bda7cbe828d...
server: Filtered packet: [1189] 16030104a0020000510301d81e143ccfd77aa11aaa7f41ef27192bda7cbe828d...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/3 (74 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/4
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030117c25e7cf88f2c285194f7dd4da2c34b1b9b35f00e06f2258793...
record new: [1184] 02000051030117c25e7cf88f2c285194f7dd4da2c34b1b9b35f00e06f2258793...
server: Original packet: [1189] 16030104a002000051030117c25e7cf88f2c285194f7dd4da2c34b1b9b35f00e...
server: Filtered packet: [1189] 16030104a002000051030117c25e7cf88f2c285194f7dd4da2c34b1b9b35f00e...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/4 (73 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/5
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301dd438420ddd0abe69101965f6f69b7fc31b89561a24183a7143a...
record new: [1184] 020000510301dd438420ddd0abe69101965f6f69b7fc31b89561a24183a7143a...
server: Original packet: [1189] 16030104a0020000510301dd438420ddd0abe69101965f6f69b7fc31b89561a2...
server: Filtered packet: [1189] 16030104a0020000510301dd438420ddd0abe69101965f6f69b7fc31b89561a2...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/5 (74 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/6
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103015b34c546b21eaadd6281a85771418973ef2d7c45b36018c3d5f5...
record new: [1184] 0200005103015b34c546b21eaadd6281a85771418973ef2d7c45b36018c3d5f5...
server: Original packet: [1189] 16030104a00200005103015b34c546b21eaadd6281a85771418973ef2d7c45b3...
server: Filtered packet: [1189] 16030104a00200005103015b34c546b21eaadd6281a85771418973ef2d7c45b3...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/6 (59 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/7
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030119efbff60de44e7b051a80533c70e3bb4ab4205f5d2d07e28f74...
record new: [1184] 02000051030119efbff60de44e7b051a80533c70e3bb4ab4205f5d2d07e28f74...
server: Original packet: [1189] 16030104a002000051030119efbff60de44e7b051a80533c70e3bb4ab4205f5d...
server: Filtered packet: [1189] 16030104a002000051030119efbff60de44e7b051a80533c70e3bb4ab4205f5d...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/7 (59 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/8
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301c9be30e70972842ea846ec50996141437d1549d16fe1e61c99cd...
record new: [1185] 020000510301c9be30e70972842ea846ec50996141437d1549d16fe1e61c99cd...
server: Original packet: [1189] 16030104a0020000510301c9be30e70972842ea846ec50996141437d1549d16f...
server: Filtered packet: [1190] 16030104a1020000510301c9be30e70972842ea846ec50996141437d1549d16f...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/8 (73 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/9
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301c1777aad0b92f629f19e22db7e4bd03816b805ffe159cace2fe0...
record new: [1185] 020000510301c1777aad0b92f629f19e22db7e4bd03816b805ffe159cace2fe0...
server: Original packet: [1189] 16030104a0020000510301c1777aad0b92f629f19e22db7e4bd03816b805ffe1...
server: Filtered packet: [1190] 16030104a1020000510301c1777aad0b92f629f19e22db7e4bd03816b805ffe1...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/9 (60 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/10
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301df5391512e8763060d727de9a568e483bf96f8a799e0b51a7e9c...
record new: [1185] 020000510301df5391512e8763060d727de9a568e483bf96f8a799e0b51a7e9c...
server: Original packet: [1189] 16030104a0020000510301df5391512e8763060d727de9a568e483bf96f8a799...
server: Filtered packet: [1190] 16030104a1020000510301df5391512e8763060d727de9a568e483bf96f8a799...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/10 (63 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/11
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301982cadc6d7f6ab2952dd0e17b8c5e66a7cdc47df3237224163fc...
record new: [1185] 020000510301982cadc6d7f6ab2952dd0e17b8c5e66a7cdc47df3237224163fc...
server: Original packet: [1189] 16030104a0020000510301982cadc6d7f6ab2952dd0e17b8c5e66a7cdc47df32...
server: Filtered packet: [1190] 16030104a1020000510301982cadc6d7f6ab2952dd0e17b8c5e66a7cdc47df32...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/11 (61 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/12
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302ac0cf847313651412b9858d81a845f09ac15b702c889e091d5b5...
record new: [1184] 020000510302ac0cf847313651412b9858d81a845f09ac15b702c889e091d5b5...
server: Original packet: [1189] 16030204a0020000510302ac0cf847313651412b9858d81a845f09ac15b702c8...
server: Filtered packet: [1189] 16030204a0020000510302ac0cf847313651412b9858d81a845f09ac15b702c8...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/12 (74 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/13
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030277c5f0100af8d996f8475831f06a1cb10d4f6020c81199aa23a0...
record new: [1184] 02000051030277c5f0100af8d996f8475831f06a1cb10d4f6020c81199aa23a0...
server: Original packet: [1189] 16030204a002000051030277c5f0100af8d996f8475831f06a1cb10d4f6020c8...
server: Filtered packet: [1189] 16030204a002000051030277c5f0100af8d996f8475831f06a1cb10d4f6020c8...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/13 (64 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/14
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103025b4380f0025b3153cf5ae6f20c7f4c8a7eff3efed60c304ce9ce...
record new: [1184] 0200005103025b4380f0025b3153cf5ae6f20c7f4c8a7eff3efed60c304ce9ce...
server: Original packet: [1189] 16030204a00200005103025b4380f0025b3153cf5ae6f20c7f4c8a7eff3efed6...
server: Filtered packet: [1189] 16030204a00200005103025b4380f0025b3153cf5ae6f20c7f4c8a7eff3efed6...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/14 (65 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/15
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103022daf4cfce4ffe711d277b4d465d7d435549b995ef88326846269...
record new: [1184] 0200005103022daf4cfce4ffe711d277b4d465d7d435549b995ef88326846269...
server: Original packet: [1189] 16030204a00200005103022daf4cfce4ffe711d277b4d465d7d435549b995ef8...
server: Filtered packet: [1189] 16030204a00200005103022daf4cfce4ffe711d277b4d465d7d435549b995ef8...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/15 (67 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/16
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030279d8475e184c50447f1069b1a176f8461da095a890f7d0c2095d...
record new: [1184] 02000051030279d8475e184c50447f1069b1a176f8461da095a890f7d0c2095d...
server: Original packet: [1189] 16030204a002000051030279d8475e184c50447f1069b1a176f8461da095a890...
server: Filtered packet: [1189] 16030204a002000051030279d8475e184c50447f1069b1a176f8461da095a890...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/16 (62 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/17
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103021b714cfc293ad01a2ccf854fe34bb219837bf37302b64da7499a...
record new: [1184] 0200005103021b714cfc293ad01a2ccf854fe34bb219837bf37302b64da7499a...
server: Original packet: [1189] 16030204a00200005103021b714cfc293ad01a2ccf854fe34bb219837bf37302...
server: Filtered packet: [1189] 16030204a00200005103021b714cfc293ad01a2ccf854fe34bb219837bf37302...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/17 (60 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/18
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302a25a2eeab700aaf88f77ab49a33d3f4ed4c84b0258cb72606344...
record new: [1184] 020000510302a25a2eeab700aaf88f77ab49a33d3f4ed4c84b0258cb72606344...
server: Original packet: [1189] 16030204a0020000510302a25a2eeab700aaf88f77ab49a33d3f4ed4c84b0258...
server: Filtered packet: [1189] 16030204a0020000510302a25a2eeab700aaf88f77ab49a33d3f4ed4c84b0258...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/18 (60 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/19
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302cf43f15bdadf1d2a87352787d4d37db1b65edb912b0c8eea418c...
record new: [1184] 020000510302cf43f15bdadf1d2a87352787d4d37db1b65edb912b0c8eea418c...
server: Original packet: [1189] 16030204a0020000510302cf43f15bdadf1d2a87352787d4d37db1b65edb912b...
server: Filtered packet: [1189] 16030204a0020000510302cf43f15bdadf1d2a87352787d4d37db1b65edb912b...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/19 (59 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/20
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030285f106f002b9c3419bc2cfe1c7ec624118186a008acc83b73ee5...
record new: [1185] 02000051030285f106f002b9c3419bc2cfe1c7ec624118186a008acc83b73ee5...
server: Original packet: [1189] 16030204a002000051030285f106f002b9c3419bc2cfe1c7ec624118186a008a...
server: Filtered packet: [1190] 16030204a102000051030285f106f002b9c3419bc2cfe1c7ec624118186a008a...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/20 (60 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/21
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302ab34104d7b04a8c87abc1c6776674c3a950374799fc71105ffab...
record new: [1185] 020000510302ab34104d7b04a8c87abc1c6776674c3a950374799fc71105ffab...
server: Original packet: [1189] 16030204a0020000510302ab34104d7b04a8c87abc1c6776674c3a950374799f...
server: Filtered packet: [1190] 16030204a1020000510302ab34104d7b04a8c87abc1c6776674c3a950374799f...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/21 (60 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/22
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103024abf854fcfc98887c0d55506cad1e6dfb9cee9d8c0fad32c5c4d...
record new: [1185] 0200005103024abf854fcfc98887c0d55506cad1e6dfb9cee9d8c0fad32c5c4d...
server: Original packet: [1189] 16030204a00200005103024abf854fcfc98887c0d55506cad1e6dfb9cee9d8c0...
server: Filtered packet: [1190] 16030204a10200005103024abf854fcfc98887c0d55506cad1e6dfb9cee9d8c0...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/22 (60 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/23
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030286fea4fdceb3ed3e10748a785c3de50fdd7e76b9223da5a3960b...
record new: [1185] 02000051030286fea4fdceb3ed3e10748a785c3de50fdd7e76b9223da5a3960b...
server: Original packet: [1189] 16030204a002000051030286fea4fdceb3ed3e10748a785c3de50fdd7e76b922...
server: Filtered packet: [1190] 16030204a102000051030286fea4fdceb3ed3e10748a785c3de50fdd7e76b922...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/23 (61 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/24
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303f210fe574dc296b0a6d264f5ca6550be15a8e312db51da1218d3...
record new: [1186] 020000510303f210fe574dc296b0a6d264f5ca6550be15a8e312db51da1218d3...
server: Original packet: [1191] 16030304a2020000510303f210fe574dc296b0a6d264f5ca6550be15a8e312db...
server: Filtered packet: [1191] 16030304a2020000510303f210fe574dc296b0a6d264f5ca6550be15a8e312db...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/24 (59 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/25
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103039bf423a81776b2d9059f18776f9c6876d73930357731f40123f6...
record new: [1186] 0200005103039bf423a81776b2d9059f18776f9c6876d73930357731f40123f6...
server: Original packet: [1191] 16030304a20200005103039bf423a81776b2d9059f18776f9c6876d739303577...
server: Filtered packet: [1191] 16030304a20200005103039bf423a81776b2d9059f18776f9c6876d739303577...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/25 (59 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/26
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303fb3f48fe65d10315c0b309ceb020f65034409a37d1912acd4ec4...
record new: [1186] 020000510303fb3f48fe65d10315c0b309ceb020f65034409a37d1912acd4ec4...
server: Original packet: [1191] 16030304a2020000510303fb3f48fe65d10315c0b309ceb020f65034409a37d1...
server: Filtered packet: [1191] 16030304a2020000510303fb3f48fe65d10315c0b309ceb020f65034409a37d1...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/26 (59 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/27
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303577e36e191f6999ab8a1cefade16b8ad0c580c8fd190980f8d2d...
record new: [1186] 020000510303577e36e191f6999ab8a1cefade16b8ad0c580c8fd190980f8d2d...
server: Original packet: [1191] 16030304a2020000510303577e36e191f6999ab8a1cefade16b8ad0c580c8fd1...
server: Filtered packet: [1191] 16030304a2020000510303577e36e191f6999ab8a1cefade16b8ad0c580c8fd1...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/27 (60 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/28
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103033759acc20f55562bda9ea70b0619fa2870fa5c91a616cd9035b4...
record new: [1186] 0200005103033759acc20f55562bda9ea70b0619fa2870fa5c91a616cd9035b4...
server: Original packet: [1191] 16030304a20200005103033759acc20f55562bda9ea70b0619fa2870fa5c91a6...
server: Filtered packet: [1191] 16030304a20200005103033759acc20f55562bda9ea70b0619fa2870fa5c91a6...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/28 (59 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/29
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103032e03555d69c4c57189347e18d3ddd117487d1a5c30db24ccd599...
record new: [1186] 0200005103032e03555d69c4c57189347e18d3ddd117487d1a5c30db24ccd599...
server: Original packet: [1191] 16030304a20200005103032e03555d69c4c57189347e18d3ddd117487d1a5c30...
server: Filtered packet: [1191] 16030304a20200005103032e03555d69c4c57189347e18d3ddd117487d1a5c30...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/29 (60 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/30
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103031e5a4363d3ab1ebc5c4873d38acece9ce9d1d4dde78a8f82ff85...
record new: [1186] 0200005103031e5a4363d3ab1ebc5c4873d38acece9ce9d1d4dde78a8f82ff85...
server: Original packet: [1191] 16030304a20200005103031e5a4363d3ab1ebc5c4873d38acece9ce9d1d4dde7...
server: Filtered packet: [1191] 16030304a20200005103031e5a4363d3ab1ebc5c4873d38acece9ce9d1d4dde7...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/30 (59 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/31
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303633944bd1dd288f05dc7cfbdd34aca303e4ae06dc37a834e6079...
record new: [1186] 020000510303633944bd1dd288f05dc7cfbdd34aca303e4ae06dc37a834e6079...
server: Original packet: [1191] 16030304a2020000510303633944bd1dd288f05dc7cfbdd34aca303e4ae06dc3...
server: Filtered packet: [1191] 16030304a2020000510303633944bd1dd288f05dc7cfbdd34aca303e4ae06dc3...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/31 (59 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/32
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303934b167ce4cc2df5d820758d728b1c3e9087add67ca3951149e5...
record new: [1187] 020000510303934b167ce4cc2df5d820758d728b1c3e9087add67ca3951149e5...
server: Original packet: [1191] 16030304a2020000510303934b167ce4cc2df5d820758d728b1c3e9087add67c...
server: Filtered packet: [1192] 16030304a3020000510303934b167ce4cc2df5d820758d728b1c3e9087add67c...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/32 (59 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/33
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303a83542fd194a96ddbad7143745ae417a4fc9dc0dd768ff1a699a...
record new: [1187] 020000510303a83542fd194a96ddbad7143745ae417a4fc9dc0dd768ff1a699a...
server: Original packet: [1191] 16030304a2020000510303a83542fd194a96ddbad7143745ae417a4fc9dc0dd7...
server: Filtered packet: [1192] 16030304a3020000510303a83542fd194a96ddbad7143745ae417a4fc9dc0dd7...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/33 (60 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/34
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103037bcbc13361dd9fd2943a2b3726d77ee04fe0908202056accb009...
record new: [1187] 0200005103037bcbc13361dd9fd2943a2b3726d77ee04fe0908202056accb009...
server: Original packet: [1191] 16030304a20200005103037bcbc13361dd9fd2943a2b3726d77ee04fe0908202...
server: Filtered packet: [1192] 16030304a30200005103037bcbc13361dd9fd2943a2b3726d77ee04fe0908202...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/34 (59 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/35
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303e7f26e63a5608ecd02496ecaa9893d589afef239d881d743d944...
record new: [1187] 020000510303e7f26e63a5608ecd02496ecaa9893d589afef239d881d743d944...
server: Original packet: [1191] 16030304a2020000510303e7f26e63a5608ecd02496ecaa9893d589afef239d8...
server: Filtered packet: [1192] 16030304a3020000510303e7f26e63a5608ecd02496ecaa9893d589afef239d8...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/35 (74 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e0b53a0dfbdda56316ac5fbcdbd6b4b30f87a6af1e03dc7a2765210e566b...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100e0b53a0dfbdda56316ac5fbcdbd6b4b30f87a6af1e03dc7a2765...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 1603010106100001020100e0b53a0dfbdda56316ac5fbcdbd6b4b30f87a6af1e...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/0 (124 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/1
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a90a1d9f72694165f02e0c5f9b7d355a7cbd2edc04b1481292fe265a28bc...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100a90a1d9f72694165f02e0c5f9b7d355a7cbd2edc04b1481292fe...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 1603010106100001020100a90a1d9f72694165f02e0c5f9b7d355a7cbd2edc04...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/1 (126 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/2
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010010301e12dc1f0e870a9d13579adfb45600227cc9dd403f80cedfd859ddcd...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 10000102010010301e12dc1f0e870a9d13579adfb45600227cc9dd403f80cedf...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 160301010610000102010010301e12dc1f0e870a9d13579adfb45600227cc9dd...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/2 (126 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/3
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100b89f67d4d654ac3546e49074bf5d0b085fd7cdcb2aad609f04841446c334...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100b89f67d4d654ac3546e49074bf5d0b085fd7cdcb2aad609f0484...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 1603010106100001020100b89f67d4d654ac3546e49074bf5d0b085fd7cdcb2a...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/3 (126 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/4
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e77b88d13d70f96db2e52e54dc9b88a4ba6493d333c4e2ef15e0c0f8f623...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100e77b88d13d70f96db2e52e54dc9b88a4ba6493d333c4e2ef15e0...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [326] 1603010106100001020100e77b88d13d70f96db2e52e54dc9b88a4ba6493d333...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/4 (124 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/5
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010044b664c4d0265a14d82b0332fa0b5a68f017625f2b5018fbc5c02d1eaf95...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 10000102010044b664c4d0265a14d82b0332fa0b5a68f017625f2b5018fbc5c0...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [326] 160301010610000102010044b664c4d0265a14d82b0332fa0b5a68f017625f2b...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/5 (125 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/6
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ccf39f718a3709f50c993020ac5b660cbd1fb1faf99cdfa8eb5e6e72cead...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100ccf39f718a3709f50c993020ac5b660cbd1fb1faf99cdfa8eb5e...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [326] 1603010106100001020100ccf39f718a3709f50c993020ac5b660cbd1fb1faf9...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/6 (125 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/7
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01001fc83bcd6fec9477c3b8081a95eaa3749a42d1bb78e5099339cdf9045995...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 1000010201001fc83bcd6fec9477c3b8081a95eaa3749a42d1bb78e5099339cd...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [326] 16030101061000010201001fc83bcd6fec9477c3b8081a95eaa3749a42d1bb78...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/7 (125 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/8
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ba488086584adb7b48a9471a57183659318b5c084d9715b0a72222d0db95...
handshake new: [259] 010101ba488086584adb7b48a9471a57183659318b5c084d9715b0a72222d0db...
record old: [262] 100001020100ba488086584adb7b48a9471a57183659318b5c084d9715b0a722...
record new: [263] 10000103010101ba488086584adb7b48a9471a57183659318b5c084d9715b0a7...
client: Original packet: [326] 1603010106100001020100ba488086584adb7b48a9471a57183659318b5c084d...
client: Filtered packet: [327] 160301010710000103010101ba488086584adb7b48a9471a57183659318b5c08...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/8 (124 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/9
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c9a2480d51f94b00bd0e0a0618f61482acdb1655e004a2c2a903867fc262...
handshake new: [259] 010101c9a2480d51f94b00bd0e0a0618f61482acdb1655e004a2c2a903867fc2...
record old: [262] 100001020100c9a2480d51f94b00bd0e0a0618f61482acdb1655e004a2c2a903...
record new: [263] 10000103010101c9a2480d51f94b00bd0e0a0618f61482acdb1655e004a2c2a9...
client: Original packet: [326] 1603010106100001020100c9a2480d51f94b00bd0e0a0618f61482acdb1655e0...
client: Filtered packet: [327] 160301010710000103010101c9a2480d51f94b00bd0e0a0618f61482acdb1655...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/9 (127 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/10
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100266156d3f7ff5eddd3dc0eb089998f7ca75ffb5575c02bd36c3d30883d98...
handshake new: [259] 010100266156d3f7ff5eddd3dc0eb089998f7ca75ffb5575c02bd36c3d30883d...
record old: [262] 100001020100266156d3f7ff5eddd3dc0eb089998f7ca75ffb5575c02bd36c3d...
record new: [263] 10000103010100266156d3f7ff5eddd3dc0eb089998f7ca75ffb5575c02bd36c...
client: Original packet: [326] 1603010106100001020100266156d3f7ff5eddd3dc0eb089998f7ca75ffb5575...
client: Filtered packet: [327] 160301010710000103010100266156d3f7ff5eddd3dc0eb089998f7ca75ffb55...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/10 (146 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/11
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01005be7c71793addf343a625e4ee26356718d97edaba8cd67c8cdca03e06979...
handshake new: [259] 0101005be7c71793addf343a625e4ee26356718d97edaba8cd67c8cdca03e069...
record old: [262] 1000010201005be7c71793addf343a625e4ee26356718d97edaba8cd67c8cdca...
record new: [263] 100001030101005be7c71793addf343a625e4ee26356718d97edaba8cd67c8cd...
client: Original packet: [326] 16030101061000010201005be7c71793addf343a625e4ee26356718d97edaba8...
client: Filtered packet: [327] 1603010107100001030101005be7c71793addf343a625e4ee26356718d97edab...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/11 (156 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/12
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01003ac3bc38cb45d57a451d00c415a414a5f79afcf2e29e4cf69be551e953ee...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201003ac3bc38cb45d57a451d00c415a414a5f79afcf2e29e4cf69be5...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 16030201061000010201003ac3bc38cb45d57a451d00c415a414a5f79afcf2e2...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/12 (126 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/13
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a4fb066327d21446e931c11182186359e23567b7f16843edd1e4e6ff78dd...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100a4fb066327d21446e931c11182186359e23567b7f16843edd1e4...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 1603020106100001020100a4fb066327d21446e931c11182186359e23567b7f1...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/13 (125 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/14
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100543ea33ec8b80f73afe1b24be0aa30f66bd60783757b2ef29d1498be4f21...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100543ea33ec8b80f73afe1b24be0aa30f66bd60783757b2ef29d14...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 1603020106100001020100543ea33ec8b80f73afe1b24be0aa30f66bd6078375...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/14 (126 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/15
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c4b94018b6639256aab77cb370fbc4e426fe787fcf0637bd39308809578e...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100c4b94018b6639256aab77cb370fbc4e426fe787fcf0637bd3930...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 1603020106100001020100c4b94018b6639256aab77cb370fbc4e426fe787fcf...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/15 (127 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/16
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100728841dc8996ef4655a0b33f321a45e5125a3f9d61664b5cd3a659cd832f...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100728841dc8996ef4655a0b33f321a45e5125a3f9d61664b5cd3a6...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [342] 1603020106100001020100728841dc8996ef4655a0b33f321a45e5125a3f9d61...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/16 (125 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/17
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01009b622fb1e6f15c263b64c5931d28e434ef88794baddb2588165f77ca5d34...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 1000010201009b622fb1e6f15c263b64c5931d28e434ef88794baddb2588165f...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [342] 16030201061000010201009b622fb1e6f15c263b64c5931d28e434ef88794bad...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/17 (125 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/18
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01003b34c24db164bb82ff00211e4f51f495e0f9a0f90d5bc9ce69216e945f5c...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 1000010201003b34c24db164bb82ff00211e4f51f495e0f9a0f90d5bc9ce6921...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [342] 16030201061000010201003b34c24db164bb82ff00211e4f51f495e0f9a0f90d...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/18 (125 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/19
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100b285a2f2cf18e88f3d4c4d13d6339c71ea6dfefe1572ec51405e9054dcf1...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100b285a2f2cf18e88f3d4c4d13d6339c71ea6dfefe1572ec51405e...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [342] 1603020106100001020100b285a2f2cf18e88f3d4c4d13d6339c71ea6dfefe15...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/19 (126 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/20
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100fa7f490e0f126a1b2d00e2020dc0013c3d3fd87abce480a4ade9e04b60ee...
handshake new: [259] 010101fa7f490e0f126a1b2d00e2020dc0013c3d3fd87abce480a4ade9e04b60...
record old: [262] 100001020100fa7f490e0f126a1b2d00e2020dc0013c3d3fd87abce480a4ade9...
record new: [263] 10000103010101fa7f490e0f126a1b2d00e2020dc0013c3d3fd87abce480a4ad...
client: Original packet: [342] 1603020106100001020100fa7f490e0f126a1b2d00e2020dc0013c3d3fd87abc...
client: Filtered packet: [343] 160302010710000103010101fa7f490e0f126a1b2d00e2020dc0013c3d3fd87a...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/20 (125 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/21
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100237b2853df3a914a12643c875e7535c8e3534648dda428028f4438cb9ee9...
handshake new: [259] 010101237b2853df3a914a12643c875e7535c8e3534648dda428028f4438cb9e...
record old: [262] 100001020100237b2853df3a914a12643c875e7535c8e3534648dda428028f44...
record new: [263] 10000103010101237b2853df3a914a12643c875e7535c8e3534648dda428028f...
client: Original packet: [342] 1603020106100001020100237b2853df3a914a12643c875e7535c8e3534648dd...
client: Filtered packet: [343] 160302010710000103010101237b2853df3a914a12643c875e7535c8e3534648...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/21 (126 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/22
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ff49f884ec8ecb60ee93c3d41e1b1e30a095565759f763e2ba1e4e132f04...
handshake new: [259] 010100ff49f884ec8ecb60ee93c3d41e1b1e30a095565759f763e2ba1e4e132f...
record old: [262] 100001020100ff49f884ec8ecb60ee93c3d41e1b1e30a095565759f763e2ba1e...
record new: [263] 10000103010100ff49f884ec8ecb60ee93c3d41e1b1e30a095565759f763e2ba...
client: Original packet: [342] 1603020106100001020100ff49f884ec8ecb60ee93c3d41e1b1e30a095565759...
client: Filtered packet: [343] 160302010710000103010100ff49f884ec8ecb60ee93c3d41e1b1e30a0955657...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/22 (156 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/23
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100757b3699fa755ab35490d9edfc3413c5e658ffb6c531f74d8889255634ae...
handshake new: [259] 010100757b3699fa755ab35490d9edfc3413c5e658ffb6c531f74d8889255634...
record old: [262] 100001020100757b3699fa755ab35490d9edfc3413c5e658ffb6c531f74d8889...
record new: [263] 10000103010100757b3699fa755ab35490d9edfc3413c5e658ffb6c531f74d88...
client: Original packet: [342] 1603020106100001020100757b3699fa755ab35490d9edfc3413c5e658ffb6c5...
client: Filtered packet: [343] 160302010710000103010100757b3699fa755ab35490d9edfc3413c5e658ffb6...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/23 (156 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/24
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a7d824d1985f0a93d59c9529dd8c966fa4bf43f320e5c626c352f1d80d70...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100a7d824d1985f0a93d59c9529dd8c966fa4bf43f320e5c626c352...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 1603030106100001020100a7d824d1985f0a93d59c9529dd8c966fa4bf43f320...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/24 (126 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/25
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01003bddeef885099e4badec836a64634157fdc5a4d316d5efe8bf71d6cf26de...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201003bddeef885099e4badec836a64634157fdc5a4d316d5efe8bf71...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 16030301061000010201003bddeef885099e4badec836a64634157fdc5a4d316...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/25 (126 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/26
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010056921a95509df101a673d1f024ebb76b5ef20c930960f0c7dfd63f7b3737...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 10000102010056921a95509df101a673d1f024ebb76b5ef20c930960f0c7dfd6...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 160303010610000102010056921a95509df101a673d1f024ebb76b5ef20c9309...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/26 (125 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/27
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100b8baf82fa175e3bfca88d52ff5dc528f36d395e338b3b0e6917a1673d203...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100b8baf82fa175e3bfca88d52ff5dc528f36d395e338b3b0e6917a...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 1603030106100001020100b8baf82fa175e3bfca88d52ff5dc528f36d395e338...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/27 (125 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/28
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100b45674bb724d8dc1274c03697916211a20b4f9ee6f958b80a70a7f917859...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100b45674bb724d8dc1274c03697916211a20b4f9ee6f958b80a70a...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [318] 1603030106100001020100b45674bb724d8dc1274c03697916211a20b4f9ee6f...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/28 (125 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/29
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01000264514d3a7140a55e024592df814a31b9bbcc9f78ea8b3b499306503a17...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 1000010201000264514d3a7140a55e024592df814a31b9bbcc9f78ea8b3b4993...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [318] 16030301061000010201000264514d3a7140a55e024592df814a31b9bbcc9f78...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/29 (125 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/30
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c15ddb8e1f2e8016611460eae700100388644f4e3701dd53a068bbcf1c6e...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100c15ddb8e1f2e8016611460eae700100388644f4e3701dd53a068...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [318] 1603030106100001020100c15ddb8e1f2e8016611460eae700100388644f4e37...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/30 (126 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/31
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01001492254ddb0e0c8c77d0c1b0c0474d51e0dd17ccf7a8f16d1d4b83160f2f...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 1000010201001492254ddb0e0c8c77d0c1b0c0474d51e0dd17ccf7a8f16d1d4b...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [318] 16030301061000010201001492254ddb0e0c8c77d0c1b0c0474d51e0dd17ccf7...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/31 (126 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/32
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e88d3df1931ac3e41a46991eb369a49c58184e75aba8ed358833d0f3e7cc...
handshake new: [259] 010101e88d3df1931ac3e41a46991eb369a49c58184e75aba8ed358833d0f3e7...
record old: [262] 100001020100e88d3df1931ac3e41a46991eb369a49c58184e75aba8ed358833...
record new: [263] 10000103010101e88d3df1931ac3e41a46991eb369a49c58184e75aba8ed3588...
client: Original packet: [318] 1603030106100001020100e88d3df1931ac3e41a46991eb369a49c58184e75ab...
client: Filtered packet: [319] 160303010710000103010101e88d3df1931ac3e41a46991eb369a49c58184e75...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/32 (126 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/33
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010087e39644491df99e10cbad039cf9db8e56150c33b44429d323c2b8be9750...
handshake new: [259] 01010187e39644491df99e10cbad039cf9db8e56150c33b44429d323c2b8be97...
record old: [262] 10000102010087e39644491df99e10cbad039cf9db8e56150c33b44429d323c2...
record new: [263] 1000010301010187e39644491df99e10cbad039cf9db8e56150c33b44429d323...
client: Original packet: [318] 160303010610000102010087e39644491df99e10cbad039cf9db8e56150c33b4...
client: Filtered packet: [319] 16030301071000010301010187e39644491df99e10cbad039cf9db8e56150c33...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/33 (126 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/34
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010093a9f7de40bd7fabb1532edc2c12af748f9326e742f4bc3b1a17aadc035a...
handshake new: [259] 01010093a9f7de40bd7fabb1532edc2c12af748f9326e742f4bc3b1a17aadc03...
record old: [262] 10000102010093a9f7de40bd7fabb1532edc2c12af748f9326e742f4bc3b1a17...
record new: [263] 1000010301010093a9f7de40bd7fabb1532edc2c12af748f9326e742f4bc3b1a...
client: Original packet: [318] 160303010610000102010093a9f7de40bd7fabb1532edc2c12af748f9326e742...
client: Filtered packet: [319] 16030301071000010301010093a9f7de40bd7fabb1532edc2c12af748f9326e7...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/34 (156 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/35
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010007e60fdf0fb351182573e64c4847ca7e368e6af3a2a8cc58828b417ff7f7...
handshake new: [259] 01010007e60fdf0fb351182573e64c4847ca7e368e6af3a2a8cc58828b417ff7...
record old: [262] 10000102010007e60fdf0fb351182573e64c4847ca7e368e6af3a2a8cc58828b...
record new: [263] 1000010301010007e60fdf0fb351182573e64c4847ca7e368e6af3a2a8cc5882...
client: Original packet: [318] 160303010610000102010007e60fdf0fb351182573e64c4847ca7e368e6af3a2...
client: Filtered packet: [319] 16030301071000010301010007e60fdf0fb351182573e64c4847ca7e368e6af3...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/35 (156 ms)
[----------] 72 tests from DamageYStream/TlsDamageDHYTest (6992 ms total)
[----------] 48 tests from DamageYDatagram/TlsDamageDHYTest
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/0
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffc1b5b82f1e...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feffc1b5b82f1e...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/0 (74 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/1
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff97cf07c374...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff97cf07c374...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/1 (74 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff97c450e70f...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff97c450e70f...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/2 (74 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff8acceac782...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff8acceac782...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/3 (74 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/4
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff1d6823a026...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff1d6823a026...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/4 (74 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/5
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff1c69426544...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff1c69426544...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/5 (74 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/6
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff7fadb1b35e...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff7fadb1b35e...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/6 (74 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/7
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff3a32948737...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff3a32948737...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/7 (60 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/8
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051fefffeba950c82...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051fefffeba950c82...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/8 (60 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/9
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffb9f6323f52...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feffb9f6323f52...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/9 (61 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/10
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffb028d3834b...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feffb028d3834b...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/10 (61 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/11
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff0ee42d474d...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff0ee42d474d...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/11 (61 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/12
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd48439a2608...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd48439a2608...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/12 (60 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/13
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd8e0b49a755...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd8e0b49a755...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/13 (60 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/14
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd3302c1cf67...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd3302c1cf67...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/14 (60 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/15
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdc092c6b1c0...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdc092c6b1c0...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/15 (60 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/16
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdb3db01e9d8...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdb3db01e9d8...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/16 (60 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/17
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdde489e68a2...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdde489e68a2...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/17 (60 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/18
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdce52da56b7...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdce52da56b7...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/18 (60 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/19
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd302477bda3...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd302477bda3...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/19 (60 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/20
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd0cfe90440d...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefd0cfe90440d...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/20 (60 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/21
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdf53d1765cf...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefdf53d1765cf...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/21 (60 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/22
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefda15ea1398b...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefda15ea1398b...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/22 (61 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/23
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdfe5efb287e...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefdfe5efb287e...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/23 (61 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/0
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a8f707d501234d2aa0fc6799c2326c93c6e28987496bbca98248ad102906...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100a8f707d501234d2aa0fc6799c2326c93c6e2...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100a8f707d501...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/0 (112 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/1
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010058fc9695bc870dafb33b096a9178bd33a631fe35956ac274323cc45f6e4b...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 100001020001000000000102010058fc9695bc870dafb33b096a9178bd33a631...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e100001020001000000000102010058fc9695bc...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/1 (113 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01000fc1f6c3495ded891b62f29a90cd9b44ddfd370c504747c3682a7582a380...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 10000102000100000000010201000fc1f6c3495ded891b62f29a90cd9b44ddfd...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201000fc1f6c349...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/2 (110 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100f3e618891ef83ac4fc9783ee0820ca990a1bc8e88f308ad30fbbab462f3e...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100f3e618891ef83ac4fc9783ee0820ca990a1b...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100f3e618891e...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/3 (111 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/4
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01003d282bbd2e4205ef8e1cd93e24e01955bd1ae762e6ff9c4f66ca9feaced2...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 10000102000100000000010201003d282bbd2e4205ef8e1cd93e24e01955bd1a...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201003d282bbd2e...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/4 (113 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/5
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100821801c3a72c29929443d7f6a7a43793f2b6812f2a7d1a597132ff426799...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 1000010200010000000001020100821801c3a72c29929443d7f6a7a43793f2b6...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100821801c3a7...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/5 (113 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/6
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01006acce9906caad100ae04e669fd138bb6280d319202fd6a6d0f476fe64522...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 10000102000100000000010201006acce9906caad100ae04e669fd138bb6280d...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201006acce9906c...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/6 (113 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/7
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100962138945ebd5202d8f34ccf65c26e20ec6a16719c63089abd3b54b0e04c...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 1000010200010000000001020100962138945ebd5202d8f34ccf65c26e20ec6a...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100962138945e...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/7 (126 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/8
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100f368cb8f102ed8db171a5ac5e4abe265d81f276a3f734816b2b9f63c138e...
handshake new: [259] 010101f368cb8f102ed8db171a5ac5e4abe265d81f276a3f734816b2b9f63c13...
record old: [270] 1000010200010000000001020100f368cb8f102ed8db171a5ac5e4abe265d81f...
record new: [271] 100001030001000000000103010101f368cb8f102ed8db171a5ac5e4abe265d8...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100f368cb8f10...
client: Filtered packet: [375] 16feff0000000000000001010f100001030001000000000103010101f368cb8f...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/8 (126 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/9
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01001ffb3d715f162ae9867733591a7093e7e273c23dfd9e234fedfd53f93f60...
handshake new: [259] 0101011ffb3d715f162ae9867733591a7093e7e273c23dfd9e234fedfd53f93f...
record old: [270] 10000102000100000000010201001ffb3d715f162ae9867733591a7093e7e273...
record new: [271] 1000010300010000000001030101011ffb3d715f162ae9867733591a7093e7e2...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201001ffb3d715f...
client: Filtered packet: [375] 16feff0000000000000001010f1000010300010000000001030101011ffb3d71...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/9 (125 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/10
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100989bb49d33c3b2b50bdb7e9924c1eadc1f10a12b673a6e3b0338109a5c60...
handshake new: [259] 010100989bb49d33c3b2b50bdb7e9924c1eadc1f10a12b673a6e3b0338109a5c...
record old: [270] 1000010200010000000001020100989bb49d33c3b2b50bdb7e9924c1eadc1f10...
record new: [271] 100001030001000000000103010100989bb49d33c3b2b50bdb7e9924c1eadc1f...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100989bb49d33...
client: Filtered packet: [375] 16feff0000000000000001010f100001030001000000000103010100989bb49d...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/10 (155 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/11
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01008892c8ff18408f9704061dd5e10c7f7e4f84fe3268db6e016f60fa125c18...
handshake new: [259] 0101008892c8ff18408f9704061dd5e10c7f7e4f84fe3268db6e016f60fa125c...
record old: [270] 10000102000100000000010201008892c8ff18408f9704061dd5e10c7f7e4f84...
record new: [271] 1000010300010000000001030101008892c8ff18408f9704061dd5e10c7f7e4f...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201008892c8ff18...
client: Filtered packet: [375] 16feff0000000000000001010f1000010300010000000001030101008892c8ff...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/11 (156 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/12
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100008a222f4e2b080d360ae0056064e12ed029e9e2f89e8f810b33a8487767...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100008a222f4e2b080d360ae0056064e12ed029...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100008a222f4e...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/12 (126 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/13
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010041ef331e879f5d8d707027b2fc3b22641f601c4a0e08e35d69cdaad3b5c5...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 100001020001000000000102010041ef331e879f5d8d707027b2fc3b22641f60...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010041ef331e87...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/13 (126 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/14
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010066fa5c0d1fa8f6c0ed8bf848253e118d5b739f06021d5ebc162e70a6f32c...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 100001020001000000000102010066fa5c0d1fa8f6c0ed8bf848253e118d5b73...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010066fa5c0d1f...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/14 (126 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/15
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010010ac73298075db62bd44cb8176074bebc120366861889e9514f7395116f5...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 100001020001000000000102010010ac73298075db62bd44cb8176074bebc120...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010010ac732980...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/15 (127 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/16
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01009e034578555db4523aae7bd801cb3d0b3701daedb3fc445ca27907470485...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 10000102000100000000010201009e034578555db4523aae7bd801cb3d0b3701...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201009e03457855...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/16 (126 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/17
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100112ffb36134a79f8d8228ad64213b879d03de4d29773a5c317b1dfe3a30c...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 1000010200010000000001020100112ffb36134a79f8d8228ad64213b879d03d...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100112ffb3613...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/17 (126 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/18
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100806fd9a87c2f847ef64f77ee6f54609e3f3ee896d1e3164b55bda11bc14a...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 1000010200010000000001020100806fd9a87c2f847ef64f77ee6f54609e3f3e...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100806fd9a87c...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/18 (125 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/19
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01000204324a180a2cddb534c2767918fbe0030fb89dba9c9e3fd055578acb85...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 10000102000100000000010201000204324a180a2cddb534c2767918fbe0030f...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201000204324a18...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/19 (126 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/20
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e617d7fbe739d0de0cc39c4409f06ffa9c0fd7d63c2bc10eefdff6e72705...
handshake new: [259] 010101e617d7fbe739d0de0cc39c4409f06ffa9c0fd7d63c2bc10eefdff6e727...
record old: [270] 1000010200010000000001020100e617d7fbe739d0de0cc39c4409f06ffa9c0f...
record new: [271] 100001030001000000000103010101e617d7fbe739d0de0cc39c4409f06ffa9c...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100e617d7fbe7...
client: Filtered packet: [359] 16fefd0000000000000001010f100001030001000000000103010101e617d7fb...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/20 (113 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/21
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01002dac18ae1b53a62f4c230139ffaf963f56adc83be335793dfcc3ae7bfa50...
handshake new: [259] 0101012dac18ae1b53a62f4c230139ffaf963f56adc83be335793dfcc3ae7bfa...
record old: [270] 10000102000100000000010201002dac18ae1b53a62f4c230139ffaf963f56ad...
record new: [271] 1000010300010000000001030101012dac18ae1b53a62f4c230139ffaf963f56...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201002dac18ae1b...
client: Filtered packet: [359] 16fefd0000000000000001010f1000010300010000000001030101012dac18ae...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/21 (127 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/22
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010012d300c102c57888e6b36212d90accd01965dee6454ad0b88032b2cb9c90...
handshake new: [259] 01010012d300c102c57888e6b36212d90accd01965dee6454ad0b88032b2cb9c...
record old: [270] 100001020001000000000102010012d300c102c57888e6b36212d90accd01965...
record new: [271] 10000103000100000000010301010012d300c102c57888e6b36212d90accd019...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010012d300c102...
client: Filtered packet: [359] 16fefd0000000000000001010f10000103000100000000010301010012d300c1...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/22 (137 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/23
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100393e850d8c0f6557f1a8402ccf9f2821a5ab3c774423a49620faec8d7520...
handshake new: [259] 010100393e850d8c0f6557f1a8402ccf9f2821a5ab3c774423a49620faec8d75...
record old: [270] 1000010200010000000001020100393e850d8c0f6557f1a8402ccf9f2821a5ab...
record new: [271] 100001030001000000000103010100393e850d8c0f6557f1a8402ccf9f2821a5...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100393e850d8c...
client: Filtered packet: [359] 16fefd0000000000000001010f100001030001000000000103010100393e850d...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/23 (138 ms)
[----------] 48 tests from DamageYDatagram/TlsDamageDHYTest (4545 ms total)
[----------] 2 tests from Datagram12Plus/TlsConnectDatagram12Plus
[ RUN      ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindow/0
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindow/0 (80 ms)
[ RUN      ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindowAndOne/0
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindowAndOne/0 (79 ms)
[----------] 2 tests from Datagram12Plus/TlsConnectDatagram12Plus (159 ms total)
[----------] 16 tests from KeyExchangeTest/TlsKeyExchangeTest
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/0 (221 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/1 (175 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/2 (176 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/3 (178 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/0 (179 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/1 (180 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
client: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/2 (182 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
client: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/3 (184 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/0 (181 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/1 (181 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
client: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/2 (182 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
client: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/3 (181 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/0 (89 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/1 (89 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/2 (89 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/3 (89 ms)
[----------] 16 tests from KeyExchangeTest/TlsKeyExchangeTest (2561 ms total)
[----------] 88 tests from TlsPadding/TlsPaddingTest
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fefefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.Correct/0 (5 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0e0e
[       OK ] TlsPadding/TlsPaddingTest.Correct/1 (3 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fcfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.Correct/2 (5 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0c0c
[       OK ] TlsPadding/TlsPaddingTest.Correct/3 (3 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fbfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.Correct/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0b0b
[       OK ] TlsPadding/TlsPaddingTest.Correct/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f1f1...
[       OK ] TlsPadding/TlsPaddingTest.Correct/6 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410101
[       OK ] TlsPadding/TlsPaddingTest.Correct/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f0...
[       OK ] TlsPadding/TlsPaddingTest.Correct/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/9
Content length=31 padding length=0 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141414100
[       OK ] TlsPadding/TlsPaddingTest.Correct/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/14 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/17 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/19
Content length=287 padding length=0 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/20 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/0
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0e10
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/2
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0c20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/4
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0b20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/6
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410120
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/8
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/9
Content length=31 padding length=0 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141414120
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/10
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/11 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/12
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/13 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/14
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/15
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/16
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/17
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/18
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/19
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/21
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fffefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/0 (4 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410f0e0e0e0e0e0e0e0e0e0e0e0e0e0e
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/1 (3 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fdfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/2 (4 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410d0c0c0c0c0c0c0c0c0c0c0c0c
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/3 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fcfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410c0b0b0b0b0b0b0b0b0b0b0b
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f2f1...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410201
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/7 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f1...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/9
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/13 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/15 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/19
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/21 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fefefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0f0e
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/1 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fcfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0d0c
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fbfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/4 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0c0b
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f1f1...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/6 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410201
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f0...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/9
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/14 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/16 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/19
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/21 (0 ms)
[----------] 88 tests from TlsPadding/TlsPaddingTest (58 ms total)
[----------] 8 tests from SkipTls10/TlsSkipTest
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateRsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 020000510301f36ca9deb38b00ab1db9f2b0183b8f9a80e01efb6fd0a41a4ba5...
record new: [89] 020000510301f36ca9deb38b00ab1db9f2b0183b8f9a80e01efb6fd0a41a4ba5...
server: Original packet: [536] 1603010213020000510301f36ca9deb38b00ab1db9f2b0183b8f9a80e01efb6f...
server: Filtered packet: [94] 1603010059020000510301f36ca9deb38b00ab1db9f2b0183b8f9a80e01efb6f...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateRsa/0 (24 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateDhe/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570301f9d58f58d336e6834cfde46fb58a629308b34e8e9192196727ae...
record new: [265] 020000570301f9d58f58d336e6834cfde46fb58a629308b34e8e9192196727ae...
server: Original packet: [712] 16030102c3020000570301f9d58f58d336e6834cfde46fb58a629308b34e8e91...
server: Filtered packet: [270] 1603010109020000570301f9d58f58d336e6834cfde46fb58a629308b34e8e91...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateDhe/0 (34 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateEcdhe/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570301ce051b74ece04dc6791083659fe174845bbb6b9a456a54484bd8...
record new: [265] 020000570301ce051b74ece04dc6791083659fe174845bbb6b9a456a54484bd8...
server: Original packet: [712] 16030102c3020000570301ce051b74ece04dc6791083659fe174845bbb6b9a45...
server: Filtered packet: [270] 1603010109020000570301ce051b74ece04dc6791083659fe174845bbb6b9a45...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateEcdhe/0 (35 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [525] 02000057030187fbb4bd87895453ef0c5b321b584eb87071303363997b01aff2...
record new: [208] 02000057030187fbb4bd87895453ef0c5b321b584eb87071303363997b01aff2...
server: Original packet: [530] 160301020d02000057030187fbb4bd87895453ef0c5b321b584eb87071303363...
server: Filtered packet: [213] 16030100d002000057030187fbb4bd87895453ef0c5b321b584eb87071303363...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateEcdsa/0 (17 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipServerKeyExchange/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [707] 0200005703014e93c615e668fa7383270ecd690e730e9eeb103d71ba5303ccbd...
record new: [537] 0200005703014e93c615e668fa7383270ecd690e730e9eeb103d71ba5303ccbd...
server: Original packet: [712] 16030102c30200005703014e93c615e668fa7383270ecd690e730e9eeb103d71...
server: Filtered packet: [542] 16030102190200005703014e93c615e668fa7383270ecd690e730e9eeb103d71...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipServerKeyExchange/0 (50 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipServerKeyExchangeEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [524] 020000570301f9efcc2035a66b42e7a3218f8828019ba94ddbfe49f520f27161...
record new: [412] 020000570301f9efcc2035a66b42e7a3218f8828019ba94ddbfe49f520f27161...
server: Original packet: [529] 160301020c020000570301f9efcc2035a66b42e7a3218f8828019ba94ddbfe49...
server: Filtered packet: [417] 160301019c020000570301f9efcc2035a66b42e7a3218f8828019ba94ddbfe49...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipServerKeyExchangeEcdsa/0 (32 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertAndKeyExch/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 02000057030141b8f3d2690ecf8cdb1ba6c8474f78241d83efae18dd4a2c4967...
record new: [265] 02000057030141b8f3d2690ecf8cdb1ba6c8474f78241d83efae18dd4a2c4967...
Dropping handshake: 12
record old: [265] 02000057030141b8f3d2690ecf8cdb1ba6c8474f78241d83efae18dd4a2c4967...
record new: [95] 02000057030141b8f3d2690ecf8cdb1ba6c8474f78241d83efae18dd4a2c4967...
server: Original packet: [712] 16030102c302000057030141b8f3d2690ecf8cdb1ba6c8474f78241d83efae18...
server: Filtered packet: [100] 160301005f02000057030141b8f3d2690ecf8cdb1ba6c8474f78241d83efae18...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertAndKeyExch/0 (49 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertAndKeyExchEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [525] 020000570301085bba7e6605288869fd805f6a6b88e7dc657a2d8613ae6e296b...
record new: [208] 020000570301085bba7e6605288869fd805f6a6b88e7dc657a2d8613ae6e296b...
Dropping handshake: 12
record old: [208] 020000570301085bba7e6605288869fd805f6a6b88e7dc657a2d8613ae6e296b...
record new: [95] 020000570301085bba7e6605288869fd805f6a6b88e7dc657a2d8613ae6e296b...
server: Original packet: [530] 160301020d020000570301085bba7e6605288869fd805f6a6b88e7dc657a2d86...
server: Filtered packet: [100] 160301005f020000570301085bba7e6605288869fd805f6a6b88e7dc657a2d86...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertAndKeyExchEcdsa/0 (32 ms)
[----------] 8 tests from SkipTls10/TlsSkipTest (274 ms total)
[----------] 32 tests from SkipVariants/TlsSkipTest
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 020000510302c06943887c547afcde90bb5c59b12b9f6abc3753a558baa0290a...
record new: [89] 020000510302c06943887c547afcde90bb5c59b12b9f6abc3753a558baa0290a...
server: Original packet: [536] 1603020213020000510302c06943887c547afcde90bb5c59b12b9f6abc3753a5...
server: Filtered packet: [94] 1603020059020000510302c06943887c547afcde90bb5c59b12b9f6abc3753a5...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/0 (25 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 020000510303e004f6af6babd7200e9292e55d49efecf296efd56150532ad94e...
record new: [89] 020000510303e004f6af6babd7200e9292e55d49efecf296efd56150532ad94e...
server: Original packet: [536] 1603030213020000510303e004f6af6babd7200e9292e55d49efecf296efd561...
server: Filtered packet: [94] 1603030059020000510303e004f6af6babd7200e9292e55d49efecf296efd561...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/1 (24 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [594] 16feff0000000000000000005d020000510000000000000051feffbdebcf6b16...
server: Filtered packet: [144] 16feff0000000000000000005d020000510000000000000051feffbdebcf6b16...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/2 (40 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [594] 16fefd0000000000000000005d020000510000000000000051fefd76b043f388...
server: Filtered packet: [144] 16fefd0000000000000000005d020000510000000000000051fefd76b043f388...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/3 (28 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570302b8785e38c402af618a670799f6a04ee25ed487840e4061f5ab3c...
record new: [265] 020000570302b8785e38c402af618a670799f6a04ee25ed487840e4061f5ab3c...
server: Original packet: [712] 16030202c3020000570302b8785e38c402af618a670799f6a04ee25ed487840e...
server: Filtered packet: [270] 1603020109020000570302b8785e38c402af618a670799f6a04ee25ed487840e...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/0 (49 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 020000570303168e4b03601698aa1144a0671026bef09c71edcce89b60b892b1...
record new: [267] 020000570303168e4b03601698aa1144a0671026bef09c71edcce89b60b892b1...
server: Original packet: [714] 16030302c5020000570303168e4b03601698aa1144a0671026bef09c71edcce8...
server: Filtered packet: [272] 160303010b020000570303168e4b03601698aa1144a0671026bef09c71edcce8...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/1 (49 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20273753bef0131327b04f3628668f99a3...
record new: [178] 0c0000a600010000000000a603001d20273753bef0131327b04f3628668f99a3...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feffdff8a8e393...
server: Filtered packet: [341] 16feff00000000000000000063020000570000000000000057feffdff8a8e393...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/2 (50 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20273753bef0131327b04f3628668f99a3...
record new: [180] 0c0000a800010000000000a803001d20273753bef0131327b04f3628668f99a3...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefd4f960ce89f...
server: Filtered packet: [343] 16fefd00000000000000000063020000570000000000000057fefd4f960ce89f...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/3 (50 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570302ad3cc2492640eda79b3d00b49129497a446412bf45af4a6d5ed6...
record new: [265] 020000570302ad3cc2492640eda79b3d00b49129497a446412bf45af4a6d5ed6...
server: Original packet: [712] 16030202c3020000570302ad3cc2492640eda79b3d00b49129497a446412bf45...
server: Filtered packet: [270] 1603020109020000570302ad3cc2492640eda79b3d00b49129497a446412bf45...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/0 (49 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 020000570303df2915687ca14e30f985d58f629fd5238469104a88596f951c9a...
record new: [267] 020000570303df2915687ca14e30f985d58f629fd5238469104a88596f951c9a...
server: Original packet: [714] 16030302c5020000570303df2915687ca14e30f985d58f629fd5238469104a88...
server: Filtered packet: [272] 160303010b020000570303df2915687ca14e30f985d58f629fd5238469104a88...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/1 (49 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20273753bef0131327b04f3628668f99a3...
record new: [178] 0c0000a600010000000000a603001d20273753bef0131327b04f3628668f99a3...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff8ca14dbdab...
server: Filtered packet: [341] 16feff00000000000000000063020000570000000000000057feff8ca14dbdab...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/2 (48 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20273753bef0131327b04f3628668f99a3...
record new: [180] 0c0000a800010000000000a803001d20273753bef0131327b04f3628668f99a3...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefdbfad32bafc...
server: Filtered packet: [343] 16fefd00000000000000000063020000570000000000000057fefdbfad32bafc...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/3 (49 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [526] 020000570302e9b6e4b78fd3028b1858e56f44ef67f516066f970cc4ef09c5fc...
record new: [209] 020000570302e9b6e4b78fd3028b1858e56f44ef67f516066f970cc4ef09c5fc...
server: Original packet: [531] 160302020e020000570302e9b6e4b78fd3028b1858e56f44ef67f516066f970c...
server: Filtered packet: [214] 16030200d1020000570302e9b6e4b78fd3028b1858e56f44ef67f516066f970c...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/0 (23 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [528] 0200005703038405713de4e9bb1f5da929f6badd9cca28089e5728f927941ead...
record new: [211] 0200005703038405713de4e9bb1f5da929f6badd9cca28089e5728f927941ead...
server: Original packet: [533] 16030302100200005703038405713de4e9bb1f5da929f6badd9cca28089e5728...
server: Filtered packet: [216] 16030300d30200005703038405713de4e9bb1f5da929f6badd9cca28089e5728...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/1 (31 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [325] 0b00013900010000000001390001360001333082012f3081d5a0030201020201...
record new: [0] 
record old: [122] 0c00006e000200000000006e03001d20273753bef0131327b04f3628668f99a3...
record new: [122] 0c00006e000100000000006e03001d20273753bef0131327b04f3628668f99a3...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [610] 16feff00000000000000000063020000570000000000000057feff302455abb0...
server: Filtered packet: [285] 16feff00000000000000000063020000570000000000000057feff302455abb0...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/2 (21 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [325] 0b00013900010000000001390001360001333082012f3081d5a0030201020201...
record new: [0] 
record old: [123] 0c00006f000200000000006f03001d20273753bef0131327b04f3628668f99a3...
record new: [123] 0c00006f000100000000006f03001d20273753bef0131327b04f3628668f99a3...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [611] 16fefd00000000000000000063020000570000000000000057fefda4c051ed2b...
server: Filtered packet: [286] 16fefd00000000000000000063020000570000000000000057fefda4c051ed2b...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/3 (17 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [707] 020000570302b275adf60e5ed8dd144df4116330446da05ff2918d8da45310fb...
record new: [537] 020000570302b275adf60e5ed8dd144df4116330446da05ff2918d8da45310fb...
server: Original packet: [712] 16030202c3020000570302b275adf60e5ed8dd144df4116330446da05ff2918d...
server: Filtered packet: [542] 1603020219020000570302b275adf60e5ed8dd144df4116330446da05ff2918d...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/0 (38 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [709] 02000057030370357baa33db896f42cd952a755f5818f172be60c5696e91f049...
record new: [537] 02000057030370357baa33db896f42cd952a755f5818f172be60c5696e91f049...
server: Original packet: [714] 16030302c502000057030370357baa33db896f42cd952a755f5818f172be60c5...
server: Filtered packet: [542] 160303021902000057030370357baa33db896f42cd952a755f5818f172be60c5...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/1 (47 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [178] 0c0000a600020000000000a603001d20273753bef0131327b04f3628668f99a3...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff3e62423b98...
server: Filtered packet: [613] 16feff00000000000000000063020000570000000000000057feff3e62423b98...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/2 (47 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [180] 0c0000a800020000000000a803001d20273753bef0131327b04f3628668f99a3...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefd0f89af5949...
server: Filtered packet: [613] 16fefd00000000000000000063020000570000000000000057fefd0f89af5949...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/3 (48 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [526] 020000570302553e72b87bf5ebafc73fe8ffd350787f4efe1d72649ff902ee94...
record new: [412] 020000570302553e72b87bf5ebafc73fe8ffd350787f4efe1d72649ff902ee94...
server: Original packet: [531] 160302020e020000570302553e72b87bf5ebafc73fe8ffd350787f4efe1d7264...
server: Filtered packet: [417] 160302019c020000570302553e72b87bf5ebafc73fe8ffd350787f4efe1d7264...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/0 (31 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [527] 02000057030355db5f2c90db6356bc55b520248e68c699c90dbfb237ae9725c4...
record new: [412] 02000057030355db5f2c90db6356bc55b520248e68c699c90dbfb237ae9725c4...
server: Original packet: [532] 160303020f02000057030355db5f2c90db6356bc55b520248e68c699c90dbfb2...
server: Filtered packet: [417] 160303019c02000057030355db5f2c90db6356bc55b520248e68c699c90dbfb2...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/1 (30 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [121] 0c00006d000200000000006d03001d20273753bef0131327b04f3628668f99a3...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [609] 16feff00000000000000000063020000570000000000000057feff258058fa2e...
server: Filtered packet: [488] 16feff00000000000000000063020000570000000000000057feff258058fa2e...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/2 (31 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [122] 0c00006e000200000000006e03001d20273753bef0131327b04f3628668f99a3...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [610] 16fefd00000000000000000063020000570000000000000057fefd22ab3a6727...
server: Filtered packet: [488] 16fefd00000000000000000063020000570000000000000057fefd22ab3a6727...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/3 (30 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570302e0c9780919b02457277a35904bb621ad40a34b32ed2ad124022d...
record new: [265] 020000570302e0c9780919b02457277a35904bb621ad40a34b32ed2ad124022d...
Dropping handshake: 12
record old: [265] 020000570302e0c9780919b02457277a35904bb621ad40a34b32ed2ad124022d...
record new: [95] 020000570302e0c9780919b02457277a35904bb621ad40a34b32ed2ad124022d...
server: Original packet: [712] 16030202c3020000570302e0c9780919b02457277a35904bb621ad40a34b32ed...
server: Filtered packet: [100] 160302005f020000570302e0c9780919b02457277a35904bb621ad40a34b32ed...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/0 (35 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 020000570303777f464d89833fe49dc3a56dd318f571397eddd4d4568d51251b...
record new: [267] 020000570303777f464d89833fe49dc3a56dd318f571397eddd4d4568d51251b...
Dropping handshake: 12
record old: [267] 020000570303777f464d89833fe49dc3a56dd318f571397eddd4d4568d51251b...
record new: [95] 020000570303777f464d89833fe49dc3a56dd318f571397eddd4d4568d51251b...
server: Original packet: [714] 16030302c5020000570303777f464d89833fe49dc3a56dd318f571397eddd4d4...
server: Filtered packet: [100] 160303005f020000570303777f464d89833fe49dc3a56dd318f571397eddd4d4...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/1 (34 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20273753bef0131327b04f3628668f99a3...
record new: [178] 0c0000a600010000000000a603001d20273753bef0131327b04f3628668f99a3...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [178] 0c0000a600010000000000a603001d20273753bef0131327b04f3628668f99a3...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff043a283771...
server: Filtered packet: [163] 16feff00000000000000000063020000570000000000000057feff043a283771...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/2 (35 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20273753bef0131327b04f3628668f99a3...
record new: [180] 0c0000a800010000000000a803001d20273753bef0131327b04f3628668f99a3...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [180] 0c0000a800010000000000a803001d20273753bef0131327b04f3628668f99a3...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefd68ff14d1f4...
server: Filtered packet: [163] 16fefd00000000000000000063020000570000000000000057fefd68ff14d1f4...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/3 (37 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [526] 020000570302a283a3166d3f4bea7f14b0357a5ffab3b644122b72c231199616...
record new: [209] 020000570302a283a3166d3f4bea7f14b0357a5ffab3b644122b72c231199616...
Dropping handshake: 12
record old: [209] 020000570302a283a3166d3f4bea7f14b0357a5ffab3b644122b72c231199616...
record new: [95] 020000570302a283a3166d3f4bea7f14b0357a5ffab3b644122b72c231199616...
server: Original packet: [531] 160302020e020000570302a283a3166d3f4bea7f14b0357a5ffab3b644122b72...
server: Filtered packet: [100] 160302005f020000570302a283a3166d3f4bea7f14b0357a5ffab3b644122b72...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/0 (17 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [528] 020000570303e05b2e9f34171b92536146412018abb7f7cd7951ecd949166081...
record new: [211] 020000570303e05b2e9f34171b92536146412018abb7f7cd7951ecd949166081...
Dropping handshake: 12
record old: [211] 020000570303e05b2e9f34171b92536146412018abb7f7cd7951ecd949166081...
record new: [95] 020000570303e05b2e9f34171b92536146412018abb7f7cd7951ecd949166081...
server: Original packet: [533] 1603030210020000570303e05b2e9f34171b92536146412018abb7f7cd7951ec...
server: Filtered packet: [100] 160303005f020000570303e05b2e9f34171b92536146412018abb7f7cd7951ec...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/1 (17 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [325] 0b00013900010000000001390001360001333082012f3081d5a0030201020201...
record new: [0] 
record old: [121] 0c00006d000200000000006d03001d20273753bef0131327b04f3628668f99a3...
record new: [121] 0c00006d000100000000006d03001d20273753bef0131327b04f3628668f99a3...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [121] 0c00006d000100000000006d03001d20273753bef0131327b04f3628668f99a3...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [609] 16feff00000000000000000063020000570000000000000057fefff719eba688...
server: Filtered packet: [163] 16feff00000000000000000063020000570000000000000057fefff719eba688...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/2 (18 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [325] 0b00013900010000000001390001360001333082012f3081d5a0030201020201...
record new: [0] 
record old: [123] 0c00006f000200000000006f03001d20273753bef0131327b04f3628668f99a3...
record new: [123] 0c00006f000100000000006f03001d20273753bef0131327b04f3628668f99a3...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [123] 0c00006f000100000000006f03001d20273753bef0131327b04f3628668f99a3...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [611] 16fefd00000000000000000063020000570000000000000057fefd119b1755f3...
server: Filtered packet: [163] 16fefd00000000000000000063020000570000000000000057fefd119b1755f3...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/3 (18 ms)
[----------] 32 tests from SkipVariants/TlsSkipTest (1121 ms total)
[----------] 10 tests from AllHashFuncs/TlsHkdfTest
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/0
Hash = SHA-256
Output: [32] 33ad0a1c607ec03b09e6cd9893680ce210adf300aa1f2660e1b22e10f170f92a
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/0 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/1
Hash = SHA-384
Output: [48] 7ee8206f5570023e6dc7519eb1073bc4e791ad37b5c382aa10ba18e2357e7169...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/1 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/0
Hash = SHA-256
Output: [32] 11873828a9197811339124b58a1bb09f7f0d8dbb10f49c54bd1fd885cd153033
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/0 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/1
Hash = SHA-384
Output: [48] 51b1d5b4597979084a15b2db84d3d6bcfc9345d9dc74da1a57c2769f3f83452f...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/1 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/0
Hash = SHA-256
Output: [32] 2f5f78d0a4c436ee6c8a4ef9d043810213fd4783633ad2e1406d2d9800fdc187
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/1
Hash = SHA-384
Output: [48] 7b40f9ef91ffc9d129245cbff8827668ae4b63e803dd39a8d46af6e5eceaf87d...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/1 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/0
Hash = SHA-256
Output: [32] 7953b8dd6b98ce00b7dce803708ce3ac068b22fd0e3448e6e5e08ad61618e548
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/0 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/1
Hash = SHA-384
Output: [48] 0193c0073f6a830e2e4fb258e400085c689c37320037ffc31c5b980b02923ffd...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/1 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/0
Hash = SHA-256
Output: [32] 347c6780ff0bbad71c283b16eb2f9cf62d24e6cdb613d51776548cb07dcde74c
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/1
Hash = SHA-384
Output: [48] 4b1e5ec1493078ea35bd3f0104e61aea14cc182ad1c47621c464c04e4b361605...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/1 (1 ms)
[----------] 10 tests from AllHashFuncs/TlsHkdfTest (8 ms total)
[----------] Global test environment tear-down
[==========] 816 tests from 15 test cases ran. (66844 ms total)
[  PASSED  ] 816 tests.
ssl_gtest.sh: #4343: ssl_gtest run successfully  - PASSED
executing sed to parse the xml report
processing the parsed report
ssl_gtest.sh: #4344: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4345: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4346: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4347: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4348: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4349: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4350: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4351: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4352: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4353: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4354: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4355: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4356: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4357: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4358: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4359: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4360: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4361: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4362: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4363: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4364: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4365: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4366: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4367: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4368: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4369: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4370: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4371: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4372: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4373: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4374: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4375: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4376: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4377: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4378: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4379: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4380: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4381: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4382: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4383: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4384: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4385: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4386: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4387: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4388: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4389: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4390: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4391: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4392: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4393: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4394: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4395: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4396: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4397: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4398: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4399: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #4400: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #4401: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #4402: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #4403: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #4404: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #4405: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #4406: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #4407: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #4408: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #4409: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #4410: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #4411: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #4412: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #4413: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #4414: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #4415: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #4416: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #4417: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #4418: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #4419: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #4420: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #4421: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #4422: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #4423: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #4424: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #4425: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #4426: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #4427: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #4428: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #4429: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #4430: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #4431: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #4432: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #4433: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #4434: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #4435: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #4436: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #4437: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #4438: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #4439: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #4440: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #4441: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #4442: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #4443: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #4444: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #4445: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #4446: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #4447: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #4448: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #4449: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #4450: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #4451: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #4452: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #4453: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #4454: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #4455: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #4456: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #4457: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #4458: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #4459: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #4460: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #4461: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #4462: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #4463: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #4464: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #4465: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #4466: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #4467: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #4468: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #4469: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #4470: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #4471: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #4472: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #4473: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #4474: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #4475: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #4476: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #4477: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #4478: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #4479: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #4480: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #4481: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #4482: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #4483: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #4484: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #4485: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #4486: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #4487: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #4488: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #4489: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #4490: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #4491: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #4492: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #4493: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #4494: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #4495: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #4496: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #4497: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #4498: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #4499: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #4500: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #4501: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #4502: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #4503: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #4504: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #4505: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #4506: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #4507: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #4508: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #4509: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #4510: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #4511: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #4512: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #4513: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #4514: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #4515: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #4516: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #4517: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #4518: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #4519: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #4520: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #4521: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #4522: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #4523: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #4524: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #4525: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #4526: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #4527: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #4528: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #4529: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #4530: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #4531: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #4532: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #4533: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #4534: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #4535: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #4536: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #4537: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #4538: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #4539: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #4540: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #4541: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #4542: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #4543: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #4544: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #4545: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #4546: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #4547: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #4548: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #4549: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #4550: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #4551: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #4552: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #4553: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #4554: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #4555: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #4556: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #4557: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #4558: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #4559: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #4560: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #4561: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #4562: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #4563: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #4564: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #4565: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #4566: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #4567: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #4568: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #4569: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #4570: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #4571: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #4572: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #4573: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #4574: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #4575: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #4576: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #4577: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #4578: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #4579: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #4580: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #4581: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #4582: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #4583: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #4584: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #4585: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #4586: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #4587: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #4588: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4589: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4590: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4591: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4592: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4593: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4594: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4595: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4596: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4597: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4598: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4599: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4600: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4601: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4602: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4603: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4604: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4605: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4606: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4607: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4608: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4609: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4610: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4611: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4612: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4613: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4614: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4615: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4616: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4617: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4618: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4619: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4620: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4621: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4622: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4623: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4624: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4625: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4626: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4627: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4628: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4629: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4630: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4631: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4632: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4633: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4634: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4635: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4636: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4637: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4638: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4639: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4640: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4641: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4642: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4643: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4644: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4645: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4646: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4647: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4648: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4649: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4650: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4651: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4652: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4653: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4654: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4655: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4656: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4657: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4658: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4659: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4660: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4661: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4662: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4663: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4664: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4665: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4666: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4667: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4668: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4669: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4670: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4671: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4672: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4673: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4674: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4675: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4676: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4677: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4678: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4679: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4680: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4681: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4682: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4683: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4684: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4685: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4686: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4687: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4688: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4689: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4690: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4691: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4692: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4693: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4694: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4695: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4696: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4697: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4698: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4699: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4700: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4701: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4702: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4703: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4704: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4705: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4706: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4707: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4708: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4709: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4710: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4711: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4712: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4713: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4714: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4715: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4716: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4717: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4718: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4719: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4720: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4721: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4722: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4723: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4724: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4725: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4726: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4727: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4728: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4729: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4730: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4731: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4732: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4733: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4734: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4735: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4736: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4737: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4738: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4739: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4740: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4741: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4742: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4743: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4744: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4745: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4746: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4747: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4748: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4749: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4750: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4751: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4752: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4753: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4754: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4755: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4756: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4757: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4758: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4759: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4760: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4761: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4762: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4763: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4764: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #4765: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4766: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4767: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4768: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #4769: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4770: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4771: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4772: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #4773: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4774: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4775: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4776: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #4777: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4778: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4779: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4780: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4781: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4782: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4783: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4784: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4785: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4786: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4787: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4788: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4789: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4790: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4791: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4792: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4793: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4794: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4795: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4796: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4797: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4798: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4799: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4800: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4801: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4802: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4803: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4804: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4805: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4806: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4807: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4808: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4809: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4810: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4811: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4812: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4813: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4814: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4815: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4816: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4817: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4818: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4819: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4820: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4821: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4822: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4823: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4824: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4825: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4826: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4827: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4828: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4829: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4830: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4831: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4832: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4833: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4834: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4835: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4836: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4837: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4838: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4839: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4840: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4841: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4842: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4843: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4844: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4845: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4846: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4847: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4848: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4849: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4850: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4851: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4852: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4853: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4854: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4855: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4856: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4857: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4858: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4859: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4860: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4861: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4862: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4863: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4864: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #4865: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #4866: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #4867: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #4868: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #4869: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #4870: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #4871: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #4872: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #4873: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #4874: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #4875: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #4876: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/0 TLS 1.0, TLS_ECDHE_RSA_WITH_NULL_SHA, name = &quot;NULL&quot;, key size = 0' - PASSED
ssl_gtest.sh: #4877: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/1 TLS 1.0, TLS_RSA_WITH_RC4_128_SHA, name = &quot;RC4&quot;, key size = 128' - PASSED
ssl_gtest.sh: #4878: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/2 TLS 1.0, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, name = &quot;3DES-EDE-CBC&quot;, key size = 168' - PASSED
ssl_gtest.sh: #4879: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/3 TLS 1.0, TLS_RSA_WITH_AES_128_CBC_SHA, name = &quot;AES-128&quot;, key size = 128' - PASSED
ssl_gtest.sh: #4880: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/4 TLS 1.2, TLS_RSA_WITH_AES_256_CBC_SHA256, name = &quot;AES-256&quot;, key size = 256' - PASSED
ssl_gtest.sh: #4881: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/5 TLS 1.2, TLS_RSA_WITH_AES_128_GCM_SHA256, name = &quot;AES-128-GCM&quot;, key size = 128' - PASSED
ssl_gtest.sh: #4882: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/6 TLS 1.2, TLS_RSA_WITH_AES_256_GCM_SHA384, name = &quot;AES-256-GCM&quot;, key size = 256' - PASSED
ssl_gtest.sh: #4883: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/7 TLS 1.2, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256, name = &quot;ChaCha20-Poly1305&quot;, key size = 256' - PASSED
ssl_gtest.sh: #4884: 'DamageYStream/TlsDamageDHYTest: DamageServerY/0 (&quot;TLS&quot;, 769, 0, true)' - PASSED
ssl_gtest.sh: #4885: 'DamageYStream/TlsDamageDHYTest: DamageServerY/1 (&quot;TLS&quot;, 769, 0, false)' - PASSED
ssl_gtest.sh: #4886: 'DamageYStream/TlsDamageDHYTest: DamageServerY/2 (&quot;TLS&quot;, 769, 1, true)' - PASSED
ssl_gtest.sh: #4887: 'DamageYStream/TlsDamageDHYTest: DamageServerY/3 (&quot;TLS&quot;, 769, 1, false)' - PASSED
ssl_gtest.sh: #4888: 'DamageYStream/TlsDamageDHYTest: DamageServerY/4 (&quot;TLS&quot;, 769, 2, true)' - PASSED
ssl_gtest.sh: #4889: 'DamageYStream/TlsDamageDHYTest: DamageServerY/5 (&quot;TLS&quot;, 769, 2, false)' - PASSED
ssl_gtest.sh: #4890: 'DamageYStream/TlsDamageDHYTest: DamageServerY/6 (&quot;TLS&quot;, 769, 3, true)' - PASSED
ssl_gtest.sh: #4891: 'DamageYStream/TlsDamageDHYTest: DamageServerY/7 (&quot;TLS&quot;, 769, 3, false)' - PASSED
ssl_gtest.sh: #4892: 'DamageYStream/TlsDamageDHYTest: DamageServerY/8 (&quot;TLS&quot;, 769, 4, true)' - PASSED
ssl_gtest.sh: #4893: 'DamageYStream/TlsDamageDHYTest: DamageServerY/9 (&quot;TLS&quot;, 769, 4, false)' - PASSED
ssl_gtest.sh: #4894: 'DamageYStream/TlsDamageDHYTest: DamageServerY/10 (&quot;TLS&quot;, 769, 5, true)' - PASSED
ssl_gtest.sh: #4895: 'DamageYStream/TlsDamageDHYTest: DamageServerY/11 (&quot;TLS&quot;, 769, 5, false)' - PASSED
ssl_gtest.sh: #4896: 'DamageYStream/TlsDamageDHYTest: DamageServerY/12 (&quot;TLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #4897: 'DamageYStream/TlsDamageDHYTest: DamageServerY/13 (&quot;TLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #4898: 'DamageYStream/TlsDamageDHYTest: DamageServerY/14 (&quot;TLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #4899: 'DamageYStream/TlsDamageDHYTest: DamageServerY/15 (&quot;TLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #4900: 'DamageYStream/TlsDamageDHYTest: DamageServerY/16 (&quot;TLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #4901: 'DamageYStream/TlsDamageDHYTest: DamageServerY/17 (&quot;TLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #4902: 'DamageYStream/TlsDamageDHYTest: DamageServerY/18 (&quot;TLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #4903: 'DamageYStream/TlsDamageDHYTest: DamageServerY/19 (&quot;TLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #4904: 'DamageYStream/TlsDamageDHYTest: DamageServerY/20 (&quot;TLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #4905: 'DamageYStream/TlsDamageDHYTest: DamageServerY/21 (&quot;TLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #4906: 'DamageYStream/TlsDamageDHYTest: DamageServerY/22 (&quot;TLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #4907: 'DamageYStream/TlsDamageDHYTest: DamageServerY/23 (&quot;TLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #4908: 'DamageYStream/TlsDamageDHYTest: DamageServerY/24 (&quot;TLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #4909: 'DamageYStream/TlsDamageDHYTest: DamageServerY/25 (&quot;TLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #4910: 'DamageYStream/TlsDamageDHYTest: DamageServerY/26 (&quot;TLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #4911: 'DamageYStream/TlsDamageDHYTest: DamageServerY/27 (&quot;TLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #4912: 'DamageYStream/TlsDamageDHYTest: DamageServerY/28 (&quot;TLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #4913: 'DamageYStream/TlsDamageDHYTest: DamageServerY/29 (&quot;TLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #4914: 'DamageYStream/TlsDamageDHYTest: DamageServerY/30 (&quot;TLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #4915: 'DamageYStream/TlsDamageDHYTest: DamageServerY/31 (&quot;TLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #4916: 'DamageYStream/TlsDamageDHYTest: DamageServerY/32 (&quot;TLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #4917: 'DamageYStream/TlsDamageDHYTest: DamageServerY/33 (&quot;TLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #4918: 'DamageYStream/TlsDamageDHYTest: DamageServerY/34 (&quot;TLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #4919: 'DamageYStream/TlsDamageDHYTest: DamageServerY/35 (&quot;TLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #4920: 'DamageYStream/TlsDamageDHYTest: DamageClientY/0 (&quot;TLS&quot;, 769, 0, true)' - PASSED
ssl_gtest.sh: #4921: 'DamageYStream/TlsDamageDHYTest: DamageClientY/1 (&quot;TLS&quot;, 769, 0, false)' - PASSED
ssl_gtest.sh: #4922: 'DamageYStream/TlsDamageDHYTest: DamageClientY/2 (&quot;TLS&quot;, 769, 1, true)' - PASSED
ssl_gtest.sh: #4923: 'DamageYStream/TlsDamageDHYTest: DamageClientY/3 (&quot;TLS&quot;, 769, 1, false)' - PASSED
ssl_gtest.sh: #4924: 'DamageYStream/TlsDamageDHYTest: DamageClientY/4 (&quot;TLS&quot;, 769, 2, true)' - PASSED
ssl_gtest.sh: #4925: 'DamageYStream/TlsDamageDHYTest: DamageClientY/5 (&quot;TLS&quot;, 769, 2, false)' - PASSED
ssl_gtest.sh: #4926: 'DamageYStream/TlsDamageDHYTest: DamageClientY/6 (&quot;TLS&quot;, 769, 3, true)' - PASSED
ssl_gtest.sh: #4927: 'DamageYStream/TlsDamageDHYTest: DamageClientY/7 (&quot;TLS&quot;, 769, 3, false)' - PASSED
ssl_gtest.sh: #4928: 'DamageYStream/TlsDamageDHYTest: DamageClientY/8 (&quot;TLS&quot;, 769, 4, true)' - PASSED
ssl_gtest.sh: #4929: 'DamageYStream/TlsDamageDHYTest: DamageClientY/9 (&quot;TLS&quot;, 769, 4, false)' - PASSED
ssl_gtest.sh: #4930: 'DamageYStream/TlsDamageDHYTest: DamageClientY/10 (&quot;TLS&quot;, 769, 5, true)' - PASSED
ssl_gtest.sh: #4931: 'DamageYStream/TlsDamageDHYTest: DamageClientY/11 (&quot;TLS&quot;, 769, 5, false)' - PASSED
ssl_gtest.sh: #4932: 'DamageYStream/TlsDamageDHYTest: DamageClientY/12 (&quot;TLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #4933: 'DamageYStream/TlsDamageDHYTest: DamageClientY/13 (&quot;TLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #4934: 'DamageYStream/TlsDamageDHYTest: DamageClientY/14 (&quot;TLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #4935: 'DamageYStream/TlsDamageDHYTest: DamageClientY/15 (&quot;TLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #4936: 'DamageYStream/TlsDamageDHYTest: DamageClientY/16 (&quot;TLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #4937: 'DamageYStream/TlsDamageDHYTest: DamageClientY/17 (&quot;TLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #4938: 'DamageYStream/TlsDamageDHYTest: DamageClientY/18 (&quot;TLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #4939: 'DamageYStream/TlsDamageDHYTest: DamageClientY/19 (&quot;TLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #4940: 'DamageYStream/TlsDamageDHYTest: DamageClientY/20 (&quot;TLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #4941: 'DamageYStream/TlsDamageDHYTest: DamageClientY/21 (&quot;TLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #4942: 'DamageYStream/TlsDamageDHYTest: DamageClientY/22 (&quot;TLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #4943: 'DamageYStream/TlsDamageDHYTest: DamageClientY/23 (&quot;TLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #4944: 'DamageYStream/TlsDamageDHYTest: DamageClientY/24 (&quot;TLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #4945: 'DamageYStream/TlsDamageDHYTest: DamageClientY/25 (&quot;TLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #4946: 'DamageYStream/TlsDamageDHYTest: DamageClientY/26 (&quot;TLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #4947: 'DamageYStream/TlsDamageDHYTest: DamageClientY/27 (&quot;TLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #4948: 'DamageYStream/TlsDamageDHYTest: DamageClientY/28 (&quot;TLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #4949: 'DamageYStream/TlsDamageDHYTest: DamageClientY/29 (&quot;TLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #4950: 'DamageYStream/TlsDamageDHYTest: DamageClientY/30 (&quot;TLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #4951: 'DamageYStream/TlsDamageDHYTest: DamageClientY/31 (&quot;TLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #4952: 'DamageYStream/TlsDamageDHYTest: DamageClientY/32 (&quot;TLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #4953: 'DamageYStream/TlsDamageDHYTest: DamageClientY/33 (&quot;TLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #4954: 'DamageYStream/TlsDamageDHYTest: DamageClientY/34 (&quot;TLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #4955: 'DamageYStream/TlsDamageDHYTest: DamageClientY/35 (&quot;TLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #4956: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/0 (&quot;DTLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #4957: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/1 (&quot;DTLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #4958: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/2 (&quot;DTLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #4959: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/3 (&quot;DTLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #4960: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/4 (&quot;DTLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #4961: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/5 (&quot;DTLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #4962: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/6 (&quot;DTLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #4963: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/7 (&quot;DTLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #4964: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/8 (&quot;DTLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #4965: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/9 (&quot;DTLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #4966: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/10 (&quot;DTLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #4967: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/11 (&quot;DTLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #4968: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/12 (&quot;DTLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #4969: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/13 (&quot;DTLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #4970: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/14 (&quot;DTLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #4971: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/15 (&quot;DTLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #4972: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/16 (&quot;DTLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #4973: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/17 (&quot;DTLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #4974: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/18 (&quot;DTLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #4975: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/19 (&quot;DTLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #4976: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/20 (&quot;DTLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #4977: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/21 (&quot;DTLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #4978: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/22 (&quot;DTLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #4979: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/23 (&quot;DTLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #4980: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/0 (&quot;DTLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #4981: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/1 (&quot;DTLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #4982: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/2 (&quot;DTLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #4983: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/3 (&quot;DTLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #4984: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/4 (&quot;DTLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #4985: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/5 (&quot;DTLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #4986: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/6 (&quot;DTLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #4987: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/7 (&quot;DTLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #4988: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/8 (&quot;DTLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #4989: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/9 (&quot;DTLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #4990: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/10 (&quot;DTLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #4991: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/11 (&quot;DTLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #4992: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/12 (&quot;DTLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #4993: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/13 (&quot;DTLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #4994: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/14 (&quot;DTLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #4995: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/15 (&quot;DTLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #4996: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/16 (&quot;DTLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #4997: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/17 (&quot;DTLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #4998: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/18 (&quot;DTLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #4999: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/19 (&quot;DTLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #5000: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/20 (&quot;DTLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #5001: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/21 (&quot;DTLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #5002: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/22 (&quot;DTLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #5003: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/23 (&quot;DTLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #5004: 'Datagram12Plus/TlsConnectDatagram12Plus: MissAWindow/0 771' - PASSED
ssl_gtest.sh: #5005: 'Datagram12Plus/TlsConnectDatagram12Plus: MissAWindowAndOne/0 771' - PASSED
ssl_gtest.sh: #5006: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5007: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5008: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5009: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5010: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5011: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5012: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5013: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5014: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5015: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5016: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5017: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5018: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5019: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5020: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5021: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5022: 'TlsPadding/TlsPaddingTest: Correct/0 (1, true)' - PASSED
ssl_gtest.sh: #5023: 'TlsPadding/TlsPaddingTest: Correct/1 (1, false)' - PASSED
ssl_gtest.sh: #5024: 'TlsPadding/TlsPaddingTest: Correct/2 (19, true)' - PASSED
ssl_gtest.sh: #5025: 'TlsPadding/TlsPaddingTest: Correct/3 (19, false)' - PASSED
ssl_gtest.sh: #5026: 'TlsPadding/TlsPaddingTest: Correct/4 (20, true)' - PASSED
ssl_gtest.sh: #5027: 'TlsPadding/TlsPaddingTest: Correct/5 (20, false)' - PASSED
ssl_gtest.sh: #5028: 'TlsPadding/TlsPaddingTest: Correct/6 (30, true)' - PASSED
ssl_gtest.sh: #5029: 'TlsPadding/TlsPaddingTest: Correct/7 (30, false)' - PASSED
ssl_gtest.sh: #5030: 'TlsPadding/TlsPaddingTest: Correct/8 (31, true)' - PASSED
ssl_gtest.sh: #5031: 'TlsPadding/TlsPaddingTest: Correct/9 (31, false)' - PASSED
ssl_gtest.sh: #5032: 'TlsPadding/TlsPaddingTest: Correct/10 (32, true)' - PASSED
ssl_gtest.sh: #5033: 'TlsPadding/TlsPaddingTest: Correct/11 (32, false)' - PASSED
ssl_gtest.sh: #5034: 'TlsPadding/TlsPaddingTest: Correct/12 (36, true)' - PASSED
ssl_gtest.sh: #5035: 'TlsPadding/TlsPaddingTest: Correct/13 (36, false)' - PASSED
ssl_gtest.sh: #5036: 'TlsPadding/TlsPaddingTest: Correct/14 (256, true)' - PASSED
ssl_gtest.sh: #5037: 'TlsPadding/TlsPaddingTest: Correct/15 (256, false)' - PASSED
ssl_gtest.sh: #5038: 'TlsPadding/TlsPaddingTest: Correct/16 (257, true)' - PASSED
ssl_gtest.sh: #5039: 'TlsPadding/TlsPaddingTest: Correct/17 (257, false)' - PASSED
ssl_gtest.sh: #5040: 'TlsPadding/TlsPaddingTest: Correct/18 (287, true)' - PASSED
ssl_gtest.sh: #5041: 'TlsPadding/TlsPaddingTest: Correct/19 (287, false)' - PASSED
ssl_gtest.sh: #5042: 'TlsPadding/TlsPaddingTest: Correct/20 (288, true)' - PASSED
ssl_gtest.sh: #5043: 'TlsPadding/TlsPaddingTest: Correct/21 (288, false)' - PASSED
ssl_gtest.sh: #5044: 'TlsPadding/TlsPaddingTest: PadTooLong/0 (1, true)' - PASSED
ssl_gtest.sh: #5045: 'TlsPadding/TlsPaddingTest: PadTooLong/1 (1, false)' - PASSED
ssl_gtest.sh: #5046: 'TlsPadding/TlsPaddingTest: PadTooLong/2 (19, true)' - PASSED
ssl_gtest.sh: #5047: 'TlsPadding/TlsPaddingTest: PadTooLong/3 (19, false)' - PASSED
ssl_gtest.sh: #5048: 'TlsPadding/TlsPaddingTest: PadTooLong/4 (20, true)' - PASSED
ssl_gtest.sh: #5049: 'TlsPadding/TlsPaddingTest: PadTooLong/5 (20, false)' - PASSED
ssl_gtest.sh: #5050: 'TlsPadding/TlsPaddingTest: PadTooLong/6 (30, true)' - PASSED
ssl_gtest.sh: #5051: 'TlsPadding/TlsPaddingTest: PadTooLong/7 (30, false)' - PASSED
ssl_gtest.sh: #5052: 'TlsPadding/TlsPaddingTest: PadTooLong/8 (31, true)' - PASSED
ssl_gtest.sh: #5053: 'TlsPadding/TlsPaddingTest: PadTooLong/9 (31, false)' - PASSED
ssl_gtest.sh: #5054: 'TlsPadding/TlsPaddingTest: PadTooLong/10 (32, true)' - PASSED
ssl_gtest.sh: #5055: 'TlsPadding/TlsPaddingTest: PadTooLong/11 (32, false)' - PASSED
ssl_gtest.sh: #5056: 'TlsPadding/TlsPaddingTest: PadTooLong/12 (36, true)' - PASSED
ssl_gtest.sh: #5057: 'TlsPadding/TlsPaddingTest: PadTooLong/13 (36, false)' - PASSED
ssl_gtest.sh: #5058: 'TlsPadding/TlsPaddingTest: PadTooLong/14 (256, true)' - PASSED
ssl_gtest.sh: #5059: 'TlsPadding/TlsPaddingTest: PadTooLong/15 (256, false)' - PASSED
ssl_gtest.sh: #5060: 'TlsPadding/TlsPaddingTest: PadTooLong/16 (257, true)' - PASSED
ssl_gtest.sh: #5061: 'TlsPadding/TlsPaddingTest: PadTooLong/17 (257, false)' - PASSED
ssl_gtest.sh: #5062: 'TlsPadding/TlsPaddingTest: PadTooLong/18 (287, true)' - PASSED
ssl_gtest.sh: #5063: 'TlsPadding/TlsPaddingTest: PadTooLong/19 (287, false)' - PASSED
ssl_gtest.sh: #5064: 'TlsPadding/TlsPaddingTest: PadTooLong/20 (288, true)' - PASSED
ssl_gtest.sh: #5065: 'TlsPadding/TlsPaddingTest: PadTooLong/21 (288, false)' - PASSED
ssl_gtest.sh: #5066: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/0 (1, true)' - PASSED
ssl_gtest.sh: #5067: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/1 (1, false)' - PASSED
ssl_gtest.sh: #5068: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/2 (19, true)' - PASSED
ssl_gtest.sh: #5069: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/3 (19, false)' - PASSED
ssl_gtest.sh: #5070: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/4 (20, true)' - PASSED
ssl_gtest.sh: #5071: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/5 (20, false)' - PASSED
ssl_gtest.sh: #5072: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/6 (30, true)' - PASSED
ssl_gtest.sh: #5073: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/7 (30, false)' - PASSED
ssl_gtest.sh: #5074: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/8 (31, true)' - PASSED
ssl_gtest.sh: #5075: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/9 (31, false)' - PASSED
ssl_gtest.sh: #5076: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/10 (32, true)' - PASSED
ssl_gtest.sh: #5077: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/11 (32, false)' - PASSED
ssl_gtest.sh: #5078: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/12 (36, true)' - PASSED
ssl_gtest.sh: #5079: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/13 (36, false)' - PASSED
ssl_gtest.sh: #5080: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/14 (256, true)' - PASSED
ssl_gtest.sh: #5081: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/15 (256, false)' - PASSED
ssl_gtest.sh: #5082: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/16 (257, true)' - PASSED
ssl_gtest.sh: #5083: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/17 (257, false)' - PASSED
ssl_gtest.sh: #5084: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/18 (287, true)' - PASSED
ssl_gtest.sh: #5085: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/19 (287, false)' - PASSED
ssl_gtest.sh: #5086: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/20 (288, true)' - PASSED
ssl_gtest.sh: #5087: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/21 (288, false)' - PASSED
ssl_gtest.sh: #5088: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/0 (1, true)' - PASSED
ssl_gtest.sh: #5089: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/1 (1, false)' - PASSED
ssl_gtest.sh: #5090: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/2 (19, true)' - PASSED
ssl_gtest.sh: #5091: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/3 (19, false)' - PASSED
ssl_gtest.sh: #5092: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/4 (20, true)' - PASSED
ssl_gtest.sh: #5093: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/5 (20, false)' - PASSED
ssl_gtest.sh: #5094: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/6 (30, true)' - PASSED
ssl_gtest.sh: #5095: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/7 (30, false)' - PASSED
ssl_gtest.sh: #5096: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/8 (31, true)' - PASSED
ssl_gtest.sh: #5097: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/9 (31, false)' - PASSED
ssl_gtest.sh: #5098: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/10 (32, true)' - PASSED
ssl_gtest.sh: #5099: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/11 (32, false)' - PASSED
ssl_gtest.sh: #5100: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/12 (36, true)' - PASSED
ssl_gtest.sh: #5101: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/13 (36, false)' - PASSED
ssl_gtest.sh: #5102: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/14 (256, true)' - PASSED
ssl_gtest.sh: #5103: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/15 (256, false)' - PASSED
ssl_gtest.sh: #5104: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/16 (257, true)' - PASSED
ssl_gtest.sh: #5105: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/17 (257, false)' - PASSED
ssl_gtest.sh: #5106: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/18 (287, true)' - PASSED
ssl_gtest.sh: #5107: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/19 (287, false)' - PASSED
ssl_gtest.sh: #5108: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/20 (288, true)' - PASSED
ssl_gtest.sh: #5109: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/21 (288, false)' - PASSED
ssl_gtest.sh: #5110: 'SkipTls10/TlsSkipTest: SkipCertificateRsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #5111: 'SkipTls10/TlsSkipTest: SkipCertificateDhe/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #5112: 'SkipTls10/TlsSkipTest: SkipCertificateEcdhe/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #5113: 'SkipTls10/TlsSkipTest: SkipCertificateEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #5114: 'SkipTls10/TlsSkipTest: SkipServerKeyExchange/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #5115: 'SkipTls10/TlsSkipTest: SkipServerKeyExchangeEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #5116: 'SkipTls10/TlsSkipTest: SkipCertAndKeyExch/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #5117: 'SkipTls10/TlsSkipTest: SkipCertAndKeyExchEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #5118: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5119: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5120: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5121: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5122: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5123: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5124: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5125: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5126: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5127: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5128: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5129: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5130: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5131: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5132: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5133: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5134: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5135: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5136: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5137: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5138: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5139: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5140: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5141: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5142: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5143: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5144: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5145: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5146: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5147: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5148: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #5149: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #5150: 'AllHashFuncs/TlsHkdfTest: HkdfNullNull/0 4' - PASSED
ssl_gtest.sh: #5151: 'AllHashFuncs/TlsHkdfTest: HkdfNullNull/1 5' - PASSED
ssl_gtest.sh: #5152: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Only/0 4' - PASSED
ssl_gtest.sh: #5153: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Only/1 5' - PASSED
ssl_gtest.sh: #5154: 'AllHashFuncs/TlsHkdfTest: HkdfKey2Only/0 4' - PASSED
ssl_gtest.sh: #5155: 'AllHashFuncs/TlsHkdfTest: HkdfKey2Only/1 5' - PASSED
ssl_gtest.sh: #5156: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Key2/0 4' - PASSED
ssl_gtest.sh: #5157: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Key2/1 5' - PASSED
ssl_gtest.sh: #5158: 'AllHashFuncs/TlsHkdfTest: HkdfExpandLabel/0 4' - PASSED
ssl_gtest.sh: #5159: 'AllHashFuncs/TlsHkdfTest: HkdfExpandLabel/1 5' - PASSED
TIMESTAMP ssl_gtests END: Sat Oct 21 15:23:39 UTC 2017
ssl_gtests.sh: Testing with PKIX ===============================
Running tests for libpkix
TIMESTAMP libpkix BEGIN: Sat Oct 21 15:23:39 UTC 2017
TIMESTAMP libpkix END: Sat Oct 21 15:23:39 UTC 2017
Running tests for cert
TIMESTAMP cert BEGIN: Sat Oct 21 15:23:39 UTC 2017
cert.sh: Certutil and Crlutil Tests with ECC ===============================
cert.sh: #5160: Looking for root certs module. - PASSED
cert.sh: Creating a CA Certificate TestCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -f ../tests.pw
cert.sh: #5161: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5162: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert TestCA  --------------------------
certutil -s "CN=NSS Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5163: Creating CA Cert TestCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n TestCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -o root.cert
cert.sh: #5164: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate serverCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -f ../tests.pw
cert.sh: #5165: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5166: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert serverCA  --------------------------
certutil -s "CN=NSS Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA -t Cu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5167: Creating CA Cert serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n serverCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -o root.cert
cert.sh: #5168: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-serverCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating CA Cert chain-1-serverCA  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA -t u,u,u -v 600 -c serverCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5169: Creating CA Cert chain-1-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-serverCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -o root.cert
cert.sh: #5170: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-serverCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating CA Cert chain-2-serverCA  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA -t u,u,u -v 600 -c chain-1-serverCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5171: Creating CA Cert chain-2-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-serverCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -o root.cert
cert.sh: #5172: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate clientCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -f ../tests.pw
cert.sh: #5173: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5174: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert clientCA  --------------------------
certutil -s "CN=NSS Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA -t Tu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5175: Creating CA Cert clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n clientCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -o root.cert
cert.sh: #5176: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-clientCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating CA Cert chain-1-clientCA  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA -t u,u,u -v 600 -c clientCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5177: Creating CA Cert chain-1-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-clientCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -o root.cert
cert.sh: #5178: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-clientCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating CA Cert chain-2-clientCA  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA -t u,u,u -v 600 -c chain-1-clientCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5179: Creating CA Cert chain-2-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-clientCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -o root.cert
cert.sh: #5180: Exporting Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate TestCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating DSA CA Cert TestCA-dsa  --------------------------
certutil -s "CN=NSS Test CA (DSA), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-dsa -k dsa -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5181: Creating DSA CA Cert TestCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n TestCA-dsa -r -d . -o dsaroot.cert
cert.sh: #5182: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating DSA CA Cert serverCA-dsa  --------------------------
certutil -s "CN=NSS Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-dsa -k dsa -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5183: Creating DSA CA Cert serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #5184: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating DSA CA Cert chain-1-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-dsa -k dsa -t u,u,u -v 600 -c serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5185: Creating DSA CA Cert chain-1-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #5186: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating DSA CA Cert chain-2-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5187: Creating DSA CA Cert chain-2-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #5188: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating DSA CA Cert clientCA-dsa  --------------------------
certutil -s "CN=NSS Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-dsa -k dsa -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5189: Creating DSA CA Cert clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #5190: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating DSA CA Cert chain-1-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-dsa -k dsa -t u,u,u -v 600 -c clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5191: Creating DSA CA Cert chain-1-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #5192: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating DSA CA Cert chain-2-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5193: Creating DSA CA Cert chain-2-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #5194: Exporting DSA Root Cert - PASSED
cert.sh: Creating an EC CA Certificate TestCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating EC CA Cert TestCA-ec  --------------------------
certutil -s "CN=NSS Test CA (ECC), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-ec -k ec -q secp521r1 -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5195: Creating EC CA Cert TestCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n TestCA-ec -r -d . -o ecroot.cert
cert.sh: #5196: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate serverCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating EC CA Cert serverCA-ec  --------------------------
certutil -s "CN=NSS Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-ec -k ec -q secp521r1 -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5197: Creating EC CA Cert serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n serverCA-ec -r -d . -o ecroot.cert
cert.sh: #5198: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating EC CA Cert chain-1-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5199: Creating EC CA Cert chain-1-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #5200: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating EC CA Cert chain-2-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5201: Creating EC CA Cert chain-2-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #5202: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate clientCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating EC CA Cert clientCA-ec  --------------------------
certutil -s "CN=NSS Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-ec -k ec -q secp521r1 -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5203: Creating EC CA Cert clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n clientCA-ec -r -d . -o ecroot.cert
cert.sh: #5204: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating EC CA Cert chain-1-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5205: Creating EC CA Cert chain-1-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #5206: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating EC CA Cert chain-2-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5207: Creating EC CA Cert chain-2-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #5208: Exporting EC Root Cert - PASSED
cert.sh: Creating Certificates, issued by the last ===============
     of a chain of CA's which are not in the same database============
Server Cert
cert.sh: Initializing localhost.localdomain's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw
cert.sh: #5209: Initializing localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5210: Loading root cert module to localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5211: Generate Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 200 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain.cert -f ../tests.pw
cert.sh: #5212: Sign localhost.localdomain's Request (ext) - PASSED
cert.sh: Import localhost.localdomain's Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5213: Import localhost.localdomain's Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/clientCA.ca.cert
cert.sh: #5214: Import Client Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5215: Generate DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA-dsa -m 200 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw
cert.sh: #5216: Sign localhost.localdomain's DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5217: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/clientCA-dsa.ca.cert
cert.sh: #5218: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5219: Generate mixed DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 202 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw
cert.sh: #5220: Sign localhost.localdomain's mixed DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5221: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5222: Generate EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA-ec -m 200 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-ec.cert -f ../tests.pw
cert.sh: #5223: Sign localhost.localdomain's EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5224: Import localhost.localdomain's EC Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-ec -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/clientCA-ec.ca.cert
cert.sh: #5225: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5226: Generate mixed EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 201 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw
cert.sh: #5227: Sign localhost.localdomain's mixed EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5228: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) - PASSED
Importing all the server's own CA chain into the servers DB
cert.sh: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/chain-1-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5229: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/chain-1-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5230: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/chain-2-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5231: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/serverCA-ec.ca.cert
cert.sh: #5232: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/chain-2-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5233: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/chain-1-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5234: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/serverCA.ca.cert
cert.sh: #5235: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/serverCA-dsa.ca.cert
cert.sh: #5236: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/chain-2-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5237: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
Client Cert
cert.sh: Initializing ExtendedSSLUser's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw
cert.sh: #5238: Initializing ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5239: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5240: Generate Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 300 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser.cert -f ../tests.pw
cert.sh: #5241: Sign ExtendedSSLUser's Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5242: Import ExtendedSSLUser's Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/serverCA.ca.cert
cert.sh: #5243: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5244: Generate DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA-dsa -m 300 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-dsa.cert -f ../tests.pw
cert.sh: #5245: Sign ExtendedSSLUser's DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5246: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/serverCA-dsa.ca.cert
cert.sh: #5247: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5248: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 302 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-dsamixed.cert -f ../tests.pw
cert.sh: #5249: Sign ExtendedSSLUser's mixed DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5250: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5251: Generate EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA-ec -m 300 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-ec.cert -f ../tests.pw
cert.sh: #5252: Sign ExtendedSSLUser's EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5253: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA/serverCA-ec.ca.cert
cert.sh: #5254: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5255: Generate mixed EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 301 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-ecmixed.cert -f ../tests.pw
cert.sh: #5256: Sign ExtendedSSLUser's mixed EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5257: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) - PASSED
Importing all the client's own CA chain into the servers DB
cert.sh: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/chain-1-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5258: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/clientCA-dsa.ca.cert
cert.sh: #5259: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-ec -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/clientCA-ec.ca.cert
cert.sh: #5260: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/chain-2-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5261: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/chain-2-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5262: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/chain-1-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5263: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/chain-2-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5264: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/chain-1-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5265: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/clientCA/clientCA.ca.cert
cert.sh: #5266: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh SUCCESS: EXT passed
cert.sh: Creating Client CA Issued Certificates ===============
cert.sh: Initializing TestUser's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw
cert.sh: #5267: Initializing TestUser's Cert DB - PASSED
cert.sh: Loading root cert module to TestUser's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5268: Loading root cert module to TestUser's Cert DB - PASSED
cert.sh: Import Root CA for TestUser --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -i ../CA/TestCA.ca.cert
cert.sh: #5269: Import Root CA for TestUser - PASSED
cert.sh: Import DSA Root CA for TestUser --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -i ../CA/TestCA-dsa.ca.cert
cert.sh: #5270: Import DSA Root CA for TestUser - PASSED
cert.sh: Import EC Root CA for TestUser --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -i ../CA/TestCA-ec.ca.cert
cert.sh: #5271: Import EC Root CA for TestUser - PASSED
cert.sh: Generate Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5272: Generate Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's Request --------------------------
certutil -C -c TestCA -m 70 -v 60 -d ../CA -i req -o TestUser.cert -f ../tests.pw 
cert.sh: #5273: Sign TestUser's Request - PASSED
cert.sh: Import TestUser's Cert --------------------------
certutil -A -n TestUser -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5274: Import TestUser's Cert - PASSED
cert.sh SUCCESS: TestUser's Cert Created
cert.sh: Generate DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5275: Generate DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 70 -v 60 -d ../CA -i req -o TestUser-dsa.cert -f ../tests.pw 
cert.sh: #5276: Sign TestUser's DSA Request - PASSED
cert.sh: Import TestUser's DSA Cert --------------------------
certutil -A -n TestUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5277: Import TestUser's DSA Cert - PASSED
cert.sh SUCCESS: TestUser's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5278: Generate mixed DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20070 -v 60 -d ../CA -i req -o TestUser-dsamixed.cert -f ../tests.pw 
cert.sh: #5279: Sign TestUser's DSA Request with RSA - PASSED
cert.sh: Import TestUser's mixed DSA Cert --------------------------
certutil -A -n TestUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5280: Import TestUser's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5281: Generate EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request --------------------------
certutil -C -c TestCA-ec -m 70 -v 60 -d ../CA -i req -o TestUser-ec.cert -f ../tests.pw 
cert.sh: #5282: Sign TestUser's EC Request - PASSED
cert.sh: Import TestUser's EC Cert --------------------------
certutil -A -n TestUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5283: Import TestUser's EC Cert - PASSED
cert.sh SUCCESS: TestUser's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5284: Generate mixed EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10070 -v 60 -d ../CA -i req -o TestUser-ecmixed.cert -f ../tests.pw 
cert.sh: #5285: Sign TestUser's EC Request with RSA - PASSED
cert.sh: Import TestUser's mixed EC Cert --------------------------
certutil -A -n TestUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5286: Import TestUser's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain ------------------------------------
cert.sh: Initializing localhost.localdomain's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #5287: Initializing localhost.localdomain's Cert DB - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5288: Loading root cert module to localhost.localdomain's Cert DB - PASSED
cert.sh: Import Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -i ../CA/TestCA.ca.cert
cert.sh: #5289: Import Root CA for localhost.localdomain - PASSED
cert.sh: Import DSA Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -i ../CA/TestCA-dsa.ca.cert
cert.sh: #5290: Import DSA Root CA for localhost.localdomain - PASSED
cert.sh: Import EC Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -i ../CA/TestCA-ec.ca.cert
cert.sh: #5291: Import EC Root CA for localhost.localdomain - PASSED
cert.sh: Generate Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5292: Generate Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's Request --------------------------
certutil -C -c TestCA -m 100 -v 60 -d ../CA -i req -o localhost.localdomain.cert -f ../tests.pw 
cert.sh: #5293: Sign localhost.localdomain's Request - PASSED
cert.sh: Import localhost.localdomain's Cert --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5294: Import localhost.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5295: Generate DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #5296: Sign localhost.localdomain's DSA Request - PASSED
cert.sh: Import localhost.localdomain's DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5297: Import localhost.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5298: Generate mixed DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20100 -v 60 -d ../CA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #5299: Sign localhost.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5300: Import localhost.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5301: Generate EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-ec.cert -f ../tests.pw 
cert.sh: #5302: Sign localhost.localdomain's EC Request - PASSED
cert.sh: Import localhost.localdomain's EC Cert --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5303: Import localhost.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5304: Generate mixed EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10100 -v 60 -d ../CA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #5305: Sign localhost.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5306: Import localhost.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain-sni --------------------------------
cert.sh: Generate Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5307: Generate Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's Request --------------------------
certutil -C -c TestCA -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain.cert -f ../tests.pw 
cert.sh: #5308: Sign localhost-sni.localdomain's Request - PASSED
cert.sh: Import localhost-sni.localdomain's Cert --------------------------
certutil -A -n localhost-sni.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5309: Import localhost-sni.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5310: Generate DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #5311: Sign localhost-sni.localdomain's DSA Request - PASSED
cert.sh: Import localhost-sni.localdomain's DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5312: Import localhost-sni.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5313: Generate mixed DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #5314: Sign localhost-sni.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5315: Import localhost-sni.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5316: Generate EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ec.cert -f ../tests.pw 
cert.sh: #5317: Sign localhost-sni.localdomain's EC Request - PASSED
cert.sh: Import localhost-sni.localdomain's EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5318: Import localhost-sni.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5319: Generate mixed EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #5320: Sign localhost-sni.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5321: Import localhost-sni.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed EC Cert Created
cert.sh: Modify trust attributes of Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA -t TC,TC,TC -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #5322: Modify trust attributes of Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of DSA Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-dsa -t TC,TC,TC -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #5323: Modify trust attributes of DSA Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-ec -t TC,TC,TC -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #5324: Modify trust attributes of EC Root CA -t TC,TC,TC - PASSED
cert.sh SUCCESS: SSL passed
cert.sh: Creating database for OCSP stapling tests  ===============
cp -r /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/stapling
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -o ../stapling/ca.p12 -n TestCA -k ../tests.pw -w ../tests.pw -d ../CA
pk12util: PKCS12 EXPORT SUCCESSFUL
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -i ../stapling/ca.p12 -k ../tests.pw -w ../tests.pw -d ../stapling
pk12util: PKCS12 IMPORT SUCCESSFUL
cert.sh: Creating Client CA Issued Certificates ==============
cert.sh: Initializing Alice's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw
cert.sh: #5325: Initializing Alice's Cert DB - PASSED
cert.sh: Loading root cert module to Alice's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5326: Loading root cert module to Alice's Cert DB - PASSED
cert.sh: Import Root CA for Alice --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -i ../CA/TestCA.ca.cert
cert.sh: #5327: Import Root CA for Alice - PASSED
cert.sh: Import DSA Root CA for Alice --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #5328: Import DSA Root CA for Alice - PASSED
cert.sh: Import EC Root CA for Alice --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -i ../CA/TestCA-ec.ca.cert
cert.sh: #5329: Import EC Root CA for Alice - PASSED
cert.sh: Generate Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5330: Generate Cert Request for Alice - PASSED
cert.sh: Sign Alice's Request --------------------------
certutil -C -c TestCA -m 30 -v 60 -d ../CA -i req -o Alice.cert -f ../tests.pw 
cert.sh: #5331: Sign Alice's Request - PASSED
cert.sh: Import Alice's Cert --------------------------
certutil -A -n Alice -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5332: Import Alice's Cert - PASSED
cert.sh SUCCESS: Alice's Cert Created
cert.sh: Generate DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5333: Generate DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 30 -v 60 -d ../CA -i req -o Alice-dsa.cert -f ../tests.pw 
cert.sh: #5334: Sign Alice's DSA Request - PASSED
cert.sh: Import Alice's DSA Cert --------------------------
certutil -A -n Alice-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5335: Import Alice's DSA Cert - PASSED
cert.sh SUCCESS: Alice's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5336: Generate mixed DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20030 -v 60 -d ../CA -i req -o Alice-dsamixed.cert -f ../tests.pw 
cert.sh: #5337: Sign Alice's DSA Request with RSA - PASSED
cert.sh: Import Alice's mixed DSA Cert --------------------------
certutil -A -n Alice-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5338: Import Alice's mixed DSA Cert - PASSED
cert.sh SUCCESS: Alice's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5339: Generate EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request --------------------------
certutil -C -c TestCA-ec -m 30 -v 60 -d ../CA -i req -o Alice-ec.cert -f ../tests.pw 
cert.sh: #5340: Sign Alice's EC Request - PASSED
cert.sh: Import Alice's EC Cert --------------------------
certutil -A -n Alice-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5341: Import Alice's EC Cert - PASSED
cert.sh SUCCESS: Alice's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5342: Generate mixed EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10030 -v 60 -d ../CA -i req -o Alice-ecmixed.cert -f ../tests.pw 
cert.sh: #5343: Sign Alice's EC Request with RSA - PASSED
cert.sh: Import Alice's mixed EC Cert --------------------------
certutil -A -n Alice-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5344: Import Alice's mixed EC Cert - PASSED
cert.sh SUCCESS: Alice's mixed EC Cert Created
cert.sh: Initializing Bob's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw
cert.sh: #5345: Initializing Bob's Cert DB - PASSED
cert.sh: Loading root cert module to Bob's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5346: Loading root cert module to Bob's Cert DB - PASSED
cert.sh: Import Root CA for Bob --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -i ../CA/TestCA.ca.cert
cert.sh: #5347: Import Root CA for Bob - PASSED
cert.sh: Import DSA Root CA for Bob --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #5348: Import DSA Root CA for Bob - PASSED
cert.sh: Import EC Root CA for Bob --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -i ../CA/TestCA-ec.ca.cert
cert.sh: #5349: Import EC Root CA for Bob - PASSED
cert.sh: Generate Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5350: Generate Cert Request for Bob - PASSED
cert.sh: Sign Bob's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o Bob.cert -f ../tests.pw 
cert.sh: #5351: Sign Bob's Request - PASSED
cert.sh: Import Bob's Cert --------------------------
certutil -A -n Bob -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5352: Import Bob's Cert - PASSED
cert.sh SUCCESS: Bob's Cert Created
cert.sh: Generate DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5353: Generate DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o Bob-dsa.cert -f ../tests.pw 
cert.sh: #5354: Sign Bob's DSA Request - PASSED
cert.sh: Import Bob's DSA Cert --------------------------
certutil -A -n Bob-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5355: Import Bob's DSA Cert - PASSED
cert.sh SUCCESS: Bob's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5356: Generate mixed DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o Bob-dsamixed.cert -f ../tests.pw 
cert.sh: #5357: Sign Bob's DSA Request with RSA - PASSED
cert.sh: Import Bob's mixed DSA Cert --------------------------
certutil -A -n Bob-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5358: Import Bob's mixed DSA Cert - PASSED
cert.sh SUCCESS: Bob's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5359: Generate EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o Bob-ec.cert -f ../tests.pw 
cert.sh: #5360: Sign Bob's EC Request - PASSED
cert.sh: Import Bob's EC Cert --------------------------
certutil -A -n Bob-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5361: Import Bob's EC Cert - PASSED
cert.sh SUCCESS: Bob's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5362: Generate mixed EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o Bob-ecmixed.cert -f ../tests.pw 
cert.sh: #5363: Sign Bob's EC Request with RSA - PASSED
cert.sh: Import Bob's mixed EC Cert --------------------------
certutil -A -n Bob-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5364: Import Bob's mixed EC Cert - PASSED
cert.sh SUCCESS: Bob's mixed EC Cert Created
cert.sh: Creating Dave's Certificate -------------------------
cert.sh: Initializing Dave's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw
cert.sh: #5365: Initializing Dave's Cert DB - PASSED
cert.sh: Loading root cert module to Dave's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5366: Loading root cert module to Dave's Cert DB - PASSED
cert.sh: Import Root CA for Dave --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -i ../CA/TestCA.ca.cert
cert.sh: #5367: Import Root CA for Dave - PASSED
cert.sh: Import DSA Root CA for Dave --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -i ../CA/TestCA-dsa.ca.cert
cert.sh: #5368: Import DSA Root CA for Dave - PASSED
cert.sh: Import EC Root CA for Dave --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -i ../CA/TestCA-ec.ca.cert
cert.sh: #5369: Import EC Root CA for Dave - PASSED
cert.sh: Generate Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5370: Generate Cert Request for Dave - PASSED
cert.sh: Sign Dave's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o Dave.cert -f ../tests.pw 
cert.sh: #5371: Sign Dave's Request - PASSED
cert.sh: Import Dave's Cert --------------------------
certutil -A -n Dave -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5372: Import Dave's Cert - PASSED
cert.sh SUCCESS: Dave's Cert Created
cert.sh: Generate DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5373: Generate DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o Dave-dsa.cert -f ../tests.pw 
cert.sh: #5374: Sign Dave's DSA Request - PASSED
cert.sh: Import Dave's DSA Cert --------------------------
certutil -A -n Dave-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5375: Import Dave's DSA Cert - PASSED
cert.sh SUCCESS: Dave's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5376: Generate mixed DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o Dave-dsamixed.cert -f ../tests.pw 
cert.sh: #5377: Sign Dave's DSA Request with RSA - PASSED
cert.sh: Import Dave's mixed DSA Cert --------------------------
certutil -A -n Dave-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5378: Import Dave's mixed DSA Cert - PASSED
cert.sh SUCCESS: Dave's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5379: Generate EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o Dave-ec.cert -f ../tests.pw 
cert.sh: #5380: Sign Dave's EC Request - PASSED
cert.sh: Import Dave's EC Cert --------------------------
certutil -A -n Dave-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5381: Import Dave's EC Cert - PASSED
cert.sh SUCCESS: Dave's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5382: Generate mixed EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o Dave-ecmixed.cert -f ../tests.pw 
cert.sh: #5383: Sign Dave's EC Request with RSA - PASSED
cert.sh: Import Dave's mixed EC Cert --------------------------
certutil -A -n Dave-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5384: Import Dave's mixed EC Cert - PASSED
cert.sh SUCCESS: Dave's mixed EC Cert Created
cert.sh: Creating multiEmail's Certificate --------------------
cert.sh: Initializing Eve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw
cert.sh: #5385: Initializing Eve's Cert DB - PASSED
cert.sh: Loading root cert module to Eve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5386: Loading root cert module to Eve's Cert DB - PASSED
cert.sh: Import Root CA for Eve --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -i ../CA/TestCA.ca.cert
cert.sh: #5387: Import Root CA for Eve - PASSED
cert.sh: Import DSA Root CA for Eve --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -i ../CA/TestCA-dsa.ca.cert
cert.sh: #5388: Import DSA Root CA for Eve - PASSED
cert.sh: Import EC Root CA for Eve --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -i ../CA/TestCA-ec.ca.cert
cert.sh: #5389: Import EC Root CA for Eve - PASSED
cert.sh: Generate Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5390: Generate Cert Request for Eve - PASSED
cert.sh: Sign Eve's Request --------------------------
certutil -C -c TestCA -m 60 -v 60 -d ../CA -i req -o Eve.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #5391: Sign Eve's Request - PASSED
cert.sh: Import Eve's Cert --------------------------
certutil -A -n Eve -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5392: Import Eve's Cert - PASSED
cert.sh SUCCESS: Eve's Cert Created
cert.sh: Generate DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5393: Generate DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 60 -v 60 -d ../CA -i req -o Eve-dsa.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #5394: Sign Eve's DSA Request - PASSED
cert.sh: Import Eve's DSA Cert --------------------------
certutil -A -n Eve-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5395: Import Eve's DSA Cert - PASSED
cert.sh SUCCESS: Eve's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5396: Generate mixed DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20060 -v 60 -d ../CA -i req -o Eve-dsamixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #5397: Sign Eve's DSA Request with RSA - PASSED
cert.sh: Import Eve's mixed DSA Cert --------------------------
certutil -A -n Eve-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5398: Import Eve's mixed DSA Cert - PASSED
cert.sh SUCCESS: Eve's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5399: Generate EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request --------------------------
certutil -C -c TestCA-ec -m 60 -v 60 -d ../CA -i req -o Eve-ec.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #5400: Sign Eve's EC Request - PASSED
cert.sh: Import Eve's EC Cert --------------------------
certutil -A -n Eve-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5401: Import Eve's EC Cert - PASSED
cert.sh SUCCESS: Eve's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5402: Generate mixed EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10060 -v 60 -d ../CA -i req -o Eve-ecmixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #5403: Sign Eve's EC Request with RSA - PASSED
cert.sh: Import Eve's mixed EC Cert --------------------------
certutil -A -n Eve-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5404: Import Eve's mixed EC Cert - PASSED
cert.sh SUCCESS: Eve's mixed EC Cert Created
cert.sh: Importing Certificates ==============================
cert.sh: Import Bob's cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob.cert
cert.sh: #5405: Import Bob's cert into Alice's db - PASSED
cert.sh: Import Dave's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #5406: Import Dave's cert into Alice's DB - PASSED
cert.sh: Import Dave's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #5407: Import Dave's cert into Bob's DB - PASSED
cert.sh: Import Eve's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #5408: Import Eve's cert into Alice's DB - PASSED
cert.sh: Import Eve's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #5409: Import Eve's cert into Bob's DB - PASSED
cert.sh: Importing EC Certificates ==============================
cert.sh: Import Bob's EC cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob-ec.cert
cert.sh: #5410: Import Bob's EC cert into Alice's db - PASSED
cert.sh: Import Dave's EC cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #5411: Import Dave's EC cert into Alice's DB - PASSED
cert.sh: Import Dave's EC cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #5412: Import Dave's EC cert into Bob's DB - PASSED
cert.sh SUCCESS: SMIME passed
cert.sh: Creating FIPS 140 DSA Certificates ==============
cert.sh: Initializing FIPS PUB 140 Test Certificate's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips -f ../tests.fipspw
cert.sh: #5413: Initializing FIPS PUB 140 Test Certificate's Cert DB - PASSED
cert.sh: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5414: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) - PASSED
cert.sh: Enable FIPS mode on database -----------------------
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips -fips true 
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
FIPS mode enabled.
cert.sh: #5415: Enable FIPS mode on database for FIPS PUB 140 Test Certificate - PASSED
cert.sh: Generate Certificate for FIPS PUB 140 Test Certificate --------------------------
certutil -s "CN=FIPS PUB 140 Test Certificate, E=fips@bogus.com, O=BOGUS NSS, OU=FIPS PUB 140, L=Mountain View, ST=California, C=US" -S -n FIPS_PUB_140_Test_Certificate -x -t Cu,Cu,Cu -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips -f ../tests.fipspw -k dsa -v 600 -m 500 -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5416: Generate Certificate for FIPS PUB 140 Test Certificate - PASSED
cert.sh SUCCESS: FIPS passed
cert.sh: Creating Server CA Issued Certificate for 
             EC Curves Test Certificates ------------------------------------
cert.sh: Initializing EC Curve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw
cert.sh: #5417: Initializing EC Curve's Cert DB - PASSED
cert.sh: Loading root cert module to EC Curve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eccurves
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5418: Loading root cert module to EC Curve's Cert DB - PASSED
cert.sh: Import EC Root CA for EC Curves Test Certificates --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eccurves -i ../CA/TestCA-ec.ca.cert
cert.sh: #5419: Import EC Root CA for EC Curves Test Certificates - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp256 --------------------------
certutil -s "CN=Curve-nistp256, E=Curve-nistp256-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp256 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5420: Generate EC Cert Request for Curve-nistp256 - PASSED
cert.sh: Sign Curve-nistp256's EC Request --------------------------
certutil -C -c TestCA-ec -m 2001 -v 60 -d ../CA -i req -o Curve-nistp256-ec.cert -f ../tests.pw 
cert.sh: #5421: Sign Curve-nistp256's EC Request - PASSED
cert.sh: Import Curve-nistp256's EC Cert --------------------------
certutil -A -n Curve-nistp256-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -i Curve-nistp256-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5422: Import Curve-nistp256's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp384 --------------------------
certutil -s "CN=Curve-nistp384, E=Curve-nistp384-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp384 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5423: Generate EC Cert Request for Curve-nistp384 - PASSED
cert.sh: Sign Curve-nistp384's EC Request --------------------------
certutil -C -c TestCA-ec -m 2002 -v 60 -d ../CA -i req -o Curve-nistp384-ec.cert -f ../tests.pw 
cert.sh: #5424: Sign Curve-nistp384's EC Request - PASSED
cert.sh: Import Curve-nistp384's EC Cert --------------------------
certutil -A -n Curve-nistp384-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -i Curve-nistp384-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5425: Import Curve-nistp384's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp521 --------------------------
certutil -s "CN=Curve-nistp521, E=Curve-nistp521-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp521 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5426: Generate EC Cert Request for Curve-nistp521 - PASSED
cert.sh: Sign Curve-nistp521's EC Request --------------------------
certutil -C -c TestCA-ec -m 2003 -v 60 -d ../CA -i req -o Curve-nistp521-ec.cert -f ../tests.pw 
cert.sh: #5427: Sign Curve-nistp521's EC Request - PASSED
cert.sh: Import Curve-nistp521's EC Cert --------------------------
certutil -A -n Curve-nistp521-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -i Curve-nistp521-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5428: Import Curve-nistp521's EC Cert - PASSED
cert.sh: Initializing TestExt's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw
cert.sh: #5429: Initializing TestExt's Cert DB - PASSED
cert.sh: Loading root cert module to TestExt's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5430: Loading root cert module to TestExt's Cert DB - PASSED
cert.sh: Import Root CA for TestExt --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -i ../CA/TestCA.ca.cert
cert.sh: #5431: Import Root CA for TestExt - PASSED
cert.sh: Import DSA Root CA for TestExt --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -i ../CA/TestCA-dsa.ca.cert
cert.sh: #5432: Import DSA Root CA for TestExt - PASSED
cert.sh: Import EC Root CA for TestExt --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -i ../CA/TestCA-ec.ca.cert
cert.sh: #5433: Import EC Root CA for TestExt - PASSED
cert.sh: Generate Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5434: Generate Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's Request --------------------------
certutil -C -c TestCA -m 90 -v 60 -d ../CA -i req -o TestExt.cert -f ../tests.pw 
cert.sh: #5435: Sign TestExt's Request - PASSED
cert.sh: Import TestExt's Cert --------------------------
certutil -A -n TestExt -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5436: Import TestExt's Cert - PASSED
cert.sh SUCCESS: TestExt's Cert Created
cert.sh: Generate DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5437: Generate DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 90 -v 60 -d ../CA -i req -o TestExt-dsa.cert -f ../tests.pw 
cert.sh: #5438: Sign TestExt's DSA Request - PASSED
cert.sh: Import TestExt's DSA Cert --------------------------
certutil -A -n TestExt-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5439: Import TestExt's DSA Cert - PASSED
cert.sh SUCCESS: TestExt's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5440: Generate mixed DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20090 -v 60 -d ../CA -i req -o TestExt-dsamixed.cert -f ../tests.pw 
cert.sh: #5441: Sign TestExt's DSA Request with RSA - PASSED
cert.sh: Import TestExt's mixed DSA Cert --------------------------
certutil -A -n TestExt-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5442: Import TestExt's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestExt's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5443: Generate EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request --------------------------
certutil -C -c TestCA-ec -m 90 -v 60 -d ../CA -i req -o TestExt-ec.cert -f ../tests.pw 
cert.sh: #5444: Sign TestExt's EC Request - PASSED
cert.sh: Import TestExt's EC Cert --------------------------
certutil -A -n TestExt-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5445: Import TestExt's EC Cert - PASSED
cert.sh SUCCESS: TestExt's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5446: Generate mixed EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10090 -v 60 -d ../CA -i req -o TestExt-ecmixed.cert -f ../tests.pw 
cert.sh: #5447: Sign TestExt's EC Request with RSA - PASSED
cert.sh: Import TestExt's mixed EC Cert --------------------------
certutil -A -n TestExt-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5448: Import TestExt's mixed EC Cert - PASSED
cert.sh SUCCESS: TestExt's mixed EC Cert Created
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt1 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt1, E=TestExt1@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:82:07:52
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 15:27:37 2017
            Not After : Sun Jan 21 15:27:37 2018
        Subject: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:cd:3f:d0:68:04:01:3e:6c:76:69:2a:f9:63:8f:8d:
                    af:a2:d4:1b:2f:38:72:ae:12:67:14:38:70:86:95:5a:
                    e9:b7:77:b6:f8:f0:a2:4b:83:28:b7:5c:bf:50:16:36:
                    3b:7b:db:80:14:a9:01:dd:e4:ef:0c:d8:1b:bd:04:16:
                    3e:71:5b:b9:91:1d:80:cd:58:86:df:a5:67:fb:6c:70:
                    e9:9f:24:04:0f:46:b1:46:58:fd:b4:79:bd:b7:92:bb:
                    87:e2:15:7a:e3:c3:af:3b:33:a7:f7:ce:44:59:05:d0:
                    92:ce:b7:9c:75:82:e7:f9:cc:b1:83:5b:26:3b:2c:c7:
                    94:47:4c:80:cb:fd:f4:84:9f:c1:35:5c:89:7d:f4:b0:
                    a1:20:bb:46:06:e0:83:5c:c6:32:e8:80:cb:06:c3:c9:
                    2e:00:d5:98:f6:48:88:2e:c5:76:05:dd:be:a7:1d:8c:
                    5a:40:db:7d:62:d8:f2:6f:9d:f8:a2:48:48:fe:0d:e3:
                    04:f7:9a:32:4b:3f:f8:3a:6d:d8:81:96:6a:10:0c:eb:
                    86:18:e3:57:83:30:95:8c:e0:de:ef:2f:b5:4b:a7:ad:
                    9e:0c:5f:33:64:79:40:88:88:2d:a1:67:c5:3c:b2:73:
                    cd:24:fc:1f:44:9a:78:f7:cc:dd:5a:aa:7e:53:99:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:b6:2c:7c:53:22:12:a1:40:19:0a:3f:37:15:5c:1c:
        56:ef:73:29:73:73:55:60:55:7c:77:fc:f8:e5:49:94:
        5d:f1:76:fd:6c:ee:38:cc:f5:47:cc:20:2b:00:17:49:
        08:3b:6c:4c:00:60:7d:80:fc:89:0e:d3:2b:ba:23:5d:
        dd:6c:92:68:06:97:12:f7:52:99:ec:a2:75:d6:3b:46:
        ea:30:85:3b:bb:f8:8d:3b:ba:68:a7:9f:6e:cb:64:da:
        f0:94:a4:d5:bd:c0:e6:2b:1e:29:16:cf:60:2f:cb:47:
        58:ca:c3:26:d7:69:2e:6b:a4:c6:8d:ea:fc:eb:ea:4f:
        6e:0e:e2:d9:91:fd:b3:47:ce:ee:8a:e9:76:b1:ea:10:
        cd:52:60:1a:21:74:b8:30:de:e2:db:82:d5:f8:f3:0a:
        4d:98:61:e8:3c:08:27:a0:f5:12:1d:89:f9:3d:24:86:
        6b:26:db:31:c3:83:50:f4:38:88:3c:3b:3a:72:b2:ad:
        23:3e:aa:4b:4b:85:50:01:c6:30:26:4e:16:c2:21:e1:
        6d:e9:3a:eb:2b:fd:fc:50:0f:27:87:b9:fc:20:82:b3:
        52:50:62:87:10:c5:04:15:3f:d9:34:e4:5e:70:b9:5c:
        11:93:80:44:2b:c0:b0:82:8f:9c:5c:40:73:5e:f5:7a
    Fingerprint (SHA-256):
        59:E6:69:AF:7B:04:EC:F1:28:DB:91:62:AF:65:76:D2:B6:20:DD:7F:64:E7:2B:00:A7:77:E3:FF:27:1F:DF:75
    Fingerprint (SHA1):
        02:D8:86:9B:BC:B6:D8:CA:5B:65:9A:EB:B0:78:82:AE:EC:05:9E:F7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5449: Certificate Key Usage Extension (1) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt2 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt2, E=TestExt2@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:82:07:59
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 15:27:41 2017
            Not After : Sun Jan 21 15:27:41 2018
        Subject: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:80:c3:cc:7c:a1:89:0a:77:df:06:cf:07:18:7e:eb:
                    d1:41:db:00:e2:59:d1:72:bc:1a:dd:ce:16:74:16:39:
                    4e:80:ee:82:8a:85:97:63:1f:e1:13:a1:7f:82:79:24:
                    8c:6f:6e:ac:14:16:ae:68:3a:cc:12:8b:57:b9:50:b3:
                    6a:5b:f4:02:3a:b4:2a:75:8a:f5:dd:f5:3e:ce:d1:02:
                    2a:16:8d:13:00:60:01:1f:64:bc:0a:f3:29:77:e2:c7:
                    f4:39:55:c9:c8:6d:da:99:7b:1d:90:a2:51:d8:88:38:
                    61:21:2d:4f:d1:91:d7:6f:9c:b6:3d:d9:3b:ff:a1:c1:
                    f4:42:38:d9:d5:03:a5:d6:fc:de:d0:52:f0:64:3c:83:
                    96:45:07:a3:d2:7c:53:8d:24:3a:43:17:ea:d1:cd:45:
                    ca:70:f3:34:55:57:4b:9e:1c:9d:c6:89:9e:54:a2:83:
                    99:49:bc:76:99:3a:c5:d6:4c:fd:1f:cc:d3:ca:23:ca:
                    6c:f4:fe:fc:2b:f9:d1:ac:d7:3d:3b:30:68:2b:94:dc:
                    74:3c:ee:71:fe:c0:c7:35:b0:73:53:28:2a:29:20:fe:
                    ea:92:b7:03:a1:08:77:16:31:6a:7f:48:5b:ee:eb:2d:
                    1c:d7:af:94:d5:0e:c3:d6:58:42:cd:6a:be:e2:24:4b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:7b:c1:21:67:55:91:68:46:02:4e:6d:f6:1c:bd:62:
        c7:fe:4a:58:9d:0d:2e:db:5b:ff:a5:8a:cc:63:56:9a:
        1f:12:5a:45:99:ef:68:69:16:59:79:01:7e:4d:fa:24:
        9f:6c:26:5b:64:20:07:b1:a3:c4:2c:5b:c5:6d:8e:52:
        0b:1f:76:c3:46:a2:48:59:2f:20:1f:26:9a:24:1a:1b:
        04:18:59:1d:70:ae:30:bb:4d:80:40:86:c0:38:bb:34:
        28:62:9a:be:2e:38:37:f6:69:42:1a:2d:ea:89:5f:09:
        67:03:de:19:76:aa:fa:96:56:61:38:ea:e9:f8:61:d8:
        f2:93:ea:c8:a4:f5:83:73:cf:d6:30:35:e5:ce:7c:b4:
        ff:2e:37:d4:23:85:e3:5a:c1:db:64:65:e1:b0:d9:29:
        a7:fc:b4:29:66:d5:45:bd:e1:7c:c0:b9:a7:4d:14:44:
        96:e9:15:28:b4:91:48:a1:ee:13:d9:35:9a:cc:a5:1a:
        33:9c:6d:fe:cd:57:f9:d3:21:bd:89:81:d5:cd:3f:e7:
        c5:01:89:a8:2f:05:da:58:7d:81:e6:30:50:fe:23:02:
        34:c5:38:50:7a:bd:93:52:b0:1f:83:54:40:f2:e5:f9:
        21:13:c1:c5:90:f4:18:49:b8:40:a2:d3:e4:3d:1e:40
    Fingerprint (SHA-256):
        01:D6:A7:1C:B0:B3:D0:7E:59:71:47:57:B1:8C:4C:8D:A7:B4:25:58:CF:BB:9F:AA:A9:E4:70:D6:10:4D:82:F1
    Fingerprint (SHA1):
        C6:F0:33:01:28:56:21:D8:1C:4C:E0:C7:23:ED:1D:31:2F:F5:BC:A8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5450: Certificate Key Usage Extension (2) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt3 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt3, E=TestExt3@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
y
-1
n
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:82:07:5f
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 15:27:46 2017
            Not After : Sun Jan 21 15:27:46 2018
        Subject: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:00:ac:d2:60:cf:87:7d:cb:a6:88:a7:95:da:28:c4:
                    53:56:0e:11:b8:ab:f1:8c:e1:6a:91:0b:f2:34:3c:c2:
                    8c:35:dd:4f:ff:13:ae:2f:cd:43:c4:5c:78:c9:0d:90:
                    ec:84:96:e8:ef:a1:b3:5f:cf:db:c9:60:6e:fd:28:e4:
                    53:54:14:0f:32:54:fe:69:3c:69:e3:0b:66:31:45:35:
                    b1:7f:8c:c6:f5:59:12:3a:76:3b:0c:47:5b:9c:4b:b7:
                    11:69:3c:f7:f6:97:88:e1:d0:24:a2:61:d9:03:b4:ab:
                    95:57:65:bd:fb:5e:a2:35:a1:fc:d8:67:fc:36:4a:d9:
                    31:b8:be:a3:30:86:32:aa:b8:ec:43:f1:71:3e:37:35:
                    e9:28:37:95:74:2f:81:cf:ef:15:ff:7d:66:17:2b:2f:
                    97:9b:99:7b:85:43:f5:b0:1b:a8:e3:9f:75:8c:3f:ad:
                    a4:8b:f5:fd:bd:e0:55:fb:53:7a:f6:a7:15:40:e4:ce:
                    c7:5b:7e:0b:be:cc:74:2f:45:10:c5:8c:a6:63:84:b7:
                    5a:22:d5:36:c0:07:d1:b4:79:e3:75:e7:4b:29:ac:86:
                    7b:d5:f4:0a:71:9f:29:40:40:35:71:53:d3:db:a7:e6:
                    d0:59:0d:02:5a:2f:91:20:cc:b0:50:0e:97:1d:6e:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9d:f6:45:1b:6a:63:d2:10:a9:cc:e0:d2:db:bd:dd:6b:
        7c:c3:5d:49:7c:13:8e:6d:15:e5:85:54:4c:d2:7a:f8:
        0e:6b:d6:4b:f1:59:37:2b:34:6b:84:c9:77:ff:ae:ef:
        81:a1:1f:ae:69:64:3a:24:7f:ec:f7:14:fc:39:f1:64:
        5b:1e:fa:d5:05:a6:0e:64:27:9f:09:bb:ba:b3:0a:10:
        c1:c3:e4:1e:a2:56:d1:6d:b1:41:64:98:14:50:33:3e:
        89:72:e2:6d:0b:d8:2e:22:7d:21:c8:99:c4:ba:f8:fd:
        dc:a7:6f:75:0a:c2:04:56:27:30:35:2f:1a:19:6b:d5:
        06:48:d1:dc:35:02:6b:1a:6b:7e:5e:80:1d:da:9c:bc:
        c8:a8:cb:56:71:06:4a:a7:3c:95:93:e8:d0:b8:11:38:
        67:12:e9:53:fc:7b:23:a3:f7:39:0f:95:0e:3c:43:4d:
        4a:08:d1:1d:dd:72:90:9f:25:80:73:54:8c:13:86:16:
        66:c9:e8:bb:bc:d0:cc:a7:86:66:35:c8:b6:87:3a:36:
        75:33:f2:26:07:df:ec:50:cd:60:c0:4f:d2:ef:9d:07:
        a5:cc:49:f0:bd:e3:4c:86:e2:29:95:d4:93:d4:2a:c6:
        ba:65:2c:76:a8:22:5b:e7:65:ff:5a:19:fe:83:39:b4
    Fingerprint (SHA-256):
        67:59:1C:8F:74:C0:3F:42:54:C4:D3:58:1B:9A:A6:5C:D8:60:9D:2A:84:09:16:57:F2:28:60:38:5C:05:EC:9D
    Fingerprint (SHA1):
        40:18:8D:8B:C9:F2:F4:09:3C:42:CC:A6:08:5A:9C:2C:D3:2F:E7:C4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5451: Certificate Basic Constraints Extension (3) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt4 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt4, E=TestExt4@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
n
-1
y
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:82:07:6a
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 15:27:52 2017
            Not After : Sun Jan 21 15:27:52 2018
        Subject: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:f0:61:b0:dd:35:de:23:d7:a6:ca:9e:ac:a5:20:96:
                    9c:11:7e:12:b1:5e:54:a6:e5:3d:6d:5d:f1:be:e2:52:
                    e2:cb:66:d0:f4:f8:bd:fa:4f:19:9b:69:d5:2c:f3:e5:
                    31:2f:2a:b2:92:b6:dc:17:d9:5c:cc:9c:44:1b:df:47:
                    52:d6:18:2b:9e:af:c8:11:d6:30:84:f9:34:3c:7a:4d:
                    8e:3e:8c:12:69:1f:85:45:c3:c5:c4:93:4d:eb:3d:f0:
                    46:a0:76:7a:c5:62:c7:a9:e5:45:6a:9e:1c:38:a5:0b:
                    91:88:f2:ae:7d:d9:d6:3d:ad:49:23:ae:93:e0:20:c6:
                    09:20:df:d4:32:28:c3:0c:8c:8b:e8:1e:5d:5b:70:f2:
                    61:89:2a:65:43:30:3e:81:06:9d:1f:3e:b0:3d:64:94:
                    53:c7:4d:68:9c:61:f7:13:99:30:30:a0:fb:36:a0:2e:
                    f1:fe:40:cd:73:e6:6a:d2:b3:96:e7:9d:ea:00:6d:24:
                    d7:b7:0f:82:a7:60:e6:50:17:47:93:8f:1c:76:77:83:
                    bc:68:35:f7:f3:4e:88:f9:7c:7e:96:43:14:af:92:d9:
                    8b:81:33:66:2d:54:4f:de:e8:d6:4a:5e:23:f3:63:2f:
                    49:31:31:0f:79:39:01:8a:c8:47:85:c7:5d:39:9d:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is not a CA.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        87:b1:15:2b:69:f2:6e:41:cb:33:54:1c:3a:75:84:42:
        35:16:be:58:32:53:47:9d:c3:81:52:c7:76:6a:1a:47:
        60:c6:9f:7c:05:07:41:73:f6:d1:7f:51:17:b3:42:0d:
        16:b6:84:a4:2a:bf:b1:64:41:a6:b5:e7:69:bd:1b:d3:
        55:4e:4f:24:25:5f:ab:af:c1:fa:4c:53:24:98:a3:bf:
        32:cb:82:ab:dd:9c:83:00:40:fb:c3:33:68:08:f7:58:
        c6:81:ef:4f:71:8d:49:9a:47:a9:2e:dc:68:b0:53:0d:
        81:eb:fa:bf:84:68:8e:ec:02:d0:2d:d3:6e:2e:22:47:
        d8:dc:5c:c3:87:a6:75:48:c3:08:b5:98:bd:19:f7:64:
        8c:9d:bb:0e:f8:9a:bf:d4:91:9f:83:d1:5a:9d:c5:ca:
        6e:f2:4b:73:57:e4:42:ae:00:61:8e:af:32:c1:ad:18:
        25:cd:fc:f0:e6:ec:e5:c3:9a:63:d0:df:35:10:77:84:
        01:bf:ee:c3:cf:21:5a:90:d8:c9:8e:46:5c:0e:dc:4a:
        bb:dc:20:a6:51:29:3e:d2:a6:98:b3:63:63:00:a7:b4:
        c2:3b:36:44:d1:c3:a7:59:d3:a6:af:32:5d:2a:f0:b3:
        25:8b:64:83:a0:62:d2:35:cb:30:a5:86:46:30:44:d8
    Fingerprint (SHA-256):
        39:FD:8D:5B:B6:7A:8E:E6:0D:A2:D5:D5:78:E5:54:DE:72:94:64:91:9D:59:79:14:16:82:B7:F7:66:45:B4:A1
    Fingerprint (SHA1):
        E1:19:0A:93:CE:FF:7F:19:2D:61:9C:EC:83:63:BB:CB:9F:5E:9D:44
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5452: Certificate Basic Constraints Extension (4) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt5 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt5, E=TestExt5@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
y
12341235123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:82:07:75
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 15:27:55 2017
            Not After : Sun Jan 21 15:27:55 2018
        Subject: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:1e:dc:df:4d:5f:b0:65:c6:48:ad:09:04:ae:3f:5f:
                    d4:0d:bc:db:70:c1:66:50:26:e2:8d:ec:1e:f8:f3:61:
                    7a:89:f5:fe:54:a7:cb:31:2c:87:5d:f9:ef:ac:55:f2:
                    2c:31:a2:1a:92:93:64:fb:d7:bd:80:73:71:1b:00:ec:
                    34:61:5a:7e:84:31:0c:4d:2b:bc:7a:2f:72:d3:6b:25:
                    40:46:fd:db:29:a6:ec:ad:78:e0:ff:4b:b4:66:1e:e7:
                    85:bd:0c:bd:a4:85:19:5d:b8:20:82:68:5a:19:c9:1d:
                    6b:43:6b:11:7c:89:32:f4:76:04:00:ae:ea:d8:f8:19:
                    c5:f4:b3:14:bb:55:c2:f7:9e:7d:25:b7:b4:4f:c3:4b:
                    d7:12:46:35:79:59:4d:41:fe:fe:f2:84:ab:9e:4c:55:
                    aa:b0:68:82:2e:e7:3a:41:cd:b5:0d:70:51:69:9f:2e:
                    51:53:e6:b8:e0:df:58:d7:0e:fe:8d:14:2f:7c:78:30:
                    f2:e5:f7:18:4c:56:fd:f3:01:f3:cc:16:ff:98:48:ea:
                    07:5d:8b:6b:a4:f5:18:f3:b5:9b:3c:3f:b4:6e:0f:d7:
                    0c:ee:a7:e7:20:13:c6:27:56:49:c5:74:8d:77:ce:af:
                    e9:ef:f2:16:a1:71:76:25:67:56:fb:c2:ae:1a:99:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Key ID:
                12341235123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3d:7c:66:0e:9a:ae:ce:26:0e:7d:d2:3a:1d:15:45:d6:
        3e:0a:fa:88:6b:01:8b:4b:05:0c:6e:e6:11:3d:80:d0:
        3a:bb:66:af:13:7e:52:d2:f9:35:e7:5b:b2:1e:23:63:
        1a:11:38:24:5d:6d:3d:90:88:0a:4c:f5:e6:9e:76:36:
        ca:ff:98:4c:83:8f:8e:8c:87:c8:fe:a9:5c:cc:12:37:
        c3:aa:62:8d:fa:b9:96:00:e8:1f:c8:23:a7:a3:32:f4:
        d9:a3:e4:0e:a0:da:df:55:60:81:40:dc:a5:16:ef:13:
        ad:0d:90:f1:c0:a1:be:9f:63:b9:52:92:78:16:2a:7e:
        9f:14:3d:5f:8c:f1:e1:5d:a7:bb:27:a1:20:ca:6f:98:
        d8:74:26:3f:3f:ba:66:61:64:48:45:73:ec:fc:48:52:
        a5:8d:1e:37:06:60:24:d1:ac:13:58:b8:d6:dd:3c:ab:
        28:f2:dc:f4:1b:68:89:54:6f:68:7c:b2:72:18:ed:b9:
        a8:17:5c:f5:c6:6b:08:85:63:97:b4:1c:aa:b6:03:43:
        52:a4:9e:7d:a3:9c:06:dd:e7:a5:5a:82:dd:ce:0a:7c:
        e6:32:ca:44:e5:0a:69:21:f2:ee:13:ab:61:43:cf:c4:
        4a:a2:2c:3a:80:ba:48:dc:d8:d3:37:61:37:49:15:5c
    Fingerprint (SHA-256):
        53:C2:86:DF:57:68:44:AC:9C:78:BB:C4:89:5F:11:71:6A:53:B3:55:8B:B3:8D:C6:8C:B3:36:05:9E:A6:1A:5D
    Fingerprint (SHA1):
        0C:E4:B2:15:1E:A0:1F:86:92:FE:49:47:59:33:CA:A4:F0:0A:71:4E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5453: Certificate Authority Key Identifier Extension (5) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt6 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt6, E=TestExt6@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
y
3
test.com
214123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:82:07:7b
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 15:28:01 2017
            Not After : Sun Jan 21 15:28:01 2018
        Subject: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:d2:a5:02:ed:8d:31:c8:16:ad:89:0b:0c:8e:cb:c2:
                    79:73:19:9c:02:8c:fd:dd:5a:41:e5:bc:d3:ff:22:02:
                    bb:71:91:bd:74:ca:97:71:25:7c:b0:25:ae:ac:73:20:
                    a6:3e:f7:53:61:20:f9:a6:0d:f3:94:ef:5a:d5:b9:df:
                    75:61:89:2b:83:e1:75:6c:80:0a:2c:98:bc:c5:3e:a5:
                    bc:26:a9:8d:cf:93:43:5b:49:57:0d:97:ec:04:7a:96:
                    11:00:b1:43:c0:00:51:5e:4a:db:5a:da:2e:22:5d:26:
                    0f:f4:95:e6:7e:80:8e:1e:a2:e1:67:b5:5c:f7:d2:ad:
                    1a:d0:e7:39:51:1d:2e:61:ba:f9:4a:ea:cb:b4:38:5d:
                    a0:a1:cd:53:ab:41:44:13:76:ab:86:4b:2b:4f:58:b7:
                    51:de:2e:3f:cb:11:d9:23:3f:66:1f:8c:9c:2d:ee:0f:
                    47:ed:30:09:e8:7d:53:23:33:0d:00:42:a5:74:26:03:
                    57:65:c2:49:2a:09:86:58:f6:70:e8:4d:00:92:31:87:
                    2f:17:5c:9b:9b:d4:e8:19:22:d4:f5:20:d9:b3:4c:52:
                    d8:e5:7d:23:1d:23:39:cf:b6:69:05:8b:e3:9a:55:9e:
                    03:1b:51:18:66:c1:ec:fd:22:bb:10:72:67:6e:1a:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Issuer: 
                DNS name: "test.com"
            Serial Number:
                214123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:91:db:27:24:19:4c:77:12:71:4f:c0:37:d3:49:fe:
        10:0c:ec:95:a7:fd:c8:85:55:af:be:99:f6:a5:cb:c8:
        e1:21:1f:8b:77:b6:ff:63:fa:3b:7a:bd:d9:e8:d1:b2:
        5f:c0:dc:d7:03:0e:69:d6:d3:26:2f:c1:10:bf:61:90:
        69:33:36:5f:79:22:03:0f:24:17:fe:f2:cf:eb:f1:8e:
        f7:51:a2:4e:f7:e8:b9:26:21:e6:37:c7:91:ba:f8:e2:
        0e:7d:b9:4e:9e:c8:a4:bb:f1:68:b4:f8:d6:28:d8:8b:
        56:c4:98:a8:92:70:38:63:a9:03:d1:01:5e:15:a3:60:
        8d:c9:19:02:76:cc:97:60:a0:97:0d:75:98:05:3a:a3:
        c4:3a:c7:03:cb:58:e9:72:05:50:7d:46:ff:44:af:1a:
        99:30:27:3e:89:94:47:ad:f2:76:91:7c:b7:8a:61:c8:
        0e:3b:d9:03:52:23:d0:20:2a:4a:f7:4a:bd:8d:ef:40:
        43:a6:d7:fc:a8:59:0b:dd:77:74:7b:04:82:3c:37:6c:
        20:6a:36:4e:2f:4b:3b:97:18:83:64:ba:77:72:78:32:
        e8:62:00:9f:89:aa:ad:3e:8f:6f:c1:35:85:9e:3e:9b:
        17:37:73:c5:a5:24:34:97:65:b0:30:be:47:7d:3c:0b
    Fingerprint (SHA-256):
        ED:71:79:60:91:97:22:58:DF:B3:3E:4E:43:94:23:8C:A1:84:4C:8D:5E:2A:D4:21:64:1F:15:92:A9:56:28:DF
    Fingerprint (SHA1):
        8D:AD:D0:17:A2:7D:4A:9C:1C:67:EF:90:F5:6D:CD:2B:59:5F:2E:0E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5454: Certificate Authority Key Identifier Extension (6) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt7 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt7, E=TestExt7@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
1
2
rfc822@name.tld
3
test.com
8
1.2.3.4
9
OID.0.2.213
10
0
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:82:07:88
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 15:28:05 2017
            Not After : Sun Jan 21 15:28:05 2018
        Subject: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:44:eb:a0:13:92:c6:70:dc:04:1b:bd:b7:52:a8:9a:
                    96:6b:2e:68:69:3b:88:1d:c8:ca:6a:ec:93:b0:2c:e7:
                    ba:a9:f1:41:38:7e:e0:04:8d:19:cd:28:b2:84:49:84:
                    d3:2f:d4:25:93:92:77:aa:0d:fb:f0:9f:34:9d:ef:29:
                    fc:02:cb:d1:9a:7c:91:1d:09:e6:89:e3:2d:75:27:84:
                    4e:3c:4b:75:e0:f5:53:c9:16:db:fe:7e:27:30:af:d7:
                    b2:4a:34:b6:e0:25:79:2b:04:7d:20:8c:7f:fa:f7:90:
                    aa:8f:54:a4:24:41:84:d8:d3:a0:a3:12:72:d7:0b:db:
                    ec:64:94:bc:aa:1a:2b:cf:63:08:f0:3c:d2:c6:54:6b:
                    95:f5:a2:9b:ac:eb:db:09:30:8b:8b:eb:10:11:c2:8e:
                    55:2b:1e:77:90:7a:e2:d3:f7:b3:73:74:96:ce:31:c1:
                    8f:48:96:56:31:14:6d:6c:68:4c:bc:48:89:02:7a:c7:
                    e7:8a:45:71:5a:2c:6b:ec:7e:40:5f:a9:28:ee:4d:4d:
                    ec:a0:97:c4:0c:b2:bc:05:fc:c1:ee:5e:58:4a:5d:ad:
                    59:4d:72:f1:33:7f:0b:e4:99:7d:2e:4f:4f:a3:74:61:
                    fd:e3:4c:ee:bc:33:35:7c:44:db:21:c1:ab:64:ac:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RFC822 Name: "rfc822@name.tld"
                DNS name: "test.com"
                IP Address:
                    87:07:31:2e:32:2e:33:2e:34
                Registered ID: OID.2.955.79.73.68.46.48.46.50.46.50.49.51
                Reasons:
                    80
                    (7 least significant bits unused)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7b:8c:42:33:ae:9d:63:fe:d4:78:a0:d1:b9:8d:f1:46:
        25:92:8a:16:f4:4e:de:f9:69:c7:0f:da:3a:04:e2:b8:
        01:e0:31:d8:c9:38:9d:0e:45:ec:d2:9f:69:3a:63:99:
        6b:57:9c:38:0c:19:52:13:d6:2b:9c:df:e0:93:d0:2b:
        88:28:8c:ea:ac:e8:4a:cf:16:a4:1c:cd:de:da:82:d3:
        ae:32:d6:b4:98:27:c1:de:0c:23:f7:c8:83:09:10:21:
        91:0b:0e:27:12:37:b9:3e:d5:1e:4e:a0:25:a3:96:bf:
        77:69:89:ef:56:b5:2f:8b:c0:ef:c9:ca:0a:54:64:7b:
        88:06:03:64:56:81:a7:68:75:94:11:95:0c:3c:b3:5b:
        b0:0f:29:84:29:99:f1:a6:6e:90:b0:64:a7:ee:fd:3c:
        1e:de:4e:07:54:19:a6:ca:da:ec:0b:3c:2f:5f:43:ed:
        95:13:f3:3d:e2:f0:cf:7e:ca:55:0c:9c:95:c2:18:cb:
        2b:1a:fb:a5:e7:00:c9:53:33:8f:ee:d1:be:01:5e:22:
        47:d8:1e:2f:7e:cb:05:0f:19:0b:6b:90:80:8f:bd:e2:
        80:59:81:f6:47:ca:55:78:1c:b2:9b:b9:58:b5:49:99:
        e3:25:96:e6:20:6e:7c:f0:11:0d:f1:ba:a5:3d:20:77
    Fingerprint (SHA-256):
        7E:B0:BF:2D:F9:95:81:2F:CC:8D:79:9D:A4:3C:47:E4:DE:A8:84:41:A0:A8:20:28:1B:B8:51:12:69:B0:F1:5E
    Fingerprint (SHA1):
        19:6E:A6:55:E9:1A:AA:B2:C1:38:A1:A9:9E:27:C2:74:85:BB:70:2F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5455: CRL Distribution Points Extension (7) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt8 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt8, E=TestExt8@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
2
SN=asdfsdf
4
3
test.com
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > Enter the relative name: 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:82:07:8e
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 15:28:10 2017
            Not After : Sun Jan 21 15:28:10 2018
        Subject: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ef:04:92:d8:77:97:0c:27:86:4e:a2:0a:c3:07:3d:bf:
                    bd:f6:97:83:e9:f6:4b:e8:c5:d2:05:fa:5d:0a:6f:a2:
                    fa:88:0b:2f:3a:98:73:0e:c7:04:49:08:d2:f1:7e:49:
                    0d:c0:be:d7:7e:85:9a:8c:2c:98:68:3c:44:49:6e:64:
                    ac:dc:4e:a3:1d:b9:db:4b:ba:b5:04:a2:74:63:48:d1:
                    36:d5:af:dc:6c:60:85:28:88:a2:7b:a4:6d:09:a6:ab:
                    88:d5:96:45:cb:92:2e:f7:dd:dc:7c:0a:87:1c:b0:33:
                    f2:b4:a0:4f:9e:39:aa:72:c0:22:35:0d:e5:dd:39:93:
                    a8:cf:c2:c4:eb:63:42:30:8b:e4:b8:5d:46:f4:51:b2:
                    8b:c8:67:c7:a1:35:8e:67:4b:9b:2f:45:2a:90:40:07:
                    cb:a0:dd:c5:f5:da:15:28:c6:13:63:1e:b5:ef:ee:d6:
                    77:21:1f:1c:7c:39:fb:75:1d:b3:a9:70:79:35:8b:60:
                    6c:40:4c:cd:c9:9b:b1:ef:2c:f6:d4:20:b9:ef:11:9c:
                    79:e6:4b:6a:cc:c5:73:95:79:14:58:66:27:f5:b1:ba:
                    a5:45:2a:69:0e:ea:a5:1f:1b:f1:b8:38:12:0b:8d:c1:
                    70:97:2a:b5:90:ec:2e:04:5e:a9:21:5d:09:f5:83:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RDN: "SN=asdfsdf"
                Reasons:
                    08
                    (7 least significant bits unused)
                CRL issuer: 
                    DNS name: "test.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:96:1a:58:be:98:5e:fc:70:8d:c2:e1:1f:f3:2c:79:
        ad:96:53:24:f9:95:e1:25:2f:60:82:c4:23:a9:8b:d5:
        92:d9:9e:a5:8c:b6:99:ab:ed:4b:1a:72:89:5e:9d:21:
        86:2d:9d:34:e9:c4:51:7d:8f:0c:e9:83:1b:42:cc:77:
        d9:48:b2:5e:ab:fd:3f:fb:6c:0d:33:18:2f:08:0c:6d:
        02:5b:1b:bf:50:23:df:90:29:0a:dc:0f:af:15:60:74:
        4f:b1:a2:f8:1b:93:b1:c7:05:20:d0:64:f0:ba:fe:66:
        1c:30:45:23:38:88:69:d2:fc:6e:ce:82:11:9e:5f:79:
        2b:c6:54:b5:24:59:de:b8:af:29:33:d7:bd:8e:03:fa:
        bd:f6:7f:d6:bd:d1:ca:62:67:eb:36:f7:69:c2:66:dd:
        1e:1f:76:2d:e1:e8:a1:82:72:28:2b:ed:14:82:ce:1a:
        ab:29:3b:c3:99:56:dc:42:4b:ed:25:95:7c:c8:cf:b0:
        c4:2e:ee:a3:aa:ff:59:71:34:83:e9:9d:07:87:b5:14:
        d4:55:e6:ba:ff:d6:d5:dc:59:26:28:23:6d:52:0c:f3:
        44:91:65:4e:6f:7f:76:fd:ff:98:d8:4f:94:19:40:02:
        3f:fe:a2:74:9a:f1:c7:ad:73:3e:ec:15:4f:2a:38:d9
    Fingerprint (SHA-256):
        0A:BD:D0:BB:6F:35:23:74:FC:77:F4:CC:42:7E:77:16:C3:6B:48:92:B0:8E:F4:32:E6:74:29:CF:51:D9:FB:A4
    Fingerprint (SHA1):
        65:96:22:1B:CD:5A:BF:31:5B:B4:55:0F:58:01:93:FC:DF:23:38:1B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5456: CRL Distribution Points Extension (8) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt9 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt9, E=TestExt9@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -5 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
10
n
Generating key.  This may take a few moments...
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:82:07:98
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 15:28:14 2017
            Not After : Sun Jan 21 15:28:14 2018
        Subject: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:66:a7:69:77:81:c7:1d:72:75:3d:5f:9a:36:7f:f0:
                    9d:ea:23:9e:01:fe:75:0f:3e:21:c5:e7:3b:a4:c2:be:
                    c5:ac:51:2c:54:b7:3e:6d:e3:a8:57:3d:89:77:c6:7d:
                    8c:b3:95:64:0e:74:a3:3a:b6:48:2e:a0:9b:6b:ed:31:
                    99:92:07:26:07:64:3d:d1:ce:b0:a2:b5:ed:8f:46:df:
                    1c:26:76:ac:f7:dc:03:a0:35:8e:7e:78:ce:39:14:86:
                    0d:6b:83:ef:b8:82:9b:c4:07:a4:1b:63:8d:6a:37:2f:
                    04:ca:b1:f8:c1:b3:5a:19:ae:72:5f:79:fb:32:16:4e:
                    4a:e8:95:25:eb:31:fc:9e:36:2f:d2:77:8b:31:05:39:
                    09:c6:8a:ad:ac:21:50:08:c0:1b:11:61:33:c6:ab:24:
                    42:1b:07:3e:af:d0:e9:b9:ba:d7:80:9f:48:23:cf:92:
                    d3:20:59:7c:94:64:25:c4:fa:9b:ad:aa:e5:7f:c4:0b:
                    51:39:54:74:b9:33:63:49:f0:b6:97:3a:38:6c:7b:4d:
                    17:b4:34:6e:cd:84:16:34:d5:5f:b1:b8:c1:0a:9a:68:
                    c5:15:3e:9e:fb:f2:02:29:2c:40:c3:48:f1:32:69:48:
                    3f:9e:0b:8a:0c:3e:5b:c5:64:a2:fe:a2:08:34:c3:a1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL Client,SSL Server,S/MIME>
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        af:fd:65:0f:67:77:2b:ea:dc:ec:47:03:b4:83:c2:57:
        7e:df:ec:6a:24:91:17:a2:08:b6:63:3a:ce:c7:49:a7:
        07:5e:4e:96:29:a4:74:a7:e7:d0:df:f7:65:cf:ba:04:
        a6:5c:88:b5:8d:49:30:71:d6:b0:4b:50:22:04:e5:c8:
        b8:88:f4:9a:ab:77:d7:e5:68:8d:14:12:af:06:d8:1b:
        52:f1:ac:67:ee:1a:61:4c:15:60:2b:92:bf:f5:91:f0:
        b6:00:52:b8:9b:75:0f:68:43:f9:23:cc:40:2c:e5:15:
        95:79:34:c5:34:43:36:55:b8:b0:80:b0:38:b7:62:fc:
        df:2a:ae:5a:0d:07:d9:79:5f:6a:f6:7a:b4:78:68:8d:
        93:a5:ad:e6:c9:89:f0:02:bd:85:4d:12:b2:6f:3c:f1:
        58:fd:d9:6f:53:93:28:69:e2:c7:36:24:27:83:d5:fa:
        f4:5d:23:b9:79:2f:33:dd:07:cf:55:1e:ad:a3:fd:cd:
        e3:13:f9:e6:97:43:b5:b5:c1:66:2c:f7:18:b7:28:db:
        97:c4:a4:88:8a:fe:b0:1b:cf:bb:5c:98:73:4e:c1:99:
        b7:dc:e9:36:bd:6b:02:57:6c:e1:b8:e5:77:34:88:c3:
        3e:75:25:5b:34:b8:71:10:fd:6d:d6:a4:a9:2d:3d:1b
    Fingerprint (SHA-256):
        1F:6D:8A:95:56:88:5A:C2:BC:7C:BE:6D:2F:71:A1:BF:32:FE:C2:5C:C9:65:2C:77:CD:02:52:F5:90:9E:D2:2C
    Fingerprint (SHA1):
        CE:8E:5B:63:A3:44:47:D4:89:EB:5D:33:96:0F:0C:34:8A:A6:AA:D2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5457: Certificate Type Extension (9) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt10 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt10, E=TestExt10@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -6 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt10
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:82:07:9f
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 15:28:18 2017
            Not After : Sun Jan 21 15:28:18 2018
        Subject: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:a3:85:65:b9:cd:19:6c:fe:5f:f5:50:3e:4a:49:84:
                    76:3e:07:a9:59:ed:8d:65:66:f1:96:a0:f4:0e:60:12:
                    35:77:f6:e9:0d:3a:26:b5:2a:c7:9a:b8:cb:2c:c0:b6:
                    66:c0:98:ec:33:c3:5b:0b:22:f1:a2:99:e6:29:e9:02:
                    bd:d2:21:00:3f:09:d4:e6:23:e0:59:72:2d:b5:4a:50:
                    99:06:d0:f2:9e:20:b3:43:43:be:0c:4f:04:82:3f:00:
                    e7:94:bf:65:a5:e3:f3:55:8a:5b:46:00:62:95:3d:40:
                    9f:51:31:48:5c:1c:0a:9f:b5:d3:4c:d8:e6:99:0c:50:
                    88:fe:3d:da:49:b4:29:74:c5:97:9d:c5:72:15:f5:2f:
                    ec:78:29:43:5c:b9:36:06:03:78:8f:f1:81:cf:96:5b:
                    11:9e:b2:7b:69:a0:7a:39:84:c1:22:5a:b8:44:9f:4b:
                    f7:2d:0a:4a:23:eb:c2:62:59:b5:a0:62:93:03:b6:f4:
                    21:ad:53:c3:b7:0e:ad:31:ec:15:37:86:3d:3d:ea:47:
                    2e:c6:36:a6:eb:2d:35:3d:30:3f:f0:1a:76:9a:2c:14:
                    45:77:c3:d5:cc:e8:fa:49:0e:bf:e0:25:df:50:33:2a:
                    20:01:fc:c6:b8:eb:80:8e:a7:b6:72:08:61:ec:4e:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Extended Key Usage
            Critical: True
                TLS Web Server Authentication Certificate
                TLS Web Client Authentication Certificate
                Code Signing Certificate
                E-Mail Protection Certificate
                Time Stamping Certifcate
                OCSP Responder Certificate
                Strong Crypto Export Approved
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:24:0c:93:2f:17:c6:b5:04:b0:98:c3:2a:18:22:cc:
        0c:ef:7e:7f:99:bc:a5:a8:c8:b5:3b:c3:c6:14:f1:36:
        e5:4e:1e:83:d5:7b:45:26:f0:a6:33:4c:23:36:82:4f:
        52:ac:52:e1:e4:cf:10:84:0f:b7:a5:0f:2e:06:d2:24:
        17:1d:c3:d0:21:c6:27:aa:98:fd:69:db:34:16:af:bd:
        a5:c9:66:9b:81:44:9f:e0:cc:5c:b4:2e:fe:2f:26:29:
        cc:1e:22:b4:5a:42:cb:61:69:af:99:db:70:88:84:ee:
        d7:bc:a4:b6:41:38:a9:57:44:d8:56:33:0d:dc:45:6b:
        bf:a0:bc:d6:b9:3c:ab:c0:25:2b:63:1f:05:5c:20:0a:
        f5:e1:b5:46:24:25:51:59:28:4c:cd:ec:54:a6:a1:8a:
        12:82:a2:f1:95:88:36:1f:6e:8c:ff:c6:de:0b:14:99:
        b8:8f:0f:dd:fc:9d:e8:3e:34:75:8c:78:74:0f:93:1e:
        7f:ed:36:4a:85:76:e2:d8:51:87:9f:3d:af:b3:41:3d:
        b0:d1:cd:0e:a5:7c:02:f8:f0:68:d7:46:c1:3f:2e:a9:
        81:94:68:11:86:27:cd:55:4b:f2:a0:f0:fa:72:3e:f9:
        b0:5f:dd:de:ad:fc:0a:12:71:c0:3d:df:07:c0:32:92
    Fingerprint (SHA-256):
        BC:57:B2:AE:87:9D:86:2B:6C:AF:70:3B:94:05:41:9B:39:A5:61:6C:63:AE:27:32:C1:0A:E1:33:9D:59:04:A6
    Fingerprint (SHA1):
        D3:12:43:9E:4B:BF:82:C9:49:A0:5B:C3:A1:8F:8B:C2:48:0C:F4:68
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5458: Extended Key Usage Extension (10) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt11 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt11
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:82:07:a8
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 15:28:25 2017
            Not After : Sun Jan 21 15:28:25 2018
        Subject: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:3d:69:c5:f9:69:64:49:04:9f:cf:7a:e9:83:c5:6d:
                    5d:8d:94:1b:3a:82:80:56:9c:b2:01:77:fd:5a:0e:37:
                    1c:22:97:68:73:29:6b:bd:40:f1:55:a8:8c:e2:7d:a3:
                    7e:e1:99:e6:ec:6b:cc:31:81:6d:87:b2:50:24:0c:76:
                    be:1b:62:51:6b:81:74:9a:5f:5d:bb:01:d2:46:8a:62:
                    0a:f9:86:33:49:90:5a:1a:ac:74:6d:ad:35:6c:03:4e:
                    e8:f5:ea:f0:3a:a8:72:72:d6:8b:f6:bf:74:e2:40:58:
                    4d:57:74:dc:7e:3b:95:fc:a4:04:ef:17:3a:5c:e7:d1:
                    f5:73:54:01:83:a6:38:7f:de:e2:67:da:00:a3:33:99:
                    3d:e5:0e:ff:5e:da:49:39:4a:2f:e0:0c:54:32:80:95:
                    f2:8d:ff:1e:38:1a:3f:9a:b2:bb:4d:bd:2d:4e:14:ec:
                    2b:4c:2d:d6:dd:03:53:2b:73:f9:ee:e6:5a:ac:99:85:
                    0c:cc:0c:5a:7f:e3:44:0d:fc:d1:95:58:a4:3b:f7:0d:
                    11:1a:81:b7:ad:34:3b:1f:4d:95:ee:bb:23:4e:07:04:
                    08:30:48:83:42:c9:ea:4f:7e:25:23:89:f3:d9:0d:02:
                    b9:98:59:cb:2b:b0:f1:fc:6c:4c:26:29:f2:69:aa:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a0:67:79:e1:18:a5:cd:ae:57:20:f8:54:9c:ae:91:eb:
        63:5a:ef:9b:58:2a:89:94:06:13:5a:0f:d2:65:ab:87:
        9f:4a:25:7b:4d:8b:5b:c7:97:79:91:57:d0:b8:bd:ad:
        1c:2b:90:43:41:38:e3:4b:3d:f4:6a:76:e3:4a:a9:2c:
        02:7c:c9:e0:41:8f:a9:ea:84:f7:46:22:ca:24:9b:6e:
        31:9d:02:69:24:6a:8f:c0:7b:bd:e6:1a:76:66:1f:8d:
        7e:c4:1e:57:c2:c1:8c:45:79:3b:f9:57:5c:7f:97:34:
        4e:bf:fa:f6:32:15:24:28:82:fd:af:ef:81:fa:63:42:
        c9:a9:74:80:80:b9:15:30:f5:a3:0d:ab:fd:23:e0:95:
        67:b5:2e:29:98:98:c1:a0:00:86:85:f1:b2:a4:6b:21:
        d9:f9:13:f8:38:47:41:7b:37:b6:4b:1b:0a:f4:37:85:
        4b:6f:0e:09:51:15:48:39:a0:74:da:5f:07:58:ea:ca:
        30:64:46:ae:db:ea:79:a9:b6:96:7c:b7:6a:0f:ff:ed:
        6f:6d:5e:d1:f5:07:24:75:60:b7:ce:0b:ab:81:c9:c2:
        57:8b:0b:74:87:f1:6b:63:ba:d1:c7:66:9b:72:9f:19:
        e1:2e:06:0c:1c:1c:71:66:07:29:ba:44:b3:cb:b3:66
    Fingerprint (SHA-256):
        4A:FE:C1:76:AF:36:1F:05:3F:4E:2A:94:FC:78:07:0C:45:86:94:84:EB:18:20:69:A6:1D:9D:98:D8:03:F2:C1
    Fingerprint (SHA1):
        4D:29:18:DE:7F:4B:B7:27:69:A4:6C:47:8C:08:9F:D6:B0:C2:0B:50
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5459: Certificate Key Usage Extension (11) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #5460: create cert with invalid SAN parameter (12) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com,dns:www.example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #5461: create cert with invalid SAN parameter (13) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN dns:example.com,dns:www.example.com
Generating key.  This may take a few moments...
cert.sh: #5462: create cert with valid SAN parameter (14) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:82:07:c3
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Sat Oct 21 15:28:37 2017
            Not After : Sun Jan 21 15:28:37 2018
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:57:9c:05:1d:1d:2e:24:65:04:f0:12:e8:30:b1:a0:
                    17:f6:77:7f:97:f2:90:9f:73:1a:fe:73:58:ed:8b:35:
                    5e:75:ad:a8:95:7f:94:90:72:81:81:0f:5e:49:68:ab:
                    23:63:9c:78:c9:21:5c:44:19:b5:06:44:da:93:75:4d:
                    3f:f2:f2:79:de:f7:01:1e:c9:ad:25:64:c3:66:b3:86:
                    ff:a1:58:ac:55:70:15:ac:be:70:99:18:ce:f1:fb:39:
                    78:19:4d:ea:67:a8:f2:21:d8:67:95:e6:d8:fe:df:16:
                    71:00:6a:a0:05:aa:39:08:75:3e:e6:04:b7:3f:06:fc:
                    36:e3:fe:b3:bf:11:03:41:dd:53:a5:62:be:7a:d3:9f:
                    a7:ef:9a:c4:ee:a7:81:61:dc:e3:8a:70:df:d9:1c:54:
                    2e:f0:08:0f:9c:e8:94:9a:c4:98:9d:4e:87:ce:95:21:
                    6f:38:04:00:af:be:d9:19:2c:12:78:95:fb:d2:a5:e2:
                    75:e4:ad:cf:4a:6e:8f:6c:10:9a:9f:4f:f1:f3:cc:fb:
                    3f:90:05:56:75:f0:d3:d2:f1:e0:f9:e8:07:44:93:79:
                    55:fb:61:2a:e2:76:8c:42:91:ff:be:7f:32:1d:34:21:
                    35:b1:b7:31:e0:c0:14:b2:fa:a5:7b:2f:cf:b9:12:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ae:40:07:65:c4:b1:6a:0b:c1:3e:ed:2f:0e:26:c7:10:
        1a:9e:8d:f8:d9:10:f0:49:f0:61:21:c4:92:df:78:37:
        46:06:e0:59:ba:3d:d0:8b:5c:af:4e:cc:73:c6:f4:64:
        21:4b:d8:c8:b3:2c:bd:39:8f:e5:f3:d0:53:38:2e:f0:
        59:be:61:c6:a5:1c:9a:6f:43:58:30:dc:83:f3:36:e8:
        99:17:6d:6e:25:0d:68:8b:b8:33:5b:07:35:e7:7c:e7:
        93:71:36:e9:cf:4d:bd:0e:09:d7:b4:0c:fb:b9:ae:8e:
        d3:85:8b:2e:e1:ab:5d:e1:ce:43:00:6a:af:24:52:3f:
        2a:8e:0b:5b:1d:85:91:8e:53:c2:a2:50:6d:be:35:bb:
        a3:7c:a9:d8:29:b8:a2:a8:0a:b9:00:f7:4b:d2:7c:88:
        0a:b6:85:b8:20:83:96:c0:c3:6a:10:1f:0d:a4:50:a7:
        e2:d8:0d:ff:a4:53:4e:4e:45:0d:58:f2:a7:55:61:cd:
        a9:6b:41:aa:d6:e4:66:01:b1:5c:02:9e:6f:61:1d:8a:
        63:c5:88:58:88:ef:c2:fa:05:90:aa:6f:2d:59:a2:28:
        bc:c8:f0:8d:d0:e1:bd:c0:45:6a:4e:51:87:25:ee:71:
        0a:0f:e2:61:52:08:84:12:5d:81:80:44:79:36:5d:e7
    Fingerprint (SHA-256):
        D0:DC:7C:A7:2B:6C:C3:70:8D:87:B0:9C:1E:73:E2:89:4E:A1:88:EF:7B:88:07:AC:CF:46:88:5A:D8:67:A1:F4
    Fingerprint (SHA1):
        C3:C6:CD:4A:1F:94:99:98:2A:8F:FC:DC:DC:57:31:8C:B2:D2:1E:5D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5463: create cert with valid SAN parameter (15) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN --dump-ext-val 2.5.29.17
writing output to /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
cert.sh: #5464: dump extension 2.5.29.17 to file /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der (16) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #5465: create cert with valid SAN parameter (17) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #5466: expect failure to list cert, because we deleted it (18) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der: error 0: Success
cert.sh: #5467: create cert with invalid generic ext parameter (19) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der: error 0: Success
cert.sh: #5468: create cert with invalid generic ext parameter (20) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der: error 0: Success
cert.sh: #5469: create cert with invalid generic ext parameter (21) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric 2.5.29.17:not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
cert.sh: #5470: create cert with valid generic ext parameter (22) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:82:07:ef
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Sat Oct 21 15:29:00 2017
            Not After : Sun Jan 21 15:29:00 2018
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f0:f4:3e:30:e2:f6:c5:61:81:b6:bd:47:27:d8:6f:92:
                    11:f6:c4:87:7e:79:db:d7:c6:86:7d:c1:35:67:3c:a3:
                    a0:44:77:e3:8a:0e:ca:0e:a2:4f:e1:d7:a2:cb:fc:fd:
                    6e:e4:97:7c:37:50:b5:de:48:cc:89:32:a6:50:61:1e:
                    69:a1:a4:c8:78:77:bd:31:f2:f0:e6:b9:6c:62:39:07:
                    6c:0d:1d:c3:07:b8:33:ae:3d:0d:92:a7:8d:4a:86:d5:
                    8e:34:ae:7b:73:8b:f8:3f:42:c8:d0:f1:63:a2:93:0e:
                    69:01:1d:13:57:4e:ca:a4:73:e1:e4:2e:eb:93:17:52:
                    17:b2:ce:d2:df:2c:62:0f:bf:94:92:3c:49:ac:38:a9:
                    c3:1f:b0:3f:ea:50:1b:c2:e7:78:3b:84:9a:fe:fa:e9:
                    bb:d4:8f:ed:68:d3:67:aa:1f:ab:91:cb:ab:2a:fd:be:
                    2b:e6:98:42:a3:ce:6d:43:d5:9b:42:f1:07:9f:ad:ce:
                    0d:17:9a:ee:62:b6:23:5f:70:d3:91:8b:e5:30:e8:cc:
                    39:70:75:36:51:74:66:ab:2f:3d:f8:2e:72:be:a1:ca:
                    04:cf:91:9b:e2:4d:c0:0c:df:b5:ae:c2:01:69:ee:e0:
                    22:a7:e0:23:38:a3:23:0c:fe:b3:94:ab:f7:27:e1:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        78:02:98:db:92:cc:da:ff:8e:11:32:81:c8:aa:fc:09:
        a3:f5:68:35:45:88:ee:e5:44:3a:9e:71:9f:36:55:ff:
        f4:83:fe:9d:2a:01:25:33:bd:3b:7b:c4:b0:ca:cb:db:
        38:34:1d:9f:2f:7f:d7:c1:d4:93:a4:cf:0c:e7:7d:7d:
        a3:98:d6:21:31:7c:3a:52:e0:f5:82:58:d5:25:b6:80:
        27:26:57:68:ac:a4:fa:e3:e6:ba:37:8f:92:aa:56:83:
        73:7d:1d:a4:38:b1:65:4b:4f:ef:6d:ce:9a:8b:76:a8:
        b1:21:46:aa:3c:cc:de:4d:7b:23:4f:de:32:d6:10:51:
        0a:97:da:ab:b0:28:20:71:66:0b:52:bd:7d:a3:5a:d7:
        8d:6e:84:bb:c0:84:07:3e:aa:26:73:23:a1:d6:24:53:
        6f:81:96:79:72:a9:a3:a0:ef:26:f6:96:d4:6f:53:99:
        83:b5:61:0d:c9:ed:7e:e5:34:1f:18:6a:17:26:9c:4d:
        9a:67:13:cd:0a:8c:fc:89:96:c6:a4:4d:c9:f1:08:0f:
        fb:fa:15:0a:a6:87:cd:75:a4:71:5b:60:0d:ec:33:70:
        6a:4b:d3:bb:b6:b2:d7:7c:23:84:62:f5:de:f0:51:ea:
        bc:92:bc:56:0f:2c:e1:a8:52:32:0d:40:21:d0:9e:ad
    Fingerprint (SHA-256):
        CB:D2:A9:F8:EA:66:E8:AC:1E:1B:29:6A:58:28:03:B6:14:C7:5F:4F:45:02:58:59:F3:72:85:43:3D:A5:4A:CF
    Fingerprint (SHA1):
        DA:EF:18:C7:AD:9C:6C:17:2D:92:A4:89:86:0C:8B:93:88:8F:31:2E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #5471: create cert with valid generic ext parameter (23) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #5472: create cert with valid generic ext parameter (24) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #5473: expect failure to list cert, because we deleted it (25) - PASSED
cert.sh: Create A Password Test Cert  ==============
cert.sh: Create A Password Test Ca  --------
cert.sh: Creating a CA Certificate PasswordCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dbpass
cert.sh: Creating CA Cert DB --------------------------
certutil -s "CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dbpass -f ../tests.pw
cert.sh: #5474: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dbpass
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5475: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert PasswordCA  --------------------------
certutil -s "CN=NSS Password Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dbpass -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #5476: Creating CA Cert PasswordCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n PasswordCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dbpass -o root.cert
cert.sh: #5477: Exporting Root Cert - PASSED
cert.sh: Changing password on Password Test Cert's Cert DB --------------------------
certutil -W -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dbpass -f ../tests.pw -@ ../tests.fipspw
Password changed successfully.
cert.sh: #5478: Changing password on Password Test Cert's Cert DB - PASSED
cert.sh: Generate Certificate for Password Test Cert with new password --------------------------
certutil -s "CN=Password Test Cert, E=password@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCert -c PasswordCA -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dbpass -f ../tests.fipspw -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5479: Generate Certificate for Password Test Cert with new password - PASSED
cert.sh SUCCESS: PASSWORD passed
cert.sh: Verify Certificate for Password Test Cert with new password --------------------------
certutil -V -n PasswordCert -u S -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/dbpass -f ../tests.fipspw
certutil: certificate is valid
cert.sh: #5480: Verify Certificate for Password Test Cert with new password - PASSED
cert.sh: Creating Distrusted Certificate
cert.sh: Initializing Distrusted's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
cert.sh: #5481: Initializing Distrusted's Cert DB - PASSED
cert.sh: Loading root cert module to Distrusted's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #5482: Loading root cert module to Distrusted's Cert DB - PASSED
cert.sh: Import Root CA for Distrusted --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -i ../CA/TestCA.ca.cert
cert.sh: #5483: Import Root CA for Distrusted - PASSED
cert.sh: Import DSA Root CA for Distrusted --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -i ../CA/TestCA-dsa.ca.cert
cert.sh: #5484: Import DSA Root CA for Distrusted - PASSED
cert.sh: Import EC Root CA for Distrusted --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -i ../CA/TestCA-ec.ca.cert
cert.sh: #5485: Import EC Root CA for Distrusted - PASSED
cert.sh: Generate Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5486: Generate Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's Request --------------------------
certutil -C -c TestCA -m 2000 -v 60 -d ../CA -i req -o Distrusted.cert -f ../tests.pw 
cert.sh: #5487: Sign Distrusted's Request - PASSED
cert.sh: Import Distrusted's Cert --------------------------
certutil -A -n Distrusted -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5488: Import Distrusted's Cert - PASSED
cert.sh SUCCESS: Distrusted's Cert Created
cert.sh: Generate DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5489: Generate DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 2000 -v 60 -d ../CA -i req -o Distrusted-dsa.cert -f ../tests.pw 
cert.sh: #5490: Sign Distrusted's DSA Request - PASSED
cert.sh: Import Distrusted's DSA Cert --------------------------
certutil -A -n Distrusted-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5491: Import Distrusted's DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5492: Generate mixed DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 22000 -v 60 -d ../CA -i req -o Distrusted-dsamixed.cert -f ../tests.pw 
cert.sh: #5493: Sign Distrusted's DSA Request with RSA - PASSED
cert.sh: Import Distrusted's mixed DSA Cert --------------------------
certutil -A -n Distrusted-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5494: Import Distrusted's mixed DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5495: Generate EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request --------------------------
certutil -C -c TestCA-ec -m 2000 -v 60 -d ../CA -i req -o Distrusted-ec.cert -f ../tests.pw 
cert.sh: #5496: Sign Distrusted's EC Request - PASSED
cert.sh: Import Distrusted's EC Cert --------------------------
certutil -A -n Distrusted-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5497: Import Distrusted's EC Cert - PASSED
cert.sh SUCCESS: Distrusted's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5498: Generate mixed EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request with RSA --------------------------
certutil -C -c TestCA -m 12000 -v 60 -d ../CA -i req -o Distrusted-ecmixed.cert -f ../tests.pw 
cert.sh: #5499: Sign Distrusted's EC Request with RSA - PASSED
cert.sh: Import Distrusted's mixed EC Cert --------------------------
certutil -A -n Distrusted-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5500: Import Distrusted's mixed EC Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed EC Cert Created
cert.sh: Mark CERT as unstrusted --------------------------
certutil -M -n Distrusted -t p,p,p -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
cert.sh: #5501: Mark CERT as unstrusted - PASSED
cert.sh: Creating Distrusted Intermediate
cert.sh: Creating a CA Certificate DistrustedCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating CA Cert DistrustedCA  --------------------------
certutil -s "CN=DistrustedCA, E=DistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n DistrustedCA -t ,, -v 600 -c TestCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2010
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Is this a critical extension [y/N]?
cert.sh: #5502: Creating CA Cert DistrustedCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n DistrustedCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -o root.cert
cert.sh: #5503: Exporting Root Cert - PASSED
cert.sh: Import Distrusted Intermediate --------------------------
certutil -A -n DistrustedCA -t p,p,p -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -i ../CA/DistrustedCA.ca.cert
cert.sh: #5504: Import Distrusted Intermediate - PASSED
cert.sh: Generate Cert Request for Leaf Chained to Distrusted CA --------------------------
certutil -s "CN=LeafChainedToDistrustedCA, E=LeafChainedToDistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5505: Generate Cert Request for Leaf Chained to Distrusted CA - PASSED
cp: './req' and '/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA/req' are the same file
cert.sh: Sign LeafChainedToDistrustedCA's Request --------------------------
certutil -C -c DistrustedCA -m 100 -v 60 -d ../CA -i req -o LeafChainedToDistrustedCA.cert -f ../tests.pw
cert.sh: #5506: Sign LeafChainedToDistrustedCA's Request - PASSED
cert.sh: Import LeafChainedToDistrustedCA's Cert  -t u,u,u --------------------------
certutil -A -n LeafChainedToDistrustedCA -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i LeafChainedToDistrustedCA.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5507: Import LeafChainedToDistrustedCA's Cert  -t u,u,u - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Server --------------------------
certutil -V -n LeafChainedToDistrustedCA -u V -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #5508: Verify LeafChainedToDistrustedCA Cert for SSL Server - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Client --------------------------
certutil -V -n LeafChainedToDistrustedCA -u C -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #5509: Verify LeafChainedToDistrustedCA Cert for SSL Client - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u S -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #5510: Verify LeafChainedToDistrustedCA Cert for Email signer - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email recipient --------------------------
certutil -V -n LeafChainedToDistrustedCA -u R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #5511: Verify LeafChainedToDistrustedCA Cert for Email recipient - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for OCSP responder --------------------------
certutil -V -n LeafChainedToDistrustedCA -u O -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #5512: Verify LeafChainedToDistrustedCA Cert for OCSP responder - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Object Signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u J -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #5513: Verify LeafChainedToDistrustedCA Cert for Object Signer - PASSED
cert.sh: Verify Distrusted Cert for SSL Server --------------------------
certutil -V -n Distrusted -u V -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #5514: Verify Distrusted Cert for SSL Server - PASSED
cert.sh: Verify Distrusted Cert for SSL Client --------------------------
certutil -V -n Distrusted -u C -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #5515: Verify Distrusted Cert for SSL Client - PASSED
cert.sh: Verify Distrusted Cert for Email signer --------------------------
certutil -V -n Distrusted -u S -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #5516: Verify Distrusted Cert for Email signer - PASSED
cert.sh: Verify Distrusted Cert for Email recipient --------------------------
certutil -V -n Distrusted -u R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #5517: Verify Distrusted Cert for Email recipient - PASSED
cert.sh: Verify Distrusted Cert for OCSP responder --------------------------
certutil -V -n Distrusted -u O -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #5518: Verify Distrusted Cert for OCSP responder - PASSED
cert.sh: Verify Distrusted Cert for Object Signer --------------------------
certutil -V -n Distrusted -u J -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #5519: Verify Distrusted Cert for Object Signer - PASSED
cert.sh: OCSP response creation selftest
cert.sh: perform selftest --------------------------
ocspresp /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/serverCA serverCA chain-1-serverCA -f ../tests.pw
cert.sh: #5520: perform selftest - PASSED
cert.sh: Creating Client CA Issued Certificates Range 40 - 52 ===
cert.sh: Generate Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5521: Generate Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o TestUser40.cert -f ../tests.pw 
cert.sh: #5522: Sign TestUser40's Request - PASSED
cert.sh: Import TestUser40's Cert --------------------------
certutil -A -n TestUser40 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5523: Import TestUser40's Cert - PASSED
cert.sh SUCCESS: TestUser40's Cert Created
cert.sh: Generate DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5524: Generate DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o TestUser40-dsa.cert -f ../tests.pw 
cert.sh: #5525: Sign TestUser40's DSA Request - PASSED
cert.sh: Import TestUser40's DSA Cert --------------------------
certutil -A -n TestUser40-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5526: Import TestUser40's DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5527: Generate mixed DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o TestUser40-dsamixed.cert -f ../tests.pw 
cert.sh: #5528: Sign TestUser40's DSA Request with RSA - PASSED
cert.sh: Import TestUser40's mixed DSA Cert --------------------------
certutil -A -n TestUser40-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5529: Import TestUser40's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5530: Generate EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o TestUser40-ec.cert -f ../tests.pw 
cert.sh: #5531: Sign TestUser40's EC Request - PASSED
cert.sh: Import TestUser40's EC Cert --------------------------
certutil -A -n TestUser40-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5532: Import TestUser40's EC Cert - PASSED
cert.sh SUCCESS: TestUser40's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5533: Generate mixed EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o TestUser40-ecmixed.cert -f ../tests.pw 
cert.sh: #5534: Sign TestUser40's EC Request with RSA - PASSED
cert.sh: Import TestUser40's mixed EC Cert --------------------------
certutil -A -n TestUser40-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5535: Import TestUser40's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5536: Generate Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's Request --------------------------
certutil -C -c TestCA -m 41 -v 60 -d ../CA -i req -o TestUser41.cert -f ../tests.pw 
cert.sh: #5537: Sign TestUser41's Request - PASSED
cert.sh: Import TestUser41's Cert --------------------------
certutil -A -n TestUser41 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5538: Import TestUser41's Cert - PASSED
cert.sh SUCCESS: TestUser41's Cert Created
cert.sh: Generate DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5539: Generate DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 41 -v 60 -d ../CA -i req -o TestUser41-dsa.cert -f ../tests.pw 
cert.sh: #5540: Sign TestUser41's DSA Request - PASSED
cert.sh: Import TestUser41's DSA Cert --------------------------
certutil -A -n TestUser41-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5541: Import TestUser41's DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5542: Generate mixed DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20041 -v 60 -d ../CA -i req -o TestUser41-dsamixed.cert -f ../tests.pw 
cert.sh: #5543: Sign TestUser41's DSA Request with RSA - PASSED
cert.sh: Import TestUser41's mixed DSA Cert --------------------------
certutil -A -n TestUser41-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5544: Import TestUser41's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5545: Generate EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request --------------------------
certutil -C -c TestCA-ec -m 41 -v 60 -d ../CA -i req -o TestUser41-ec.cert -f ../tests.pw 
cert.sh: #5546: Sign TestUser41's EC Request - PASSED
cert.sh: Import TestUser41's EC Cert --------------------------
certutil -A -n TestUser41-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5547: Import TestUser41's EC Cert - PASSED
cert.sh SUCCESS: TestUser41's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5548: Generate mixed EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10041 -v 60 -d ../CA -i req -o TestUser41-ecmixed.cert -f ../tests.pw 
cert.sh: #5549: Sign TestUser41's EC Request with RSA - PASSED
cert.sh: Import TestUser41's mixed EC Cert --------------------------
certutil -A -n TestUser41-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5550: Import TestUser41's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5551: Generate Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's Request --------------------------
certutil -C -c TestCA -m 42 -v 60 -d ../CA -i req -o TestUser42.cert -f ../tests.pw 
cert.sh: #5552: Sign TestUser42's Request - PASSED
cert.sh: Import TestUser42's Cert --------------------------
certutil -A -n TestUser42 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5553: Import TestUser42's Cert - PASSED
cert.sh SUCCESS: TestUser42's Cert Created
cert.sh: Generate DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5554: Generate DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 42 -v 60 -d ../CA -i req -o TestUser42-dsa.cert -f ../tests.pw 
cert.sh: #5555: Sign TestUser42's DSA Request - PASSED
cert.sh: Import TestUser42's DSA Cert --------------------------
certutil -A -n TestUser42-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5556: Import TestUser42's DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5557: Generate mixed DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20042 -v 60 -d ../CA -i req -o TestUser42-dsamixed.cert -f ../tests.pw 
cert.sh: #5558: Sign TestUser42's DSA Request with RSA - PASSED
cert.sh: Import TestUser42's mixed DSA Cert --------------------------
certutil -A -n TestUser42-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5559: Import TestUser42's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5560: Generate EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request --------------------------
certutil -C -c TestCA-ec -m 42 -v 60 -d ../CA -i req -o TestUser42-ec.cert -f ../tests.pw 
cert.sh: #5561: Sign TestUser42's EC Request - PASSED
cert.sh: Import TestUser42's EC Cert --------------------------
certutil -A -n TestUser42-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5562: Import TestUser42's EC Cert - PASSED
cert.sh SUCCESS: TestUser42's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5563: Generate mixed EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10042 -v 60 -d ../CA -i req -o TestUser42-ecmixed.cert -f ../tests.pw 
cert.sh: #5564: Sign TestUser42's EC Request with RSA - PASSED
cert.sh: Import TestUser42's mixed EC Cert --------------------------
certutil -A -n TestUser42-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5565: Import TestUser42's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5566: Generate Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's Request --------------------------
certutil -C -c TestCA -m 43 -v 60 -d ../CA -i req -o TestUser43.cert -f ../tests.pw 
cert.sh: #5567: Sign TestUser43's Request - PASSED
cert.sh: Import TestUser43's Cert --------------------------
certutil -A -n TestUser43 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5568: Import TestUser43's Cert - PASSED
cert.sh SUCCESS: TestUser43's Cert Created
cert.sh: Generate DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5569: Generate DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 43 -v 60 -d ../CA -i req -o TestUser43-dsa.cert -f ../tests.pw 
cert.sh: #5570: Sign TestUser43's DSA Request - PASSED
cert.sh: Import TestUser43's DSA Cert --------------------------
certutil -A -n TestUser43-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5571: Import TestUser43's DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5572: Generate mixed DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20043 -v 60 -d ../CA -i req -o TestUser43-dsamixed.cert -f ../tests.pw 
cert.sh: #5573: Sign TestUser43's DSA Request with RSA - PASSED
cert.sh: Import TestUser43's mixed DSA Cert --------------------------
certutil -A -n TestUser43-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5574: Import TestUser43's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5575: Generate EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request --------------------------
certutil -C -c TestCA-ec -m 43 -v 60 -d ../CA -i req -o TestUser43-ec.cert -f ../tests.pw 
cert.sh: #5576: Sign TestUser43's EC Request - PASSED
cert.sh: Import TestUser43's EC Cert --------------------------
certutil -A -n TestUser43-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5577: Import TestUser43's EC Cert - PASSED
cert.sh SUCCESS: TestUser43's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5578: Generate mixed EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10043 -v 60 -d ../CA -i req -o TestUser43-ecmixed.cert -f ../tests.pw 
cert.sh: #5579: Sign TestUser43's EC Request with RSA - PASSED
cert.sh: Import TestUser43's mixed EC Cert --------------------------
certutil -A -n TestUser43-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5580: Import TestUser43's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5581: Generate Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's Request --------------------------
certutil -C -c TestCA -m 44 -v 60 -d ../CA -i req -o TestUser44.cert -f ../tests.pw 
cert.sh: #5582: Sign TestUser44's Request - PASSED
cert.sh: Import TestUser44's Cert --------------------------
certutil -A -n TestUser44 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5583: Import TestUser44's Cert - PASSED
cert.sh SUCCESS: TestUser44's Cert Created
cert.sh: Generate DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5584: Generate DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 44 -v 60 -d ../CA -i req -o TestUser44-dsa.cert -f ../tests.pw 
cert.sh: #5585: Sign TestUser44's DSA Request - PASSED
cert.sh: Import TestUser44's DSA Cert --------------------------
certutil -A -n TestUser44-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5586: Import TestUser44's DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5587: Generate mixed DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20044 -v 60 -d ../CA -i req -o TestUser44-dsamixed.cert -f ../tests.pw 
cert.sh: #5588: Sign TestUser44's DSA Request with RSA - PASSED
cert.sh: Import TestUser44's mixed DSA Cert --------------------------
certutil -A -n TestUser44-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5589: Import TestUser44's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5590: Generate EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request --------------------------
certutil -C -c TestCA-ec -m 44 -v 60 -d ../CA -i req -o TestUser44-ec.cert -f ../tests.pw 
cert.sh: #5591: Sign TestUser44's EC Request - PASSED
cert.sh: Import TestUser44's EC Cert --------------------------
certutil -A -n TestUser44-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5592: Import TestUser44's EC Cert - PASSED
cert.sh SUCCESS: TestUser44's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5593: Generate mixed EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10044 -v 60 -d ../CA -i req -o TestUser44-ecmixed.cert -f ../tests.pw 
cert.sh: #5594: Sign TestUser44's EC Request with RSA - PASSED
cert.sh: Import TestUser44's mixed EC Cert --------------------------
certutil -A -n TestUser44-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5595: Import TestUser44's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5596: Generate Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's Request --------------------------
certutil -C -c TestCA -m 45 -v 60 -d ../CA -i req -o TestUser45.cert -f ../tests.pw 
cert.sh: #5597: Sign TestUser45's Request - PASSED
cert.sh: Import TestUser45's Cert --------------------------
certutil -A -n TestUser45 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5598: Import TestUser45's Cert - PASSED
cert.sh SUCCESS: TestUser45's Cert Created
cert.sh: Generate DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5599: Generate DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 45 -v 60 -d ../CA -i req -o TestUser45-dsa.cert -f ../tests.pw 
cert.sh: #5600: Sign TestUser45's DSA Request - PASSED
cert.sh: Import TestUser45's DSA Cert --------------------------
certutil -A -n TestUser45-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5601: Import TestUser45's DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5602: Generate mixed DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20045 -v 60 -d ../CA -i req -o TestUser45-dsamixed.cert -f ../tests.pw 
cert.sh: #5603: Sign TestUser45's DSA Request with RSA - PASSED
cert.sh: Import TestUser45's mixed DSA Cert --------------------------
certutil -A -n TestUser45-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5604: Import TestUser45's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5605: Generate EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request --------------------------
certutil -C -c TestCA-ec -m 45 -v 60 -d ../CA -i req -o TestUser45-ec.cert -f ../tests.pw 
cert.sh: #5606: Sign TestUser45's EC Request - PASSED
cert.sh: Import TestUser45's EC Cert --------------------------
certutil -A -n TestUser45-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5607: Import TestUser45's EC Cert - PASSED
cert.sh SUCCESS: TestUser45's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5608: Generate mixed EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10045 -v 60 -d ../CA -i req -o TestUser45-ecmixed.cert -f ../tests.pw 
cert.sh: #5609: Sign TestUser45's EC Request with RSA - PASSED
cert.sh: Import TestUser45's mixed EC Cert --------------------------
certutil -A -n TestUser45-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5610: Import TestUser45's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5611: Generate Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's Request --------------------------
certutil -C -c TestCA -m 46 -v 60 -d ../CA -i req -o TestUser46.cert -f ../tests.pw 
cert.sh: #5612: Sign TestUser46's Request - PASSED
cert.sh: Import TestUser46's Cert --------------------------
certutil -A -n TestUser46 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5613: Import TestUser46's Cert - PASSED
cert.sh SUCCESS: TestUser46's Cert Created
cert.sh: Generate DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5614: Generate DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 46 -v 60 -d ../CA -i req -o TestUser46-dsa.cert -f ../tests.pw 
cert.sh: #5615: Sign TestUser46's DSA Request - PASSED
cert.sh: Import TestUser46's DSA Cert --------------------------
certutil -A -n TestUser46-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5616: Import TestUser46's DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5617: Generate mixed DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20046 -v 60 -d ../CA -i req -o TestUser46-dsamixed.cert -f ../tests.pw 
cert.sh: #5618: Sign TestUser46's DSA Request with RSA - PASSED
cert.sh: Import TestUser46's mixed DSA Cert --------------------------
certutil -A -n TestUser46-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5619: Import TestUser46's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5620: Generate EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request --------------------------
certutil -C -c TestCA-ec -m 46 -v 60 -d ../CA -i req -o TestUser46-ec.cert -f ../tests.pw 
cert.sh: #5621: Sign TestUser46's EC Request - PASSED
cert.sh: Import TestUser46's EC Cert --------------------------
certutil -A -n TestUser46-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5622: Import TestUser46's EC Cert - PASSED
cert.sh SUCCESS: TestUser46's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5623: Generate mixed EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10046 -v 60 -d ../CA -i req -o TestUser46-ecmixed.cert -f ../tests.pw 
cert.sh: #5624: Sign TestUser46's EC Request with RSA - PASSED
cert.sh: Import TestUser46's mixed EC Cert --------------------------
certutil -A -n TestUser46-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5625: Import TestUser46's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5626: Generate Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's Request --------------------------
certutil -C -c TestCA -m 47 -v 60 -d ../CA -i req -o TestUser47.cert -f ../tests.pw 
cert.sh: #5627: Sign TestUser47's Request - PASSED
cert.sh: Import TestUser47's Cert --------------------------
certutil -A -n TestUser47 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5628: Import TestUser47's Cert - PASSED
cert.sh SUCCESS: TestUser47's Cert Created
cert.sh: Generate DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5629: Generate DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 47 -v 60 -d ../CA -i req -o TestUser47-dsa.cert -f ../tests.pw 
cert.sh: #5630: Sign TestUser47's DSA Request - PASSED
cert.sh: Import TestUser47's DSA Cert --------------------------
certutil -A -n TestUser47-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5631: Import TestUser47's DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5632: Generate mixed DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20047 -v 60 -d ../CA -i req -o TestUser47-dsamixed.cert -f ../tests.pw 
cert.sh: #5633: Sign TestUser47's DSA Request with RSA - PASSED
cert.sh: Import TestUser47's mixed DSA Cert --------------------------
certutil -A -n TestUser47-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5634: Import TestUser47's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5635: Generate EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request --------------------------
certutil -C -c TestCA-ec -m 47 -v 60 -d ../CA -i req -o TestUser47-ec.cert -f ../tests.pw 
cert.sh: #5636: Sign TestUser47's EC Request - PASSED
cert.sh: Import TestUser47's EC Cert --------------------------
certutil -A -n TestUser47-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5637: Import TestUser47's EC Cert - PASSED
cert.sh SUCCESS: TestUser47's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5638: Generate mixed EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10047 -v 60 -d ../CA -i req -o TestUser47-ecmixed.cert -f ../tests.pw 
cert.sh: #5639: Sign TestUser47's EC Request with RSA - PASSED
cert.sh: Import TestUser47's mixed EC Cert --------------------------
certutil -A -n TestUser47-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5640: Import TestUser47's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5641: Generate Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's Request --------------------------
certutil -C -c TestCA -m 48 -v 60 -d ../CA -i req -o TestUser48.cert -f ../tests.pw 
cert.sh: #5642: Sign TestUser48's Request - PASSED
cert.sh: Import TestUser48's Cert --------------------------
certutil -A -n TestUser48 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5643: Import TestUser48's Cert - PASSED
cert.sh SUCCESS: TestUser48's Cert Created
cert.sh: Generate DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5644: Generate DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 48 -v 60 -d ../CA -i req -o TestUser48-dsa.cert -f ../tests.pw 
cert.sh: #5645: Sign TestUser48's DSA Request - PASSED
cert.sh: Import TestUser48's DSA Cert --------------------------
certutil -A -n TestUser48-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5646: Import TestUser48's DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5647: Generate mixed DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20048 -v 60 -d ../CA -i req -o TestUser48-dsamixed.cert -f ../tests.pw 
cert.sh: #5648: Sign TestUser48's DSA Request with RSA - PASSED
cert.sh: Import TestUser48's mixed DSA Cert --------------------------
certutil -A -n TestUser48-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5649: Import TestUser48's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5650: Generate EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request --------------------------
certutil -C -c TestCA-ec -m 48 -v 60 -d ../CA -i req -o TestUser48-ec.cert -f ../tests.pw 
cert.sh: #5651: Sign TestUser48's EC Request - PASSED
cert.sh: Import TestUser48's EC Cert --------------------------
certutil -A -n TestUser48-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5652: Import TestUser48's EC Cert - PASSED
cert.sh SUCCESS: TestUser48's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5653: Generate mixed EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10048 -v 60 -d ../CA -i req -o TestUser48-ecmixed.cert -f ../tests.pw 
cert.sh: #5654: Sign TestUser48's EC Request with RSA - PASSED
cert.sh: Import TestUser48's mixed EC Cert --------------------------
certutil -A -n TestUser48-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5655: Import TestUser48's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5656: Generate Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's Request --------------------------
certutil -C -c TestCA -m 49 -v 60 -d ../CA -i req -o TestUser49.cert -f ../tests.pw 
cert.sh: #5657: Sign TestUser49's Request - PASSED
cert.sh: Import TestUser49's Cert --------------------------
certutil -A -n TestUser49 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5658: Import TestUser49's Cert - PASSED
cert.sh SUCCESS: TestUser49's Cert Created
cert.sh: Generate DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5659: Generate DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 49 -v 60 -d ../CA -i req -o TestUser49-dsa.cert -f ../tests.pw 
cert.sh: #5660: Sign TestUser49's DSA Request - PASSED
cert.sh: Import TestUser49's DSA Cert --------------------------
certutil -A -n TestUser49-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5661: Import TestUser49's DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5662: Generate mixed DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20049 -v 60 -d ../CA -i req -o TestUser49-dsamixed.cert -f ../tests.pw 
cert.sh: #5663: Sign TestUser49's DSA Request with RSA - PASSED
cert.sh: Import TestUser49's mixed DSA Cert --------------------------
certutil -A -n TestUser49-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5664: Import TestUser49's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5665: Generate EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request --------------------------
certutil -C -c TestCA-ec -m 49 -v 60 -d ../CA -i req -o TestUser49-ec.cert -f ../tests.pw 
cert.sh: #5666: Sign TestUser49's EC Request - PASSED
cert.sh: Import TestUser49's EC Cert --------------------------
certutil -A -n TestUser49-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5667: Import TestUser49's EC Cert - PASSED
cert.sh SUCCESS: TestUser49's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5668: Generate mixed EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10049 -v 60 -d ../CA -i req -o TestUser49-ecmixed.cert -f ../tests.pw 
cert.sh: #5669: Sign TestUser49's EC Request with RSA - PASSED
cert.sh: Import TestUser49's mixed EC Cert --------------------------
certutil -A -n TestUser49-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5670: Import TestUser49's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5671: Generate Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o TestUser50.cert -f ../tests.pw 
cert.sh: #5672: Sign TestUser50's Request - PASSED
cert.sh: Import TestUser50's Cert --------------------------
certutil -A -n TestUser50 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5673: Import TestUser50's Cert - PASSED
cert.sh SUCCESS: TestUser50's Cert Created
cert.sh: Generate DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5674: Generate DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o TestUser50-dsa.cert -f ../tests.pw 
cert.sh: #5675: Sign TestUser50's DSA Request - PASSED
cert.sh: Import TestUser50's DSA Cert --------------------------
certutil -A -n TestUser50-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5676: Import TestUser50's DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5677: Generate mixed DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o TestUser50-dsamixed.cert -f ../tests.pw 
cert.sh: #5678: Sign TestUser50's DSA Request with RSA - PASSED
cert.sh: Import TestUser50's mixed DSA Cert --------------------------
certutil -A -n TestUser50-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5679: Import TestUser50's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5680: Generate EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o TestUser50-ec.cert -f ../tests.pw 
cert.sh: #5681: Sign TestUser50's EC Request - PASSED
cert.sh: Import TestUser50's EC Cert --------------------------
certutil -A -n TestUser50-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5682: Import TestUser50's EC Cert - PASSED
cert.sh SUCCESS: TestUser50's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5683: Generate mixed EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o TestUser50-ecmixed.cert -f ../tests.pw 
cert.sh: #5684: Sign TestUser50's EC Request with RSA - PASSED
cert.sh: Import TestUser50's mixed EC Cert --------------------------
certutil -A -n TestUser50-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5685: Import TestUser50's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5686: Generate Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's Request --------------------------
certutil -C -c TestCA -m 51 -v 60 -d ../CA -i req -o TestUser51.cert -f ../tests.pw 
cert.sh: #5687: Sign TestUser51's Request - PASSED
cert.sh: Import TestUser51's Cert --------------------------
certutil -A -n TestUser51 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5688: Import TestUser51's Cert - PASSED
cert.sh SUCCESS: TestUser51's Cert Created
cert.sh: Generate DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5689: Generate DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 51 -v 60 -d ../CA -i req -o TestUser51-dsa.cert -f ../tests.pw 
cert.sh: #5690: Sign TestUser51's DSA Request - PASSED
cert.sh: Import TestUser51's DSA Cert --------------------------
certutil -A -n TestUser51-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5691: Import TestUser51's DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5692: Generate mixed DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20051 -v 60 -d ../CA -i req -o TestUser51-dsamixed.cert -f ../tests.pw 
cert.sh: #5693: Sign TestUser51's DSA Request with RSA - PASSED
cert.sh: Import TestUser51's mixed DSA Cert --------------------------
certutil -A -n TestUser51-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5694: Import TestUser51's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5695: Generate EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request --------------------------
certutil -C -c TestCA-ec -m 51 -v 60 -d ../CA -i req -o TestUser51-ec.cert -f ../tests.pw 
cert.sh: #5696: Sign TestUser51's EC Request - PASSED
cert.sh: Import TestUser51's EC Cert --------------------------
certutil -A -n TestUser51-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5697: Import TestUser51's EC Cert - PASSED
cert.sh SUCCESS: TestUser51's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5698: Generate mixed EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10051 -v 60 -d ../CA -i req -o TestUser51-ecmixed.cert -f ../tests.pw 
cert.sh: #5699: Sign TestUser51's EC Request with RSA - PASSED
cert.sh: Import TestUser51's mixed EC Cert --------------------------
certutil -A -n TestUser51-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5700: Import TestUser51's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5701: Generate Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's Request --------------------------
certutil -C -c TestCA -m 52 -v 60 -d ../CA -i req -o TestUser52.cert -f ../tests.pw 
cert.sh: #5702: Sign TestUser52's Request - PASSED
cert.sh: Import TestUser52's Cert --------------------------
certutil -A -n TestUser52 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5703: Import TestUser52's Cert - PASSED
cert.sh SUCCESS: TestUser52's Cert Created
cert.sh: Generate DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5704: Generate DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 52 -v 60 -d ../CA -i req -o TestUser52-dsa.cert -f ../tests.pw 
cert.sh: #5705: Sign TestUser52's DSA Request - PASSED
cert.sh: Import TestUser52's DSA Cert --------------------------
certutil -A -n TestUser52-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5706: Import TestUser52's DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5707: Generate mixed DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20052 -v 60 -d ../CA -i req -o TestUser52-dsamixed.cert -f ../tests.pw 
cert.sh: #5708: Sign TestUser52's DSA Request with RSA - PASSED
cert.sh: Import TestUser52's mixed DSA Cert --------------------------
certutil -A -n TestUser52-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5709: Import TestUser52's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5710: Generate EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request --------------------------
certutil -C -c TestCA-ec -m 52 -v 60 -d ../CA -i req -o TestUser52-ec.cert -f ../tests.pw 
cert.sh: #5711: Sign TestUser52's EC Request - PASSED
cert.sh: Import TestUser52's EC Cert --------------------------
certutil -A -n TestUser52-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5712: Import TestUser52's EC Cert - PASSED
cert.sh SUCCESS: TestUser52's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #5713: Generate mixed EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10052 -v 60 -d ../CA -i req -o TestUser52-ecmixed.cert -f ../tests.pw 
cert.sh: #5714: Sign TestUser52's EC Request with RSA - PASSED
cert.sh: Import TestUser52's mixed EC Cert --------------------------
certutil -A -n TestUser52-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #5715: Import TestUser52's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed EC Cert Created
cert.sh: Creating CA CRL =====================================
cert.sh: Generating CRL for range 40-42 TestCA authority --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -G -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or
cert.sh: #5716: Generating CRL for range 40-42 TestCA authority - PASSED
cert.sh: Generating CRL (DSA) for range 40-42 TestCA-dsa authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -G -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or-dsa
cert.sh: #5717: Generating CRL (DSA) for range 40-42 TestCA-dsa authority - PASSED
cert.sh: Generating CRL (ECC) for range 40-42 TestCA-ec authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -G -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or-ec
cert.sh: #5718: Generating CRL (ECC) for range 40-42 TestCA-ec authority - PASSED
cert.sh: Modifying CA CRL by adding one more cert ============
cert.sh: Modify CRL by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or1 -i ../server/root.crl_40-42_or
cert.sh: #5719: Modify CRL by adding one more cert - PASSED
cert.sh: Modify CRL (DSA) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or1-dsa -i ../server/root.crl_40-42_or-dsa
cert.sh: #5720: Modify CRL (DSA) by adding one more cert - PASSED
cert.sh: Modify CRL (ECC) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or1-ec -i ../server/root.crl_40-42_or-ec
cert.sh: #5721: Modify CRL (ECC) by adding one more cert - PASSED
cert.sh: Modifying CA CRL by removing one cert ===============
cert.sh: Modify CRL by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #5722: Modify CRL by removing one cert - PASSED
cert.sh: Modify CRL (DSA) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #5723: Modify CRL (DSA) by removing one cert - PASSED
cert.sh: Modify CRL (ECC) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42-ec -i ../server/root.crl_40-42_or1-ec
cert.sh: #5724: Modify CRL (ECC) by removing one cert - PASSED
cert.sh: Creating CA CRL for groups 1 and 2  ===============
cert.sh: Creating CRL for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_43-48 -i ../server/root.crl_40-42
cert.sh: #5725: Creating CRL for groups 1 and 2 - PASSED
cert.sh: Creating CRL (ECC) for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_43-48-ec -i ../server/root.crl_40-42-ec
cert.sh: #5726: Creating CRL (ECC) for groups 1 and 2 - PASSED
cert.sh: Creating CA CRL for groups 1, 2 and 3  ===============
cert.sh: Creating CRL for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_49-52 -i ../server/root.crl_43-48
cert.sh: #5727: Creating CRL for groups 1, 2 and 3 - PASSED
cert.sh: Creating CRL (ECC) for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_49-52-ec -i ../server/root.crl_43-48-ec
cert.sh: #5728: Creating CRL (ECC) for groups 1, 2 and 3 - PASSED
cert.sh: Importing Server CA Issued CRL for certs  trough 52
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -D -n TestCA -f ../tests.pw -d ../server
crlutil: could not find TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #5729: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42 -n TestCA -f ../tests.pw -d ../server
cert.sh: #5730: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -D -n TestCA-ec -f ../tests.pw -d ../server
crlutil: could not find TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #5731: Importing CRL (ECC) for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42-ec -n TestCA-ec -f ../tests.pw -d ../server
cert.sh: #5732: Importing CRL (ECC) for groups 1 - PASSED
cert.sh SUCCESS: SSL CRL prep passed
cert.sh cert.sh: finished cert.sh
TIMESTAMP cert END: Sat Oct 21 15:33:04 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Sat Oct 21 15:33:04 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5733: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a1:d9:7a:29:9b:48:57:6b:3b:c9:92:9a:db:cb:4d:e4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5734: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5735: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5736: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5737: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                57:ee:b8:ef:dd:05:6e:07:f4:fe:5a:be:ab:0f:ca:2c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA256
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Sat Oct 21 15:24:26 2017
            Not After : Fri Oct 21 15:24:26 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:01:20:ac:1e:86:c4:f8:1a:42:fa:8b:87:ae:b5:44:
                    2e:2c:dd:e0:0c:f7:40:9b:20:09:23:f6:38:e0:58:4e:
                    e6:1c:33:3b:32:0f:4f:89:e5:55:e8:f6:61:f2:06:af:
                    04:ca:e0:1b:10:19:82:2f:d6:4d:29:e7:df:a2:13:a6:
                    de:a9:1a:00:65:fe:be:2d:89:51:f9:d3:b7:48:57:d6:
                    bc:21:e4:a0:9f:80:09:4f:66:d5:aa:8c:57:fd:78:ec:
                    6e:fd:7a:2c:cc:14:80:a1:38:a9:1b:8c:cb:09:7f:4a:
                    94:9e:38:b8:6f:49:75:59:80:65:66:7b:46:d5:ab:ac:
                    74:ac:86:58:37
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA256
    Signature:
        30:81:87:02:41:2d:31:71:91:12:f8:07:81:8d:66:67:
        a8:7f:59:e4:06:58:99:d3:ba:8d:61:56:aa:fd:ae:f2:
        0a:aa:5d:e0:e6:fc:4b:bc:fc:d6:1f:13:4f:b8:5d:0d:
        92:1e:ad:e3:e3:53:ec:2e:33:cc:77:8c:94:d8:aa:82:
        61:6e:bd:c6:ae:8a:02:42:00:d2:62:1d:39:df:08:9f:
        2f:d8:56:f0:fe:ba:6c:34:25:09:16:9f:08:c0:bb:d9:
        f3:d4:8b:7e:bf:45:d1:c5:a2:36:4d:3f:d6:f4:1f:89:
        b1:89:a6:6b:eb:80:4b:d5:a3:2c:55:b0:84:a1:bb:74:
        d8:b6:41:e0:96:6f:02:e5:cf:ef
    Fingerprint (SHA-256):
        FF:BE:D4:76:DE:18:C0:93:4A:F0:90:15:7D:43:62:6C:7C:0C:80:F4:13:DE:70:75:20:71:96:58:F5:8B:FA:89
    Fingerprint (SHA1):
        6C:75:5C:4E:08:63:0F:64:84:94:9D:6D:51:52:F3:9E:DF:D0:BC:35
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA256
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Sat Oct 21 15:26:18 2017
            Not After : Fri Oct 21 15:26:18 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:65:76:e1:5e:ae:d7:27:52:f9:34:2b:f7:e8:06:67:
                    36:ef:0e:43:60:1a:c1:97:38:a0:79:fd:ae:00:4a:a7:
                    c8:d1:a1:f0:fb:b9:f0:5c:fb:36:e3:b8:9c:a4:54:87:
                    9f:8f:9f:fc:3d:72:41:0e:95:82:8b:98:60:ea:9d:44:
                    4f:9b:1b:bb:7b:17:4c:db:4f:66:3b:26:d8:59:b3:f8:
                    85:91:7e:c1:6f:40:4a:63:0c:cc:5d:71:e7:c3:ad:58:
                    b7
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA256
    Signature:
        30:81:86:02:41:36:4d:25:f8:f6:ed:00:dd:ce:d5:a5:
        5e:63:5b:35:b2:6f:0e:53:cc:97:bf:7c:34:da:0a:b5:
        72:0a:6a:fd:b9:e9:9b:2f:d3:31:b4:9c:ce:b3:a8:72:
        d5:2a:07:8a:92:15:25:3a:bb:3b:33:1e:fe:9b:65:30:
        56:05:c8:e2:39:4b:02:41:29:49:48:a8:64:cb:59:30:
        84:cd:06:74:09:b0:7e:59:4d:4c:23:96:e7:b5:6f:28:
        c5:ec:7a:51:a7:57:31:11:be:16:c1:e1:b0:28:04:7f:
        70:3c:7b:7b:e9:ba:c3:9d:bd:eb:d1:3d:4c:da:59:35:
        f3:d3:8d:69:a6:33:d1:96:31
    Fingerprint (SHA-256):
        8F:06:CE:9E:61:5F:65:FB:C5:C7:3A:B9:ED:A6:D6:C0:96:30:10:62:1A:B7:06:87:9A:16:8D:A7:42:1F:6D:59
    Fingerprint (SHA1):
        A5:93:1F:EF:DE:DB:1A:93:05:7F:B4:06:22:71:C1:97:D7:E3:D9:85
    Friendly Name: Alice-ec
tools.sh: #5738: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5739: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                c6:9d:1c:45:26:c3:d8:0c:3c:8b:1e:b4:92:12:bb:46
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5740: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5741: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5742: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                f6:cb:1e:db:2e:50:c4:a6:9f:fa:5f:01:53:45:7a:b4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5743: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5744: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5745: Exporting with [RC2-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                27:b6:89:a2:c1:cb:74:8f:12:d7:d7:75:dd:6a:0b:59
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5746: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5747: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5748: Exporting with [RC2-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                77:04:59:71:9d:8e:bf:0b:72:de:46:ee:3c:9e:59:08
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5749: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5750: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5751: Exporting with [RC2-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                53:df:d6:ab:d1:e7:d7:ba:1f:47:56:f2:9e:fc:48:d4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5752: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5753: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5754: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                7e:07:57:0c:48:ce:fd:c3:88:e3:24:61:92:e0:e5:4f
            Iteration Count: 2000 (0x7d0)
tools.sh: #5755: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5756: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5757: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                5b:06:a2:89:c5:ab:31:f7:a0:15:8c:e7:c6:17:22:15
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5758: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5759: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5760: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                60:26:70:03:0a:01:48:d8:73:00:f9:9a:24:81:37:5e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5761: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5762: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5763: Exporting with [DES-EDE3-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                78:00:a0:3c:2c:7f:47:c6:d3:c3:b7:4f:5a:28:67:12
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5764: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5765: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5766: Exporting with [DES-EDE3-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a7:64:62:b5:1b:42:49:0e:f6:c3:d3:0f:35:0a:a6:98
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5767: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5768: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5769: Exporting with [DES-EDE3-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                89:d8:95:b9:61:52:4b:77:ca:9c:10:69:ec:a7:17:51
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5770: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5771: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5772: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                25:d7:74:b5:05:92:b9:75:78:be:13:48:e8:87:82:64
            Iteration Count: 2000 (0x7d0)
tools.sh: #5773: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5774: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5775: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a6:64:54:7b:e8:c3:19:bf:b9:5e:8a:d9:e5:f2:c4:c4
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:e3:a2:d8:75:d7:0a:a1:45:61:0a:ee:20:d6:34:
                    a4:72
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5776: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5777: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5778: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        22:a2:63:03:ac:b4:b0:4b:31:90:e5:a2:b9:75:43:e8
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:87:b3:77:18:8b:02:be:99:a7:73:74:fd:9c:7a:
                    4c:0f
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5779: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5780: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5781: Exporting with [AES-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        2e:da:80:09:e6:36:ec:1d:6f:4b:c3:c4:5a:18:d4:0d
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:34:79:ce:d4:ba:70:fb:bc:4c:74:7c:75:2d:b3:
                    43:8e
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5782: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5783: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5784: Exporting with [AES-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        01:8f:34:cf:62:d6:f7:09:2d:59:b7:33:ba:e5:da:8e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:4b:40:ca:14:7c:15:2a:3a:70:ab:8e:e1:fc:16:
                    7d:b2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5785: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5786: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5787: Exporting with [AES-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        de:24:8b:36:2a:c4:1c:55:e9:ae:7c:de:aa:e7:69:c6
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:6c:a0:ef:58:7f:1e:f7:00:d8:22:d0:e5:37:be:
                    06:60
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5788: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5789: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5790: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        0b:f9:07:f5:10:27:33:09:d7:01:7e:41:a4:2a:9b:e2
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:0a:2f:79:bf:df:50:6d:1d:53:94:62:f3:a2:ec:
                    f2:b4
tools.sh: #5791: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5792: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5793: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        24:68:6d:6d:b9:a1:58:ec:d9:6d:a3:c9:26:79:95:9a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:ae:b4:c5:c2:db:32:55:72:cd:f4:0b:f8:e6:3f:
                    82:ad
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5794: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5795: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5796: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        98:d3:44:98:34:d9:93:1a:9f:a6:3e:2c:f8:8f:d2:2b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:08:2a:8a:f1:1a:b0:7f:71:75:f2:b7:d1:c3:28:
                    37:bf
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5797: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5798: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5799: Exporting with [AES-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        49:09:a1:8d:49:74:b7:0f:7e:b3:80:ba:42:13:d7:c8
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:07:29:ad:0a:de:fd:3e:fd:d0:7d:4f:dc:fe:00:
                    e0:e1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5800: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5801: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5802: Exporting with [AES-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f0:b2:50:42:e1:9f:1d:1b:23:1d:d4:a1:08:3b:02:dc
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:3f:cc:2e:6b:23:db:4b:ec:bf:b9:4e:94:27:c7:
                    69:41
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5803: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5804: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5805: Exporting with [AES-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        4d:c2:56:e7:ea:dc:79:95:77:93:a3:1e:3f:bf:41:84
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:85:2c:46:85:92:39:ca:b1:bf:9f:8a:8b:44:1a:
                    07:3f
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5806: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5807: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5808: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        3b:24:82:ae:1c:37:cf:62:4e:de:3c:0c:a3:11:49:8c
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:c1:16:83:12:34:a9:e3:ce:11:2e:61:96:34:51:
                    e0:86
tools.sh: #5809: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5810: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5811: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        3d:6e:8d:00:04:21:52:f0:03:25:9f:cf:71:fa:cd:41
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:ad:7c:42:3c:a0:90:ad:31:a2:18:ac:e2:0c:38:
                    9a:ad
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5812: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5813: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5814: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f5:ee:64:cc:2b:3d:4a:29:4c:35:0b:6a:1d:5e:49:2e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:c4:08:85:72:0f:28:54:26:0b:cd:ce:09:a8:ac:
                    6c:04
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5815: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5816: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5817: Exporting with [AES-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        12:15:5a:ec:52:6a:66:81:1f:3b:d0:ad:44:02:41:fa
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:8d:6f:ba:5f:43:7b:d0:98:e5:42:f7:54:14:3e:
                    6c:f5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5818: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5819: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5820: Exporting with [AES-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        40:ee:20:48:91:88:3c:70:7b:b8:ac:52:5e:4e:6e:4d
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:a2:b5:79:a7:6e:53:2a:d5:10:77:10:cc:3d:59:
                    24:51
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5821: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5822: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5823: Exporting with [AES-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        00:26:10:3b:9b:9d:f8:c7:09:d9:ee:eb:e4:82:66:c8
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:b1:67:c1:18:d9:61:5a:ea:ce:25:86:eb:ff:c9:
                    73:da
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5824: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5825: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5826: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        24:a2:78:18:88:fc:5e:de:76:c7:6c:14:02:cd:7d:47
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:6c:6b:b9:c3:da:e1:1d:fd:bc:18:31:39:75:22:
                    69:ba
tools.sh: #5827: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5828: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5829: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        eb:18:e3:17:3b:3a:8f:cb:fd:f9:3c:50:62:2f:02:17
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:07:50:cd:25:52:cb:73:db:6e:4e:01:bf:e0:ef:
                    3e:21
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5830: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5831: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5832: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        66:3b:48:60:bd:42:44:5a:70:89:59:0b:dd:4c:99:1d
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:35:c3:87:b6:55:f9:1e:d4:b6:ec:cc:a8:47:a5:
                    aa:c3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5833: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5834: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5835: Exporting with [CAMELLIA-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        1c:c8:fb:47:cd:f8:c3:87:3c:92:66:b4:5a:6d:9e:2f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:f2:b7:e3:98:bf:64:af:e2:aa:c9:95:98:bb:17:
                    36:bb
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5836: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5837: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5838: Exporting with [CAMELLIA-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e1:6a:4c:73:98:1a:01:f9:5c:44:47:91:c4:7b:9e:a9
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:9d:4a:74:2a:79:67:8f:07:ad:2b:a1:86:01:5a:
                    93:7c
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5839: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5840: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5841: Exporting with [CAMELLIA-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        76:d5:d9:66:4f:60:1a:e6:5e:1a:ed:8c:75:29:ae:e6
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:82:11:90:7e:a2:21:f8:c1:86:99:64:fb:fc:e5:
                    7f:e8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5842: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5843: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5844: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        76:9b:0b:95:d2:a2:18:bb:f8:bf:67:f8:72:a3:4b:9f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:1c:19:66:d8:f1:b2:77:d1:05:ab:46:07:af:de:
                    4a:65
tools.sh: #5845: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5846: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5847: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        60:da:db:1f:49:a5:5d:15:c9:73:95:da:06:ac:8b:31
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:48:3c:7d:5c:2a:7d:17:34:87:05:43:90:64:c2:
                    de:44
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5848: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5849: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5850: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f4:94:65:d9:59:2d:3a:81:cd:55:74:26:83:78:bc:f4
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:c9:aa:19:88:38:47:cd:bc:08:51:1f:5a:c5:54:
                    05:de
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5851: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5852: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5853: Exporting with [CAMELLIA-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d2:70:a4:3a:37:ed:87:0c:4b:c1:19:29:2a:a3:1d:cf
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:e3:82:37:69:f2:ac:40:21:2b:3f:0d:ce:8c:93:
                    12:23
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5854: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5855: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5856: Exporting with [CAMELLIA-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        fa:23:39:da:fd:88:84:f6:fa:23:4d:57:3f:9c:95:ef
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:07:7a:02:cb:56:9b:1a:e1:90:e4:52:73:08:b5:
                    85:52
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5857: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5858: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5859: Exporting with [CAMELLIA-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        07:98:79:96:dc:80:e9:cc:59:19:2d:46:56:7d:2a:b9
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:36:34:46:53:e8:f4:1e:69:44:eb:ac:38:ba:81:
                    ae:91
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5860: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5861: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5862: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        74:83:28:11:ca:31:19:3c:5b:a2:fb:a0:ff:77:0a:35
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:47:55:59:94:57:76:25:e8:1c:94:ab:16:34:54:
                    56:ac
tools.sh: #5863: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5864: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5865: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f3:40:98:c3:80:3f:da:f1:c0:7b:10:b0:66:ed:42:a2
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:ca:55:da:d9:04:6e:6b:39:64:48:9d:9d:bb:28:
                    d9:da
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5866: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5867: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5868: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        25:f6:45:1d:83:01:87:e0:ad:5d:67:f4:ee:70:35:ba
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:dd:29:6f:c7:03:96:af:3a:e7:12:ed:fd:40:10:
                    c7:88
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5869: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5870: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5871: Exporting with [CAMELLIA-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c0:01:7c:fb:d2:1b:de:c7:e4:76:56:ad:90:7d:ee:a5
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:8e:29:af:8c:e8:e6:14:5d:6a:f0:60:fc:2b:95:
                    fb:d1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5872: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5873: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5874: Exporting with [CAMELLIA-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        89:51:7a:52:a1:50:ea:54:e9:b3:dc:76:63:b5:2a:89
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:b2:e2:ce:00:44:e4:8d:d7:b9:2d:3e:15:ee:63:
                    48:26
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5875: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5876: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5877: Exporting with [CAMELLIA-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        1c:e6:3e:2d:6d:b9:e3:8c:2e:b6:2b:22:f3:54:3e:01
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:c0:6e:d9:f2:1c:62:c9:3f:f4:79:2d:73:04:6f:
                    f8:29
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5878: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5879: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5880: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b3:7e:0f:71:a0:84:8b:bd:39:54:f6:e8:d4:0c:07:c1
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:48:48:0b:f6:c4:96:5e:9a:96:76:ec:43:46:de:
                    9d:ef
tools.sh: #5881: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5882: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5883: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                43:1f:58:b9:b8:6d:a9:2a:96:28:e1:c3:0d:df:7d:af
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5884: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5885: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5886: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                8f:f9:57:3b:8e:ca:a7:7f:9c:a2:ee:43:8c:da:cb:fb
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5887: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5888: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5889: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                6c:71:df:94:1d:1d:df:8c:95:f4:05:04:7e:de:42:ab
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5890: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5891: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5892: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                c1:ce:5e:b0:16:8d:c6:ef:c4:65:26:2d:5a:13:e9:4f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5893: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5894: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5895: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                da:55:10:ee:bd:da:98:45:83:60:a7:58:3b:d1:2b:eb
            Iteration Count: 2000 (0x7d0)
tools.sh: #5896: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5897: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5898: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                df:ca:fd:b4:fe:7d:65:ab:c8:6e:87:fb:f2:5c:4a:cb
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5899: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5900: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5901: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                31:41:08:6b:ef:10:0a:b4:bd:71:f0:db:79:85:81:e0
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5902: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5903: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5904: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                56:d7:de:a5:cb:f3:f4:7a:67:56:ad:49:66:61:a9:4a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5905: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5906: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5907: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                ff:a7:22:7e:b2:4c:c4:3a:43:5c:19:1e:88:1d:66:16
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5908: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5909: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5910: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                77:b9:3a:73:5e:e8:2c:99:20:57:e2:ed:31:25:5f:04
            Iteration Count: 2000 (0x7d0)
tools.sh: #5911: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5912: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5913: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                ec:c3:03:a2:db:b2:4c:82:44:58:76:98:14:a3:16:a5
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5914: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5915: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5916: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                5a:94:50:ac:2b:65:a7:b8:76:a5:39:84:47:59:fc:18
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5917: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5918: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5919: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                b0:cb:b5:02:77:2c:ca:e3:94:3b:75:42:69:a7:fd:7d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5920: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5921: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5922: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                d0:b8:f4:c9:b6:ee:01:0a:ab:84:47:49:f9:58:08:fc
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5923: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5924: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5925: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                31:bc:0a:94:37:87:5f:9a:16:80:84:3d:c5:42:34:fd
            Iteration Count: 2000 (0x7d0)
tools.sh: #5926: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5927: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5928: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                4b:a7:6a:14:b8:af:4d:44:a9:18:fe:3e:15:c5:da:60
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5929: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5930: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5931: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                93:58:d9:3b:82:58:22:1c:2c:6d:e0:73:0e:34:15:8f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5932: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5933: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5934: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                17:50:5d:b1:8f:90:43:9c:5b:38:69:f9:f3:e9:6a:20
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5935: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5936: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5937: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                70:51:01:ce:fc:0f:ff:1a:7e:f2:d6:d7:88:d7:8b:3a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5938: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5939: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5940: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                e7:10:bd:2a:60:6b:c8:8e:67:1b:fb:e8:14:64:af:87
            Iteration Count: 2000 (0x7d0)
tools.sh: #5941: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5942: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5943: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                54:df:06:d8:14:25:fb:78:fd:00:a1:e0:9d:a1:66:5e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5944: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5945: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5946: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                f2:c3:89:96:52:22:ec:57:0a:57:59:d1:3e:0c:52:d2
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5947: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5948: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5949: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                69:10:1e:e2:ee:69:6a:c1:90:c1:27:fa:c6:6f:ed:71
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5950: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5951: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5952: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                53:50:f2:71:31:db:c1:9a:de:17:06:2c:3c:5b:5d:40
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5953: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5954: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5955: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                39:f5:51:64:ea:93:e0:67:62:62:a7:12:26:09:2f:5c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5956: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5957: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5958: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                8a:93:10:a5:8b:94:c8:bf:01:a7:8b:91:ad:c8:7e:9f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5959: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5960: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5961: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                cd:6e:66:25:4f:d5:77:5c:af:42:1a:70:1d:de:20:2a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5962: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5963: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5964: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                cc:4b:71:98:4f:11:3b:fa:31:5c:09:59:14:ff:b4:fb
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5965: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5966: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5967: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d8:3e:e3:85:cf:88:3f:87:56:fb:7e:87:e6:2b:6b:f7
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5968: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5969: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5970: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                98:c0:95:9b:03:1e:9b:76:72:08:ea:ca:22:81:c4:98
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:23:44 2017
            Not After : Fri Oct 21 15:23:44 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:53:bd:4e:5c:da:69:32:5e:63:d4:59:19:53:0e:f3:
                    9a:2c:5e:d5:43:f0:7c:14:9f:a4:54:5b:87:cf:b8:2f:
                    2d:85:46:82:9f:77:70:d8:25:1f:c1:0a:23:8e:17:5d:
                    52:ca:a7:4d:26:cf:f4:38:bc:4b:df:f2:a1:db:54:eb:
                    fc:4a:36:93:d1:84:35:9b:1a:96:05:4b:6a:38:46:0e:
                    dd:b0:e6:f2:53:f7:c0:3d:3a:f4:42:c0:2e:c6:92:04:
                    11:4f:f6:85:50:44:5d:27:66:0e:18:55:8b:32:81:ea:
                    9b:d8:d2:b8:82:3e:af:7d:02:2a:35:44:7d:d0:d4:a0:
                    66:43:42:f0:85:41:c6:54:c8:6a:38:37:ae:e8:c1:51:
                    21:3a:62:a9:60:f6:e8:6d:b5:c6:6d:a4:70:ea:06:28:
                    09:0e:34:46:0a:2e:77:02:27:34:d9:47:25:ac:8f:89:
                    d7:ec:e9:06:d5:3c:58:40:99:9f:b0:63:09:bb:ab:e9:
                    ff:1b:56:3e:42:d4:31:a3:73:c5:dc:67:ac:d0:17:9b:
                    9b:9d:f5:cb:bc:13:f2:36:ac:5f:39:53:38:e6:39:ae:
                    01:8e:f5:ff:3d:c1:61:c4:6c:b9:d2:6c:fc:ba:ab:eb:
                    30:21:45:19:70:fb:c2:cb:40:bf:bb:56:08:d2:96:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:76:b0:d7:6b:b9:54:c1:94:5f:a5:83:f2:98:71:2b:
        81:bc:01:c0:bc:0c:40:a3:e4:97:40:5f:10:db:5f:1a:
        bf:4a:bf:c1:83:d7:15:87:82:7b:02:cd:b4:ad:b6:6d:
        35:be:7b:ae:39:96:0b:7b:2b:45:99:13:2e:dd:5f:a9:
        fa:48:6b:01:71:b6:69:fb:0c:5e:75:ce:3d:d6:0a:c4:
        39:5c:6c:b5:94:08:1f:e1:93:21:79:f7:7e:08:2c:6a:
        66:c0:8b:a2:40:59:55:05:38:06:d6:fc:12:ed:ec:31:
        38:f7:bf:4a:8c:be:f3:91:a9:83:c9:1f:32:40:db:b8:
        a9:cf:33:82:47:00:31:90:7b:0b:48:d3:27:1c:f8:e1:
        01:9e:c2:81:c5:d0:56:f1:4f:44:1d:bd:8a:f3:42:44:
        10:56:c9:cd:e3:92:6c:a1:bf:05:24:ab:98:6c:70:45:
        b7:e4:6a:f7:48:b5:d3:a4:44:f9:c4:83:2c:a0:d0:fb:
        af:7b:93:54:6d:33:dc:b7:1c:43:9a:be:fe:6f:43:c8:
        60:0f:57:08:44:26:0a:9f:a1:16:ee:0c:8c:c6:be:d5:
        de:68:91:bd:21:42:c3:81:eb:95:07:26:14:3b:df:42:
        ab:06:bf:96:96:4c:3c:86:03:25:96:b6:d7:32:f1:d3
    Fingerprint (SHA-256):
        4C:6F:77:70:AF:4C:41:D2:4E:2B:B9:85:68:47:FC:8B:1D:CC:CC:62:1E:7A:25:64:29:0B:0F:E4:3B:FD:D1:49
    Fingerprint (SHA1):
        CB:E9:18:E3:0F:D3:02:59:F7:90:94:D3:7D:54:89:05:91:A7:0C:E4
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 15:26:12 2017
            Not After : Fri Oct 21 15:26:12 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:f9:88:ef:8a:a1:37:48:0f:54:78:12:5a:a9:32:48:
                    56:74:26:f1:e8:2f:a2:98:da:3d:60:0f:d8:05:65:b7:
                    56:c9:c9:a3:64:2b:41:e5:a3:8a:4b:cf:66:47:00:1c:
                    9a:30:25:68:3a:aa:15:1f:a9:27:51:5d:26:da:4f:78:
                    9d:d8:d0:8e:30:dd:e8:8a:3c:44:26:c6:2e:e2:3f:90:
                    12:a9:20:1a:52:db:d5:53:8b:77:80:4b:c4:e6:f0:4f:
                    74:5a:8c:62:02:af:4f:18:fe:74:f5:1b:6e:90:2e:a8:
                    30:a1:00:be:eb:29:cf:de:a9:31:65:54:87:ca:7e:5d:
                    9b:4e:ae:62:9e:73:f4:1b:74:86:aa:70:d9:d9:8a:21:
                    08:8b:32:70:a0:2a:e6:c8:64:19:ba:40:57:cc:c0:96:
                    b4:a7:63:53:f6:88:59:6b:43:45:fd:12:41:27:74:6f:
                    d2:ce:77:1f:37:cd:b6:35:06:c0:7b:4c:54:81:3b:52:
                    d5:78:5d:12:11:2b:39:b5:61:5c:4b:9e:5c:ce:ad:69:
                    29:ca:c0:08:69:09:33:0a:66:7b:e3:ee:eb:d8:24:ec:
                    76:e8:27:47:a4:c4:77:68:fe:36:8c:0b:2e:fd:14:d1:
                    02:dc:79:c4:08:03:78:b0:d7:b2:e9:04:a5:04:6c:0d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:f1:a9:45:66:0d:2f:7e:15:98:10:dd:02:7a:c2:69:
        14:5a:e4:4c:3a:bd:e5:1d:3a:62:af:ec:29:1a:bc:e2:
        88:b0:ab:bb:eb:69:44:25:12:73:09:fe:db:6f:28:19:
        d5:f0:fc:3b:f0:75:a3:51:95:01:be:4d:43:7a:5c:cf:
        ad:41:32:b3:17:a9:eb:9b:44:64:91:39:e1:4e:e4:50:
        62:36:64:de:bb:ed:41:1b:1b:ba:de:d8:07:2e:f0:d4:
        fc:07:d9:f7:cc:04:cc:1f:99:23:c6:54:dc:da:00:ca:
        19:c0:cc:24:29:b1:c9:57:c4:ef:12:90:82:10:97:b3:
        a9:11:5e:09:cc:c3:ad:c0:4a:0d:b1:48:63:a4:6d:ab:
        35:6a:4d:0d:1a:0e:61:da:4f:31:b5:65:b6:7e:76:ef:
        00:0e:e1:d9:e3:e7:79:bf:3b:cb:8e:e0:f0:ed:4e:0a:
        43:02:32:42:70:b4:db:02:45:ba:fc:7b:26:3c:07:74:
        68:07:72:08:00:5c:d7:48:bf:4d:56:3b:59:f1:a2:2d:
        9c:61:a7:f7:1d:7a:d5:1a:69:86:14:22:62:47:c9:5f:
        5f:21:78:ac:73:7d:43:fc:c1:94:e1:ac:3c:c1:dd:a9:
        8f:4a:2c:74:fc:23:fe:e8:a0:ba:80:40:dd:5f:84:8a
    Fingerprint (SHA-256):
        70:35:1A:1B:5D:2A:27:F9:B0:6C:35:8F:DA:76:5A:9A:95:24:45:22:F5:86:9C:A6:C8:6C:F3:1F:AD:4A:37:5F
    Fingerprint (SHA1):
        29:1B:79:0F:74:E6:23:D1:71:A2:44:F3:B8:CE:EF:30:3C:75:78:2F
    Friendly Name: Alice
tools.sh: #5971: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5972: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #5973: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5974: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Importing CA cert & key created with NSS 3.21 --------------
pk12util -i TestOldCA.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5975: Importing CA cert & key created with NSS 3.21  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #5976: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 36%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 32%)
tree "../tools/html" signed successfully
tools.sh: #5977: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   signjs.html
        verified   sign.html
tools.sh: #5978: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #5979: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> signjs.html
--> sign.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 32%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 36%)
tree "../tools/html" signed successfully
tools.sh: #5980: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   signjs.html
        verified   sign.html
tools.sh: #5981: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #5982: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Sat Oct 21 15:35:31 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Sat Oct 21 15:35:31 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #5983: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #5984: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      52068c5c3f58abb65dbec3a41ee82c7d577c4356   NSS FIPS 140-2 Certificate DB:FIPS_PUB_140_Test_Certificate
fips.sh: #5985: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #5986: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #5987: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #5988: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #5989: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #5990: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #5991: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #5992: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #5993: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #5994: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #5995: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      52068c5c3f58abb65dbec3a41ee82c7d577c4356   FIPS_PUB_140_Test_Certificate
fips.sh: #5996: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #5997: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #5998: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #5999: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #6000: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      52068c5c3f58abb65dbec3a41ee82c7d577c4356   FIPS_PUB_140_Test_Certificate
fips.sh: #6001: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #6002: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #6003: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle/libsoftokn3.so -o -8 -b 5
cp /usr/lib/libsoftokn3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle
Changing byte 0x00033998 (211352): from 01 (1) to 21 (33)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/fips/mangle dbtest -r -d ../fips
fips.sh: #6004: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Sat Oct 21 15:36:48 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Sat Oct 21 15:36:48 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:36:48 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:36:48 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26403 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26403 found at Sat Oct 21 15:36:49 UTC 2017
selfserv_9183 with PID 26403 started at Sat Oct 21 15:36:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6005: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 26403 at Sat Oct 21 15:36:50 UTC 2017
kill -USR1 26403
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 26403 killed at Sat Oct 21 15:36:50 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:36:50 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:36:50 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26460 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26460 found at Sat Oct 21 15:36:51 UTC 2017
selfserv_9183 with PID 26460 started at Sat Oct 21 15:36:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6006: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 26460 at Sat Oct 21 15:36:52 UTC 2017
kill -USR1 26460
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 26460 killed at Sat Oct 21 15:36:52 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:36:52 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:36:53 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26517 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26517 found at Sat Oct 21 15:36:53 UTC 2017
selfserv_9183 with PID 26517 started at Sat Oct 21 15:36:53 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6007: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 26517 at Sat Oct 21 15:36:54 UTC 2017
kill -USR1 26517
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 26517 killed at Sat Oct 21 15:36:55 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:36:55 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:36:55 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26585 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26585 found at Sat Oct 21 15:36:55 UTC 2017
selfserv_9183 with PID 26585 started at Sat Oct 21 15:36:55 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6008: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 26585 at Sat Oct 21 15:36:56 UTC 2017
kill -USR1 26585
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 26585 killed at Sat Oct 21 15:36:57 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:36:57 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:36:57 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26645 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26645 found at Sat Oct 21 15:36:57 UTC 2017
selfserv_9183 with PID 26645 started at Sat Oct 21 15:36:57 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6009: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 26645 at Sat Oct 21 15:36:59 UTC 2017
kill -USR1 26645
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 26645 killed at Sat Oct 21 15:36:59 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:36:59 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:36:59 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26701 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26701 found at Sat Oct 21 15:37:00 UTC 2017
selfserv_9183 with PID 26701 started at Sat Oct 21 15:37:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6010: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 26701 at Sat Oct 21 15:37:01 UTC 2017
kill -USR1 26701
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 26701 killed at Sat Oct 21 15:37:01 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:37:01 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:37:01 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26783 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26783 found at Sat Oct 21 15:37:02 UTC 2017
selfserv_9183 with PID 26783 started at Sat Oct 21 15:37:02 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6011: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 26783 at Sat Oct 21 15:37:03 UTC 2017
kill -USR1 26783
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 26783 killed at Sat Oct 21 15:37:03 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:37:03 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:37:04 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26839 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26839 found at Sat Oct 21 15:37:04 UTC 2017
selfserv_9183 with PID 26839 started at Sat Oct 21 15:37:04 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6012: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 26839 at Sat Oct 21 15:37:05 UTC 2017
kill -USR1 26839
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 26839 killed at Sat Oct 21 15:37:06 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:37:06 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:37:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26895 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26895 found at Sat Oct 21 15:37:06 UTC 2017
selfserv_9183 with PID 26895 started at Sat Oct 21 15:37:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6013: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 26895 at Sat Oct 21 15:37:07 UTC 2017
kill -USR1 26895
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 26895 killed at Sat Oct 21 15:37:08 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:37:08 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:37:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26963 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26963 found at Sat Oct 21 15:37:08 UTC 2017
selfserv_9183 with PID 26963 started at Sat Oct 21 15:37:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6014: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 26963 at Sat Oct 21 15:37:09 UTC 2017
kill -USR1 26963
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 26963 killed at Sat Oct 21 15:37:10 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:37:10 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:37:10 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27019 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27019 found at Sat Oct 21 15:37:10 UTC 2017
selfserv_9183 with PID 27019 started at Sat Oct 21 15:37:10 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6015: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 27019 at Sat Oct 21 15:37:11 UTC 2017
kill -USR1 27019
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27019 killed at Sat Oct 21 15:37:12 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:37:12 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:37:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27075 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27075 found at Sat Oct 21 15:37:12 UTC 2017
selfserv_9183 with PID 27075 started at Sat Oct 21 15:37:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6016: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 27075 at Sat Oct 21 15:37:13 UTC 2017
kill -USR1 27075
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27075 killed at Sat Oct 21 15:37:14 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:37:14 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:37:14 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27143 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27143 found at Sat Oct 21 15:37:15 UTC 2017
selfserv_9183 with PID 27143 started at Sat Oct 21 15:37:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6017: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 27143 at Sat Oct 21 15:37:15 UTC 2017
kill -USR1 27143
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27143 killed at Sat Oct 21 15:37:16 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:37:16 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:37:16 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27199 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27199 found at Sat Oct 21 15:37:17 UTC 2017
selfserv_9183 with PID 27199 started at Sat Oct 21 15:37:17 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6018: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 27199 at Sat Oct 21 15:37:18 UTC 2017
kill -USR1 27199
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27199 killed at Sat Oct 21 15:37:18 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:37:18 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:37:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27255 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27255 found at Sat Oct 21 15:37:19 UTC 2017
selfserv_9183 with PID 27255 started at Sat Oct 21 15:37:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6019: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 27255 at Sat Oct 21 15:37:20 UTC 2017
kill -USR1 27255
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27255 killed at Sat Oct 21 15:37:20 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:37:20 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:37:20 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27323 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27323 found at Sat Oct 21 15:37:21 UTC 2017
selfserv_9183 with PID 27323 started at Sat Oct 21 15:37:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6020: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 27323 at Sat Oct 21 15:37:22 UTC 2017
kill -USR1 27323
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27323 killed at Sat Oct 21 15:37:22 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:37:23 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:37:23 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27380 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27380 found at Sat Oct 21 15:37:23 UTC 2017
selfserv_9183 with PID 27380 started at Sat Oct 21 15:37:23 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6021: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 27380 at Sat Oct 21 15:37:24 UTC 2017
kill -USR1 27380
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27380 killed at Sat Oct 21 15:37:25 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:37:25 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:37:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27436 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27436 found at Sat Oct 21 15:37:25 UTC 2017
selfserv_9183 with PID 27436 started at Sat Oct 21 15:37:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6022: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 27436 at Sat Oct 21 15:37:26 UTC 2017
kill -USR1 27436
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27436 killed at Sat Oct 21 15:37:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:37:27 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:37:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27504 found at Sat Oct 21 15:37:27 UTC 2017
selfserv_9183 with PID 27504 started at Sat Oct 21 15:37:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6023: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 27504 at Sat Oct 21 15:37:28 UTC 2017
kill -USR1 27504
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27504 killed at Sat Oct 21 15:37:29 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:37:29 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:37:29 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27560 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27560 found at Sat Oct 21 15:37:29 UTC 2017
selfserv_9183 with PID 27560 started at Sat Oct 21 15:37:29 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6024: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 27560 at Sat Oct 21 15:37:30 UTC 2017
kill -USR1 27560
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27560 killed at Sat Oct 21 15:37:31 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:37:31 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:37:31 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27616 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27616 found at Sat Oct 21 15:37:31 UTC 2017
selfserv_9183 with PID 27616 started at Sat Oct 21 15:37:31 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6025: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 27616 at Sat Oct 21 15:37:32 UTC 2017
kill -USR1 27616
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27616 killed at Sat Oct 21 15:37:33 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:37:33 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:37:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27686 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27686 found at Sat Oct 21 15:37:33 UTC 2017
selfserv_9183 with PID 27686 started at Sat Oct 21 15:37:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6026: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 27686 at Sat Oct 21 15:37:34 UTC 2017
kill -USR1 27686
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27686 killed at Sat Oct 21 15:37:34 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:37:35 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:37:35 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27742 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27742 found at Sat Oct 21 15:37:35 UTC 2017
selfserv_9183 with PID 27742 started at Sat Oct 21 15:37:35 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6027: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 27742 at Sat Oct 21 15:37:36 UTC 2017
kill -USR1 27742
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27742 killed at Sat Oct 21 15:37:36 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:37:36 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:37:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27798 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27798 found at Sat Oct 21 15:37:37 UTC 2017
selfserv_9183 with PID 27798 started at Sat Oct 21 15:37:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6028: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 27798 at Sat Oct 21 15:37:38 UTC 2017
kill -USR1 27798
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27798 killed at Sat Oct 21 15:37:38 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:37:38 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:37:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27866 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27866 found at Sat Oct 21 15:37:39 UTC 2017
selfserv_9183 with PID 27866 started at Sat Oct 21 15:37:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6029: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 27866 at Sat Oct 21 15:37:40 UTC 2017
kill -USR1 27866
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27866 killed at Sat Oct 21 15:37:40 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:37:40 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:37:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27922 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27922 found at Sat Oct 21 15:37:41 UTC 2017
selfserv_9183 with PID 27922 started at Sat Oct 21 15:37:41 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6030: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 27922 at Sat Oct 21 15:37:42 UTC 2017
kill -USR1 27922
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27922 killed at Sat Oct 21 15:37:42 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:37:42 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:37:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27980 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27980 found at Sat Oct 21 15:37:43 UTC 2017
selfserv_9183 with PID 27980 started at Sat Oct 21 15:37:43 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6031: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 27980 at Sat Oct 21 15:37:44 UTC 2017
kill -USR1 27980
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27980 killed at Sat Oct 21 15:37:44 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:37:44 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:37:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28048 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28048 found at Sat Oct 21 15:37:45 UTC 2017
selfserv_9183 with PID 28048 started at Sat Oct 21 15:37:45 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6032: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 28048 at Sat Oct 21 15:37:46 UTC 2017
kill -USR1 28048
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28048 killed at Sat Oct 21 15:37:46 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:37:46 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:37:46 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28104 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28104 found at Sat Oct 21 15:37:47 UTC 2017
selfserv_9183 with PID 28104 started at Sat Oct 21 15:37:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6033: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 28104 at Sat Oct 21 15:37:48 UTC 2017
kill -USR1 28104
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28104 killed at Sat Oct 21 15:37:48 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:37:48 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:37:48 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28160 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28160 found at Sat Oct 21 15:37:49 UTC 2017
selfserv_9183 with PID 28160 started at Sat Oct 21 15:37:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6034: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 28160 at Sat Oct 21 15:37:49 UTC 2017
kill -USR1 28160
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28160 killed at Sat Oct 21 15:37:50 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:37:50 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:37:50 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28228 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28228 found at Sat Oct 21 15:37:51 UTC 2017
selfserv_9183 with PID 28228 started at Sat Oct 21 15:37:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6035: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 28228 at Sat Oct 21 15:37:51 UTC 2017
kill -USR1 28228
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28228 killed at Sat Oct 21 15:37:52 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:37:52 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:37:52 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28284 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28284 found at Sat Oct 21 15:37:52 UTC 2017
selfserv_9183 with PID 28284 started at Sat Oct 21 15:37:52 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6036: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 28284 at Sat Oct 21 15:37:53 UTC 2017
kill -USR1 28284
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28284 killed at Sat Oct 21 15:37:54 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:37:54 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:37:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28340 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28340 found at Sat Oct 21 15:37:54 UTC 2017
selfserv_9183 with PID 28340 started at Sat Oct 21 15:37:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6037: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 28340 at Sat Oct 21 15:37:55 UTC 2017
kill -USR1 28340
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28340 killed at Sat Oct 21 15:37:56 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:37:56 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:37:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28408 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28408 found at Sat Oct 21 15:37:56 UTC 2017
selfserv_9183 with PID 28408 started at Sat Oct 21 15:37:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6038: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 28408 at Sat Oct 21 15:37:57 UTC 2017
kill -USR1 28408
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28408 killed at Sat Oct 21 15:37:58 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:37:58 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:37:58 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28467 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28467 found at Sat Oct 21 15:37:58 UTC 2017
selfserv_9183 with PID 28467 started at Sat Oct 21 15:37:58 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6039: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 28467 at Sat Oct 21 15:37:59 UTC 2017
kill -USR1 28467
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28467 killed at Sat Oct 21 15:38:00 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:38:00 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:38:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28523 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28523 found at Sat Oct 21 15:38:00 UTC 2017
selfserv_9183 with PID 28523 started at Sat Oct 21 15:38:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6040: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 28523 at Sat Oct 21 15:38:01 UTC 2017
kill -USR1 28523
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28523 killed at Sat Oct 21 15:38:02 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:38:02 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:38:02 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28603 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28603 found at Sat Oct 21 15:38:02 UTC 2017
selfserv_9183 with PID 28603 started at Sat Oct 21 15:38:02 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6041: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 28603 at Sat Oct 21 15:38:04 UTC 2017
kill -USR1 28603
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28603 killed at Sat Oct 21 15:38:04 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:38:04 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:38:04 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28660 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28660 found at Sat Oct 21 15:38:05 UTC 2017
selfserv_9183 with PID 28660 started at Sat Oct 21 15:38:05 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6042: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 28660 at Sat Oct 21 15:38:06 UTC 2017
kill -USR1 28660
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28660 killed at Sat Oct 21 15:38:06 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:38:07 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:38:07 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28716 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28716 found at Sat Oct 21 15:38:07 UTC 2017
selfserv_9183 with PID 28716 started at Sat Oct 21 15:38:07 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6043: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 28716 at Sat Oct 21 15:38:08 UTC 2017
kill -USR1 28716
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28716 killed at Sat Oct 21 15:38:09 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:38:09 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:38:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28784 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28784 found at Sat Oct 21 15:38:09 UTC 2017
selfserv_9183 with PID 28784 started at Sat Oct 21 15:38:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6044: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 28784 at Sat Oct 21 15:38:11 UTC 2017
kill -USR1 28784
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28784 killed at Sat Oct 21 15:38:11 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:38:11 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:38:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28840 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28840 found at Sat Oct 21 15:38:12 UTC 2017
selfserv_9183 with PID 28840 started at Sat Oct 21 15:38:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6045: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 28840 at Sat Oct 21 15:38:13 UTC 2017
kill -USR1 28840
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28840 killed at Sat Oct 21 15:38:13 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:38:14 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:38:14 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28896 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28896 found at Sat Oct 21 15:38:14 UTC 2017
selfserv_9183 with PID 28896 started at Sat Oct 21 15:38:14 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6046: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 28896 at Sat Oct 21 15:38:15 UTC 2017
kill -USR1 28896
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28896 killed at Sat Oct 21 15:38:16 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:38:16 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:38:16 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28964 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28964 found at Sat Oct 21 15:38:16 UTC 2017
selfserv_9183 with PID 28964 started at Sat Oct 21 15:38:16 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6047: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 28964 at Sat Oct 21 15:38:18 UTC 2017
kill -USR1 28964
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28964 killed at Sat Oct 21 15:38:18 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:38:18 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:38:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29020 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29020 found at Sat Oct 21 15:38:19 UTC 2017
selfserv_9183 with PID 29020 started at Sat Oct 21 15:38:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6048: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 29020 at Sat Oct 21 15:38:20 UTC 2017
kill -USR1 29020
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29020 killed at Sat Oct 21 15:38:21 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:38:21 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:38:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29076 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29076 found at Sat Oct 21 15:38:21 UTC 2017
selfserv_9183 with PID 29076 started at Sat Oct 21 15:38:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6049: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 29076 at Sat Oct 21 15:38:23 UTC 2017
kill -USR1 29076
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29076 killed at Sat Oct 21 15:38:23 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:38:23 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:38:23 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29144 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29144 found at Sat Oct 21 15:38:24 UTC 2017
selfserv_9183 with PID 29144 started at Sat Oct 21 15:38:24 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6050: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 29144 at Sat Oct 21 15:38:25 UTC 2017
kill -USR1 29144
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29144 killed at Sat Oct 21 15:38:25 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:38:25 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:38:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29201 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29201 found at Sat Oct 21 15:38:26 UTC 2017
selfserv_9183 with PID 29201 started at Sat Oct 21 15:38:26 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6051: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 29201 at Sat Oct 21 15:38:27 UTC 2017
kill -USR1 29201
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29201 killed at Sat Oct 21 15:38:28 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:38:28 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:38:28 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29257 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29257 found at Sat Oct 21 15:38:28 UTC 2017
selfserv_9183 with PID 29257 started at Sat Oct 21 15:38:28 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6052: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 29257 at Sat Oct 21 15:38:29 UTC 2017
kill -USR1 29257
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29257 killed at Sat Oct 21 15:38:30 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:38:30 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:38:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29325 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29325 found at Sat Oct 21 15:38:31 UTC 2017
selfserv_9183 with PID 29325 started at Sat Oct 21 15:38:31 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6053: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 29325 at Sat Oct 21 15:38:32 UTC 2017
kill -USR1 29325
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29325 killed at Sat Oct 21 15:38:32 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:38:32 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:38:32 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29381 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29381 found at Sat Oct 21 15:38:33 UTC 2017
selfserv_9183 with PID 29381 started at Sat Oct 21 15:38:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6054: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 29381 at Sat Oct 21 15:38:34 UTC 2017
kill -USR1 29381
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29381 killed at Sat Oct 21 15:38:34 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:38:35 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:38:35 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29437 found at Sat Oct 21 15:38:35 UTC 2017
selfserv_9183 with PID 29437 started at Sat Oct 21 15:38:35 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6055: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 29437 at Sat Oct 21 15:38:36 UTC 2017
kill -USR1 29437
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29437 killed at Sat Oct 21 15:38:37 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:38:37 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:38:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29505 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29505 found at Sat Oct 21 15:38:37 UTC 2017
selfserv_9183 with PID 29505 started at Sat Oct 21 15:38:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6056: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 29505 at Sat Oct 21 15:38:39 UTC 2017
kill -USR1 29505
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29505 killed at Sat Oct 21 15:38:39 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:38:39 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:38:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29561 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29561 found at Sat Oct 21 15:38:40 UTC 2017
selfserv_9183 with PID 29561 started at Sat Oct 21 15:38:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6057: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 29561 at Sat Oct 21 15:38:41 UTC 2017
kill -USR1 29561
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29561 killed at Sat Oct 21 15:38:42 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:38:42 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:38:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29617 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29617 found at Sat Oct 21 15:38:42 UTC 2017
selfserv_9183 with PID 29617 started at Sat Oct 21 15:38:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6058: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 29617 at Sat Oct 21 15:38:43 UTC 2017
kill -USR1 29617
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29617 killed at Sat Oct 21 15:38:44 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:38:44 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:38:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29685 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29685 found at Sat Oct 21 15:38:45 UTC 2017
selfserv_9183 with PID 29685 started at Sat Oct 21 15:38:45 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6059: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 29685 at Sat Oct 21 15:38:46 UTC 2017
kill -USR1 29685
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29685 killed at Sat Oct 21 15:38:46 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:38:46 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:38:46 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29742 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29742 found at Sat Oct 21 15:38:47 UTC 2017
selfserv_9183 with PID 29742 started at Sat Oct 21 15:38:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6060: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 29742 at Sat Oct 21 15:38:48 UTC 2017
kill -USR1 29742
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29742 killed at Sat Oct 21 15:38:49 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:38:49 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:38:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29798 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29798 found at Sat Oct 21 15:38:49 UTC 2017
selfserv_9183 with PID 29798 started at Sat Oct 21 15:38:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6061: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 29798 at Sat Oct 21 15:38:51 UTC 2017
kill -USR1 29798
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29798 killed at Sat Oct 21 15:38:51 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:38:51 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:38:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29866 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29866 found at Sat Oct 21 15:38:52 UTC 2017
selfserv_9183 with PID 29866 started at Sat Oct 21 15:38:52 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6062: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 29866 at Sat Oct 21 15:38:53 UTC 2017
kill -USR1 29866
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29866 killed at Sat Oct 21 15:38:53 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:38:53 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:38:53 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29922 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29922 found at Sat Oct 21 15:38:54 UTC 2017
selfserv_9183 with PID 29922 started at Sat Oct 21 15:38:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6063: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 29922 at Sat Oct 21 15:38:55 UTC 2017
kill -USR1 29922
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29922 killed at Sat Oct 21 15:38:56 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:38:56 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:38:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 29981 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 29981 found at Sat Oct 21 15:38:56 UTC 2017
selfserv_9183 with PID 29981 started at Sat Oct 21 15:38:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6064: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 29981 at Sat Oct 21 15:38:58 UTC 2017
kill -USR1 29981
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 29981 killed at Sat Oct 21 15:38:58 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:38:58 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:38:58 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30049 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30049 found at Sat Oct 21 15:38:59 UTC 2017
selfserv_9183 with PID 30049 started at Sat Oct 21 15:38:59 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6065: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 30049 at Sat Oct 21 15:39:00 UTC 2017
kill -USR1 30049
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30049 killed at Sat Oct 21 15:39:00 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:39:01 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:39:01 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30106 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30106 found at Sat Oct 21 15:39:01 UTC 2017
selfserv_9183 with PID 30106 started at Sat Oct 21 15:39:01 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6066: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 30106 at Sat Oct 21 15:39:03 UTC 2017
kill -USR1 30106
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30106 killed at Sat Oct 21 15:39:03 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:39:03 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:39:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30173 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30173 found at Sat Oct 21 15:39:04 UTC 2017
selfserv_9183 with PID 30173 started at Sat Oct 21 15:39:04 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6067: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 30173 at Sat Oct 21 15:39:05 UTC 2017
kill -USR1 30173
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30173 killed at Sat Oct 21 15:39:05 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:39:06 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:39:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30241 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30241 found at Sat Oct 21 15:39:06 UTC 2017
selfserv_9183 with PID 30241 started at Sat Oct 21 15:39:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6068: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 30241 at Sat Oct 21 15:39:07 UTC 2017
kill -USR1 30241
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30241 killed at Sat Oct 21 15:39:08 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:39:08 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:39:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30298 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30298 found at Sat Oct 21 15:39:08 UTC 2017
selfserv_9183 with PID 30298 started at Sat Oct 21 15:39:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6069: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 30298 at Sat Oct 21 15:39:09 UTC 2017
kill -USR1 30298
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30298 killed at Sat Oct 21 15:39:10 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:39:10 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:39:10 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30354 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30354 found at Sat Oct 21 15:39:11 UTC 2017
selfserv_9183 with PID 30354 started at Sat Oct 21 15:39:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6070: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 30354 at Sat Oct 21 15:39:12 UTC 2017
kill -USR1 30354
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30354 killed at Sat Oct 21 15:39:12 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:39:12 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:39:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30422 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30422 found at Sat Oct 21 15:39:13 UTC 2017
selfserv_9183 with PID 30422 started at Sat Oct 21 15:39:13 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6071: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 30422 at Sat Oct 21 15:39:14 UTC 2017
kill -USR1 30422
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30422 killed at Sat Oct 21 15:39:15 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:39:15 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:39:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30478 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30478 found at Sat Oct 21 15:39:15 UTC 2017
selfserv_9183 with PID 30478 started at Sat Oct 21 15:39:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6072: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 30478 at Sat Oct 21 15:39:16 UTC 2017
kill -USR1 30478
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30478 killed at Sat Oct 21 15:39:17 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:39:17 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:39:17 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30534 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30534 found at Sat Oct 21 15:39:17 UTC 2017
selfserv_9183 with PID 30534 started at Sat Oct 21 15:39:17 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6073: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 30534 at Sat Oct 21 15:39:19 UTC 2017
kill -USR1 30534
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30534 killed at Sat Oct 21 15:39:19 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:39:19 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:39:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30602 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30602 found at Sat Oct 21 15:39:20 UTC 2017
selfserv_9183 with PID 30602 started at Sat Oct 21 15:39:20 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6074: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 30602 at Sat Oct 21 15:39:21 UTC 2017
kill -USR1 30602
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30602 killed at Sat Oct 21 15:39:22 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:39:22 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:39:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30658 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30658 found at Sat Oct 21 15:39:22 UTC 2017
selfserv_9183 with PID 30658 started at Sat Oct 21 15:39:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6075: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 30658 at Sat Oct 21 15:39:23 UTC 2017
kill -USR1 30658
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30658 killed at Sat Oct 21 15:39:24 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:39:24 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:39:24 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30714 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30714 found at Sat Oct 21 15:39:25 UTC 2017
selfserv_9183 with PID 30714 started at Sat Oct 21 15:39:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6076: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 30714 at Sat Oct 21 15:39:26 UTC 2017
kill -USR1 30714
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30714 killed at Sat Oct 21 15:39:26 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:39:26 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:39:26 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30782 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30782 found at Sat Oct 21 15:39:27 UTC 2017
selfserv_9183 with PID 30782 started at Sat Oct 21 15:39:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6077: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 30782 at Sat Oct 21 15:39:28 UTC 2017
kill -USR1 30782
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30782 killed at Sat Oct 21 15:39:28 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:39:29 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:39:29 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30839 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30839 found at Sat Oct 21 15:39:29 UTC 2017
selfserv_9183 with PID 30839 started at Sat Oct 21 15:39:29 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6078: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 30839 at Sat Oct 21 15:39:30 UTC 2017
kill -USR1 30839
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30839 killed at Sat Oct 21 15:39:31 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:39:31 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:39:31 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30895 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30895 found at Sat Oct 21 15:39:31 UTC 2017
selfserv_9183 with PID 30895 started at Sat Oct 21 15:39:31 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6079: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 30895 at Sat Oct 21 15:39:32 UTC 2017
kill -USR1 30895
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30895 killed at Sat Oct 21 15:39:33 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:39:33 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:39:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30963 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30963 found at Sat Oct 21 15:39:33 UTC 2017
selfserv_9183 with PID 30963 started at Sat Oct 21 15:39:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6080: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 30963 at Sat Oct 21 15:39:34 UTC 2017
kill -USR1 30963
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30963 killed at Sat Oct 21 15:39:35 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:39:35 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:39:35 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31019 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31019 found at Sat Oct 21 15:39:35 UTC 2017
selfserv_9183 with PID 31019 started at Sat Oct 21 15:39:35 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6081: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 31019 at Sat Oct 21 15:39:36 UTC 2017
kill -USR1 31019
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31019 killed at Sat Oct 21 15:39:37 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:39:37 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:39:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31075 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31075 found at Sat Oct 21 15:39:37 UTC 2017
selfserv_9183 with PID 31075 started at Sat Oct 21 15:39:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6082: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 31075 at Sat Oct 21 15:39:38 UTC 2017
kill -USR1 31075
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31075 killed at Sat Oct 21 15:39:39 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:39:39 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:39:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31143 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31143 found at Sat Oct 21 15:39:40 UTC 2017
selfserv_9183 with PID 31143 started at Sat Oct 21 15:39:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6083: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 31143 at Sat Oct 21 15:39:41 UTC 2017
kill -USR1 31143
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31143 killed at Sat Oct 21 15:39:41 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:39:41 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:39:41 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31199 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31199 found at Sat Oct 21 15:39:42 UTC 2017
selfserv_9183 with PID 31199 started at Sat Oct 21 15:39:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6084: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 31199 at Sat Oct 21 15:39:43 UTC 2017
kill -USR1 31199
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31199 killed at Sat Oct 21 15:39:43 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:39:43 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:39:43 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31255 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31255 found at Sat Oct 21 15:39:44 UTC 2017
selfserv_9183 with PID 31255 started at Sat Oct 21 15:39:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6085: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 31255 at Sat Oct 21 15:39:45 UTC 2017
kill -USR1 31255
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31255 killed at Sat Oct 21 15:39:45 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:39:46 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:39:46 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31323 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31323 found at Sat Oct 21 15:39:46 UTC 2017
selfserv_9183 with PID 31323 started at Sat Oct 21 15:39:46 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6086: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 31323 at Sat Oct 21 15:39:47 UTC 2017
kill -USR1 31323
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31323 killed at Sat Oct 21 15:39:47 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:39:48 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:39:48 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31379 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31379 found at Sat Oct 21 15:39:48 UTC 2017
selfserv_9183 with PID 31379 started at Sat Oct 21 15:39:48 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6087: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 31379 at Sat Oct 21 15:39:49 UTC 2017
kill -USR1 31379
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31379 killed at Sat Oct 21 15:39:50 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 15:39:50 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:39:50 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31436 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31436 found at Sat Oct 21 15:39:50 UTC 2017
selfserv_9183 with PID 31436 started at Sat Oct 21 15:39:50 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6088: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 31436 at Sat Oct 21 15:39:51 UTC 2017
kill -USR1 31436
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31436 killed at Sat Oct 21 15:39:52 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:39:52 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:39:52 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31504 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31504 found at Sat Oct 21 15:39:52 UTC 2017
selfserv_9183 with PID 31504 started at Sat Oct 21 15:39:52 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6089: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 31504 at Sat Oct 21 15:39:53 UTC 2017
kill -USR1 31504
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31504 killed at Sat Oct 21 15:39:54 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:39:54 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:39:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31560 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31560 found at Sat Oct 21 15:39:54 UTC 2017
selfserv_9183 with PID 31560 started at Sat Oct 21 15:39:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6090: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 31560 at Sat Oct 21 15:39:55 UTC 2017
kill -USR1 31560
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31560 killed at Sat Oct 21 15:39:56 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:39:56 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:39:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31616 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31616 found at Sat Oct 21 15:39:56 UTC 2017
selfserv_9183 with PID 31616 started at Sat Oct 21 15:39:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6091: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 31616 at Sat Oct 21 15:39:57 UTC 2017
kill -USR1 31616
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31616 killed at Sat Oct 21 15:39:58 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:39:58 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:39:58 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31687 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31687 found at Sat Oct 21 15:39:58 UTC 2017
selfserv_9183 with PID 31687 started at Sat Oct 21 15:39:58 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6092: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 31687 at Sat Oct 21 15:40:00 UTC 2017
kill -USR1 31687
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31687 killed at Sat Oct 21 15:40:00 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:40:00 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:40:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31743 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31743 found at Sat Oct 21 15:40:01 UTC 2017
selfserv_9183 with PID 31743 started at Sat Oct 21 15:40:01 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6093: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 31743 at Sat Oct 21 15:40:02 UTC 2017
kill -USR1 31743
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31743 killed at Sat Oct 21 15:40:02 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:40:02 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:40:02 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31818 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31818 found at Sat Oct 21 15:40:03 UTC 2017
selfserv_9183 with PID 31818 started at Sat Oct 21 15:40:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6094: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 31818 at Sat Oct 21 15:40:04 UTC 2017
kill -USR1 31818
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31818 killed at Sat Oct 21 15:40:04 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:40:05 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:40:05 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31895 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31895 found at Sat Oct 21 15:40:05 UTC 2017
selfserv_9183 with PID 31895 started at Sat Oct 21 15:40:05 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6095: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 31895 at Sat Oct 21 15:40:06 UTC 2017
kill -USR1 31895
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31895 killed at Sat Oct 21 15:40:07 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:40:07 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:40:07 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31951 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31951 found at Sat Oct 21 15:40:07 UTC 2017
selfserv_9183 with PID 31951 started at Sat Oct 21 15:40:07 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6096: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 31951 at Sat Oct 21 15:40:08 UTC 2017
kill -USR1 31951
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31951 killed at Sat Oct 21 15:40:09 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:40:09 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:40:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32008 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32008 found at Sat Oct 21 15:40:09 UTC 2017
selfserv_9183 with PID 32008 started at Sat Oct 21 15:40:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6097: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 32008 at Sat Oct 21 15:40:11 UTC 2017
kill -USR1 32008
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 32008 killed at Sat Oct 21 15:40:11 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:40:11 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:40:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32076 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32076 found at Sat Oct 21 15:40:12 UTC 2017
selfserv_9183 with PID 32076 started at Sat Oct 21 15:40:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6098: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 32076 at Sat Oct 21 15:40:13 UTC 2017
kill -USR1 32076
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 32076 killed at Sat Oct 21 15:40:13 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:40:13 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:40:13 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32132 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32132 found at Sat Oct 21 15:40:14 UTC 2017
selfserv_9183 with PID 32132 started at Sat Oct 21 15:40:14 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6099: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 32132 at Sat Oct 21 15:40:15 UTC 2017
kill -USR1 32132
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 32132 killed at Sat Oct 21 15:40:16 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:40:16 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:40:16 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32188 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32188 found at Sat Oct 21 15:40:16 UTC 2017
selfserv_9183 with PID 32188 started at Sat Oct 21 15:40:16 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6100: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 32188 at Sat Oct 21 15:40:17 UTC 2017
kill -USR1 32188
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 32188 killed at Sat Oct 21 15:40:18 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:40:18 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:40:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32256 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32256 found at Sat Oct 21 15:40:19 UTC 2017
selfserv_9183 with PID 32256 started at Sat Oct 21 15:40:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6101: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 32256 at Sat Oct 21 15:40:20 UTC 2017
kill -USR1 32256
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 32256 killed at Sat Oct 21 15:40:20 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:40:20 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:40:20 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32312 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32312 found at Sat Oct 21 15:40:21 UTC 2017
selfserv_9183 with PID 32312 started at Sat Oct 21 15:40:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6102: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 32312 at Sat Oct 21 15:40:22 UTC 2017
kill -USR1 32312
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 32312 killed at Sat Oct 21 15:40:22 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:40:22 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:40:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32368 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32368 found at Sat Oct 21 15:40:23 UTC 2017
selfserv_9183 with PID 32368 started at Sat Oct 21 15:40:23 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6103: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 32368 at Sat Oct 21 15:40:24 UTC 2017
kill -USR1 32368
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 32368 killed at Sat Oct 21 15:40:24 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:40:24 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:40:24 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32436 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32436 found at Sat Oct 21 15:40:25 UTC 2017
selfserv_9183 with PID 32436 started at Sat Oct 21 15:40:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6104: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 32436 at Sat Oct 21 15:40:26 UTC 2017
kill -USR1 32436
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 32436 killed at Sat Oct 21 15:40:26 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:40:26 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:40:26 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32492 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32492 found at Sat Oct 21 15:40:27 UTC 2017
selfserv_9183 with PID 32492 started at Sat Oct 21 15:40:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6105: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 32492 at Sat Oct 21 15:40:28 UTC 2017
kill -USR1 32492
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 32492 killed at Sat Oct 21 15:40:29 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:40:29 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:40:29 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32548 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32548 found at Sat Oct 21 15:40:29 UTC 2017
selfserv_9183 with PID 32548 started at Sat Oct 21 15:40:29 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6106: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 32548 at Sat Oct 21 15:40:30 UTC 2017
kill -USR1 32548
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 32548 killed at Sat Oct 21 15:40:31 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:40:31 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:40:31 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32617 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32617 found at Sat Oct 21 15:40:32 UTC 2017
selfserv_9183 with PID 32617 started at Sat Oct 21 15:40:32 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6107: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 32617 at Sat Oct 21 15:40:32 UTC 2017
kill -USR1 32617
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 32617 killed at Sat Oct 21 15:40:33 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:40:33 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:40:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32673 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32673 found at Sat Oct 21 15:40:33 UTC 2017
selfserv_9183 with PID 32673 started at Sat Oct 21 15:40:34 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6108: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 32673 at Sat Oct 21 15:40:34 UTC 2017
kill -USR1 32673
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 32673 killed at Sat Oct 21 15:40:35 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:40:35 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:40:35 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 32729 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 32729 found at Sat Oct 21 15:40:35 UTC 2017
selfserv_9183 with PID 32729 started at Sat Oct 21 15:40:35 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6109: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 32729 at Sat Oct 21 15:40:36 UTC 2017
kill -USR1 32729
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 32729 killed at Sat Oct 21 15:40:37 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:40:37 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:40:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 329 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 329 found at Sat Oct 21 15:40:37 UTC 2017
selfserv_9183 with PID 329 started at Sat Oct 21 15:40:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6110: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 329 at Sat Oct 21 15:40:38 UTC 2017
kill -USR1 329
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 329 killed at Sat Oct 21 15:40:39 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:40:39 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:40:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 387 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 387 found at Sat Oct 21 15:40:39 UTC 2017
selfserv_9183 with PID 387 started at Sat Oct 21 15:40:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6111: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 387 at Sat Oct 21 15:40:40 UTC 2017
kill -USR1 387
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 387 killed at Sat Oct 21 15:40:41 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:40:41 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:40:41 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 443 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 443 found at Sat Oct 21 15:40:42 UTC 2017
selfserv_9183 with PID 443 started at Sat Oct 21 15:40:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6112: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 443 at Sat Oct 21 15:40:43 UTC 2017
kill -USR1 443
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 443 killed at Sat Oct 21 15:40:43 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:40:43 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:40:43 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 512 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 512 found at Sat Oct 21 15:40:44 UTC 2017
selfserv_9183 with PID 512 started at Sat Oct 21 15:40:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6113: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 512 at Sat Oct 21 15:40:44 UTC 2017
kill -USR1 512
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 512 killed at Sat Oct 21 15:40:45 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:40:45 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:40:45 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 568 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 568 found at Sat Oct 21 15:40:46 UTC 2017
selfserv_9183 with PID 568 started at Sat Oct 21 15:40:46 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6114: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 568 at Sat Oct 21 15:40:46 UTC 2017
kill -USR1 568
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 568 killed at Sat Oct 21 15:40:47 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:40:47 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:40:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 624 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 624 found at Sat Oct 21 15:40:47 UTC 2017
selfserv_9183 with PID 624 started at Sat Oct 21 15:40:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6115: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 624 at Sat Oct 21 15:40:48 UTC 2017
kill -USR1 624
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 624 killed at Sat Oct 21 15:40:49 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:40:49 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:40:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 692 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 692 found at Sat Oct 21 15:40:49 UTC 2017
selfserv_9183 with PID 692 started at Sat Oct 21 15:40:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6116: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 692 at Sat Oct 21 15:40:50 UTC 2017
kill -USR1 692
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 692 killed at Sat Oct 21 15:40:51 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:40:51 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:40:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 749 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 749 found at Sat Oct 21 15:40:51 UTC 2017
selfserv_9183 with PID 749 started at Sat Oct 21 15:40:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6117: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 749 at Sat Oct 21 15:40:53 UTC 2017
kill -USR1 749
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 749 killed at Sat Oct 21 15:40:53 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:40:53 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:40:53 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 805 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 805 found at Sat Oct 21 15:40:54 UTC 2017
selfserv_9183 with PID 805 started at Sat Oct 21 15:40:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6118: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 805 at Sat Oct 21 15:40:55 UTC 2017
kill -USR1 805
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 805 killed at Sat Oct 21 15:40:55 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:40:55 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:40:55 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 873 found at Sat Oct 21 15:40:56 UTC 2017
selfserv_9183 with PID 873 started at Sat Oct 21 15:40:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6119: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 873 at Sat Oct 21 15:40:57 UTC 2017
kill -USR1 873
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 873 killed at Sat Oct 21 15:40:57 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:40:58 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:40:58 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 932 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 932 found at Sat Oct 21 15:40:58 UTC 2017
selfserv_9183 with PID 932 started at Sat Oct 21 15:40:58 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6120: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 932 at Sat Oct 21 15:40:59 UTC 2017
kill -USR1 932
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 932 killed at Sat Oct 21 15:41:00 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:41:00 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:41:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 988 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 988 found at Sat Oct 21 15:41:00 UTC 2017
selfserv_9183 with PID 988 started at Sat Oct 21 15:41:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6121: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 988 at Sat Oct 21 15:41:02 UTC 2017
kill -USR1 988
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 988 killed at Sat Oct 21 15:41:02 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:41:02 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:41:02 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1085 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1085 found at Sat Oct 21 15:41:03 UTC 2017
selfserv_9183 with PID 1085 started at Sat Oct 21 15:41:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6122: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 1085 at Sat Oct 21 15:41:04 UTC 2017
kill -USR1 1085
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 1085 killed at Sat Oct 21 15:41:05 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:41:05 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:41:05 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1142 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1142 found at Sat Oct 21 15:41:05 UTC 2017
selfserv_9183 with PID 1142 started at Sat Oct 21 15:41:05 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6123: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 1142 at Sat Oct 21 15:41:07 UTC 2017
kill -USR1 1142
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 1142 killed at Sat Oct 21 15:41:07 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:41:07 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:41:07 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1201 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1201 found at Sat Oct 21 15:41:08 UTC 2017
selfserv_9183 with PID 1201 started at Sat Oct 21 15:41:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6124: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 1201 at Sat Oct 21 15:41:09 UTC 2017
kill -USR1 1201
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 1201 killed at Sat Oct 21 15:41:10 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:41:10 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:41:10 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1269 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1269 found at Sat Oct 21 15:41:10 UTC 2017
selfserv_9183 with PID 1269 started at Sat Oct 21 15:41:10 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6125: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 1269 at Sat Oct 21 15:41:12 UTC 2017
kill -USR1 1269
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 1269 killed at Sat Oct 21 15:41:12 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:41:12 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:41:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1326 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1326 found at Sat Oct 21 15:41:13 UTC 2017
selfserv_9183 with PID 1326 started at Sat Oct 21 15:41:13 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6126: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 1326 at Sat Oct 21 15:41:14 UTC 2017
kill -USR1 1326
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 1326 killed at Sat Oct 21 15:41:14 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:41:14 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:41:14 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1382 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1382 found at Sat Oct 21 15:41:15 UTC 2017
selfserv_9183 with PID 1382 started at Sat Oct 21 15:41:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6127: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 1382 at Sat Oct 21 15:41:16 UTC 2017
kill -USR1 1382
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 1382 killed at Sat Oct 21 15:41:17 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:41:17 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:41:17 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1450 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1450 found at Sat Oct 21 15:41:17 UTC 2017
selfserv_9183 with PID 1450 started at Sat Oct 21 15:41:17 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6128: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 1450 at Sat Oct 21 15:41:19 UTC 2017
kill -USR1 1450
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 1450 killed at Sat Oct 21 15:41:19 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:41:19 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:41:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1506 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1506 found at Sat Oct 21 15:41:20 UTC 2017
selfserv_9183 with PID 1506 started at Sat Oct 21 15:41:20 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6129: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 1506 at Sat Oct 21 15:41:21 UTC 2017
kill -USR1 1506
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 1506 killed at Sat Oct 21 15:41:22 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:41:22 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:41:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1562 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1562 found at Sat Oct 21 15:41:22 UTC 2017
selfserv_9183 with PID 1562 started at Sat Oct 21 15:41:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6130: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 1562 at Sat Oct 21 15:41:24 UTC 2017
kill -USR1 1562
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 1562 killed at Sat Oct 21 15:41:24 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:41:24 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:41:24 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1630 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1630 found at Sat Oct 21 15:41:25 UTC 2017
selfserv_9183 with PID 1630 started at Sat Oct 21 15:41:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6131: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 1630 at Sat Oct 21 15:41:26 UTC 2017
kill -USR1 1630
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 1630 killed at Sat Oct 21 15:41:27 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:41:27 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:41:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1686 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1686 found at Sat Oct 21 15:41:27 UTC 2017
selfserv_9183 with PID 1686 started at Sat Oct 21 15:41:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6132: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 1686 at Sat Oct 21 15:41:28 UTC 2017
kill -USR1 1686
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 1686 killed at Sat Oct 21 15:41:29 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:41:29 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:41:29 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1742 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1742 found at Sat Oct 21 15:41:29 UTC 2017
selfserv_9183 with PID 1742 started at Sat Oct 21 15:41:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6133: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 1742 at Sat Oct 21 15:41:31 UTC 2017
kill -USR1 1742
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 1742 killed at Sat Oct 21 15:41:31 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:41:31 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:41:31 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1814 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1814 found at Sat Oct 21 15:41:32 UTC 2017
selfserv_9183 with PID 1814 started at Sat Oct 21 15:41:32 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6134: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 1814 at Sat Oct 21 15:41:33 UTC 2017
kill -USR1 1814
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 1814 killed at Sat Oct 21 15:41:34 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:41:34 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:41:34 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1871 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1871 found at Sat Oct 21 15:41:34 UTC 2017
selfserv_9183 with PID 1871 started at Sat Oct 21 15:41:34 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6135: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 1871 at Sat Oct 21 15:41:36 UTC 2017
kill -USR1 1871
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 1871 killed at Sat Oct 21 15:41:36 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:41:36 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:41:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1927 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1927 found at Sat Oct 21 15:41:37 UTC 2017
selfserv_9183 with PID 1927 started at Sat Oct 21 15:41:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6136: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 1927 at Sat Oct 21 15:41:38 UTC 2017
kill -USR1 1927
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 1927 killed at Sat Oct 21 15:41:39 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:41:39 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:41:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 1995 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 1995 found at Sat Oct 21 15:41:39 UTC 2017
selfserv_9183 with PID 1995 started at Sat Oct 21 15:41:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6137: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 1995 at Sat Oct 21 15:41:41 UTC 2017
kill -USR1 1995
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 1995 killed at Sat Oct 21 15:41:41 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:41:41 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:41:41 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2051 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2051 found at Sat Oct 21 15:41:42 UTC 2017
selfserv_9183 with PID 2051 started at Sat Oct 21 15:41:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6138: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 2051 at Sat Oct 21 15:41:43 UTC 2017
kill -USR1 2051
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2051 killed at Sat Oct 21 15:41:43 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:41:43 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:41:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2107 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2107 found at Sat Oct 21 15:41:44 UTC 2017
selfserv_9183 with PID 2107 started at Sat Oct 21 15:41:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6139: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 2107 at Sat Oct 21 15:41:45 UTC 2017
kill -USR1 2107
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2107 killed at Sat Oct 21 15:41:46 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:41:46 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:41:46 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2175 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2175 found at Sat Oct 21 15:41:46 UTC 2017
selfserv_9183 with PID 2175 started at Sat Oct 21 15:41:46 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6140: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 2175 at Sat Oct 21 15:41:48 UTC 2017
kill -USR1 2175
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2175 killed at Sat Oct 21 15:41:48 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:41:48 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:41:48 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2231 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2231 found at Sat Oct 21 15:41:49 UTC 2017
selfserv_9183 with PID 2231 started at Sat Oct 21 15:41:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6141: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 2231 at Sat Oct 21 15:41:50 UTC 2017
kill -USR1 2231
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2231 killed at Sat Oct 21 15:41:51 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:41:51 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:41:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2287 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2287 found at Sat Oct 21 15:41:51 UTC 2017
selfserv_9183 with PID 2287 started at Sat Oct 21 15:41:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6142: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 2287 at Sat Oct 21 15:41:53 UTC 2017
kill -USR1 2287
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2287 killed at Sat Oct 21 15:41:53 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:41:53 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:41:53 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2355 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2355 found at Sat Oct 21 15:41:54 UTC 2017
selfserv_9183 with PID 2355 started at Sat Oct 21 15:41:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6143: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 2355 at Sat Oct 21 15:41:55 UTC 2017
kill -USR1 2355
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2355 killed at Sat Oct 21 15:41:55 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:41:55 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:41:55 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2417 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2417 found at Sat Oct 21 15:41:56 UTC 2017
selfserv_9183 with PID 2417 started at Sat Oct 21 15:41:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6144: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 2417 at Sat Oct 21 15:41:57 UTC 2017
kill -USR1 2417
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2417 killed at Sat Oct 21 15:41:57 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:41:58 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:41:58 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2476 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2476 found at Sat Oct 21 15:41:58 UTC 2017
selfserv_9183 with PID 2476 started at Sat Oct 21 15:41:58 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6145: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 2476 at Sat Oct 21 15:41:59 UTC 2017
kill -USR1 2476
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2476 killed at Sat Oct 21 15:42:00 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:42:00 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:42:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2544 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2544 found at Sat Oct 21 15:42:00 UTC 2017
selfserv_9183 with PID 2544 started at Sat Oct 21 15:42:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6146: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 2544 at Sat Oct 21 15:42:02 UTC 2017
kill -USR1 2544
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2544 killed at Sat Oct 21 15:42:02 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:42:02 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:42:02 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2614 found at Sat Oct 21 15:42:03 UTC 2017
selfserv_9183 with PID 2614 started at Sat Oct 21 15:42:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6147: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 2614 at Sat Oct 21 15:42:04 UTC 2017
kill -USR1 2614
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2614 killed at Sat Oct 21 15:42:04 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:42:04 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:42:04 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2670 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2670 found at Sat Oct 21 15:42:05 UTC 2017
selfserv_9183 with PID 2670 started at Sat Oct 21 15:42:05 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6148: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 2670 at Sat Oct 21 15:42:06 UTC 2017
kill -USR1 2670
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2670 killed at Sat Oct 21 15:42:07 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:42:07 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:42:07 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2738 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2738 found at Sat Oct 21 15:42:07 UTC 2017
selfserv_9183 with PID 2738 started at Sat Oct 21 15:42:07 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6149: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 2738 at Sat Oct 21 15:42:08 UTC 2017
kill -USR1 2738
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2738 killed at Sat Oct 21 15:42:09 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:42:09 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:42:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2794 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2794 found at Sat Oct 21 15:42:09 UTC 2017
selfserv_9183 with PID 2794 started at Sat Oct 21 15:42:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6150: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 2794 at Sat Oct 21 15:42:10 UTC 2017
kill -USR1 2794
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2794 killed at Sat Oct 21 15:42:11 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 15:42:11 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:42:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2850 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2850 found at Sat Oct 21 15:42:11 UTC 2017
selfserv_9183 with PID 2850 started at Sat Oct 21 15:42:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #6151: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 2850 at Sat Oct 21 15:42:12 UTC 2017
kill -USR1 2850
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2850 killed at Sat Oct 21 15:42:13 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:42:13 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:42:13 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2918 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2918 found at Sat Oct 21 15:42:13 UTC 2017
selfserv_9183 with PID 2918 started at Sat Oct 21 15:42:13 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6152: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 2918 at Sat Oct 21 15:42:15 UTC 2017
kill -USR1 2918
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2918 killed at Sat Oct 21 15:42:15 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:42:15 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:42:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2975 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2975 found at Sat Oct 21 15:42:16 UTC 2017
selfserv_9183 with PID 2975 started at Sat Oct 21 15:42:16 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #6153: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 2975 at Sat Oct 21 15:42:17 UTC 2017
kill -USR1 2975
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2975 killed at Sat Oct 21 15:42:17 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:42:17 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:42:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3031 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3031 found at Sat Oct 21 15:42:18 UTC 2017
selfserv_9183 with PID 3031 started at Sat Oct 21 15:42:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #6154: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 3031 at Sat Oct 21 15:42:19 UTC 2017
kill -USR1 3031
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3031 killed at Sat Oct 21 15:42:20 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/authin.tl.tmp
0
selfserv_9183 starting at Sat Oct 21 15:42:20 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:42:20 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:20 UTC 2017
selfserv_9183 with PID 3094 started at Sat Oct 21 15:42:20 UTC 2017
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:21 UTC 2017
ssl.sh: #6155: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:23 UTC 2017
ssl.sh: #6156: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:24 UTC 2017
ssl.sh: #6157: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:25 UTC 2017
ssl.sh: #6158: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:26 UTC 2017
ssl.sh: #6159: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:27 UTC 2017
ssl.sh: #6160: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:28 UTC 2017
ssl.sh: #6161: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:29 UTC 2017
ssl.sh: #6162: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:30 UTC 2017
ssl.sh: #6163: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:32 UTC 2017
ssl.sh: #6164: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:33 UTC 2017
ssl.sh: #6165: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:34 UTC 2017
ssl.sh: #6166: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:35 UTC 2017
ssl.sh: #6167: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:36 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6168: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:37 UTC 2017
ssl.sh: #6169: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:38 UTC 2017
ssl.sh: #6170: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:39 UTC 2017
ssl.sh: #6171: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:40 UTC 2017
ssl.sh: #6172: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:41 UTC 2017
ssl.sh: #6173: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:43 UTC 2017
ssl.sh: #6174: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:44 UTC 2017
ssl.sh: #6175: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:45 UTC 2017
ssl.sh: #6176: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:46 UTC 2017
ssl.sh: #6177: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:47 UTC 2017
ssl.sh: #6178: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:48 UTC 2017
ssl.sh: #6179: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:49 UTC 2017
ssl.sh: #6180: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:50 UTC 2017
ssl.sh: #6181: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:52 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6182: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:53 UTC 2017
ssl.sh: #6183: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:54 UTC 2017
ssl.sh: #6184: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:55 UTC 2017
ssl.sh: #6185: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:56 UTC 2017
ssl.sh: #6186: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:57 UTC 2017
ssl.sh: #6187: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:58 UTC 2017
ssl.sh: #6188: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:42:59 UTC 2017
ssl.sh: #6189: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:43:00 UTC 2017
ssl.sh: #6190: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:43:01 UTC 2017
ssl.sh: #6191: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:43:02 UTC 2017
ssl.sh: #6192: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:43:04 UTC 2017
ssl.sh: #6193: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:43:05 UTC 2017
ssl.sh: #6194: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3094 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3094 found at Sat Oct 21 15:43:06 UTC 2017
ssl.sh: #6195: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 3094 at Sat Oct 21 15:43:06 UTC 2017
kill -USR1 3094
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3094 killed at Sat Oct 21 15:43:06 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:43:06 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:43:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:07 UTC 2017
selfserv_9183 with PID 4588 started at Sat Oct 21 15:43:07 UTC 2017
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:08 UTC 2017
ssl.sh: #6196: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:09 UTC 2017
ssl.sh: #6197: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:10 UTC 2017
ssl.sh: #6198: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:11 UTC 2017
ssl.sh: #6199: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:12 UTC 2017
ssl.sh: #6200: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:13 UTC 2017
ssl.sh: #6201: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:14 UTC 2017
ssl.sh: #6202: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:15 UTC 2017
ssl.sh: #6203: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:16 UTC 2017
ssl.sh: #6204: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:17 UTC 2017
ssl.sh: #6205: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:18 UTC 2017
ssl.sh: #6206: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:19 UTC 2017
ssl.sh: #6207: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:20 UTC 2017
ssl.sh: #6208: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:21 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6209: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:22 UTC 2017
ssl.sh: #6210: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:23 UTC 2017
ssl.sh: #6211: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:24 UTC 2017
ssl.sh: #6212: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:25 UTC 2017
ssl.sh: #6213: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:26 UTC 2017
ssl.sh: #6214: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:27 UTC 2017
ssl.sh: #6215: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:28 UTC 2017
ssl.sh: #6216: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:29 UTC 2017
ssl.sh: #6217: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:30 UTC 2017
ssl.sh: #6218: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:31 UTC 2017
ssl.sh: #6219: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:32 UTC 2017
ssl.sh: #6220: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:33 UTC 2017
ssl.sh: #6221: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:34 UTC 2017
ssl.sh: #6222: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:35 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6223: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:36 UTC 2017
ssl.sh: #6224: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:37 UTC 2017
ssl.sh: #6225: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:38 UTC 2017
ssl.sh: #6226: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:39 UTC 2017
ssl.sh: #6227: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:40 UTC 2017
ssl.sh: #6228: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:41 UTC 2017
ssl.sh: #6229: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:42 UTC 2017
ssl.sh: #6230: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:43 UTC 2017
ssl.sh: #6231: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:44 UTC 2017
ssl.sh: #6232: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:45 UTC 2017
ssl.sh: #6233: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:46 UTC 2017
ssl.sh: #6234: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:47 UTC 2017
ssl.sh: #6235: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4588 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4588 found at Sat Oct 21 15:43:48 UTC 2017
ssl.sh: #6236: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 4588 at Sat Oct 21 15:43:48 UTC 2017
kill -USR1 4588
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4588 killed at Sat Oct 21 15:43:48 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:43:48 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:43:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:43:49 UTC 2017
selfserv_9183 with PID 6014 started at Sat Oct 21 15:43:49 UTC 2017
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:43:50 UTC 2017
ssl.sh: #6237: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:43:51 UTC 2017
ssl.sh: #6238: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:43:53 UTC 2017
ssl.sh: #6239: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:43:54 UTC 2017
ssl.sh: #6240: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:43:55 UTC 2017
ssl.sh: #6241: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:43:56 UTC 2017
ssl.sh: #6242: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:43:57 UTC 2017
ssl.sh: #6243: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:43:59 UTC 2017
ssl.sh: #6244: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:00 UTC 2017
ssl.sh: #6245: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:01 UTC 2017
ssl.sh: #6246: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:02 UTC 2017
ssl.sh: #6247: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:04 UTC 2017
ssl.sh: #6248: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:05 UTC 2017
ssl.sh: #6249: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:06 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6250: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:07 UTC 2017
ssl.sh: #6251: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:08 UTC 2017
ssl.sh: #6252: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:09 UTC 2017
ssl.sh: #6253: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:11 UTC 2017
ssl.sh: #6254: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:12 UTC 2017
ssl.sh: #6255: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:13 UTC 2017
ssl.sh: #6256: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:14 UTC 2017
ssl.sh: #6257: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:15 UTC 2017
ssl.sh: #6258: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:16 UTC 2017
ssl.sh: #6259: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:17 UTC 2017
ssl.sh: #6260: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:19 UTC 2017
ssl.sh: #6261: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:20 UTC 2017
ssl.sh: #6262: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:21 UTC 2017
ssl.sh: #6263: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:22 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6264: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:23 UTC 2017
ssl.sh: #6265: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:25 UTC 2017
ssl.sh: #6266: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:26 UTC 2017
ssl.sh: #6267: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:27 UTC 2017
ssl.sh: #6268: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:28 UTC 2017
ssl.sh: #6269: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:29 UTC 2017
ssl.sh: #6270: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:30 UTC 2017
ssl.sh: #6271: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:31 UTC 2017
ssl.sh: #6272: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:32 UTC 2017
ssl.sh: #6273: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:33 UTC 2017
ssl.sh: #6274: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:35 UTC 2017
ssl.sh: #6275: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:36 UTC 2017
ssl.sh: #6276: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6014 found at Sat Oct 21 15:44:37 UTC 2017
ssl.sh: #6277: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 6014 at Sat Oct 21 15:44:37 UTC 2017
kill -USR1 6014
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 6014 killed at Sat Oct 21 15:44:38 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:44:38 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:44:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:44:38 UTC 2017
selfserv_9183 with PID 7456 started at Sat Oct 21 15:44:38 UTC 2017
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:44:39 UTC 2017
ssl.sh: #6278: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:44:40 UTC 2017
ssl.sh: #6279: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:44:41 UTC 2017
ssl.sh: #6280: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:44:42 UTC 2017
ssl.sh: #6281: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:44:43 UTC 2017
ssl.sh: #6282: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:44:45 UTC 2017
ssl.sh: #6283: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:44:46 UTC 2017
ssl.sh: #6284: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:44:47 UTC 2017
ssl.sh: #6285: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:44:48 UTC 2017
ssl.sh: #6286: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:44:49 UTC 2017
ssl.sh: #6287: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:44:50 UTC 2017
ssl.sh: #6288: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:44:51 UTC 2017
ssl.sh: #6289: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:44:52 UTC 2017
ssl.sh: #6290: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:44:54 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6291: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:44:55 UTC 2017
ssl.sh: #6292: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:44:56 UTC 2017
ssl.sh: #6293: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:44:57 UTC 2017
ssl.sh: #6294: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:44:58 UTC 2017
ssl.sh: #6295: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:44:59 UTC 2017
ssl.sh: #6296: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:45:00 UTC 2017
ssl.sh: #6297: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:45:01 UTC 2017
ssl.sh: #6298: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:45:02 UTC 2017
ssl.sh: #6299: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:45:03 UTC 2017
ssl.sh: #6300: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:45:04 UTC 2017
ssl.sh: #6301: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:45:05 UTC 2017
ssl.sh: #6302: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:45:06 UTC 2017
ssl.sh: #6303: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:45:07 UTC 2017
ssl.sh: #6304: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:45:08 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6305: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:45:09 UTC 2017
ssl.sh: #6306: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:45:10 UTC 2017
ssl.sh: #6307: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:45:11 UTC 2017
ssl.sh: #6308: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:45:12 UTC 2017
ssl.sh: #6309: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:45:13 UTC 2017
ssl.sh: #6310: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:45:14 UTC 2017
ssl.sh: #6311: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:45:15 UTC 2017
ssl.sh: #6312: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:45:16 UTC 2017
ssl.sh: #6313: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:45:17 UTC 2017
ssl.sh: #6314: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:45:18 UTC 2017
ssl.sh: #6315: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:45:20 UTC 2017
ssl.sh: #6316: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:45:21 UTC 2017
ssl.sh: #6317: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7456 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7456 found at Sat Oct 21 15:45:22 UTC 2017
ssl.sh: #6318: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 7456 at Sat Oct 21 15:45:22 UTC 2017
kill -USR1 7456
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 7456 killed at Sat Oct 21 15:45:22 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:45:22 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:45:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8896 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8896 found at Sat Oct 21 15:45:23 UTC 2017
selfserv_9183 with PID 8896 started at Sat Oct 21 15:45:23 UTC 2017
trying to kill selfserv_9183 with PID 8896 at Sat Oct 21 15:45:23 UTC 2017
kill -USR1 8896
./ssl.sh: line 197:  8896 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9183 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 8896 killed at Sat Oct 21 15:45:23 UTC 2017
selfserv_9183 starting at Sat Oct 21 15:45:23 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:45:23 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:45:24 UTC 2017
selfserv_9183 with PID 8930 started at Sat Oct 21 15:45:24 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:45:25 UTC 2017
ssl.sh: #6319: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:45:27 UTC 2017
ssl.sh: #6320: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:45:28 UTC 2017
ssl.sh: #6321: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:45:29 UTC 2017
ssl.sh: #6322: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:45:30 UTC 2017
ssl.sh: #6323: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:45:32 UTC 2017
ssl.sh: #6324: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:45:33 UTC 2017
ssl.sh: #6325: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:45:34 UTC 2017
ssl.sh: #6326: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:45:36 UTC 2017
ssl.sh: #6327: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:45:37 UTC 2017
ssl.sh: #6328: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:45:38 UTC 2017
ssl.sh: #6329: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:45:40 UTC 2017
ssl.sh: #6330: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:45:41 UTC 2017
ssl.sh: #6331: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:45:42 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6332: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:45:44 UTC 2017
ssl.sh: #6333: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:45:45 UTC 2017
ssl.sh: #6334: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:45:46 UTC 2017
ssl.sh: #6335: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:45:47 UTC 2017
ssl.sh: #6336: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:45:49 UTC 2017
ssl.sh: #6337: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:45:50 UTC 2017
ssl.sh: #6338: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:45:51 UTC 2017
ssl.sh: #6339: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:45:53 UTC 2017
ssl.sh: #6340: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:45:54 UTC 2017
ssl.sh: #6341: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:45:55 UTC 2017
ssl.sh: #6342: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:45:57 UTC 2017
ssl.sh: #6343: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:45:58 UTC 2017
ssl.sh: #6344: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:45:59 UTC 2017
ssl.sh: #6345: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:46:00 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6346: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:46:02 UTC 2017
ssl.sh: #6347: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:46:03 UTC 2017
ssl.sh: #6348: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:46:04 UTC 2017
ssl.sh: #6349: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:46:06 UTC 2017
ssl.sh: #6350: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:46:07 UTC 2017
ssl.sh: #6351: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:46:08 UTC 2017
ssl.sh: #6352: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:46:09 UTC 2017
ssl.sh: #6353: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:46:11 UTC 2017
ssl.sh: #6354: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:46:12 UTC 2017
ssl.sh: #6355: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:46:13 UTC 2017
ssl.sh: #6356: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:46:15 UTC 2017
ssl.sh: #6357: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:46:16 UTC 2017
ssl.sh: #6358: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8930 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8930 found at Sat Oct 21 15:46:17 UTC 2017
ssl.sh: #6359: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 8930 at Sat Oct 21 15:46:17 UTC 2017
kill -USR1 8930
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 8930 killed at Sat Oct 21 15:46:18 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:46:18 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:46:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:18 UTC 2017
selfserv_9183 with PID 10372 started at Sat Oct 21 15:46:18 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:20 UTC 2017
ssl.sh: #6360: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:21 UTC 2017
ssl.sh: #6361: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:22 UTC 2017
ssl.sh: #6362: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:24 UTC 2017
ssl.sh: #6363: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:25 UTC 2017
ssl.sh: #6364: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:26 UTC 2017
ssl.sh: #6365: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:28 UTC 2017
ssl.sh: #6366: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:29 UTC 2017
ssl.sh: #6367: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:30 UTC 2017
ssl.sh: #6368: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:31 UTC 2017
ssl.sh: #6369: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:33 UTC 2017
ssl.sh: #6370: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:34 UTC 2017
ssl.sh: #6371: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:36 UTC 2017
ssl.sh: #6372: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:37 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6373: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:38 UTC 2017
ssl.sh: #6374: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:39 UTC 2017
ssl.sh: #6375: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:41 UTC 2017
ssl.sh: #6376: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:42 UTC 2017
ssl.sh: #6377: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:43 UTC 2017
ssl.sh: #6378: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:44 UTC 2017
ssl.sh: #6379: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:46 UTC 2017
ssl.sh: #6380: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:47 UTC 2017
ssl.sh: #6381: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:48 UTC 2017
ssl.sh: #6382: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:50 UTC 2017
ssl.sh: #6383: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:51 UTC 2017
ssl.sh: #6384: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:52 UTC 2017
ssl.sh: #6385: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:54 UTC 2017
ssl.sh: #6386: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:55 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6387: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:56 UTC 2017
ssl.sh: #6388: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:57 UTC 2017
ssl.sh: #6389: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:46:59 UTC 2017
ssl.sh: #6390: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:47:00 UTC 2017
ssl.sh: #6391: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:47:01 UTC 2017
ssl.sh: #6392: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:47:03 UTC 2017
ssl.sh: #6393: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:47:04 UTC 2017
ssl.sh: #6394: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:47:05 UTC 2017
ssl.sh: #6395: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:47:06 UTC 2017
ssl.sh: #6396: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:47:08 UTC 2017
ssl.sh: #6397: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:47:09 UTC 2017
ssl.sh: #6398: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:47:10 UTC 2017
ssl.sh: #6399: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10372 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10372 found at Sat Oct 21 15:47:12 UTC 2017
ssl.sh: #6400: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 10372 at Sat Oct 21 15:47:12 UTC 2017
kill -USR1 10372
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10372 killed at Sat Oct 21 15:47:12 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:47:12 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:47:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:13 UTC 2017
selfserv_9183 with PID 11812 started at Sat Oct 21 15:47:13 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:14 UTC 2017
ssl.sh: #6401: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:15 UTC 2017
ssl.sh: #6402: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:16 UTC 2017
ssl.sh: #6403: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:17 UTC 2017
ssl.sh: #6404: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:19 UTC 2017
ssl.sh: #6405: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:20 UTC 2017
ssl.sh: #6406: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:21 UTC 2017
ssl.sh: #6407: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:22 UTC 2017
ssl.sh: #6408: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:23 UTC 2017
ssl.sh: #6409: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:24 UTC 2017
ssl.sh: #6410: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:26 UTC 2017
ssl.sh: #6411: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:27 UTC 2017
ssl.sh: #6412: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:28 UTC 2017
ssl.sh: #6413: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:29 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6414: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:30 UTC 2017
ssl.sh: #6415: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:32 UTC 2017
ssl.sh: #6416: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:33 UTC 2017
ssl.sh: #6417: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:34 UTC 2017
ssl.sh: #6418: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:35 UTC 2017
ssl.sh: #6419: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:36 UTC 2017
ssl.sh: #6420: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:37 UTC 2017
ssl.sh: #6421: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:38 UTC 2017
ssl.sh: #6422: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:40 UTC 2017
ssl.sh: #6423: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:41 UTC 2017
ssl.sh: #6424: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:42 UTC 2017
ssl.sh: #6425: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:43 UTC 2017
ssl.sh: #6426: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:44 UTC 2017
ssl.sh: #6427: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:46 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6428: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:47 UTC 2017
ssl.sh: #6429: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:48 UTC 2017
ssl.sh: #6430: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:49 UTC 2017
ssl.sh: #6431: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:50 UTC 2017
ssl.sh: #6432: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:51 UTC 2017
ssl.sh: #6433: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:52 UTC 2017
ssl.sh: #6434: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:54 UTC 2017
ssl.sh: #6435: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:55 UTC 2017
ssl.sh: #6436: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:56 UTC 2017
ssl.sh: #6437: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:57 UTC 2017
ssl.sh: #6438: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:47:58 UTC 2017
ssl.sh: #6439: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:48:00 UTC 2017
ssl.sh: #6440: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11812 found at Sat Oct 21 15:48:01 UTC 2017
ssl.sh: #6441: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 11812 at Sat Oct 21 15:48:01 UTC 2017
kill -USR1 11812
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 11812 killed at Sat Oct 21 15:48:01 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:48:01 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:48:01 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:02 UTC 2017
selfserv_9183 with PID 13239 started at Sat Oct 21 15:48:02 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:03 UTC 2017
ssl.sh: #6442: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:05 UTC 2017
ssl.sh: #6443: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:06 UTC 2017
ssl.sh: #6444: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:07 UTC 2017
ssl.sh: #6445: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:09 UTC 2017
ssl.sh: #6446: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:10 UTC 2017
ssl.sh: #6447: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:12 UTC 2017
ssl.sh: #6448: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:13 UTC 2017
ssl.sh: #6449: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:14 UTC 2017
ssl.sh: #6450: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:16 UTC 2017
ssl.sh: #6451: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:17 UTC 2017
ssl.sh: #6452: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:19 UTC 2017
ssl.sh: #6453: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:20 UTC 2017
ssl.sh: #6454: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:21 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6455: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:23 UTC 2017
ssl.sh: #6456: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:24 UTC 2017
ssl.sh: #6457: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:25 UTC 2017
ssl.sh: #6458: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:27 UTC 2017
ssl.sh: #6459: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:28 UTC 2017
ssl.sh: #6460: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:29 UTC 2017
ssl.sh: #6461: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:31 UTC 2017
ssl.sh: #6462: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:32 UTC 2017
ssl.sh: #6463: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:33 UTC 2017
ssl.sh: #6464: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:35 UTC 2017
ssl.sh: #6465: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:36 UTC 2017
ssl.sh: #6466: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:38 UTC 2017
ssl.sh: #6467: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:39 UTC 2017
ssl.sh: #6468: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:40 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6469: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:42 UTC 2017
ssl.sh: #6470: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:43 UTC 2017
ssl.sh: #6471: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:44 UTC 2017
ssl.sh: #6472: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:46 UTC 2017
ssl.sh: #6473: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:47 UTC 2017
ssl.sh: #6474: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:48 UTC 2017
ssl.sh: #6475: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:49 UTC 2017
ssl.sh: #6476: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:51 UTC 2017
ssl.sh: #6477: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:52 UTC 2017
ssl.sh: #6478: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:53 UTC 2017
ssl.sh: #6479: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:55 UTC 2017
ssl.sh: #6480: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:56 UTC 2017
ssl.sh: #6481: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13239 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13239 found at Sat Oct 21 15:48:58 UTC 2017
ssl.sh: #6482: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 13239 at Sat Oct 21 15:48:58 UTC 2017
kill -USR1 13239
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 13239 killed at Sat Oct 21 15:48:58 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:48:58 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:48:58 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:48:59 UTC 2017
selfserv_9183 with PID 14678 started at Sat Oct 21 15:48:59 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:00 UTC 2017
ssl.sh: #6483: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:02 UTC 2017
ssl.sh: #6484: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:03 UTC 2017
ssl.sh: #6485: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:04 UTC 2017
ssl.sh: #6486: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:06 UTC 2017
ssl.sh: #6487: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:07 UTC 2017
ssl.sh: #6488: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:08 UTC 2017
ssl.sh: #6489: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:10 UTC 2017
ssl.sh: #6490: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:11 UTC 2017
ssl.sh: #6491: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:13 UTC 2017
ssl.sh: #6492: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:14 UTC 2017
ssl.sh: #6493: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:16 UTC 2017
ssl.sh: #6494: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:17 UTC 2017
ssl.sh: #6495: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:18 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6496: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:20 UTC 2017
ssl.sh: #6497: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:21 UTC 2017
ssl.sh: #6498: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:22 UTC 2017
ssl.sh: #6499: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:24 UTC 2017
ssl.sh: #6500: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:25 UTC 2017
ssl.sh: #6501: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:26 UTC 2017
ssl.sh: #6502: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:28 UTC 2017
ssl.sh: #6503: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:29 UTC 2017
ssl.sh: #6504: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:30 UTC 2017
ssl.sh: #6505: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:32 UTC 2017
ssl.sh: #6506: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:33 UTC 2017
ssl.sh: #6507: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:34 UTC 2017
ssl.sh: #6508: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:36 UTC 2017
ssl.sh: #6509: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:37 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6510: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:38 UTC 2017
ssl.sh: #6511: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:40 UTC 2017
ssl.sh: #6512: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:41 UTC 2017
ssl.sh: #6513: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:42 UTC 2017
ssl.sh: #6514: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:44 UTC 2017
ssl.sh: #6515: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:45 UTC 2017
ssl.sh: #6516: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:46 UTC 2017
ssl.sh: #6517: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:48 UTC 2017
ssl.sh: #6518: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:49 UTC 2017
ssl.sh: #6519: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:50 UTC 2017
ssl.sh: #6520: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:52 UTC 2017
ssl.sh: #6521: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:53 UTC 2017
ssl.sh: #6522: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14678 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14678 found at Sat Oct 21 15:49:54 UTC 2017
ssl.sh: #6523: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 14678 at Sat Oct 21 15:49:55 UTC 2017
kill -USR1 14678
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 14678 killed at Sat Oct 21 15:49:55 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:49:55 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:49:55 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:49:56 UTC 2017
selfserv_9183 with PID 16117 started at Sat Oct 21 15:49:56 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:49:57 UTC 2017
ssl.sh: #6524: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:49:58 UTC 2017
ssl.sh: #6525: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:49:59 UTC 2017
ssl.sh: #6526: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:00 UTC 2017
ssl.sh: #6527: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:02 UTC 2017
ssl.sh: #6528: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:03 UTC 2017
ssl.sh: #6529: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:04 UTC 2017
ssl.sh: #6530: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:06 UTC 2017
ssl.sh: #6531: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:07 UTC 2017
ssl.sh: #6532: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:08 UTC 2017
ssl.sh: #6533: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:09 UTC 2017
ssl.sh: #6534: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:11 UTC 2017
ssl.sh: #6535: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:12 UTC 2017
ssl.sh: #6536: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:13 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6537: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:15 UTC 2017
ssl.sh: #6538: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:16 UTC 2017
ssl.sh: #6539: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:17 UTC 2017
ssl.sh: #6540: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:18 UTC 2017
ssl.sh: #6541: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:19 UTC 2017
ssl.sh: #6542: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:20 UTC 2017
ssl.sh: #6543: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:22 UTC 2017
ssl.sh: #6544: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:23 UTC 2017
ssl.sh: #6545: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:24 UTC 2017
ssl.sh: #6546: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:25 UTC 2017
ssl.sh: #6547: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:27 UTC 2017
ssl.sh: #6548: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:28 UTC 2017
ssl.sh: #6549: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:29 UTC 2017
ssl.sh: #6550: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:31 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6551: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:32 UTC 2017
ssl.sh: #6552: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:33 UTC 2017
ssl.sh: #6553: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:34 UTC 2017
ssl.sh: #6554: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:35 UTC 2017
ssl.sh: #6555: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:36 UTC 2017
ssl.sh: #6556: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:38 UTC 2017
ssl.sh: #6557: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:39 UTC 2017
ssl.sh: #6558: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:40 UTC 2017
ssl.sh: #6559: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:41 UTC 2017
ssl.sh: #6560: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:42 UTC 2017
ssl.sh: #6561: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:44 UTC 2017
ssl.sh: #6562: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:45 UTC 2017
ssl.sh: #6563: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16117 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16117 found at Sat Oct 21 15:50:46 UTC 2017
ssl.sh: #6564: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 16117 at Sat Oct 21 15:50:46 UTC 2017
kill -USR1 16117
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 16117 killed at Sat Oct 21 15:50:47 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:50:47 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:50:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17564 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17564 found at Sat Oct 21 15:50:47 UTC 2017
selfserv_9183 with PID 17564 started at Sat Oct 21 15:50:47 UTC 2017
trying to kill selfserv_9183 with PID 17564 at Sat Oct 21 15:50:47 UTC 2017
kill -USR1 17564
./ssl.sh: line 197: 17564 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9183 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17564 killed at Sat Oct 21 15:50:48 UTC 2017
selfserv_9183 starting at Sat Oct 21 15:50:48 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:50:48 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:50:48 UTC 2017
selfserv_9183 with PID 17598 started at Sat Oct 21 15:50:48 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:50:50 UTC 2017
ssl.sh: #6565: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:50:51 UTC 2017
ssl.sh: #6566: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:50:52 UTC 2017
ssl.sh: #6567: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:50:54 UTC 2017
ssl.sh: #6568: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:50:55 UTC 2017
ssl.sh: #6569: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:50:56 UTC 2017
ssl.sh: #6570: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:50:57 UTC 2017
ssl.sh: #6571: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:50:59 UTC 2017
ssl.sh: #6572: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:00 UTC 2017
ssl.sh: #6573: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:02 UTC 2017
ssl.sh: #6574: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:03 UTC 2017
ssl.sh: #6575: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:04 UTC 2017
ssl.sh: #6576: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:06 UTC 2017
ssl.sh: #6577: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:07 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6578: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:08 UTC 2017
ssl.sh: #6579: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:09 UTC 2017
ssl.sh: #6580: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:11 UTC 2017
ssl.sh: #6581: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:12 UTC 2017
ssl.sh: #6582: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:13 UTC 2017
ssl.sh: #6583: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:15 UTC 2017
ssl.sh: #6584: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:16 UTC 2017
ssl.sh: #6585: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:17 UTC 2017
ssl.sh: #6586: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:18 UTC 2017
ssl.sh: #6587: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:20 UTC 2017
ssl.sh: #6588: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:21 UTC 2017
ssl.sh: #6589: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:22 UTC 2017
ssl.sh: #6590: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:24 UTC 2017
ssl.sh: #6591: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:25 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6592: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:26 UTC 2017
ssl.sh: #6593: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:28 UTC 2017
ssl.sh: #6594: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:29 UTC 2017
ssl.sh: #6595: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:30 UTC 2017
ssl.sh: #6596: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:31 UTC 2017
ssl.sh: #6597: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:33 UTC 2017
ssl.sh: #6598: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:34 UTC 2017
ssl.sh: #6599: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:35 UTC 2017
ssl.sh: #6600: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:36 UTC 2017
ssl.sh: #6601: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:38 UTC 2017
ssl.sh: #6602: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:39 UTC 2017
ssl.sh: #6603: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:40 UTC 2017
ssl.sh: #6604: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17598 found at Sat Oct 21 15:51:42 UTC 2017
ssl.sh: #6605: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 17598 at Sat Oct 21 15:51:42 UTC 2017
kill -USR1 17598
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17598 killed at Sat Oct 21 15:51:42 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:51:42 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:51:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:51:43 UTC 2017
selfserv_9183 with PID 19043 started at Sat Oct 21 15:51:43 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:51:44 UTC 2017
ssl.sh: #6606: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:51:46 UTC 2017
ssl.sh: #6607: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:51:47 UTC 2017
ssl.sh: #6608: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:51:48 UTC 2017
ssl.sh: #6609: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:51:49 UTC 2017
ssl.sh: #6610: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:51:51 UTC 2017
ssl.sh: #6611: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:51:52 UTC 2017
ssl.sh: #6612: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:51:53 UTC 2017
ssl.sh: #6613: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:51:55 UTC 2017
ssl.sh: #6614: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:51:56 UTC 2017
ssl.sh: #6615: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:51:57 UTC 2017
ssl.sh: #6616: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:51:59 UTC 2017
ssl.sh: #6617: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:52:00 UTC 2017
ssl.sh: #6618: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:52:01 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6619: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:52:03 UTC 2017
ssl.sh: #6620: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:52:04 UTC 2017
ssl.sh: #6621: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:52:05 UTC 2017
ssl.sh: #6622: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:52:07 UTC 2017
ssl.sh: #6623: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:52:08 UTC 2017
ssl.sh: #6624: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:52:09 UTC 2017
ssl.sh: #6625: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:52:10 UTC 2017
ssl.sh: #6626: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:52:12 UTC 2017
ssl.sh: #6627: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:52:13 UTC 2017
ssl.sh: #6628: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:52:14 UTC 2017
ssl.sh: #6629: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:52:16 UTC 2017
ssl.sh: #6630: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:52:17 UTC 2017
ssl.sh: #6631: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:52:18 UTC 2017
ssl.sh: #6632: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:52:20 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6633: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:52:21 UTC 2017
ssl.sh: #6634: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:52:22 UTC 2017
ssl.sh: #6635: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:52:23 UTC 2017
ssl.sh: #6636: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:52:25 UTC 2017
ssl.sh: #6637: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:52:26 UTC 2017
ssl.sh: #6638: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:52:27 UTC 2017
ssl.sh: #6639: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:52:28 UTC 2017
ssl.sh: #6640: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:52:30 UTC 2017
ssl.sh: #6641: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:52:31 UTC 2017
ssl.sh: #6642: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:52:32 UTC 2017
ssl.sh: #6643: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:52:34 UTC 2017
ssl.sh: #6644: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:52:35 UTC 2017
ssl.sh: #6645: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19043 found at Sat Oct 21 15:52:36 UTC 2017
ssl.sh: #6646: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 19043 at Sat Oct 21 15:52:36 UTC 2017
kill -USR1 19043
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19043 killed at Sat Oct 21 15:52:37 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:52:37 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:52:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:52:37 UTC 2017
selfserv_9183 with PID 20484 started at Sat Oct 21 15:52:37 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:52:39 UTC 2017
ssl.sh: #6647: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:52:40 UTC 2017
ssl.sh: #6648: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:52:41 UTC 2017
ssl.sh: #6649: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:52:42 UTC 2017
ssl.sh: #6650: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:52:43 UTC 2017
ssl.sh: #6651: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:52:44 UTC 2017
ssl.sh: #6652: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:52:46 UTC 2017
ssl.sh: #6653: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:52:47 UTC 2017
ssl.sh: #6654: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:52:48 UTC 2017
ssl.sh: #6655: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:52:49 UTC 2017
ssl.sh: #6656: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:52:50 UTC 2017
ssl.sh: #6657: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:52:52 UTC 2017
ssl.sh: #6658: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:52:53 UTC 2017
ssl.sh: #6659: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:52:54 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6660: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:52:55 UTC 2017
ssl.sh: #6661: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:52:56 UTC 2017
ssl.sh: #6662: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:52:57 UTC 2017
ssl.sh: #6663: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:52:59 UTC 2017
ssl.sh: #6664: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:53:00 UTC 2017
ssl.sh: #6665: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:53:01 UTC 2017
ssl.sh: #6666: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:53:02 UTC 2017
ssl.sh: #6667: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:53:03 UTC 2017
ssl.sh: #6668: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:53:04 UTC 2017
ssl.sh: #6669: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:53:06 UTC 2017
ssl.sh: #6670: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:53:07 UTC 2017
ssl.sh: #6671: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:53:08 UTC 2017
ssl.sh: #6672: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:53:09 UTC 2017
ssl.sh: #6673: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:53:11 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6674: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:53:12 UTC 2017
ssl.sh: #6675: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:53:13 UTC 2017
ssl.sh: #6676: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:53:14 UTC 2017
ssl.sh: #6677: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:53:15 UTC 2017
ssl.sh: #6678: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:53:16 UTC 2017
ssl.sh: #6679: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:53:17 UTC 2017
ssl.sh: #6680: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:53:18 UTC 2017
ssl.sh: #6681: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:53:20 UTC 2017
ssl.sh: #6682: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:53:21 UTC 2017
ssl.sh: #6683: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:53:22 UTC 2017
ssl.sh: #6684: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:53:23 UTC 2017
ssl.sh: #6685: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:53:24 UTC 2017
ssl.sh: #6686: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20484 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20484 found at Sat Oct 21 15:53:26 UTC 2017
ssl.sh: #6687: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 20484 at Sat Oct 21 15:53:26 UTC 2017
kill -USR1 20484
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20484 killed at Sat Oct 21 15:53:26 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:53:26 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:53:26 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:53:27 UTC 2017
selfserv_9183 with PID 21923 started at Sat Oct 21 15:53:27 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:53:28 UTC 2017
ssl.sh: #6688: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:53:30 UTC 2017
ssl.sh: #6689: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:53:31 UTC 2017
ssl.sh: #6690: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:53:32 UTC 2017
ssl.sh: #6691: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:53:34 UTC 2017
ssl.sh: #6692: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:53:35 UTC 2017
ssl.sh: #6693: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:53:36 UTC 2017
ssl.sh: #6694: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:53:38 UTC 2017
ssl.sh: #6695: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:53:39 UTC 2017
ssl.sh: #6696: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:53:41 UTC 2017
ssl.sh: #6697: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:53:42 UTC 2017
ssl.sh: #6698: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:53:44 UTC 2017
ssl.sh: #6699: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:53:45 UTC 2017
ssl.sh: #6700: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:53:46 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6701: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:53:48 UTC 2017
ssl.sh: #6702: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:53:49 UTC 2017
ssl.sh: #6703: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:53:50 UTC 2017
ssl.sh: #6704: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:53:52 UTC 2017
ssl.sh: #6705: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:53:53 UTC 2017
ssl.sh: #6706: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:53:54 UTC 2017
ssl.sh: #6707: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:53:56 UTC 2017
ssl.sh: #6708: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:53:57 UTC 2017
ssl.sh: #6709: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:53:58 UTC 2017
ssl.sh: #6710: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:54:00 UTC 2017
ssl.sh: #6711: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:54:01 UTC 2017
ssl.sh: #6712: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:54:03 UTC 2017
ssl.sh: #6713: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:54:04 UTC 2017
ssl.sh: #6714: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:54:05 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6715: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:54:07 UTC 2017
ssl.sh: #6716: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:54:08 UTC 2017
ssl.sh: #6717: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:54:09 UTC 2017
ssl.sh: #6718: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:54:11 UTC 2017
ssl.sh: #6719: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:54:12 UTC 2017
ssl.sh: #6720: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:54:13 UTC 2017
ssl.sh: #6721: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:54:15 UTC 2017
ssl.sh: #6722: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:54:16 UTC 2017
ssl.sh: #6723: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:54:17 UTC 2017
ssl.sh: #6724: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:54:18 UTC 2017
ssl.sh: #6725: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:54:20 UTC 2017
ssl.sh: #6726: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:54:21 UTC 2017
ssl.sh: #6727: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21923 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21923 found at Sat Oct 21 15:54:23 UTC 2017
ssl.sh: #6728: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 21923 at Sat Oct 21 15:54:23 UTC 2017
kill -USR1 21923
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21923 killed at Sat Oct 21 15:54:23 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:54:23 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:54:23 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:54:24 UTC 2017
selfserv_9183 with PID 23366 started at Sat Oct 21 15:54:24 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:54:25 UTC 2017
ssl.sh: #6729: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:54:27 UTC 2017
ssl.sh: #6730: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:54:28 UTC 2017
ssl.sh: #6731: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:54:29 UTC 2017
ssl.sh: #6732: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:54:31 UTC 2017
ssl.sh: #6733: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:54:32 UTC 2017
ssl.sh: #6734: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:54:33 UTC 2017
ssl.sh: #6735: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:54:35 UTC 2017
ssl.sh: #6736: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:54:36 UTC 2017
ssl.sh: #6737: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:54:38 UTC 2017
ssl.sh: #6738: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:54:39 UTC 2017
ssl.sh: #6739: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:54:41 UTC 2017
ssl.sh: #6740: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:54:42 UTC 2017
ssl.sh: #6741: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:54:43 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6742: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:54:45 UTC 2017
ssl.sh: #6743: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:54:46 UTC 2017
ssl.sh: #6744: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:54:47 UTC 2017
ssl.sh: #6745: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:54:49 UTC 2017
ssl.sh: #6746: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:54:50 UTC 2017
ssl.sh: #6747: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:54:51 UTC 2017
ssl.sh: #6748: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:54:53 UTC 2017
ssl.sh: #6749: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:54:54 UTC 2017
ssl.sh: #6750: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:54:55 UTC 2017
ssl.sh: #6751: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:54:57 UTC 2017
ssl.sh: #6752: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:54:58 UTC 2017
ssl.sh: #6753: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:55:00 UTC 2017
ssl.sh: #6754: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:55:01 UTC 2017
ssl.sh: #6755: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:55:02 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6756: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:55:04 UTC 2017
ssl.sh: #6757: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:55:05 UTC 2017
ssl.sh: #6758: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:55:06 UTC 2017
ssl.sh: #6759: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:55:08 UTC 2017
ssl.sh: #6760: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:55:09 UTC 2017
ssl.sh: #6761: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:55:10 UTC 2017
ssl.sh: #6762: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:55:12 UTC 2017
ssl.sh: #6763: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:55:13 UTC 2017
ssl.sh: #6764: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:55:14 UTC 2017
ssl.sh: #6765: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:55:16 UTC 2017
ssl.sh: #6766: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:55:17 UTC 2017
ssl.sh: #6767: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:55:18 UTC 2017
ssl.sh: #6768: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23366 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23366 found at Sat Oct 21 15:55:20 UTC 2017
ssl.sh: #6769: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 23366 at Sat Oct 21 15:55:20 UTC 2017
kill -USR1 23366
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23366 killed at Sat Oct 21 15:55:20 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:55:20 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:55:20 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:21 UTC 2017
selfserv_9183 with PID 24806 started at Sat Oct 21 15:55:21 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:22 UTC 2017
ssl.sh: #6770: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:23 UTC 2017
ssl.sh: #6771: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:24 UTC 2017
ssl.sh: #6772: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:26 UTC 2017
ssl.sh: #6773: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:27 UTC 2017
ssl.sh: #6774: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:28 UTC 2017
ssl.sh: #6775: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:29 UTC 2017
ssl.sh: #6776: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:31 UTC 2017
ssl.sh: #6777: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:32 UTC 2017
ssl.sh: #6778: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:33 UTC 2017
ssl.sh: #6779: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:35 UTC 2017
ssl.sh: #6780: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:36 UTC 2017
ssl.sh: #6781: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:37 UTC 2017
ssl.sh: #6782: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:39 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6783: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:40 UTC 2017
ssl.sh: #6784: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:41 UTC 2017
ssl.sh: #6785: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:42 UTC 2017
ssl.sh: #6786: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:43 UTC 2017
ssl.sh: #6787: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:44 UTC 2017
ssl.sh: #6788: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:46 UTC 2017
ssl.sh: #6789: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:47 UTC 2017
ssl.sh: #6790: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:48 UTC 2017
ssl.sh: #6791: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:49 UTC 2017
ssl.sh: #6792: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:50 UTC 2017
ssl.sh: #6793: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:52 UTC 2017
ssl.sh: #6794: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:53 UTC 2017
ssl.sh: #6795: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:54 UTC 2017
ssl.sh: #6796: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:56 UTC 2017
================= CRL Reloaded =============
ssl.sh: #6797: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:57 UTC 2017
ssl.sh: #6798: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:58 UTC 2017
ssl.sh: #6799: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:55:59 UTC 2017
ssl.sh: #6800: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:56:00 UTC 2017
ssl.sh: #6801: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:56:02 UTC 2017
ssl.sh: #6802: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:56:03 UTC 2017
ssl.sh: #6803: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:56:04 UTC 2017
ssl.sh: #6804: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:56:05 UTC 2017
ssl.sh: #6805: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:56:06 UTC 2017
ssl.sh: #6806: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:56:08 UTC 2017
ssl.sh: #6807: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:56:09 UTC 2017
ssl.sh: #6808: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:56:10 UTC 2017
ssl.sh: #6809: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24806 found at Sat Oct 21 15:56:11 UTC 2017
ssl.sh: #6810: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 24806 at Sat Oct 21 15:56:11 UTC 2017
kill -USR1 24806
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 24806 killed at Sat Oct 21 15:56:12 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 15:56:12 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 15:56:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 26247 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 26247 found at Sat Oct 21 15:56:12 UTC 2017
selfserv_9183 with PID 26247 started at Sat Oct 21 15:56:13 UTC 2017
trying to kill selfserv_9183 with PID 26247 at Sat Oct 21 15:56:13 UTC 2017
kill -USR1 26247
./ssl.sh: line 197: 26247 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9183 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 26247 killed at Sat Oct 21 15:56:13 UTC 2017
TIMESTAMP ssl END: Sat Oct 21 15:56:13 UTC 2017
Running tests for ocsp
TIMESTAMP ocsp BEGIN: Sat Oct 21 15:56:13 UTC 2017
ocsp.sh: OCSP tests ===============================
TIMESTAMP ocsp END: Sat Oct 21 15:56:13 UTC 2017
Running tests for pkits
TIMESTAMP pkits BEGIN: Sat Oct 21 15:56:13 UTC 2017
pkits.sh: PKITS data directory not defined, skipping.
TIMESTAMP pkits END: Sat Oct 21 15:56:13 UTC 2017
Running tests for chains
TIMESTAMP chains BEGIN: Sat Oct 21 15:56:13 UTC 2017
chains.sh: Certificate Chains Tests ===============================
chains.sh: Creating DB OCSPRootDB
certutil -N -d OCSPRootDB -f OCSPRootDB/dbpasswd
chains.sh: #6811: OCSPD: Creating DB OCSPRootDB  - PASSED
chains.sh: Creating Root CA OCSPRoot
certutil -s "CN=OCSPRoot ROOT CA, O=OCSPRoot, C=US" -S -n OCSPRoot  -t CTu,CTu,CTu -v 600 -x -d OCSPRootDB -1 -2 -5 -f OCSPRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155614 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6812: OCSPD: Creating Root CA OCSPRoot  - PASSED
chains.sh: Exporting Root CA OCSPRoot.der
certutil -L -d OCSPRootDB -r -n OCSPRoot -o OCSPRoot.der
chains.sh: #6813: OCSPD: Exporting Root CA OCSPRoot.der  - PASSED
chains.sh: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d OCSPRootDB -o OCSPRoot.p12 -n OCSPRoot -k OCSPRootDB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #6814: OCSPD: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database  - PASSED
chains.sh: Creating DB OCSPCA1DB
certutil -N -d OCSPCA1DB -f OCSPCA1DB/dbpasswd
chains.sh: #6815: OCSPD: Creating DB OCSPCA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA1Req.der
certutil -s "CN=OCSPCA1 Intermediate, O=OCSPCA1, C=US"  -R -2 -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPCA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6816: OCSPD: Creating Intermediate certifiate request OCSPCA1Req.der  - PASSED
chains.sh: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA1Req.der -o OCSPCA1OCSPRoot.der -f OCSPRootDB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6817: OCSPD: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database
certutil -A -n OCSPCA1 -t u,u,u -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -i OCSPCA1OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6818: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database  - PASSED
chains.sh: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d OCSPCA1DB -o OCSPCA1.p12 -n OCSPCA1 -k OCSPCA1DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #6819: OCSPD: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database  - PASSED
chains.sh: Creating DB OCSPCA2DB
certutil -N -d OCSPCA2DB -f OCSPCA2DB/dbpasswd
chains.sh: #6820: OCSPD: Creating DB OCSPCA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA2Req.der
certutil -s "CN=OCSPCA2 Intermediate, O=OCSPCA2, C=US"  -R -2 -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPCA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6821: OCSPD: Creating Intermediate certifiate request OCSPCA2Req.der  - PASSED
chains.sh: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA2Req.der -o OCSPCA2OCSPRoot.der -f OCSPRootDB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6822: OCSPD: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database
certutil -A -n OCSPCA2 -t u,u,u -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -i OCSPCA2OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6823: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database  - PASSED
chains.sh: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d OCSPCA2DB -o OCSPCA2.p12 -n OCSPCA2 -k OCSPCA2DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #6824: OCSPD: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database  - PASSED
chains.sh: Creating DB OCSPCA3DB
certutil -N -d OCSPCA3DB -f OCSPCA3DB/dbpasswd
chains.sh: #6825: OCSPD: Creating DB OCSPCA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA3Req.der
certutil -s "CN=OCSPCA3 Intermediate, O=OCSPCA3, C=US"  -R -2 -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPCA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6826: OCSPD: Creating Intermediate certifiate request OCSPCA3Req.der  - PASSED
chains.sh: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA3Req.der -o OCSPCA3OCSPRoot.der -f OCSPRootDB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9194
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6827: OCSPD: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database
certutil -A -n OCSPCA3 -t u,u,u -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -i OCSPCA3OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6828: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database  - PASSED
chains.sh: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d OCSPCA3DB -o OCSPCA3.p12 -n OCSPCA3 -k OCSPCA3DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #6829: OCSPD: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database  - PASSED
chains.sh: Creating DB OCSPEE11DB
certutil -N -d OCSPEE11DB -f OCSPEE11DB/dbpasswd
chains.sh: #6830: OCSPD: Creating DB OCSPEE11DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE11Req.der
certutil -s "CN=OCSPEE11 EE, O=OCSPEE11, C=US"  -R  -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6831: OCSPD: Creating EE certifiate request OCSPEE11Req.der  - PASSED
chains.sh: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE11Req.der -o OCSPEE11OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6832: OCSPD: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database
certutil -A -n OCSPEE11 -t u,u,u -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -i OCSPEE11OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6833: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database  - PASSED
chains.sh: Creating DB OCSPEE12DB
certutil -N -d OCSPEE12DB -f OCSPEE12DB/dbpasswd
chains.sh: #6834: OCSPD: Creating DB OCSPEE12DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE12Req.der
certutil -s "CN=OCSPEE12 EE, O=OCSPEE12, C=US"  -R  -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6835: OCSPD: Creating EE certifiate request OCSPEE12Req.der  - PASSED
chains.sh: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE12Req.der -o OCSPEE12OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6836: OCSPD: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database
certutil -A -n OCSPEE12 -t u,u,u -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -i OCSPEE12OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6837: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database  - PASSED
chains.sh: Creating DB OCSPEE13DB
certutil -N -d OCSPEE13DB -f OCSPEE13DB/dbpasswd
chains.sh: #6838: OCSPD: Creating DB OCSPEE13DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE13Req.der
certutil -s "CN=OCSPEE13 EE, O=OCSPEE13, C=US"  -R  -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6839: OCSPD: Creating EE certifiate request OCSPEE13Req.der  - PASSED
chains.sh: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE13Req.der -o OCSPEE13OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6840: OCSPD: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database
certutil -A -n OCSPEE13 -t u,u,u -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -i OCSPEE13OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6841: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database  - PASSED
chains.sh: Creating DB OCSPEE14DB
certutil -N -d OCSPEE14DB -f OCSPEE14DB/dbpasswd
chains.sh: #6842: OCSPD: Creating DB OCSPEE14DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE14Req.der
certutil -s "CN=OCSPEE14 EE, O=OCSPEE14, C=US"  -R  -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE14Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6843: OCSPD: Creating EE certifiate request OCSPEE14Req.der  - PASSED
chains.sh: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE14Req.der -o OCSPEE14OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 4   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6844: OCSPD: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database
certutil -A -n OCSPEE14 -t u,u,u -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -i OCSPEE14OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6845: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database  - PASSED
chains.sh: Creating DB OCSPEE15DB
certutil -N -d OCSPEE15DB -f OCSPEE15DB/dbpasswd
chains.sh: #6846: OCSPD: Creating DB OCSPEE15DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE15Req.der
certutil -s "CN=OCSPEE15 EE, O=OCSPEE15, C=US"  -R  -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE15Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6847: OCSPD: Creating EE certifiate request OCSPEE15Req.der  - PASSED
chains.sh: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE15Req.der -o OCSPEE15OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 5   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9194
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6848: OCSPD: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database
certutil -A -n OCSPEE15 -t u,u,u -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -i OCSPEE15OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6849: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database  - PASSED
chains.sh: Creating DB OCSPEE21DB
certutil -N -d OCSPEE21DB -f OCSPEE21DB/dbpasswd
chains.sh: #6850: OCSPD: Creating DB OCSPEE21DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE21Req.der
certutil -s "CN=OCSPEE21 EE, O=OCSPEE21, C=US"  -R  -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6851: OCSPD: Creating EE certifiate request OCSPEE21Req.der  - PASSED
chains.sh: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE21Req.der -o OCSPEE21OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6852: OCSPD: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database
certutil -A -n OCSPEE21 -t u,u,u -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -i OCSPEE21OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6853: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database  - PASSED
chains.sh: Creating DB OCSPEE22DB
certutil -N -d OCSPEE22DB -f OCSPEE22DB/dbpasswd
chains.sh: #6854: OCSPD: Creating DB OCSPEE22DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE22Req.der
certutil -s "CN=OCSPEE22 EE, O=OCSPEE22, C=US"  -R  -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE22Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6855: OCSPD: Creating EE certifiate request OCSPEE22Req.der  - PASSED
chains.sh: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE22Req.der -o OCSPEE22OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6856: OCSPD: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database
certutil -A -n OCSPEE22 -t u,u,u -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -i OCSPEE22OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6857: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database  - PASSED
chains.sh: Creating DB OCSPEE23DB
certutil -N -d OCSPEE23DB -f OCSPEE23DB/dbpasswd
chains.sh: #6858: OCSPD: Creating DB OCSPEE23DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE23Req.der
certutil -s "CN=OCSPEE23 EE, O=OCSPEE23, C=US"  -R  -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE23Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6859: OCSPD: Creating EE certifiate request OCSPEE23Req.der  - PASSED
chains.sh: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE23Req.der -o OCSPEE23OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9194
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6860: OCSPD: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database
certutil -A -n OCSPEE23 -t u,u,u -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -i OCSPEE23OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6861: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database  - PASSED
chains.sh: Creating DB OCSPEE31DB
certutil -N -d OCSPEE31DB -f OCSPEE31DB/dbpasswd
chains.sh: #6862: OCSPD: Creating DB OCSPEE31DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE31Req.der
certutil -s "CN=OCSPEE31 EE, O=OCSPEE31, C=US"  -R  -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE31Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6863: OCSPD: Creating EE certifiate request OCSPEE31Req.der  - PASSED
chains.sh: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE31Req.der -o OCSPEE31OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6864: OCSPD: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database
certutil -A -n OCSPEE31 -t u,u,u -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -i OCSPEE31OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6865: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database  - PASSED
chains.sh: Creating DB OCSPEE32DB
certutil -N -d OCSPEE32DB -f OCSPEE32DB/dbpasswd
chains.sh: #6866: OCSPD: Creating DB OCSPEE32DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE32Req.der
certutil -s "CN=OCSPEE32 EE, O=OCSPEE32, C=US"  -R  -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE32Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6867: OCSPD: Creating EE certifiate request OCSPEE32Req.der  - PASSED
chains.sh: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE32Req.der -o OCSPEE32OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6868: OCSPD: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database
certutil -A -n OCSPEE32 -t u,u,u -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -i OCSPEE32OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6869: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database  - PASSED
chains.sh: Creating DB OCSPEE33DB
certutil -N -d OCSPEE33DB -f OCSPEE33DB/dbpasswd
chains.sh: #6870: OCSPD: Creating DB OCSPEE33DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE33Req.der
certutil -s "CN=OCSPEE33 EE, O=OCSPEE33, C=US"  -R  -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE33Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6871: OCSPD: Creating EE certifiate request OCSPEE33Req.der  - PASSED
chains.sh: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE33Req.der -o OCSPEE33OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9194
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6872: OCSPD: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database
certutil -A -n OCSPEE33 -t u,u,u -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -i OCSPEE33OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6873: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database  - PASSED
chains.sh: Create CRL for OCSPRootDB
crlutil -G -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20171021155742Z
nextupdate=20181021155742Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Sat Oct 21 15:57:42 2017
    Next Update: Sun Oct 21 15:57:42 2018
    CRL Extensions:
chains.sh: #6874: OCSPD: Create CRL for OCSPRootDB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPRoot
crlutil -M -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20171021155743Z
addcert 2 20171021155743Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Sat Oct 21 15:57:43 2017
    Next Update: Sun Oct 21 15:57:42 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sat Oct 21 15:57:43 2017
    CRL Extensions:
chains.sh: #6875: OCSPD: Revoking certificate with SN 2 issued by OCSPRoot  - PASSED
chains.sh: Create CRL for OCSPCA1DB
crlutil -G -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20171021155743Z
nextupdate=20181021155744Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Sat Oct 21 15:57:43 2017
    Next Update: Sun Oct 21 15:57:44 2018
    CRL Extensions:
chains.sh: #6876: OCSPD: Create CRL for OCSPCA1DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20171021155744Z
addcert 2 20171021155744Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Sat Oct 21 15:57:44 2017
    Next Update: Sun Oct 21 15:57:44 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sat Oct 21 15:57:44 2017
    CRL Extensions:
chains.sh: #6877: OCSPD: Revoking certificate with SN 2 issued by OCSPCA1  - PASSED
chains.sh: Revoking certificate with SN 4 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20171021155745Z
addcert 4 20171021155745Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Sat Oct 21 15:57:45 2017
    Next Update: Sun Oct 21 15:57:44 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sat Oct 21 15:57:44 2017
    Entry 2 (0x2):
        Serial Number: 4 (0x4)
        Revocation Date: Sat Oct 21 15:57:45 2017
    CRL Extensions:
chains.sh: #6878: OCSPD: Revoking certificate with SN 4 issued by OCSPCA1  - PASSED
chains.sh: Create CRL for OCSPCA2DB
crlutil -G -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20171021155746Z
nextupdate=20181021155746Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Sat Oct 21 15:57:46 2017
    Next Update: Sun Oct 21 15:57:46 2018
    CRL Extensions:
chains.sh: #6879: OCSPD: Create CRL for OCSPCA2DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20171021155747Z
addcert 2 20171021155747Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Sat Oct 21 15:57:47 2017
    Next Update: Sun Oct 21 15:57:46 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sat Oct 21 15:57:47 2017
    CRL Extensions:
chains.sh: #6880: OCSPD: Revoking certificate with SN 2 issued by OCSPCA2  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20171021155748Z
addcert 3 20171021155748Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Sat Oct 21 15:57:48 2017
    Next Update: Sun Oct 21 15:57:46 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sat Oct 21 15:57:47 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Sat Oct 21 15:57:48 2017
    CRL Extensions:
chains.sh: #6881: OCSPD: Revoking certificate with SN 3 issued by OCSPCA2  - PASSED
chains.sh: Create CRL for OCSPCA3DB
crlutil -G -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20171021155749Z
nextupdate=20181021155749Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Sat Oct 21 15:57:49 2017
    Next Update: Sun Oct 21 15:57:49 2018
    CRL Extensions:
chains.sh: #6882: OCSPD: Create CRL for OCSPCA3DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20171021155750Z
addcert 2 20171021155750Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Sat Oct 21 15:57:50 2017
    Next Update: Sun Oct 21 15:57:49 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sat Oct 21 15:57:50 2017
    CRL Extensions:
chains.sh: #6883: OCSPD: Revoking certificate with SN 2 issued by OCSPCA3  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20171021155751Z
addcert 3 20171021155751Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Sat Oct 21 15:57:51 2017
    Next Update: Sun Oct 21 15:57:49 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sat Oct 21 15:57:50 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Sat Oct 21 15:57:51 2017
    CRL Extensions:
chains.sh: #6884: OCSPD: Revoking certificate with SN 3 issued by OCSPCA3  - PASSED
chains.sh: Creating DB ServerDB
certutil -N -d ServerDB -f ServerDB/dbpasswd
chains.sh: #6885: OCSPD: Creating DB ServerDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ServerDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.der
chains.sh: #6886: OCSPD: Importing certificate OCSPRoot.der to ServerDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ServerDB database
crlutil -I -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.crl
chains.sh: #6887: OCSPD: Importing CRL OCSPRoot.crl to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPRoot.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPRoot.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #6888: OCSPD: Importing p12 key OCSPRoot.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA1.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA1.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #6889: OCSPD: Importing p12 key OCSPCA1.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA2.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA2.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #6890: OCSPD: Importing p12 key OCSPCA2.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA3.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA3.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #6891: OCSPD: Importing p12 key OCSPCA3.p12 to ServerDB database  - PASSED
chains.sh: Creating DB ClientDB
certutil -N -d ClientDB -f ClientDB/dbpasswd
chains.sh: #6892: OCSPD: Creating DB ClientDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ClientDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.der
chains.sh: #6893: OCSPD: Importing certificate OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ClientDB database
crlutil -I -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.crl
chains.sh: #6894: OCSPD: Importing CRL OCSPRoot.crl to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA1OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA1OCSPRoot.der
chains.sh: #6895: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA2OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA2OCSPRoot.der
chains.sh: #6896: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA3OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA3OCSPRoot.der
chains.sh: #6897: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE11OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE11OCSPCA1.der
chains.sh: #6898: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE12OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE12OCSPCA1.der
chains.sh: #6899: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE13OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE13OCSPCA1.der
chains.sh: #6900: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE14OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE14OCSPCA1.der
chains.sh: #6901: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE15OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE15OCSPCA1.der
chains.sh: #6902: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE21OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE21OCSPCA2.der
chains.sh: #6903: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE22OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE22OCSPCA2.der
chains.sh: #6904: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE23OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE23OCSPCA2.der
chains.sh: #6905: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE31OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE31OCSPCA3.der
chains.sh: #6906: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE32OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE32OCSPCA3.der
chains.sh: #6907: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE33OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE33OCSPCA3.der
chains.sh: #6908: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database  - PASSED
httpserv starting at Sat Oct 21 15:58:07 UTC 2017
httpserv -D -p 9193  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O get -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/aiahttp/http_pid.3868  &
trying to connect to httpserv at Sat Oct 21 15:58:07 UTC 2017
tstclnt -p 9193 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9193 (address=127.0.0.1)
tstclnt: exiting with return code 0
kill -0 27720 >/dev/null 2>/dev/null
httpserv with PID 27720 found at Sat Oct 21 15:58:08 UTC 2017
httpserv with PID 27720 started at Sat Oct 21 15:58:08 UTC 2017
tstclnt -h localhost.localdomain -p 9193 -q -t 20
chains.sh: #6909: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155614 (0x3cdd991e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Sat Oct 21 15:56:17 2017
            Not After : Fri Oct 21 15:56:17 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:e4:93:a6:8e:7a:8a:31:5c:33:cd:57:77:0f:73:52:
                    36:82:2b:fd:20:d0:cd:50:c1:af:6d:db:dc:31:44:30:
                    fd:1e:c5:b6:bb:61:d1:f9:e4:dc:e8:b3:37:87:c6:9c:
                    b5:45:1d:18:89:67:54:50:3d:6b:e5:e9:26:17:4b:91:
                    f6:87:33:61:4c:12:9b:80:ea:9f:fc:0b:f8:a0:ab:4b:
                    bc:7e:56:0a:09:a4:cb:52:df:92:44:97:eb:3b:cd:a2:
                    5b:b9:2a:1b:f6:55:74:1a:51:94:14:75:71:f1:4c:c6:
                    db:56:84:52:7e:4e:68:4b:18:cf:b6:3c:ae:99:57:1f:
                    a3:46:19:74:5f:67:57:45:2e:26:f6:fd:b1:3e:25:77:
                    1b:9f:92:a0:12:25:54:19:d4:f5:fa:16:04:96:43:f1:
                    8f:d3:b7:fc:e9:54:8a:30:d5:76:16:50:27:ab:7a:b6:
                    64:9c:e1:d9:7c:83:29:2e:a7:ec:47:7b:25:65:fc:4b:
                    5f:c4:03:c9:bd:20:12:52:f8:26:91:4d:d1:67:c6:a5:
                    07:f7:e3:6f:92:63:39:c3:7d:b0:8b:43:6b:01:54:36:
                    4e:97:83:4b:c1:56:ed:0d:8f:fc:d7:fc:35:15:a1:6b:
                    eb:c4:2d:4c:7a:59:fc:5a:f9:9c:09:37:82:e0:1d:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b4:85:9b:d6:36:16:af:73:c2:30:58:18:8b:81:e3:f4:
        2f:40:b8:8b:15:c4:38:df:c2:1f:da:48:5c:71:30:9d:
        b2:db:b2:80:ab:7c:8f:b7:07:29:b1:36:05:89:fe:af:
        06:f8:38:1c:ec:8a:9e:a2:ec:8b:0d:e0:02:35:ff:2d:
        95:6d:7e:37:ef:b3:aa:c8:3a:e3:a7:0a:cb:5d:fc:e8:
        6e:ce:b3:9a:dd:7a:c6:fa:09:89:92:68:e3:b6:11:38:
        d8:31:c0:16:5d:7f:e4:d7:dd:e1:91:d8:c6:7e:e5:a8:
        b0:83:37:79:c5:e2:ba:5e:65:e8:ce:e9:83:fb:37:6f:
        da:3d:41:87:59:65:2d:30:53:87:b4:0d:95:63:7e:4e:
        ca:a6:60:92:5a:96:e9:7f:79:27:9d:9b:39:76:f5:74:
        ab:82:8a:f7:de:73:53:87:2a:e0:7d:e5:32:bf:bd:45:
        59:9a:df:a5:3c:6e:6e:1a:96:e4:5c:44:dd:65:55:c4:
        fe:50:b5:f7:a0:94:c5:d0:55:56:4c:d1:c9:16:8d:a9:
        62:1b:4e:cd:64:8a:5f:de:e8:5b:40:d8:bf:8b:03:9f:
        cf:c7:6c:c8:51:7f:e0:74:d8:c1:f8:f6:8e:98:0b:90:
        5d:fd:0f:60:26:d2:06:c0:45:b4:a5:2b:b3:bb:84:da
    Fingerprint (SHA-256):
        FB:B0:6B:4B:D5:95:A8:0A:BF:F3:87:59:8E:0C:54:A7:4B:7F:0B:71:B3:3D:7D:4F:1F:0B:8C:B5:54:02:0E:CF
    Fingerprint (SHA1):
        C3:6F:E6:14:96:6B:7A:8C:65:AD:95:69:5B:0D:AE:63:DB:19:D7:8F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6910: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #6911: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #6912: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 27720 at Sat Oct 21 15:58:12 UTC 2017
kill -USR1 27720
httpserv: normal termination
httpserv -b -p 9193 2>/dev/null;
httpserv with PID 27720 killed at Sat Oct 21 15:58:12 UTC 2017
httpserv starting at Sat Oct 21 15:58:12 UTC 2017
httpserv -D -p 9193  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O post -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/aiahttp/http_pid.3868  &
trying to connect to httpserv at Sat Oct 21 15:58:13 UTC 2017
tstclnt -p 9193 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9193 (address=127.0.0.1)
tstclnt: exiting with return code 0
kill -0 27889 >/dev/null 2>/dev/null
httpserv with PID 27889 found at Sat Oct 21 15:58:13 UTC 2017
httpserv with PID 27889 started at Sat Oct 21 15:58:13 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6913: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6914: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6915: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
tstclnt -h localhost.localdomain -p 9193 -q -t 20
chains.sh: #6916: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155614 (0x3cdd991e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Sat Oct 21 15:56:17 2017
            Not After : Fri Oct 21 15:56:17 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:e4:93:a6:8e:7a:8a:31:5c:33:cd:57:77:0f:73:52:
                    36:82:2b:fd:20:d0:cd:50:c1:af:6d:db:dc:31:44:30:
                    fd:1e:c5:b6:bb:61:d1:f9:e4:dc:e8:b3:37:87:c6:9c:
                    b5:45:1d:18:89:67:54:50:3d:6b:e5:e9:26:17:4b:91:
                    f6:87:33:61:4c:12:9b:80:ea:9f:fc:0b:f8:a0:ab:4b:
                    bc:7e:56:0a:09:a4:cb:52:df:92:44:97:eb:3b:cd:a2:
                    5b:b9:2a:1b:f6:55:74:1a:51:94:14:75:71:f1:4c:c6:
                    db:56:84:52:7e:4e:68:4b:18:cf:b6:3c:ae:99:57:1f:
                    a3:46:19:74:5f:67:57:45:2e:26:f6:fd:b1:3e:25:77:
                    1b:9f:92:a0:12:25:54:19:d4:f5:fa:16:04:96:43:f1:
                    8f:d3:b7:fc:e9:54:8a:30:d5:76:16:50:27:ab:7a:b6:
                    64:9c:e1:d9:7c:83:29:2e:a7:ec:47:7b:25:65:fc:4b:
                    5f:c4:03:c9:bd:20:12:52:f8:26:91:4d:d1:67:c6:a5:
                    07:f7:e3:6f:92:63:39:c3:7d:b0:8b:43:6b:01:54:36:
                    4e:97:83:4b:c1:56:ed:0d:8f:fc:d7:fc:35:15:a1:6b:
                    eb:c4:2d:4c:7a:59:fc:5a:f9:9c:09:37:82:e0:1d:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b4:85:9b:d6:36:16:af:73:c2:30:58:18:8b:81:e3:f4:
        2f:40:b8:8b:15:c4:38:df:c2:1f:da:48:5c:71:30:9d:
        b2:db:b2:80:ab:7c:8f:b7:07:29:b1:36:05:89:fe:af:
        06:f8:38:1c:ec:8a:9e:a2:ec:8b:0d:e0:02:35:ff:2d:
        95:6d:7e:37:ef:b3:aa:c8:3a:e3:a7:0a:cb:5d:fc:e8:
        6e:ce:b3:9a:dd:7a:c6:fa:09:89:92:68:e3:b6:11:38:
        d8:31:c0:16:5d:7f:e4:d7:dd:e1:91:d8:c6:7e:e5:a8:
        b0:83:37:79:c5:e2:ba:5e:65:e8:ce:e9:83:fb:37:6f:
        da:3d:41:87:59:65:2d:30:53:87:b4:0d:95:63:7e:4e:
        ca:a6:60:92:5a:96:e9:7f:79:27:9d:9b:39:76:f5:74:
        ab:82:8a:f7:de:73:53:87:2a:e0:7d:e5:32:bf:bd:45:
        59:9a:df:a5:3c:6e:6e:1a:96:e4:5c:44:dd:65:55:c4:
        fe:50:b5:f7:a0:94:c5:d0:55:56:4c:d1:c9:16:8d:a9:
        62:1b:4e:cd:64:8a:5f:de:e8:5b:40:d8:bf:8b:03:9f:
        cf:c7:6c:c8:51:7f:e0:74:d8:c1:f8:f6:8e:98:0b:90:
        5d:fd:0f:60:26:d2:06:c0:45:b4:a5:2b:b3:bb:84:da
    Fingerprint (SHA-256):
        FB:B0:6B:4B:D5:95:A8:0A:BF:F3:87:59:8E:0C:54:A7:4B:7F:0B:71:B3:3D:7D:4F:1F:0B:8C:B5:54:02:0E:CF
    Fingerprint (SHA1):
        C3:6F:E6:14:96:6B:7A:8C:65:AD:95:69:5B:0D:AE:63:DB:19:D7:8F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6917: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #6918: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #6919: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 27889 at Sat Oct 21 15:58:20 UTC 2017
kill -USR1 27889
httpserv: normal termination
httpserv -b -p 9193 2>/dev/null;
httpserv with PID 27889 killed at Sat Oct 21 15:58:20 UTC 2017
httpserv starting at Sat Oct 21 15:58:20 UTC 2017
httpserv -D -p 9193  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O random -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/aiahttp/http_pid.3868  &
trying to connect to httpserv at Sat Oct 21 15:58:20 UTC 2017
tstclnt -p 9193 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9193 (address=127.0.0.1)
tstclnt: exiting with return code 0
kill -0 28137 >/dev/null 2>/dev/null
httpserv with PID 28137 found at Sat Oct 21 15:58:21 UTC 2017
httpserv with PID 28137 started at Sat Oct 21 15:58:21 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6920: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #6921: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155615 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6922: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #6923: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #6924: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155616 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6925: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #6926: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #6927: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6928: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 1021155617 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6929: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6930: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 1021155618 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6931: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6932: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #6933: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6934: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6935: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 1021155619   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6936: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6937: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6938: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #6939: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #6940: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155616 (0x3cdd9920)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 15:58:29 2017
            Not After : Fri Oct 21 15:58:29 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:30:77:1c:0f:1e:0d:a1:c8:88:55:7d:de:f7:fe:b9:
                    18:f7:4e:74:60:7f:85:f6:6b:10:13:ab:51:d4:0b:62:
                    45:8f:3d:5e:fb:42:0c:13:4a:49:3f:6a:5e:a6:23:2a:
                    9f:bc:80:db:c1:47:3f:1c:d2:36:55:1d:81:46:55:77:
                    3d:e8:76:e4:e0:ce:2a:a0:83:ac:ee:b9:ac:d9:23:5b:
                    15:2e:c2:cc:de:7a:0e:4f:56:47:dd:fd:a3:7a:6e:33:
                    06:87:c9:06:82:ed:c3:04:fa:93:70:b8:bb:2a:19:1f:
                    a9:73:b4:87:ab:db:b6:da:50:79:a6:8d:d0:d6:4c:4f:
                    b2:4b:da:77:21:8c:4c:1c:b9:a5:6e:f4:eb:c5:2b:a1:
                    57:bb:85:75:46:58:c4:a9:a4:ab:f5:c4:2c:d1:23:a3:
                    53:bb:79:6a:83:09:c5:6b:89:25:15:19:bf:8e:a4:9d:
                    80:1a:cd:fb:bd:7c:78:a8:af:b6:fd:f7:33:4a:a7:8c:
                    1a:77:05:ed:0c:30:54:c2:d1:8a:fc:06:59:84:57:0b:
                    85:16:92:bb:3e:35:a9:5b:6c:3a:c8:0a:cb:16:06:0e:
                    ef:da:50:fe:e5:07:4a:4b:8b:8f:d5:9a:b6:7b:77:96:
                    0b:32:c9:ff:df:ff:10:dc:12:f2:17:bb:d9:55:67:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        07:16:de:93:4f:e0:4a:78:43:10:1e:01:5f:51:2e:ef:
        3f:2b:f2:5d:92:2c:5b:17:c0:20:40:1f:40:dc:f1:9b:
        5f:34:a6:f8:4a:34:f7:9f:97:ae:c8:bf:66:70:89:43:
        6c:2c:d8:b0:6d:49:9e:9b:c1:2e:a8:2b:87:95:95:e6:
        62:60:7f:69:a2:ee:93:5b:d8:9c:39:05:2a:29:17:3d:
        7b:c5:a9:f4:1e:af:b8:09:db:d8:10:b1:08:d4:ac:47:
        7f:a1:9e:c7:d6:50:ec:12:24:92:6a:c9:55:0e:22:03:
        cd:5f:fc:57:3a:3e:da:72:6a:0e:53:ef:8f:6c:72:1a:
        86:cd:59:44:b0:ae:41:a4:71:44:67:35:f5:53:b6:30:
        6f:51:5f:ae:af:fc:5b:7a:86:55:8c:85:ea:ba:2a:4c:
        c7:c5:20:77:e2:6d:fa:5c:fd:a7:d8:cd:c9:f6:fe:14:
        e7:31:67:3e:9f:0b:e9:c6:c5:15:39:45:78:ff:7d:63:
        f0:2a:6c:fd:db:43:29:f6:6f:fe:19:df:8f:41:ab:71:
        09:64:f0:67:50:ba:a7:f1:0e:b5:d2:ab:aa:e2:88:db:
        ea:67:e9:82:7d:40:23:c6:2b:0e:51:e9:7a:06:fb:1b:
        63:25:c6:24:24:4a:63:a3:c3:5d:9f:58:88:0e:be:a5
    Fingerprint (SHA-256):
        44:DB:C2:A4:CD:85:40:D6:AC:BD:EA:B2:DA:B0:3C:4E:51:19:D7:39:C3:01:33:71:59:A2:19:44:DC:67:6C:CD
    Fingerprint (SHA1):
        8D:CA:CD:4B:FE:C5:29:E0:F1:A4:56:2C:1A:F7:B7:AE:37:64:8B:04
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6941: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155615 (0x3cdd991f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 15:58:25 2017
            Not After : Fri Oct 21 15:58:25 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    98:32:78:6b:c1:d5:f9:f5:60:a1:ee:75:3c:ab:47:90:
                    2d:9c:09:9d:2c:66:59:c9:e1:a5:b7:7a:67:23:05:d8:
                    33:e9:4a:79:de:39:ae:59:33:0c:0a:a6:3b:05:6b:f9:
                    b3:2d:7e:b3:4a:e3:a1:2a:2b:02:2f:71:4f:23:0c:f3:
                    15:94:21:e1:86:a7:c6:d6:60:48:c9:8c:07:1f:a9:d1:
                    0d:d8:99:ca:c4:c8:8c:45:9c:a4:25:0a:b7:4a:7a:86:
                    1c:ca:eb:7b:cc:1e:06:d8:16:72:bc:a2:5f:27:1c:55:
                    9d:d1:5f:c8:f3:6b:47:ec:50:f2:81:af:bf:a5:25:e3:
                    63:f2:8e:e2:4d:00:c6:22:2d:36:ef:a8:f3:54:98:9f:
                    f5:e1:fa:85:9c:96:66:ab:75:8c:be:0b:f8:27:1b:13:
                    15:a1:60:25:9b:ec:16:5a:db:70:40:a0:67:f2:24:a2:
                    75:bf:d0:0d:f1:34:83:10:cb:98:96:2f:90:68:9c:40:
                    6c:81:b0:a3:6a:89:d8:98:f2:2c:08:99:21:5e:87:45:
                    59:0a:9b:40:09:dd:39:84:c0:c4:af:57:1a:08:ee:3c:
                    a2:09:bf:b9:8a:13:17:2b:c6:b3:00:b7:49:b3:7f:d4:
                    e4:61:cb:4c:6c:0c:a8:09:c8:01:19:48:d8:49:04:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        88:f5:fd:e8:a3:ab:0a:d5:a3:a5:45:69:c0:d4:cf:98:
        40:11:72:bb:37:37:45:76:33:e9:42:eb:4d:04:a0:9b:
        44:ca:5e:7f:dc:22:eb:00:5a:3f:8a:98:3c:40:2c:df:
        35:a7:b2:7a:73:d1:11:ab:fc:ce:0b:d8:7c:32:14:ad:
        14:4c:1a:a5:f6:ee:8b:4a:fe:79:46:57:74:92:eb:1c:
        90:bf:c4:4f:fa:fd:27:8f:7e:2e:f7:4a:13:87:47:f5:
        25:43:ab:f7:bb:28:57:47:35:e7:3c:f3:11:51:59:20:
        1e:32:70:35:8b:9c:9f:d0:0e:05:d6:13:91:85:94:e6:
        54:40:f8:de:15:1b:ec:de:45:c2:8d:46:76:1c:41:b2:
        8c:93:b1:05:75:40:4c:73:74:1a:f4:f2:fd:c9:6b:b8:
        57:0f:c7:ef:58:6b:1e:31:d0:2e:68:bd:b7:34:87:46:
        7a:b9:48:69:65:87:c5:f0:b6:2b:28:4f:e7:f9:90:70:
        1b:c9:89:61:da:8f:6f:9f:77:4c:4d:6f:90:3e:0b:cf:
        93:3b:85:e2:61:b0:2e:bb:f6:3c:cd:e2:13:5b:5d:67:
        74:61:de:36:b9:50:6d:c8:d9:16:85:77:f0:04:ed:5e:
        2f:6a:b2:7d:57:57:ac:a4:fd:27:6d:01:3e:ef:19:eb
    Fingerprint (SHA-256):
        CE:F4:EC:D5:A2:3B:C4:FF:43:65:3F:4E:FF:18:B3:67:11:73:37:14:E7:54:A5:39:E5:34:37:7A:07:22:18:39
    Fingerprint (SHA1):
        2F:13:81:F7:29:F8:1D:A5:73:F1:08:04:1F:D2:60:81:93:7D:79:EB
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6942: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6943: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #6944: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #6945: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155615 (0x3cdd991f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 15:58:25 2017
            Not After : Fri Oct 21 15:58:25 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    98:32:78:6b:c1:d5:f9:f5:60:a1:ee:75:3c:ab:47:90:
                    2d:9c:09:9d:2c:66:59:c9:e1:a5:b7:7a:67:23:05:d8:
                    33:e9:4a:79:de:39:ae:59:33:0c:0a:a6:3b:05:6b:f9:
                    b3:2d:7e:b3:4a:e3:a1:2a:2b:02:2f:71:4f:23:0c:f3:
                    15:94:21:e1:86:a7:c6:d6:60:48:c9:8c:07:1f:a9:d1:
                    0d:d8:99:ca:c4:c8:8c:45:9c:a4:25:0a:b7:4a:7a:86:
                    1c:ca:eb:7b:cc:1e:06:d8:16:72:bc:a2:5f:27:1c:55:
                    9d:d1:5f:c8:f3:6b:47:ec:50:f2:81:af:bf:a5:25:e3:
                    63:f2:8e:e2:4d:00:c6:22:2d:36:ef:a8:f3:54:98:9f:
                    f5:e1:fa:85:9c:96:66:ab:75:8c:be:0b:f8:27:1b:13:
                    15:a1:60:25:9b:ec:16:5a:db:70:40:a0:67:f2:24:a2:
                    75:bf:d0:0d:f1:34:83:10:cb:98:96:2f:90:68:9c:40:
                    6c:81:b0:a3:6a:89:d8:98:f2:2c:08:99:21:5e:87:45:
                    59:0a:9b:40:09:dd:39:84:c0:c4:af:57:1a:08:ee:3c:
                    a2:09:bf:b9:8a:13:17:2b:c6:b3:00:b7:49:b3:7f:d4:
                    e4:61:cb:4c:6c:0c:a8:09:c8:01:19:48:d8:49:04:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        88:f5:fd:e8:a3:ab:0a:d5:a3:a5:45:69:c0:d4:cf:98:
        40:11:72:bb:37:37:45:76:33:e9:42:eb:4d:04:a0:9b:
        44:ca:5e:7f:dc:22:eb:00:5a:3f:8a:98:3c:40:2c:df:
        35:a7:b2:7a:73:d1:11:ab:fc:ce:0b:d8:7c:32:14:ad:
        14:4c:1a:a5:f6:ee:8b:4a:fe:79:46:57:74:92:eb:1c:
        90:bf:c4:4f:fa:fd:27:8f:7e:2e:f7:4a:13:87:47:f5:
        25:43:ab:f7:bb:28:57:47:35:e7:3c:f3:11:51:59:20:
        1e:32:70:35:8b:9c:9f:d0:0e:05:d6:13:91:85:94:e6:
        54:40:f8:de:15:1b:ec:de:45:c2:8d:46:76:1c:41:b2:
        8c:93:b1:05:75:40:4c:73:74:1a:f4:f2:fd:c9:6b:b8:
        57:0f:c7:ef:58:6b:1e:31:d0:2e:68:bd:b7:34:87:46:
        7a:b9:48:69:65:87:c5:f0:b6:2b:28:4f:e7:f9:90:70:
        1b:c9:89:61:da:8f:6f:9f:77:4c:4d:6f:90:3e:0b:cf:
        93:3b:85:e2:61:b0:2e:bb:f6:3c:cd:e2:13:5b:5d:67:
        74:61:de:36:b9:50:6d:c8:d9:16:85:77:f0:04:ed:5e:
        2f:6a:b2:7d:57:57:ac:a4:fd:27:6d:01:3e:ef:19:eb
    Fingerprint (SHA-256):
        CE:F4:EC:D5:A2:3B:C4:FF:43:65:3F:4E:FF:18:B3:67:11:73:37:14:E7:54:A5:39:E5:34:37:7A:07:22:18:39
    Fingerprint (SHA1):
        2F:13:81:F7:29:F8:1D:A5:73:F1:08:04:1F:D2:60:81:93:7D:79:EB
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6946: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155616 (0x3cdd9920)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 15:58:29 2017
            Not After : Fri Oct 21 15:58:29 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:30:77:1c:0f:1e:0d:a1:c8:88:55:7d:de:f7:fe:b9:
                    18:f7:4e:74:60:7f:85:f6:6b:10:13:ab:51:d4:0b:62:
                    45:8f:3d:5e:fb:42:0c:13:4a:49:3f:6a:5e:a6:23:2a:
                    9f:bc:80:db:c1:47:3f:1c:d2:36:55:1d:81:46:55:77:
                    3d:e8:76:e4:e0:ce:2a:a0:83:ac:ee:b9:ac:d9:23:5b:
                    15:2e:c2:cc:de:7a:0e:4f:56:47:dd:fd:a3:7a:6e:33:
                    06:87:c9:06:82:ed:c3:04:fa:93:70:b8:bb:2a:19:1f:
                    a9:73:b4:87:ab:db:b6:da:50:79:a6:8d:d0:d6:4c:4f:
                    b2:4b:da:77:21:8c:4c:1c:b9:a5:6e:f4:eb:c5:2b:a1:
                    57:bb:85:75:46:58:c4:a9:a4:ab:f5:c4:2c:d1:23:a3:
                    53:bb:79:6a:83:09:c5:6b:89:25:15:19:bf:8e:a4:9d:
                    80:1a:cd:fb:bd:7c:78:a8:af:b6:fd:f7:33:4a:a7:8c:
                    1a:77:05:ed:0c:30:54:c2:d1:8a:fc:06:59:84:57:0b:
                    85:16:92:bb:3e:35:a9:5b:6c:3a:c8:0a:cb:16:06:0e:
                    ef:da:50:fe:e5:07:4a:4b:8b:8f:d5:9a:b6:7b:77:96:
                    0b:32:c9:ff:df:ff:10:dc:12:f2:17:bb:d9:55:67:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        07:16:de:93:4f:e0:4a:78:43:10:1e:01:5f:51:2e:ef:
        3f:2b:f2:5d:92:2c:5b:17:c0:20:40:1f:40:dc:f1:9b:
        5f:34:a6:f8:4a:34:f7:9f:97:ae:c8:bf:66:70:89:43:
        6c:2c:d8:b0:6d:49:9e:9b:c1:2e:a8:2b:87:95:95:e6:
        62:60:7f:69:a2:ee:93:5b:d8:9c:39:05:2a:29:17:3d:
        7b:c5:a9:f4:1e:af:b8:09:db:d8:10:b1:08:d4:ac:47:
        7f:a1:9e:c7:d6:50:ec:12:24:92:6a:c9:55:0e:22:03:
        cd:5f:fc:57:3a:3e:da:72:6a:0e:53:ef:8f:6c:72:1a:
        86:cd:59:44:b0:ae:41:a4:71:44:67:35:f5:53:b6:30:
        6f:51:5f:ae:af:fc:5b:7a:86:55:8c:85:ea:ba:2a:4c:
        c7:c5:20:77:e2:6d:fa:5c:fd:a7:d8:cd:c9:f6:fe:14:
        e7:31:67:3e:9f:0b:e9:c6:c5:15:39:45:78:ff:7d:63:
        f0:2a:6c:fd:db:43:29:f6:6f:fe:19:df:8f:41:ab:71:
        09:64:f0:67:50:ba:a7:f1:0e:b5:d2:ab:aa:e2:88:db:
        ea:67:e9:82:7d:40:23:c6:2b:0e:51:e9:7a:06:fb:1b:
        63:25:c6:24:24:4a:63:a3:c3:5d:9f:58:88:0e:be:a5
    Fingerprint (SHA-256):
        44:DB:C2:A4:CD:85:40:D6:AC:BD:EA:B2:DA:B0:3C:4E:51:19:D7:39:C3:01:33:71:59:A2:19:44:DC:67:6C:CD
    Fingerprint (SHA1):
        8D:CA:CD:4B:FE:C5:29:E0:F1:A4:56:2C:1A:F7:B7:AE:37:64:8B:04
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6947: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #6948: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #6949: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6950: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6951: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6952: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155616 (0x3cdd9920)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 15:58:29 2017
            Not After : Fri Oct 21 15:58:29 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:30:77:1c:0f:1e:0d:a1:c8:88:55:7d:de:f7:fe:b9:
                    18:f7:4e:74:60:7f:85:f6:6b:10:13:ab:51:d4:0b:62:
                    45:8f:3d:5e:fb:42:0c:13:4a:49:3f:6a:5e:a6:23:2a:
                    9f:bc:80:db:c1:47:3f:1c:d2:36:55:1d:81:46:55:77:
                    3d:e8:76:e4:e0:ce:2a:a0:83:ac:ee:b9:ac:d9:23:5b:
                    15:2e:c2:cc:de:7a:0e:4f:56:47:dd:fd:a3:7a:6e:33:
                    06:87:c9:06:82:ed:c3:04:fa:93:70:b8:bb:2a:19:1f:
                    a9:73:b4:87:ab:db:b6:da:50:79:a6:8d:d0:d6:4c:4f:
                    b2:4b:da:77:21:8c:4c:1c:b9:a5:6e:f4:eb:c5:2b:a1:
                    57:bb:85:75:46:58:c4:a9:a4:ab:f5:c4:2c:d1:23:a3:
                    53:bb:79:6a:83:09:c5:6b:89:25:15:19:bf:8e:a4:9d:
                    80:1a:cd:fb:bd:7c:78:a8:af:b6:fd:f7:33:4a:a7:8c:
                    1a:77:05:ed:0c:30:54:c2:d1:8a:fc:06:59:84:57:0b:
                    85:16:92:bb:3e:35:a9:5b:6c:3a:c8:0a:cb:16:06:0e:
                    ef:da:50:fe:e5:07:4a:4b:8b:8f:d5:9a:b6:7b:77:96:
                    0b:32:c9:ff:df:ff:10:dc:12:f2:17:bb:d9:55:67:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        07:16:de:93:4f:e0:4a:78:43:10:1e:01:5f:51:2e:ef:
        3f:2b:f2:5d:92:2c:5b:17:c0:20:40:1f:40:dc:f1:9b:
        5f:34:a6:f8:4a:34:f7:9f:97:ae:c8:bf:66:70:89:43:
        6c:2c:d8:b0:6d:49:9e:9b:c1:2e:a8:2b:87:95:95:e6:
        62:60:7f:69:a2:ee:93:5b:d8:9c:39:05:2a:29:17:3d:
        7b:c5:a9:f4:1e:af:b8:09:db:d8:10:b1:08:d4:ac:47:
        7f:a1:9e:c7:d6:50:ec:12:24:92:6a:c9:55:0e:22:03:
        cd:5f:fc:57:3a:3e:da:72:6a:0e:53:ef:8f:6c:72:1a:
        86:cd:59:44:b0:ae:41:a4:71:44:67:35:f5:53:b6:30:
        6f:51:5f:ae:af:fc:5b:7a:86:55:8c:85:ea:ba:2a:4c:
        c7:c5:20:77:e2:6d:fa:5c:fd:a7:d8:cd:c9:f6:fe:14:
        e7:31:67:3e:9f:0b:e9:c6:c5:15:39:45:78:ff:7d:63:
        f0:2a:6c:fd:db:43:29:f6:6f:fe:19:df:8f:41:ab:71:
        09:64:f0:67:50:ba:a7:f1:0e:b5:d2:ab:aa:e2:88:db:
        ea:67:e9:82:7d:40:23:c6:2b:0e:51:e9:7a:06:fb:1b:
        63:25:c6:24:24:4a:63:a3:c3:5d:9f:58:88:0e:be:a5
    Fingerprint (SHA-256):
        44:DB:C2:A4:CD:85:40:D6:AC:BD:EA:B2:DA:B0:3C:4E:51:19:D7:39:C3:01:33:71:59:A2:19:44:DC:67:6C:CD
    Fingerprint (SHA1):
        8D:CA:CD:4B:FE:C5:29:E0:F1:A4:56:2C:1A:F7:B7:AE:37:64:8B:04
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6953: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155616 (0x3cdd9920)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 15:58:29 2017
            Not After : Fri Oct 21 15:58:29 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:30:77:1c:0f:1e:0d:a1:c8:88:55:7d:de:f7:fe:b9:
                    18:f7:4e:74:60:7f:85:f6:6b:10:13:ab:51:d4:0b:62:
                    45:8f:3d:5e:fb:42:0c:13:4a:49:3f:6a:5e:a6:23:2a:
                    9f:bc:80:db:c1:47:3f:1c:d2:36:55:1d:81:46:55:77:
                    3d:e8:76:e4:e0:ce:2a:a0:83:ac:ee:b9:ac:d9:23:5b:
                    15:2e:c2:cc:de:7a:0e:4f:56:47:dd:fd:a3:7a:6e:33:
                    06:87:c9:06:82:ed:c3:04:fa:93:70:b8:bb:2a:19:1f:
                    a9:73:b4:87:ab:db:b6:da:50:79:a6:8d:d0:d6:4c:4f:
                    b2:4b:da:77:21:8c:4c:1c:b9:a5:6e:f4:eb:c5:2b:a1:
                    57:bb:85:75:46:58:c4:a9:a4:ab:f5:c4:2c:d1:23:a3:
                    53:bb:79:6a:83:09:c5:6b:89:25:15:19:bf:8e:a4:9d:
                    80:1a:cd:fb:bd:7c:78:a8:af:b6:fd:f7:33:4a:a7:8c:
                    1a:77:05:ed:0c:30:54:c2:d1:8a:fc:06:59:84:57:0b:
                    85:16:92:bb:3e:35:a9:5b:6c:3a:c8:0a:cb:16:06:0e:
                    ef:da:50:fe:e5:07:4a:4b:8b:8f:d5:9a:b6:7b:77:96:
                    0b:32:c9:ff:df:ff:10:dc:12:f2:17:bb:d9:55:67:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        07:16:de:93:4f:e0:4a:78:43:10:1e:01:5f:51:2e:ef:
        3f:2b:f2:5d:92:2c:5b:17:c0:20:40:1f:40:dc:f1:9b:
        5f:34:a6:f8:4a:34:f7:9f:97:ae:c8:bf:66:70:89:43:
        6c:2c:d8:b0:6d:49:9e:9b:c1:2e:a8:2b:87:95:95:e6:
        62:60:7f:69:a2:ee:93:5b:d8:9c:39:05:2a:29:17:3d:
        7b:c5:a9:f4:1e:af:b8:09:db:d8:10:b1:08:d4:ac:47:
        7f:a1:9e:c7:d6:50:ec:12:24:92:6a:c9:55:0e:22:03:
        cd:5f:fc:57:3a:3e:da:72:6a:0e:53:ef:8f:6c:72:1a:
        86:cd:59:44:b0:ae:41:a4:71:44:67:35:f5:53:b6:30:
        6f:51:5f:ae:af:fc:5b:7a:86:55:8c:85:ea:ba:2a:4c:
        c7:c5:20:77:e2:6d:fa:5c:fd:a7:d8:cd:c9:f6:fe:14:
        e7:31:67:3e:9f:0b:e9:c6:c5:15:39:45:78:ff:7d:63:
        f0:2a:6c:fd:db:43:29:f6:6f:fe:19:df:8f:41:ab:71:
        09:64:f0:67:50:ba:a7:f1:0e:b5:d2:ab:aa:e2:88:db:
        ea:67:e9:82:7d:40:23:c6:2b:0e:51:e9:7a:06:fb:1b:
        63:25:c6:24:24:4a:63:a3:c3:5d:9f:58:88:0e:be:a5
    Fingerprint (SHA-256):
        44:DB:C2:A4:CD:85:40:D6:AC:BD:EA:B2:DA:B0:3C:4E:51:19:D7:39:C3:01:33:71:59:A2:19:44:DC:67:6C:CD
    Fingerprint (SHA1):
        8D:CA:CD:4B:FE:C5:29:E0:F1:A4:56:2C:1A:F7:B7:AE:37:64:8B:04
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6954: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #6955: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #6956: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6957: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #6958: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #6959: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155615 (0x3cdd991f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 15:58:25 2017
            Not After : Fri Oct 21 15:58:25 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    98:32:78:6b:c1:d5:f9:f5:60:a1:ee:75:3c:ab:47:90:
                    2d:9c:09:9d:2c:66:59:c9:e1:a5:b7:7a:67:23:05:d8:
                    33:e9:4a:79:de:39:ae:59:33:0c:0a:a6:3b:05:6b:f9:
                    b3:2d:7e:b3:4a:e3:a1:2a:2b:02:2f:71:4f:23:0c:f3:
                    15:94:21:e1:86:a7:c6:d6:60:48:c9:8c:07:1f:a9:d1:
                    0d:d8:99:ca:c4:c8:8c:45:9c:a4:25:0a:b7:4a:7a:86:
                    1c:ca:eb:7b:cc:1e:06:d8:16:72:bc:a2:5f:27:1c:55:
                    9d:d1:5f:c8:f3:6b:47:ec:50:f2:81:af:bf:a5:25:e3:
                    63:f2:8e:e2:4d:00:c6:22:2d:36:ef:a8:f3:54:98:9f:
                    f5:e1:fa:85:9c:96:66:ab:75:8c:be:0b:f8:27:1b:13:
                    15:a1:60:25:9b:ec:16:5a:db:70:40:a0:67:f2:24:a2:
                    75:bf:d0:0d:f1:34:83:10:cb:98:96:2f:90:68:9c:40:
                    6c:81:b0:a3:6a:89:d8:98:f2:2c:08:99:21:5e:87:45:
                    59:0a:9b:40:09:dd:39:84:c0:c4:af:57:1a:08:ee:3c:
                    a2:09:bf:b9:8a:13:17:2b:c6:b3:00:b7:49:b3:7f:d4:
                    e4:61:cb:4c:6c:0c:a8:09:c8:01:19:48:d8:49:04:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        88:f5:fd:e8:a3:ab:0a:d5:a3:a5:45:69:c0:d4:cf:98:
        40:11:72:bb:37:37:45:76:33:e9:42:eb:4d:04:a0:9b:
        44:ca:5e:7f:dc:22:eb:00:5a:3f:8a:98:3c:40:2c:df:
        35:a7:b2:7a:73:d1:11:ab:fc:ce:0b:d8:7c:32:14:ad:
        14:4c:1a:a5:f6:ee:8b:4a:fe:79:46:57:74:92:eb:1c:
        90:bf:c4:4f:fa:fd:27:8f:7e:2e:f7:4a:13:87:47:f5:
        25:43:ab:f7:bb:28:57:47:35:e7:3c:f3:11:51:59:20:
        1e:32:70:35:8b:9c:9f:d0:0e:05:d6:13:91:85:94:e6:
        54:40:f8:de:15:1b:ec:de:45:c2:8d:46:76:1c:41:b2:
        8c:93:b1:05:75:40:4c:73:74:1a:f4:f2:fd:c9:6b:b8:
        57:0f:c7:ef:58:6b:1e:31:d0:2e:68:bd:b7:34:87:46:
        7a:b9:48:69:65:87:c5:f0:b6:2b:28:4f:e7:f9:90:70:
        1b:c9:89:61:da:8f:6f:9f:77:4c:4d:6f:90:3e:0b:cf:
        93:3b:85:e2:61:b0:2e:bb:f6:3c:cd:e2:13:5b:5d:67:
        74:61:de:36:b9:50:6d:c8:d9:16:85:77:f0:04:ed:5e:
        2f:6a:b2:7d:57:57:ac:a4:fd:27:6d:01:3e:ef:19:eb
    Fingerprint (SHA-256):
        CE:F4:EC:D5:A2:3B:C4:FF:43:65:3F:4E:FF:18:B3:67:11:73:37:14:E7:54:A5:39:E5:34:37:7A:07:22:18:39
    Fingerprint (SHA1):
        2F:13:81:F7:29:F8:1D:A5:73:F1:08:04:1F:D2:60:81:93:7D:79:EB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6960: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155615 (0x3cdd991f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 15:58:25 2017
            Not After : Fri Oct 21 15:58:25 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    98:32:78:6b:c1:d5:f9:f5:60:a1:ee:75:3c:ab:47:90:
                    2d:9c:09:9d:2c:66:59:c9:e1:a5:b7:7a:67:23:05:d8:
                    33:e9:4a:79:de:39:ae:59:33:0c:0a:a6:3b:05:6b:f9:
                    b3:2d:7e:b3:4a:e3:a1:2a:2b:02:2f:71:4f:23:0c:f3:
                    15:94:21:e1:86:a7:c6:d6:60:48:c9:8c:07:1f:a9:d1:
                    0d:d8:99:ca:c4:c8:8c:45:9c:a4:25:0a:b7:4a:7a:86:
                    1c:ca:eb:7b:cc:1e:06:d8:16:72:bc:a2:5f:27:1c:55:
                    9d:d1:5f:c8:f3:6b:47:ec:50:f2:81:af:bf:a5:25:e3:
                    63:f2:8e:e2:4d:00:c6:22:2d:36:ef:a8:f3:54:98:9f:
                    f5:e1:fa:85:9c:96:66:ab:75:8c:be:0b:f8:27:1b:13:
                    15:a1:60:25:9b:ec:16:5a:db:70:40:a0:67:f2:24:a2:
                    75:bf:d0:0d:f1:34:83:10:cb:98:96:2f:90:68:9c:40:
                    6c:81:b0:a3:6a:89:d8:98:f2:2c:08:99:21:5e:87:45:
                    59:0a:9b:40:09:dd:39:84:c0:c4:af:57:1a:08:ee:3c:
                    a2:09:bf:b9:8a:13:17:2b:c6:b3:00:b7:49:b3:7f:d4:
                    e4:61:cb:4c:6c:0c:a8:09:c8:01:19:48:d8:49:04:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        88:f5:fd:e8:a3:ab:0a:d5:a3:a5:45:69:c0:d4:cf:98:
        40:11:72:bb:37:37:45:76:33:e9:42:eb:4d:04:a0:9b:
        44:ca:5e:7f:dc:22:eb:00:5a:3f:8a:98:3c:40:2c:df:
        35:a7:b2:7a:73:d1:11:ab:fc:ce:0b:d8:7c:32:14:ad:
        14:4c:1a:a5:f6:ee:8b:4a:fe:79:46:57:74:92:eb:1c:
        90:bf:c4:4f:fa:fd:27:8f:7e:2e:f7:4a:13:87:47:f5:
        25:43:ab:f7:bb:28:57:47:35:e7:3c:f3:11:51:59:20:
        1e:32:70:35:8b:9c:9f:d0:0e:05:d6:13:91:85:94:e6:
        54:40:f8:de:15:1b:ec:de:45:c2:8d:46:76:1c:41:b2:
        8c:93:b1:05:75:40:4c:73:74:1a:f4:f2:fd:c9:6b:b8:
        57:0f:c7:ef:58:6b:1e:31:d0:2e:68:bd:b7:34:87:46:
        7a:b9:48:69:65:87:c5:f0:b6:2b:28:4f:e7:f9:90:70:
        1b:c9:89:61:da:8f:6f:9f:77:4c:4d:6f:90:3e:0b:cf:
        93:3b:85:e2:61:b0:2e:bb:f6:3c:cd:e2:13:5b:5d:67:
        74:61:de:36:b9:50:6d:c8:d9:16:85:77:f0:04:ed:5e:
        2f:6a:b2:7d:57:57:ac:a4:fd:27:6d:01:3e:ef:19:eb
    Fingerprint (SHA-256):
        CE:F4:EC:D5:A2:3B:C4:FF:43:65:3F:4E:FF:18:B3:67:11:73:37:14:E7:54:A5:39:E5:34:37:7A:07:22:18:39
    Fingerprint (SHA1):
        2F:13:81:F7:29:F8:1D:A5:73:F1:08:04:1F:D2:60:81:93:7D:79:EB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6961: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #6962: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155620 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6963: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #6964: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #6965: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155621 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6966: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #6967: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #6968: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155622 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6969: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #6970: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #6971: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155623 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6972: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #6973: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #6974: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155624 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6975: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #6976: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #6977: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155625 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6978: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #6979: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #6980: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155626 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6981: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #6982: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #6983: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155627 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6984: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #6985: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #6986: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155628 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6987: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #6988: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #6989: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6990: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 1021155629 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6991: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6992: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 1021155630 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6993: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6994: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 1021155631 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6995: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6996: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #6997: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #6998: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6999: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 1021155632 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7000: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7001: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 1021155633 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7002: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7003: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 1021155634 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7004: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7005: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #7006: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #7007: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7008: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 1021155635 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7009: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7010: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 1021155636 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7011: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7012: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 1021155637 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7013: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7014: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #7015: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #7016: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7017: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 1021155638 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7018: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7019: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 1021155639 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7020: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7021: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 1021155640 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7022: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7023: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #7024: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7025: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7026: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 1021155641   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7027: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7028: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7029: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7030: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021155642   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7031: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7032: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155620 (0x3cdd9924)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Sat Oct 21 15:59:03 2017
            Not After : Fri Oct 21 15:59:03 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:31:db:63:9b:11:e6:6b:03:11:2f:ad:5f:47:31:ef:
                    b2:bd:a9:a6:86:50:dc:73:c7:6f:20:46:ca:03:b9:1f:
                    d4:41:dc:31:0d:e1:bf:5e:5b:64:21:1d:93:96:7a:5b:
                    b8:a4:b7:f8:7a:be:14:e3:f8:55:ee:6b:2f:65:f0:da:
                    a6:f1:ce:83:63:88:4d:29:8b:31:0e:33:6a:d4:ef:c1:
                    c4:cd:44:51:0f:48:2b:35:5f:b3:d7:52:af:08:af:c5:
                    34:88:90:70:25:c0:70:52:d6:79:d0:47:40:b0:70:75:
                    27:7b:38:26:2e:cf:11:73:ff:dc:85:8b:ef:bd:5e:07:
                    b9:6c:28:f7:4b:55:a0:6f:82:fa:39:18:99:9a:b9:36:
                    27:f4:aa:f0:ee:49:2a:49:b5:2a:4a:53:a9:64:e8:66:
                    14:d0:6d:32:fd:a1:ac:49:62:7c:21:0b:45:ca:87:7c:
                    80:ee:7e:5c:66:7f:54:f5:c2:be:91:ca:75:55:35:a6:
                    e6:8d:f1:34:07:9a:b8:b8:77:89:fe:76:c8:63:05:9e:
                    62:a5:98:2c:66:d9:64:79:a9:8b:d6:42:30:c6:77:15:
                    cf:db:59:be:49:00:04:01:77:5e:eb:c1:21:62:0f:53:
                    df:a1:5e:ac:b1:40:da:21:52:d5:8c:ad:23:1a:a3:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a7:98:38:a7:2d:42:45:69:54:0a:bd:f9:e7:4b:dd:d4:
        ac:ad:1f:fe:f1:aa:90:6f:4f:5f:bb:56:ca:20:b8:99:
        f8:ca:80:2d:9c:08:a8:29:3b:be:6a:36:6a:3f:05:5e:
        63:ad:3f:35:48:e3:06:1c:34:98:77:2d:ef:44:04:0b:
        e9:b8:3e:a1:52:9d:c4:d4:74:68:5e:46:7b:68:2b:09:
        6e:7a:4f:d5:3d:8b:f6:fd:c3:70:f6:55:04:50:9a:cc:
        24:f3:71:dd:4d:0c:4e:ef:05:cf:31:f1:bc:97:0e:e0:
        a3:79:3c:ff:64:46:e2:8d:a8:f1:95:24:e2:c1:11:1e:
        d6:9c:b7:59:e5:eb:e2:59:76:cd:a0:d5:e2:80:6d:34:
        1d:48:e4:0e:24:80:66:40:07:a0:1b:21:d3:40:c4:60:
        db:88:66:0f:53:a9:90:47:c8:a3:cc:a7:23:aa:35:f3:
        58:5d:9d:4c:bf:b6:18:95:f0:f8:9a:51:92:e8:42:d7:
        78:29:8e:51:c8:c9:2f:9c:56:8f:7a:6a:b5:91:6b:5f:
        f9:69:bd:11:fc:d2:90:66:17:d8:09:f5:95:66:42:33:
        8c:14:d6:59:ec:bb:91:2d:f6:8e:c2:40:4f:cf:5a:af:
        9d:37:27:07:22:8b:ec:53:eb:1c:75:3f:98:f5:60:d2
    Fingerprint (SHA-256):
        8F:47:81:CD:CF:B6:BA:AC:C3:32:17:31:4C:51:78:B5:9F:77:16:97:5E:55:0F:C9:D9:6B:D0:82:E2:C3:B4:4D
    Fingerprint (SHA1):
        E5:C4:2F:08:E5:C5:5E:10:B4:8D:B9:D8:77:B8:30:47:B2:A0:7D:9E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #7033: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155621 (0x3cdd9925)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Sat Oct 21 15:59:09 2017
            Not After : Fri Oct 21 15:59:09 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:bc:d8:9e:e6:d7:5e:ec:db:44:12:49:73:2d:f9:01:
                    b4:dc:f0:e6:ae:3d:a1:90:58:a9:e0:49:ad:37:e2:b7:
                    08:11:06:14:13:6c:9e:3d:da:d5:df:09:d6:e6:3a:c5:
                    a9:e2:be:ea:a5:7b:67:11:82:f5:de:97:7d:dd:73:43:
                    f6:db:2e:ec:f5:42:91:19:6a:b2:86:ad:1a:76:e9:93:
                    bb:10:ef:cb:c7:48:0b:11:ed:95:92:84:a9:97:00:de:
                    db:01:1a:69:18:2e:c0:c0:8d:64:92:1f:33:fa:bf:0b:
                    04:15:17:e0:79:8c:b1:ee:c1:2e:48:d8:17:4f:74:2a:
                    98:34:c6:30:17:10:a6:11:d0:15:22:a6:c5:47:70:ce:
                    18:ad:5a:dd:f1:e2:50:e7:ad:bf:81:89:69:94:f3:66:
                    c9:af:78:3f:bd:e8:84:10:21:06:e2:7f:91:6d:fe:77:
                    b6:24:a5:23:38:ae:d4:d2:e2:19:2e:84:59:d6:4a:b4:
                    db:59:1f:29:a8:5f:ce:83:46:5e:5e:1b:9e:58:fa:73:
                    9b:fa:2e:02:27:f8:d9:41:da:31:11:a7:22:11:7d:ce:
                    b0:94:4d:54:5e:c1:57:01:4a:71:c9:88:78:85:51:a7:
                    9e:d7:be:a8:2f:b2:96:79:17:9d:bf:3b:65:f3:51:d9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:a9:6c:3a:bf:0f:64:60:2f:0c:1c:b8:7b:31:41:64:
        c2:2f:50:1c:51:ac:d3:cd:9f:56:7c:b4:3c:98:ca:ff:
        05:de:e3:f2:dc:3e:a4:87:1a:52:a1:57:e6:26:44:c2:
        00:cc:a0:4a:66:4a:e9:3c:9b:be:3b:a7:be:b8:39:3f:
        3c:4f:ed:f4:a4:dd:8f:e1:99:69:ed:50:47:fd:fc:7d:
        53:80:be:aa:ae:8c:d1:74:fb:e8:09:51:16:7e:ad:2e:
        dc:5d:46:7a:0a:d1:2c:bc:57:c2:3b:9d:c1:a7:ad:97:
        ca:05:8e:0b:c5:8d:1b:ad:e9:e9:27:3a:9d:f1:e4:0d:
        68:1a:e6:1b:2f:d9:8a:18:a3:4d:9b:23:5a:50:35:06:
        38:76:76:41:cc:19:a9:2f:55:b7:e6:65:3f:1f:ea:2f:
        47:68:32:18:00:bb:54:94:3c:7f:b1:74:94:38:2e:e9:
        8b:32:d6:dc:68:8d:92:4e:87:5e:d4:7e:32:2e:1c:20:
        20:37:a3:e1:58:5a:39:9e:92:bd:e4:3a:56:12:cb:14:
        a4:c7:ed:11:99:9a:ce:b4:47:97:f8:5b:ea:0b:a1:66:
        4e:f7:4c:91:80:2c:17:1c:69:3c:75:d5:47:d7:11:dd:
        79:be:17:31:1e:ac:96:1d:a8:82:9b:51:8b:4a:8e:3e
    Fingerprint (SHA-256):
        98:36:A0:4F:E3:A8:D6:97:C1:C2:11:81:5F:D8:98:B2:4B:AF:1C:FA:A6:E2:C6:5A:E1:9E:BD:F2:11:AC:40:D5
    Fingerprint (SHA1):
        28:54:E4:71:9C:A9:2A:E9:1E:D5:AB:46:6D:22:FC:17:1F:97:E8:1C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #7034: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155622 (0x3cdd9926)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Sat Oct 21 15:59:14 2017
            Not After : Fri Oct 21 15:59:14 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:92:c7:24:e0:cd:60:bc:57:85:df:5b:65:c1:0d:06:
                    e8:30:94:3d:75:6e:ba:0a:44:18:9e:69:e6:08:b3:77:
                    7e:22:dc:84:4e:da:b2:9f:b6:cb:61:ec:83:51:b8:81:
                    4d:ad:00:f3:d4:4d:48:70:81:f2:f6:89:57:c1:8a:43:
                    37:91:ee:0a:a1:5b:4b:8f:46:83:1a:09:0a:a8:78:da:
                    13:21:69:34:8e:5b:86:5f:d6:13:56:ac:9e:2e:07:86:
                    de:5a:29:52:20:7f:63:07:70:b0:f4:cb:56:fc:75:58:
                    b2:3d:d1:fe:56:4c:e6:af:5d:8a:a7:13:c4:80:98:1b:
                    d1:b7:e9:89:dc:09:2f:b0:92:9d:7a:7d:95:0f:13:72:
                    f1:ac:56:e3:d5:ca:ac:36:f3:f2:65:47:25:64:8f:1d:
                    69:18:04:5b:92:d3:c8:2d:64:99:96:11:d1:28:3a:00:
                    12:7a:76:7a:b9:ce:5f:22:9d:8b:e6:56:8a:98:e4:50:
                    d1:ac:e2:c8:c9:3c:2b:41:d7:d1:5e:cd:21:86:6c:fb:
                    ff:ee:4b:b9:0b:30:f2:bd:0b:af:90:fc:33:23:d0:f8:
                    d4:30:6e:c6:7c:a6:b3:3e:0f:62:d7:2a:49:a3:21:2b:
                    1c:cb:ff:8b:d8:ba:93:dd:27:35:1f:a1:4e:3e:c0:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9e:0a:e6:4e:77:d1:5c:30:56:99:9c:2c:82:e6:6a:1c:
        dd:3f:eb:53:bc:f9:d1:17:23:9e:ec:65:89:3a:24:8e:
        b5:83:09:fe:79:95:f7:0c:b2:92:90:ea:de:bc:aa:d1:
        4a:49:50:89:04:20:7d:c1:c8:2c:45:a7:1f:02:cd:27:
        a5:2e:8b:08:5e:44:92:7c:bc:bd:4b:0e:ac:4a:19:cd:
        a3:f0:08:6d:fe:76:08:4e:ed:4c:fa:c5:d4:dc:64:2d:
        6f:5f:a3:95:e6:9f:f5:d5:23:c0:72:1e:92:fe:e0:75:
        c4:67:0a:98:af:7e:1a:9a:39:3e:99:96:ad:92:d6:0c:
        a9:bf:31:20:98:8d:34:a7:26:67:8e:b6:2a:96:f4:19:
        e5:31:0d:fa:aa:4c:75:5c:7d:4e:9b:5b:f6:27:7c:75:
        dd:b8:d6:97:a6:6b:97:51:65:1a:cf:5c:a7:54:48:f7:
        31:2f:c4:bd:57:58:56:51:36:24:78:ec:45:26:50:1a:
        67:74:05:6f:0d:a7:f4:84:f9:03:61:4d:65:b1:fe:b4:
        87:bc:ba:6f:32:63:e5:bb:b8:c7:50:be:1b:c4:5a:05:
        84:dc:4e:ff:25:51:6b:cc:7c:11:03:a5:65:65:fc:3d:
        55:08:a4:9e:c3:91:64:39:e1:ab:07:a8:5a:aa:a9:ca
    Fingerprint (SHA-256):
        EB:B9:3B:5C:92:44:EA:10:BA:B3:FB:5A:E6:7B:B7:C6:63:3C:B8:69:41:9A:C0:79:22:43:56:67:C6:2A:6A:E3
    Fingerprint (SHA1):
        4B:E7:79:C4:E2:63:63:E4:5B:B8:44:A9:2A:0F:E4:66:5A:01:E7:80
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #7035: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155623 (0x3cdd9927)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Sat Oct 21 15:59:20 2017
            Not After : Fri Oct 21 15:59:20 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:cd:61:da:32:41:39:22:1e:f8:f8:74:38:5d:2d:16:
                    76:fa:23:83:d1:cf:e9:27:4a:95:ae:11:f7:11:86:05:
                    10:d7:21:89:70:0f:a9:4b:c4:04:48:81:4f:28:be:45:
                    03:df:20:79:a7:72:fb:23:48:77:22:74:f4:08:1d:33:
                    b4:0b:82:02:65:74:5c:2d:b0:90:b7:aa:40:f0:33:ea:
                    a5:c0:40:ca:10:19:fd:9a:fa:2e:ad:0d:b9:f4:17:d5:
                    18:6a:50:90:ba:d0:58:a2:72:cb:2b:25:98:76:4a:ab:
                    66:63:df:a0:2f:7a:fe:95:ce:93:27:70:c4:b1:e3:ea:
                    ed:cf:04:d1:f5:f3:4e:45:06:84:4e:e9:01:4b:58:47:
                    dc:4c:de:44:8e:25:97:a7:4f:01:11:f1:63:80:0b:84:
                    7c:c3:06:c8:af:6b:a1:88:5c:56:1a:f8:b7:f7:79:66:
                    10:16:f3:9c:fc:1d:ff:19:fc:aa:8c:54:a3:a2:38:c7:
                    c0:f0:41:58:c4:56:9d:b1:ce:b3:c7:d1:51:65:b6:7f:
                    f5:a2:c2:39:5b:6a:76:76:5a:ca:b2:14:9d:fd:81:e7:
                    aa:4c:10:7a:10:f3:1c:22:3b:71:27:60:ef:67:12:40:
                    fc:03:0f:ef:49:10:58:cd:52:69:38:a8:fb:fa:e6:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:c7:69:48:78:d6:73:5a:ef:62:6a:58:95:78:f4:4f:
        14:73:34:82:76:14:dd:1a:07:c0:81:a6:5a:e6:b1:62:
        e2:8c:af:51:fe:17:61:f6:84:64:a2:b7:19:33:5b:a6:
        7a:7a:74:51:92:a4:3b:18:be:1e:53:88:0d:6d:de:60:
        3d:39:6f:b5:fd:1c:60:67:14:1e:80:cc:3d:d7:36:8a:
        3d:f5:f8:12:ed:64:47:d0:a2:06:f7:8e:de:4d:a9:6a:
        ce:53:4d:e3:44:3e:c8:f6:75:44:5d:a2:4c:a2:40:a9:
        ef:34:cb:97:8e:3d:44:3a:cb:8c:e0:4f:55:dc:1f:fd:
        b7:e4:86:d5:55:d1:28:7b:46:2b:b1:a8:f0:e4:5b:bc:
        01:2c:33:80:e4:43:65:55:eb:1f:8d:8f:cc:b3:02:91:
        36:83:9f:72:1d:16:25:ba:4e:4b:43:5c:a6:3d:63:2f:
        0b:d8:c2:14:a1:bf:07:5e:2a:45:8f:ab:f4:21:3e:6f:
        14:6e:2f:b2:70:dc:93:92:97:7d:ae:cb:cf:da:38:fe:
        c2:e7:2b:b2:00:e5:4b:b9:bd:a7:1f:bc:ca:79:4e:db:
        7e:f3:5d:82:c6:f5:eb:c3:7f:f6:73:6f:82:b6:5e:db:
        e6:e2:70:d6:82:0e:4b:1b:dc:38:dd:d5:b9:94:44:67
    Fingerprint (SHA-256):
        E6:61:B7:AE:D6:F8:61:CD:39:98:B0:03:5D:84:08:EA:69:DC:86:EE:19:60:D2:C8:81:F0:81:0C:38:B9:BA:BB
    Fingerprint (SHA1):
        A0:BD:2B:5D:36:45:12:88:DA:E8:9A:22:40:FE:1E:A8:48:82:E7:58
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #7036: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155624 (0x3cdd9928)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Sat Oct 21 15:59:29 2017
            Not After : Fri Oct 21 15:59:29 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:5b:b7:b1:0f:c4:53:f3:07:8c:84:ba:31:51:05:98:
                    29:1b:63:40:70:04:81:c8:4b:03:89:c3:86:e9:34:f8:
                    78:39:83:1a:bd:e6:ff:7c:55:77:60:3a:5a:cd:a9:28:
                    b9:f5:fe:15:37:ba:ec:29:19:77:2b:5a:8e:d9:71:f8:
                    32:c3:76:d2:b9:bd:28:a6:6f:56:63:b2:6e:04:51:04:
                    34:ca:40:e6:13:c9:fb:05:f1:8f:6c:fe:e4:ed:c3:d3:
                    42:00:6b:e9:50:8e:5b:6e:2c:35:9a:d6:f4:b1:36:37:
                    08:79:65:7f:ca:54:15:9f:93:43:e0:59:e7:75:a0:7a:
                    d8:63:75:64:b9:fc:74:ed:3d:76:1e:64:1e:7e:53:88:
                    93:11:08:0a:a3:a3:1c:0f:a5:67:94:b4:b8:27:f2:51:
                    a5:a2:d0:f2:84:aa:7c:e7:e6:bb:83:cb:d6:f6:e2:28:
                    96:b8:5e:fb:bb:ad:62:63:c8:85:18:54:cb:28:78:f4:
                    ec:26:5d:02:92:b0:7d:0c:58:53:96:8f:79:ca:f6:0a:
                    97:ad:d2:d1:4c:60:11:4c:e8:8c:df:49:14:8f:60:b7:
                    52:16:83:f6:dd:e9:d3:03:9f:05:07:9f:cb:8a:d6:28:
                    cb:31:12:ec:51:8f:9c:28:a5:69:a2:aa:ad:f6:65:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        76:68:f3:8d:69:ae:d1:e2:c6:8f:e0:d2:ef:03:6e:dd:
        7e:89:36:4c:d0:66:64:6f:d4:58:d9:30:19:ca:95:39:
        78:4c:85:9f:c3:12:74:97:79:95:73:9f:ea:d0:46:1e:
        d3:ee:bf:32:a9:0c:4d:aa:a3:ac:35:9a:12:04:c7:e8:
        7c:1b:e6:1a:28:72:49:8a:63:c8:dd:35:5c:06:42:d1:
        27:12:27:72:fa:77:31:33:64:68:6e:fa:86:32:4c:f3:
        a0:f0:79:e3:c5:3b:68:c9:b9:51:c6:cf:8f:79:d4:e7:
        4f:9d:4f:0c:cb:d5:ed:b7:28:1e:58:b1:7b:c0:c5:37:
        72:a0:a2:84:a0:b3:72:d3:a4:8f:07:d4:44:7f:66:3a:
        21:20:9c:5f:9a:6c:25:0d:c2:a3:98:06:56:62:4f:bb:
        8c:96:23:ec:47:f4:6b:0d:86:03:a5:17:3a:2c:dd:db:
        e9:c7:07:58:ea:4f:f4:0a:e3:c1:af:c2:49:5e:bb:9c:
        e0:c2:e2:67:b7:90:cd:63:96:14:01:bf:e1:12:ef:aa:
        8f:70:4b:6f:18:f9:a7:80:08:9a:c4:c7:e5:6a:af:6a:
        a0:8d:58:d3:75:fa:ab:21:02:53:1a:db:5b:db:e8:e8:
        14:10:b7:f7:4b:5f:f9:4f:e9:36:9d:00:39:62:41:97
    Fingerprint (SHA-256):
        0A:E6:6B:2D:DC:21:8C:79:48:34:81:42:7A:AE:C3:73:DB:13:C3:E7:D1:F5:FC:20:FB:DE:DC:03:99:3C:F5:5D
    Fingerprint (SHA1):
        51:CE:A2:04:58:F8:22:F2:9E:4F:A9:94:BE:DA:12:2F:83:81:EC:7C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #7037: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155625 (0x3cdd9929)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Sat Oct 21 15:59:33 2017
            Not After : Fri Oct 21 15:59:33 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:31:6b:57:2c:7b:0c:7d:7b:f6:ad:23:2a:71:75:c8:
                    10:38:d4:57:12:b1:51:63:88:e3:9b:40:98:bf:0f:b0:
                    0b:33:92:be:d1:00:67:93:70:50:f4:df:f3:78:3b:6e:
                    db:6c:77:63:3a:aa:bc:ae:36:b8:95:b5:bb:34:7a:32:
                    79:58:1b:80:bf:9e:7d:89:40:a3:be:b9:17:e1:76:04:
                    88:77:41:aa:2c:e9:07:54:be:61:35:a6:b8:75:06:01:
                    c7:42:3c:4c:a3:dc:02:11:9e:a7:02:97:55:22:d2:a6:
                    39:aa:87:4c:48:58:cd:d1:28:3d:9e:59:32:6b:57:23:
                    8b:57:16:65:df:af:14:e8:ce:9a:a8:b7:c1:ce:81:fe:
                    c8:8f:ed:64:9d:cd:bf:ff:ef:b3:9d:f4:3d:24:da:9d:
                    90:28:3c:62:57:7d:01:b1:e7:55:3b:c3:6f:3c:76:c8:
                    32:6a:5f:78:a1:08:15:aa:55:5d:70:79:6d:58:20:6d:
                    29:fd:51:5b:79:42:b1:09:24:39:14:b9:55:90:31:05:
                    da:b3:3a:47:c7:f5:f7:0e:67:7f:32:22:66:32:1f:d0:
                    af:98:31:68:3a:bc:b2:d8:da:52:45:25:a7:83:5d:59:
                    14:bd:bf:e0:86:56:35:4d:0c:52:5f:62:16:60:62:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        83:5e:bd:af:68:d9:6f:14:78:50:f8:a9:5c:97:7b:68:
        3b:50:f8:cd:97:13:a9:31:ac:d9:4a:5f:7c:7f:f0:cf:
        b5:bd:14:81:2b:fa:50:0b:0b:9a:84:6c:3b:ec:66:5d:
        9a:28:a5:b5:f2:d9:41:0b:9f:42:90:4f:95:63:e6:cc:
        ae:c3:f5:8b:23:a6:d8:fc:d7:48:6a:7e:88:94:f1:0a:
        6c:be:a3:ae:29:cc:e5:21:d8:31:91:f3:7b:6e:32:79:
        88:8c:1f:24:7b:f2:ec:62:70:08:c4:33:ce:cd:7f:2c:
        cf:35:6f:4e:da:33:11:e1:70:65:a9:97:1f:6f:af:55:
        03:53:d3:8e:4c:cf:64:91:7b:f8:01:f4:65:51:10:11:
        a2:41:af:58:4d:82:bc:b5:6a:39:84:19:68:ab:aa:c4:
        1b:42:0c:5f:f2:a1:02:47:05:ab:54:47:0d:c0:24:5b:
        9a:f8:53:a0:22:a1:cf:d4:c2:c7:d1:a2:18:5e:48:74:
        1e:6c:97:00:32:cf:53:f4:a9:5b:2f:e3:5f:df:50:05:
        df:c0:ca:c0:cb:38:a1:be:7f:de:4e:9a:aa:31:31:2c:
        a9:04:6c:bf:04:ab:4e:6d:63:27:da:3f:85:76:1c:9f:
        48:e7:29:63:16:29:a1:ed:b1:0f:49:ce:3d:f3:17:57
    Fingerprint (SHA-256):
        32:C6:A2:7F:40:E8:C6:BA:F0:93:A8:A4:25:32:F9:80:D6:82:09:13:04:45:4F:4A:68:BB:11:6A:6C:B9:B8:05
    Fingerprint (SHA1):
        CB:D1:D5:C2:45:09:0F:16:A8:1B:A2:F2:F5:BA:15:CA:81:F4:82:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #7038: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155626 (0x3cdd992a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Sat Oct 21 15:59:38 2017
            Not After : Fri Oct 21 15:59:38 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:d0:74:b9:b9:d4:48:79:16:73:04:71:c9:00:1c:95:
                    2e:ca:ab:65:14:f1:a2:d1:1c:6a:97:9c:d5:bb:4f:4a:
                    9f:ab:89:ec:91:61:41:7b:54:3f:b8:9b:c9:1a:2a:39:
                    6d:6e:17:c1:f7:8d:20:a4:9a:15:00:89:0d:80:7d:88:
                    1c:4f:41:a7:76:04:52:0c:20:b8:67:64:f1:4b:87:2f:
                    94:cf:b1:3f:6b:f1:5c:bf:74:55:3f:39:56:c9:77:b1:
                    86:86:7f:ec:96:91:d5:28:e9:02:67:8d:e2:60:57:b6:
                    24:50:ee:9b:00:77:ac:c9:5d:ef:e8:de:de:b4:5c:9e:
                    eb:8c:c8:75:40:47:30:4b:62:15:b1:f0:c1:cd:04:81:
                    c6:2f:cd:4e:ed:b5:71:ba:47:e7:b5:e1:22:e8:1b:75:
                    2e:c4:dd:87:d8:de:8d:c8:e3:eb:2d:b5:fd:d2:d6:d9:
                    03:52:0f:64:a8:75:db:10:fb:b2:8a:c5:40:09:b8:1a:
                    63:4e:86:ea:38:72:e5:31:8c:25:06:72:dc:b8:c9:bb:
                    98:1e:fc:a3:56:73:00:8b:cc:75:ff:53:f0:6d:b6:a1:
                    d9:bf:8c:73:72:af:f0:ca:9f:29:2a:ec:fd:b6:9f:44:
                    66:27:d5:52:f1:1b:7c:66:d7:8a:87:b8:7b:22:f2:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b3:8f:61:7f:b0:f7:5b:00:54:a4:f1:a3:24:a6:17:2f:
        79:b8:dc:d4:59:e9:a4:b9:de:f0:b6:a7:55:6d:9f:9f:
        63:1b:c1:87:17:18:4b:21:bf:93:4c:a0:48:c8:6d:28:
        1d:00:44:62:6d:a4:06:96:bd:92:5b:63:33:4f:97:7c:
        98:72:22:9d:4f:bc:cf:f2:3e:ee:ec:1b:e4:02:8f:75:
        1e:49:c2:97:c4:c6:7f:3a:b7:e3:07:3a:e0:98:bd:3a:
        36:ee:39:5c:95:f3:a4:65:96:08:28:23:08:43:56:3f:
        19:f7:94:b9:f0:4f:82:c3:c2:e0:85:4f:6b:6d:a5:ac:
        94:3a:a6:82:ea:fd:cd:58:5f:a3:43:aa:a7:3d:33:fd:
        1f:a6:c6:4d:f3:ef:8f:5b:9e:a3:d2:12:5e:9c:36:70:
        cf:63:46:8e:d8:4d:5b:98:49:01:94:74:b1:36:e5:78:
        8e:35:08:eb:70:0e:1c:df:3a:d2:cc:e5:e3:4b:b2:a5:
        6b:01:37:55:9d:47:ce:fd:31:37:30:bd:f4:61:2d:20:
        a2:31:8c:eb:61:ef:cd:b4:95:f4:63:ce:c7:80:7e:60:
        ea:88:8d:dc:cf:17:c2:1d:04:80:76:84:a4:db:b9:f8:
        af:69:79:84:64:79:6a:e9:04:8d:0f:45:04:8f:0f:ef
    Fingerprint (SHA-256):
        9C:F0:0C:F7:16:01:4E:8A:15:50:ED:1B:E3:3C:E9:34:F9:1C:E8:9B:00:85:3F:B2:1D:59:74:20:B8:16:66:E6
    Fingerprint (SHA1):
        71:F8:72:59:F0:03:65:CE:AA:28:A1:D7:0E:AB:0E:8F:1D:40:79:1E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #7039: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155627 (0x3cdd992b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Sat Oct 21 15:59:43 2017
            Not After : Fri Oct 21 15:59:43 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:2b:d4:45:91:8f:42:bc:09:dd:fa:43:9f:21:27:26:
                    57:71:56:f0:78:0c:47:a7:83:10:bd:9b:66:3b:80:69:
                    97:98:af:c4:36:9b:c2:0a:1e:2e:67:28:0b:d0:12:70:
                    29:2f:5d:ed:27:50:70:42:33:60:af:74:88:8b:11:e2:
                    b7:46:8c:5b:56:df:54:32:63:94:72:b0:74:cb:85:0b:
                    d2:39:98:b0:12:b3:06:c1:ff:cd:de:88:18:ac:97:75:
                    5e:9f:50:b0:20:2f:9e:fd:54:87:8e:59:ad:e2:84:1b:
                    2b:b1:aa:85:a3:c5:90:9d:39:30:a7:b1:5c:42:ec:82:
                    70:e8:68:af:3d:06:f7:05:97:41:ef:76:8b:33:92:f4:
                    3f:c9:b8:83:4c:b0:c6:2d:1f:74:61:ce:9d:9d:53:15:
                    94:15:2b:88:2c:b9:43:2a:36:5f:c9:71:f4:0a:3e:b8:
                    43:95:fa:ce:d0:32:01:a6:26:13:fe:64:ac:75:2d:04:
                    4c:3e:a3:43:5b:44:60:e2:a5:97:d4:83:38:58:4c:b2:
                    02:0f:2f:2f:92:9c:c6:cd:49:81:d5:1b:ab:91:7e:cb:
                    2f:50:5e:29:94:64:d4:d6:9f:ab:78:56:6e:a7:8e:24:
                    b6:70:da:b2:64:6f:d3:b2:26:28:09:16:c2:1b:34:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        15:03:c5:55:9d:6f:5b:a6:39:93:26:11:71:5b:dc:90:
        00:6d:04:51:51:0e:fc:4f:3b:d5:86:5a:e0:b3:2e:ac:
        9b:a5:5d:7c:f3:61:5b:27:cb:90:6e:da:0e:3a:f8:25:
        16:a6:d2:4a:fc:3f:60:65:91:d5:d9:b5:12:55:80:84:
        db:50:14:b2:4a:44:d0:c4:14:45:19:d7:89:3e:d7:03:
        ff:04:9b:b2:99:a8:b5:44:ad:37:19:42:a7:97:11:6b:
        7a:00:9a:c2:32:21:dd:51:01:0f:2b:74:0b:6a:06:66:
        bf:d8:23:00:cf:37:d7:bf:b2:59:55:a4:21:0f:29:6d:
        16:1e:65:5d:68:4d:12:59:22:f8:e0:98:39:af:c9:25:
        4d:42:10:38:74:2b:d8:1c:a7:e2:fd:dd:b3:0f:20:29:
        6a:db:63:70:0b:f8:5e:7b:72:98:54:b5:d9:5b:a4:52:
        b5:4b:65:e2:a6:51:80:72:d8:bd:71:2d:c7:c4:43:ca:
        87:4e:8a:60:8e:d1:32:13:40:9c:24:a6:2a:69:9d:e2:
        e6:a1:62:8b:54:67:24:f0:10:ec:d8:77:56:85:47:99:
        e4:62:4e:96:c1:ba:78:06:7c:65:05:6c:33:b7:a4:8b:
        91:57:f9:64:97:8d:ff:33:06:84:2c:f4:d0:b3:e9:16
    Fingerprint (SHA-256):
        EE:11:3E:8D:5E:76:21:42:25:18:CC:8F:D3:F5:B5:6C:C3:F6:BC:74:67:5F:94:D3:50:03:B7:01:16:4A:05:3B
    Fingerprint (SHA1):
        1A:A3:76:C1:E2:6C:28:86:61:1F:63:C5:A2:A9:A5:33:FB:CC:6F:DF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #7040: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155628 (0x3cdd992c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Sat Oct 21 15:59:49 2017
            Not After : Fri Oct 21 15:59:49 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:f2:95:c3:aa:0d:03:6b:cc:27:9b:6c:27:ed:7b:f7:
                    3c:58:53:91:aa:1b:09:c9:62:e2:b9:b6:3d:62:64:01:
                    86:cc:2b:a9:e7:27:76:2a:e4:8f:9a:7b:c7:41:75:7e:
                    1d:88:14:6c:e7:47:23:5d:ba:ea:e9:9f:7d:54:a7:d7:
                    16:4d:a8:d2:b1:31:7f:1b:f0:d9:4b:75:2d:19:7e:ee:
                    1f:3d:6d:c7:37:66:d7:0e:4e:f8:1b:a0:1e:3f:f1:f8:
                    42:a9:41:bb:2d:04:c0:01:9c:67:1b:ba:4e:05:cb:46:
                    a7:ef:27:a6:8a:8c:57:5d:fb:a9:ce:c4:5e:f3:cd:64:
                    60:dd:cc:25:1e:f9:36:43:b8:3c:8d:67:1b:c6:c6:68:
                    58:92:5d:0d:37:1c:d7:f5:cc:fb:1d:2d:7c:cd:d9:84:
                    1c:5c:6c:d2:65:9e:d3:93:6a:65:f7:23:9a:aa:fb:9b:
                    42:5e:3e:56:74:86:e8:ea:ef:b9:06:eb:64:8e:82:bd:
                    16:82:67:8c:91:6a:7a:15:29:11:a1:bd:8f:c3:9a:1f:
                    78:05:3c:3d:c9:7f:7e:f4:ba:8e:97:2e:fe:26:5f:40:
                    70:cd:03:81:83:76:4f:29:4f:52:da:8f:50:7a:5c:1b:
                    0b:bb:cc:ad:bb:4b:d5:a1:58:50:c3:5c:6d:09:88:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        76:0a:93:19:45:65:68:7d:a5:56:c9:06:44:87:f8:8f:
        46:65:23:68:a8:94:2f:aa:90:ec:84:a4:b9:23:fb:f0:
        37:57:3e:10:6f:ec:46:74:c1:88:82:21:98:c6:34:de:
        6b:b7:fa:d2:d2:03:1a:29:fd:2b:95:64:8f:de:79:69:
        ad:89:28:36:f6:a9:40:28:1e:90:15:81:8b:44:d7:da:
        84:39:4b:3b:3e:24:f1:09:e2:72:b2:57:b4:0b:c1:b1:
        56:7f:9f:40:bc:00:84:a4:e0:fe:e7:6d:b0:b1:c5:35:
        1b:11:06:c9:a3:90:1c:f2:c5:a1:5c:57:45:5b:25:75:
        f4:7a:25:56:0c:78:69:2e:c4:d0:c5:76:e4:89:6f:0f:
        c9:03:8d:8c:47:e3:6f:f4:1d:de:07:57:10:ae:d9:d9:
        20:b5:07:10:35:68:0a:54:66:87:36:5b:e3:f1:5d:e1:
        64:c9:16:b6:d9:5a:fd:ac:95:fc:d2:e0:50:9f:aa:9a:
        42:f9:3a:46:6c:3e:11:41:46:1e:72:b6:72:bb:bd:d2:
        9d:05:fb:5d:42:c9:c9:d3:0c:3c:13:35:12:3c:2c:17:
        41:3f:20:07:77:fd:07:f6:11:8e:f0:5e:a5:9d:20:6b:
        28:fc:ec:3c:dd:f4:0b:5e:2c:8f:b5:35:5d:5c:e4:17
    Fingerprint (SHA-256):
        01:96:F7:1F:C9:07:66:60:51:A6:F8:CB:BD:7B:7E:74:65:75:66:32:8F:86:8B:BE:F9:52:7D:F0:06:7A:EA:A0
    Fingerprint (SHA1):
        1A:D0:68:FE:31:FC:62:D3:4C:4A:AA:CC:D3:70:FC:A1:48:7D:79:2B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #7041: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7042: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155643 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7043: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7044: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7045: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7046: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021155644   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7047: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7048: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7049: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7050: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021155645   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7051: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7052: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7053: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7054: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 1021155646   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7055: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7056: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7057: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155643 (0x3cdd993b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:00:41 2017
            Not After : Fri Oct 21 16:00:41 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:b0:1c:61:1d:e4:ad:6e:4e:9c:24:5a:70:ed:53:0a:
                    fd:52:18:d0:4d:2a:50:2d:3b:0f:dc:48:08:37:c1:e8:
                    43:0b:7a:6f:b0:62:f0:37:91:8f:de:36:20:00:2a:d8:
                    ca:c1:04:6a:07:5e:da:4b:9a:11:e6:40:d5:a8:a4:7f:
                    f8:8e:b8:5d:ba:f5:5f:ce:28:0f:1a:27:89:dd:ed:2c:
                    73:26:34:dc:9b:4e:a7:7a:4a:42:0b:e1:0c:c8:7d:58:
                    f0:bb:46:d4:11:75:bc:a3:34:37:fc:7b:14:c0:b4:34:
                    b4:28:6d:ba:0b:41:db:e8:22:3f:3c:ce:27:97:7e:be:
                    04:0c:34:39:a4:2f:8e:2b:0a:32:73:01:12:b5:dd:a6:
                    1b:ed:6b:bd:54:1d:8f:37:29:14:fe:2e:6d:9b:3e:76:
                    57:c0:a7:e7:f6:74:9b:55:b2:2a:f0:41:74:95:51:1d:
                    c4:28:46:08:43:50:02:0e:70:6d:56:9d:07:16:a6:54:
                    a2:e2:70:58:c2:24:96:40:62:21:1c:09:c5:36:94:b5:
                    f5:dc:80:eb:13:95:04:c5:4e:0d:7c:65:ae:03:ca:d2:
                    25:7b:e5:79:16:55:b5:f5:11:04:4c:0f:12:a4:df:5e:
                    c6:f8:6a:cc:0c:89:1a:b5:fb:a3:d9:1e:d2:3d:5c:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        49:b9:c7:63:5f:92:cf:9f:76:5e:a8:68:65:eb:65:ca:
        2e:71:e8:1a:8b:b7:87:58:08:ad:2b:ca:fa:f9:51:66:
        2d:bf:15:4c:91:b0:7f:80:39:90:33:23:a5:be:55:cf:
        3a:d1:9d:8a:e6:db:f3:28:72:13:09:ed:4c:3c:f2:f9:
        15:c1:2c:ed:45:d8:1b:fb:6e:87:4b:97:15:18:82:05:
        91:28:62:37:64:94:af:42:f9:4c:f7:af:83:ab:ac:23:
        93:7b:c6:f6:3c:18:cc:75:38:18:ac:18:9f:5a:5b:2f:
        81:c3:2e:b5:09:59:1f:03:0c:49:cf:78:52:ab:0f:f5:
        dd:79:5b:cc:3c:34:99:17:55:5b:73:8d:aa:cc:a9:c4:
        51:c1:ff:0c:82:70:a2:ca:12:55:be:d0:d5:59:21:2f:
        4b:8a:b3:be:76:8a:3e:7f:65:64:d3:1e:65:40:99:04:
        23:c1:88:4a:70:cd:7b:50:5f:f3:33:90:32:e8:cb:f0:
        44:3a:30:e5:67:2b:4c:1a:41:13:3a:54:6f:a9:51:b4:
        e4:1b:67:78:c7:2d:a6:d7:fa:e5:5e:7a:d2:af:72:ae:
        86:f8:19:1e:16:03:c5:3e:68:23:24:5f:e0:1d:12:9a:
        af:0b:65:4e:80:3c:b2:05:09:11:75:93:b1:ad:ea:91
    Fingerprint (SHA-256):
        02:D9:E2:BC:4D:E6:B4:65:51:7A:61:5F:95:3D:71:F2:E6:F9:86:1F:83:40:2D:AB:4B:EF:56:01:51:6D:83:70
    Fingerprint (SHA1):
        D9:59:AA:8F:4B:88:FB:35:08:30:3E:75:61:F8:DE:72:2C:EE:3A:9C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7058: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7059: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155644 (0x3cdd993c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:00:45 2017
            Not After : Fri Oct 21 16:00:45 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:85:ba:7d:be:aa:ea:12:0d:bd:d5:34:e1:bb:68:f9:
                    3a:63:c8:83:b1:7f:cb:18:ff:71:b1:1a:72:8a:68:f8:
                    b6:8e:c7:ba:2a:88:b1:42:3f:ec:b5:5c:b3:4a:9e:01:
                    27:e5:44:29:ce:75:18:b8:03:23:6a:d1:bf:04:79:e3:
                    44:cd:99:85:34:aa:52:56:d8:b3:87:c6:d5:d5:d6:ce:
                    b1:e3:97:5b:67:d2:18:2c:ba:06:79:0b:f3:81:19:36:
                    6e:8e:bc:58:71:4b:27:92:b0:ff:a3:b3:81:d3:fa:ca:
                    0a:b0:21:f9:a0:77:79:0d:3b:83:73:28:d8:a7:52:64:
                    88:2a:e9:93:89:66:e3:08:ea:8b:be:80:f1:76:5f:aa:
                    3e:34:39:8d:11:0e:0a:eb:85:57:11:16:2b:40:9f:f8:
                    c9:09:9b:11:6c:65:fb:aa:4e:74:82:b0:27:41:07:0e:
                    e7:1d:dd:31:93:44:a0:2d:f4:fd:19:b2:e7:78:e9:cb:
                    37:b3:f7:3d:36:c2:b3:ea:36:1b:59:6d:fb:31:71:4a:
                    a5:fa:dc:44:22:e1:e2:23:7b:1e:97:7e:19:98:fd:45:
                    e7:91:09:32:ab:2b:cd:a3:b2:6b:aa:be:e6:9f:83:ba:
                    70:c5:87:00:18:61:12:01:7e:69:57:98:b2:85:4b:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        78:31:03:32:7b:cb:25:26:30:3b:9c:73:89:e5:2f:a5:
        42:77:bb:36:66:9a:a5:2c:be:b4:13:54:6a:cb:89:bb:
        8e:d8:01:e9:d6:65:0c:79:75:de:ea:0a:5f:9c:f9:57:
        f3:87:62:a8:81:c2:91:a1:be:77:8b:79:cf:45:d9:de:
        bf:55:e5:67:10:42:2d:71:44:1b:4f:a3:f4:81:36:5c:
        14:e5:3d:d7:78:ba:c7:3d:8a:e9:bd:72:06:9b:cd:25:
        05:19:b1:45:d7:38:37:cc:7c:18:9e:57:51:fb:ab:1f:
        c9:21:4f:9f:37:01:15:56:8f:1b:67:d7:7c:2a:a9:5f:
        7e:66:39:c6:cd:4f:ad:40:de:fa:00:e4:fb:89:fe:b4:
        b8:4c:6c:d8:65:b2:bb:b8:05:fe:6c:e0:95:85:ea:e4:
        21:7a:d7:c8:8a:07:19:b8:40:1d:1a:1d:6f:21:ac:93:
        61:d4:ce:46:11:74:95:5e:78:18:69:5e:fa:64:e1:e4:
        2f:8d:f4:7f:19:7f:86:c2:ef:32:b7:d1:2b:12:76:90:
        06:ce:26:a6:0d:96:6c:68:e7:24:0b:11:78:68:a9:8f:
        e8:d1:3c:15:49:f8:5a:54:d7:af:a0:31:f1:d3:f3:08:
        fa:be:bd:0a:cb:1c:14:1a:88:29:49:5d:f3:9a:0f:c1
    Fingerprint (SHA-256):
        31:80:6B:65:8B:30:33:1C:6D:8A:94:B2:2B:E0:1C:42:BF:C6:40:EA:9E:77:A9:65:DE:33:C4:05:BC:88:2C:A8
    Fingerprint (SHA1):
        FD:66:F6:D5:31:83:15:68:1E:D7:46:3A:92:15:8D:D5:2A:16:53:28
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7060: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7061: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155645 (0x3cdd993d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 16:00:51 2017
            Not After : Fri Oct 21 16:00:51 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:08:94:9b:f7:31:1e:d9:3c:e1:1a:12:15:58:d0:1d:
                    e6:12:42:75:44:44:0c:74:12:6b:83:67:13:c5:f1:88:
                    c4:4c:6b:e1:28:76:47:ae:81:92:d8:38:86:40:1f:f6:
                    04:49:6e:fc:e8:c8:f8:71:12:5b:f1:52:7b:af:ff:f9:
                    a6:f1:29:d2:77:94:19:82:a9:6e:86:b6:cc:34:69:8a:
                    e5:ac:c1:c3:5b:65:b1:92:03:b6:16:c9:c0:5a:80:8c:
                    fc:3a:08:26:68:9a:ab:7a:11:e3:3e:9c:82:eb:46:d8:
                    3b:28:db:ca:61:64:6b:03:58:5b:4e:70:76:83:4e:d9:
                    5e:b6:2f:5b:67:ea:c2:fa:80:61:b4:2b:1b:19:a5:50:
                    bb:11:ec:8b:87:f7:52:04:0f:88:30:43:a0:69:db:3a:
                    71:06:04:32:2f:99:d3:ec:3f:ad:ed:e8:16:2a:98:22:
                    2b:75:f0:d1:31:e8:80:4a:c9:08:95:1b:88:b8:8c:0d:
                    fa:29:67:ca:37:fe:07:25:5c:8f:55:fd:76:f2:03:37:
                    47:1f:65:dc:53:be:28:22:fa:d7:32:6f:1a:d2:8b:51:
                    88:94:8a:18:9c:33:fa:06:ad:bf:8c:9c:f0:df:7e:b9:
                    c3:41:68:9d:66:61:1d:5e:f8:06:86:95:07:6b:f7:51
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8c:43:f3:85:17:d5:61:64:6c:7f:5c:d5:06:6b:8f:86:
        0a:73:13:cc:c8:a3:77:c4:29:e3:e7:85:0d:66:1b:3d:
        20:dc:c5:73:1b:c7:75:d2:2a:9b:b6:46:af:e5:37:1a:
        03:d5:83:d8:f6:3f:cf:75:02:b9:31:c7:b9:11:d2:11:
        b3:9d:df:cf:53:82:69:66:52:bc:f6:b8:51:8b:14:b2:
        35:77:e1:9a:c9:13:e5:16:03:04:54:e0:43:0f:62:6c:
        52:e1:a4:85:86:0c:d2:1b:bb:9e:49:43:2f:cb:e3:db:
        e6:48:d4:90:d5:12:77:53:32:21:4b:f8:e6:31:78:3e:
        14:01:38:d3:38:71:da:e6:4a:6f:4d:9e:2f:ff:1b:ee:
        69:eb:5c:86:c5:e9:de:23:72:aa:5e:08:37:2a:3a:e4:
        d8:9e:06:6c:b7:0f:7d:4b:21:77:52:00:b4:63:df:51:
        59:a9:8d:39:5e:b6:be:55:90:67:d9:1a:b3:13:7e:e2:
        d8:ca:8e:c8:1d:f5:08:e8:01:ad:d5:39:59:1e:02:3e:
        21:81:e2:f6:33:d2:f7:fc:ec:9b:9e:20:6c:05:70:b7:
        0c:35:1d:5f:ea:26:ab:b7:61:f7:07:50:bb:b6:be:5d:
        67:7d:c9:00:97:e8:d7:47:a4:bd:60:42:e1:c5:cb:a9
    Fingerprint (SHA-256):
        C5:67:4E:F8:28:6A:C2:A8:36:3D:CB:41:B0:48:30:25:FC:68:99:0E:DA:8B:C0:DC:1B:17:63:8F:FC:4C:27:AC
    Fingerprint (SHA1):
        3C:AA:4F:8B:A4:51:D4:F7:FE:72:08:23:A4:C1:64:FA:FC:C6:89:5E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #7062: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7063: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7064: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7065: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7066: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155643 (0x3cdd993b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:00:41 2017
            Not After : Fri Oct 21 16:00:41 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:b0:1c:61:1d:e4:ad:6e:4e:9c:24:5a:70:ed:53:0a:
                    fd:52:18:d0:4d:2a:50:2d:3b:0f:dc:48:08:37:c1:e8:
                    43:0b:7a:6f:b0:62:f0:37:91:8f:de:36:20:00:2a:d8:
                    ca:c1:04:6a:07:5e:da:4b:9a:11:e6:40:d5:a8:a4:7f:
                    f8:8e:b8:5d:ba:f5:5f:ce:28:0f:1a:27:89:dd:ed:2c:
                    73:26:34:dc:9b:4e:a7:7a:4a:42:0b:e1:0c:c8:7d:58:
                    f0:bb:46:d4:11:75:bc:a3:34:37:fc:7b:14:c0:b4:34:
                    b4:28:6d:ba:0b:41:db:e8:22:3f:3c:ce:27:97:7e:be:
                    04:0c:34:39:a4:2f:8e:2b:0a:32:73:01:12:b5:dd:a6:
                    1b:ed:6b:bd:54:1d:8f:37:29:14:fe:2e:6d:9b:3e:76:
                    57:c0:a7:e7:f6:74:9b:55:b2:2a:f0:41:74:95:51:1d:
                    c4:28:46:08:43:50:02:0e:70:6d:56:9d:07:16:a6:54:
                    a2:e2:70:58:c2:24:96:40:62:21:1c:09:c5:36:94:b5:
                    f5:dc:80:eb:13:95:04:c5:4e:0d:7c:65:ae:03:ca:d2:
                    25:7b:e5:79:16:55:b5:f5:11:04:4c:0f:12:a4:df:5e:
                    c6:f8:6a:cc:0c:89:1a:b5:fb:a3:d9:1e:d2:3d:5c:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        49:b9:c7:63:5f:92:cf:9f:76:5e:a8:68:65:eb:65:ca:
        2e:71:e8:1a:8b:b7:87:58:08:ad:2b:ca:fa:f9:51:66:
        2d:bf:15:4c:91:b0:7f:80:39:90:33:23:a5:be:55:cf:
        3a:d1:9d:8a:e6:db:f3:28:72:13:09:ed:4c:3c:f2:f9:
        15:c1:2c:ed:45:d8:1b:fb:6e:87:4b:97:15:18:82:05:
        91:28:62:37:64:94:af:42:f9:4c:f7:af:83:ab:ac:23:
        93:7b:c6:f6:3c:18:cc:75:38:18:ac:18:9f:5a:5b:2f:
        81:c3:2e:b5:09:59:1f:03:0c:49:cf:78:52:ab:0f:f5:
        dd:79:5b:cc:3c:34:99:17:55:5b:73:8d:aa:cc:a9:c4:
        51:c1:ff:0c:82:70:a2:ca:12:55:be:d0:d5:59:21:2f:
        4b:8a:b3:be:76:8a:3e:7f:65:64:d3:1e:65:40:99:04:
        23:c1:88:4a:70:cd:7b:50:5f:f3:33:90:32:e8:cb:f0:
        44:3a:30:e5:67:2b:4c:1a:41:13:3a:54:6f:a9:51:b4:
        e4:1b:67:78:c7:2d:a6:d7:fa:e5:5e:7a:d2:af:72:ae:
        86:f8:19:1e:16:03:c5:3e:68:23:24:5f:e0:1d:12:9a:
        af:0b:65:4e:80:3c:b2:05:09:11:75:93:b1:ad:ea:91
    Fingerprint (SHA-256):
        02:D9:E2:BC:4D:E6:B4:65:51:7A:61:5F:95:3D:71:F2:E6:F9:86:1F:83:40:2D:AB:4B:EF:56:01:51:6D:83:70
    Fingerprint (SHA1):
        D9:59:AA:8F:4B:88:FB:35:08:30:3E:75:61:F8:DE:72:2C:EE:3A:9C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7067: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7068: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155644 (0x3cdd993c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:00:45 2017
            Not After : Fri Oct 21 16:00:45 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:85:ba:7d:be:aa:ea:12:0d:bd:d5:34:e1:bb:68:f9:
                    3a:63:c8:83:b1:7f:cb:18:ff:71:b1:1a:72:8a:68:f8:
                    b6:8e:c7:ba:2a:88:b1:42:3f:ec:b5:5c:b3:4a:9e:01:
                    27:e5:44:29:ce:75:18:b8:03:23:6a:d1:bf:04:79:e3:
                    44:cd:99:85:34:aa:52:56:d8:b3:87:c6:d5:d5:d6:ce:
                    b1:e3:97:5b:67:d2:18:2c:ba:06:79:0b:f3:81:19:36:
                    6e:8e:bc:58:71:4b:27:92:b0:ff:a3:b3:81:d3:fa:ca:
                    0a:b0:21:f9:a0:77:79:0d:3b:83:73:28:d8:a7:52:64:
                    88:2a:e9:93:89:66:e3:08:ea:8b:be:80:f1:76:5f:aa:
                    3e:34:39:8d:11:0e:0a:eb:85:57:11:16:2b:40:9f:f8:
                    c9:09:9b:11:6c:65:fb:aa:4e:74:82:b0:27:41:07:0e:
                    e7:1d:dd:31:93:44:a0:2d:f4:fd:19:b2:e7:78:e9:cb:
                    37:b3:f7:3d:36:c2:b3:ea:36:1b:59:6d:fb:31:71:4a:
                    a5:fa:dc:44:22:e1:e2:23:7b:1e:97:7e:19:98:fd:45:
                    e7:91:09:32:ab:2b:cd:a3:b2:6b:aa:be:e6:9f:83:ba:
                    70:c5:87:00:18:61:12:01:7e:69:57:98:b2:85:4b:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        78:31:03:32:7b:cb:25:26:30:3b:9c:73:89:e5:2f:a5:
        42:77:bb:36:66:9a:a5:2c:be:b4:13:54:6a:cb:89:bb:
        8e:d8:01:e9:d6:65:0c:79:75:de:ea:0a:5f:9c:f9:57:
        f3:87:62:a8:81:c2:91:a1:be:77:8b:79:cf:45:d9:de:
        bf:55:e5:67:10:42:2d:71:44:1b:4f:a3:f4:81:36:5c:
        14:e5:3d:d7:78:ba:c7:3d:8a:e9:bd:72:06:9b:cd:25:
        05:19:b1:45:d7:38:37:cc:7c:18:9e:57:51:fb:ab:1f:
        c9:21:4f:9f:37:01:15:56:8f:1b:67:d7:7c:2a:a9:5f:
        7e:66:39:c6:cd:4f:ad:40:de:fa:00:e4:fb:89:fe:b4:
        b8:4c:6c:d8:65:b2:bb:b8:05:fe:6c:e0:95:85:ea:e4:
        21:7a:d7:c8:8a:07:19:b8:40:1d:1a:1d:6f:21:ac:93:
        61:d4:ce:46:11:74:95:5e:78:18:69:5e:fa:64:e1:e4:
        2f:8d:f4:7f:19:7f:86:c2:ef:32:b7:d1:2b:12:76:90:
        06:ce:26:a6:0d:96:6c:68:e7:24:0b:11:78:68:a9:8f:
        e8:d1:3c:15:49:f8:5a:54:d7:af:a0:31:f1:d3:f3:08:
        fa:be:bd:0a:cb:1c:14:1a:88:29:49:5d:f3:9a:0f:c1
    Fingerprint (SHA-256):
        31:80:6B:65:8B:30:33:1C:6D:8A:94:B2:2B:E0:1C:42:BF:C6:40:EA:9E:77:A9:65:DE:33:C4:05:BC:88:2C:A8
    Fingerprint (SHA1):
        FD:66:F6:D5:31:83:15:68:1E:D7:46:3A:92:15:8D:D5:2A:16:53:28
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7069: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7070: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155645 (0x3cdd993d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 16:00:51 2017
            Not After : Fri Oct 21 16:00:51 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:08:94:9b:f7:31:1e:d9:3c:e1:1a:12:15:58:d0:1d:
                    e6:12:42:75:44:44:0c:74:12:6b:83:67:13:c5:f1:88:
                    c4:4c:6b:e1:28:76:47:ae:81:92:d8:38:86:40:1f:f6:
                    04:49:6e:fc:e8:c8:f8:71:12:5b:f1:52:7b:af:ff:f9:
                    a6:f1:29:d2:77:94:19:82:a9:6e:86:b6:cc:34:69:8a:
                    e5:ac:c1:c3:5b:65:b1:92:03:b6:16:c9:c0:5a:80:8c:
                    fc:3a:08:26:68:9a:ab:7a:11:e3:3e:9c:82:eb:46:d8:
                    3b:28:db:ca:61:64:6b:03:58:5b:4e:70:76:83:4e:d9:
                    5e:b6:2f:5b:67:ea:c2:fa:80:61:b4:2b:1b:19:a5:50:
                    bb:11:ec:8b:87:f7:52:04:0f:88:30:43:a0:69:db:3a:
                    71:06:04:32:2f:99:d3:ec:3f:ad:ed:e8:16:2a:98:22:
                    2b:75:f0:d1:31:e8:80:4a:c9:08:95:1b:88:b8:8c:0d:
                    fa:29:67:ca:37:fe:07:25:5c:8f:55:fd:76:f2:03:37:
                    47:1f:65:dc:53:be:28:22:fa:d7:32:6f:1a:d2:8b:51:
                    88:94:8a:18:9c:33:fa:06:ad:bf:8c:9c:f0:df:7e:b9:
                    c3:41:68:9d:66:61:1d:5e:f8:06:86:95:07:6b:f7:51
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8c:43:f3:85:17:d5:61:64:6c:7f:5c:d5:06:6b:8f:86:
        0a:73:13:cc:c8:a3:77:c4:29:e3:e7:85:0d:66:1b:3d:
        20:dc:c5:73:1b:c7:75:d2:2a:9b:b6:46:af:e5:37:1a:
        03:d5:83:d8:f6:3f:cf:75:02:b9:31:c7:b9:11:d2:11:
        b3:9d:df:cf:53:82:69:66:52:bc:f6:b8:51:8b:14:b2:
        35:77:e1:9a:c9:13:e5:16:03:04:54:e0:43:0f:62:6c:
        52:e1:a4:85:86:0c:d2:1b:bb:9e:49:43:2f:cb:e3:db:
        e6:48:d4:90:d5:12:77:53:32:21:4b:f8:e6:31:78:3e:
        14:01:38:d3:38:71:da:e6:4a:6f:4d:9e:2f:ff:1b:ee:
        69:eb:5c:86:c5:e9:de:23:72:aa:5e:08:37:2a:3a:e4:
        d8:9e:06:6c:b7:0f:7d:4b:21:77:52:00:b4:63:df:51:
        59:a9:8d:39:5e:b6:be:55:90:67:d9:1a:b3:13:7e:e2:
        d8:ca:8e:c8:1d:f5:08:e8:01:ad:d5:39:59:1e:02:3e:
        21:81:e2:f6:33:d2:f7:fc:ec:9b:9e:20:6c:05:70:b7:
        0c:35:1d:5f:ea:26:ab:b7:61:f7:07:50:bb:b6:be:5d:
        67:7d:c9:00:97:e8:d7:47:a4:bd:60:42:e1:c5:cb:a9
    Fingerprint (SHA-256):
        C5:67:4E:F8:28:6A:C2:A8:36:3D:CB:41:B0:48:30:25:FC:68:99:0E:DA:8B:C0:DC:1B:17:63:8F:FC:4C:27:AC
    Fingerprint (SHA1):
        3C:AA:4F:8B:A4:51:D4:F7:FE:72:08:23:A4:C1:64:FA:FC:C6:89:5E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #7071: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7072: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7073: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155647 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7074: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7075: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7076: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7077: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021155648   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7078: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7079: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7080: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7081: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021155649   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7082: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7083: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #7084: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7085: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 1021155650   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7086: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7087: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #7088: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7089: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 1021155651   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7090: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7091: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7092: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155647 (0x3cdd993f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:01:12 2017
            Not After : Fri Oct 21 16:01:12 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:01:0a:81:e8:a2:00:03:8f:e5:90:d1:c0:e0:7b:82:
                    12:62:fb:5a:e6:97:c4:5c:79:0d:d6:77:9a:c9:8d:40:
                    a8:87:ae:d1:d5:31:74:70:5a:dd:a2:6b:b8:8f:81:22:
                    c3:0e:0c:f8:00:04:32:1c:ba:f2:b8:87:65:99:7e:78:
                    35:3c:1a:66:13:e3:f6:2d:19:e6:1d:04:15:96:1f:44:
                    70:c0:c1:e9:15:e8:9e:bf:96:90:b6:dc:7f:01:52:13:
                    62:0c:87:c3:fe:46:9a:9b:2b:5f:1e:36:27:2e:0a:7d:
                    0c:7f:e1:c4:ca:ef:3a:28:6d:6d:39:c4:80:6a:2e:1c:
                    df:ec:1f:ed:93:61:64:7a:0d:b3:4a:8a:dd:94:36:fb:
                    53:4e:47:51:aa:88:11:9c:fd:f5:83:39:a6:ab:e4:1e:
                    94:47:14:04:7d:5b:9d:48:89:15:c1:63:99:41:5a:a8:
                    e2:88:d8:40:28:6d:02:ff:f0:93:96:e9:6e:e4:ce:57:
                    4e:9f:4e:49:44:8c:d5:a5:89:40:95:e9:76:b3:9f:fd:
                    47:3a:9d:f7:a4:0f:94:13:1f:06:0f:0c:62:23:80:ba:
                    93:e4:03:a4:18:da:bb:81:0f:8d:55:5a:e7:b8:3e:ec:
                    c5:78:c1:5e:5a:e8:75:e4:1c:af:cb:dd:fe:b6:ef:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b6:92:ed:9d:e9:ee:93:25:ca:69:d2:d6:4a:27:d3:4c:
        f2:ef:e8:1b:3d:9e:51:c6:8f:11:8a:1c:50:81:58:82:
        24:f0:fa:a9:d9:81:47:bf:50:e4:72:db:cf:45:ba:1c:
        e1:54:2b:50:ea:c8:53:aa:a7:c0:ed:40:f7:fa:95:9a:
        75:0b:e6:6b:c5:f8:a4:bd:c2:84:4e:a0:06:03:b3:a7:
        73:07:f7:3b:4d:70:fb:94:a7:cc:9a:4f:e8:09:a1:5b:
        72:3b:8d:3a:fb:0b:da:bf:cd:19:1c:15:86:b7:0e:73:
        57:94:17:e4:84:6a:24:d4:52:04:59:ad:1d:46:23:5f:
        b2:0a:24:99:22:99:95:61:36:cb:28:a8:5c:54:51:4a:
        e9:85:81:37:55:b2:be:e8:60:3e:5b:1a:73:fa:3c:33:
        5a:26:71:ff:4b:d9:47:9e:09:1b:32:30:8f:e2:5c:ae:
        37:3e:ed:2e:10:4c:b8:a8:41:99:5b:2a:99:34:6d:fa:
        71:fd:0f:c5:d1:ae:73:64:a8:49:8a:70:55:01:aa:4b:
        f7:26:d0:50:3b:8e:c3:9c:83:20:64:35:a5:16:3f:bd:
        1d:7b:8f:b0:19:25:1d:46:9f:72:18:8f:81:93:6a:a4:
        b8:e0:08:18:53:60:24:f2:bf:92:2b:97:4c:a0:77:cb
    Fingerprint (SHA-256):
        F0:43:8D:DD:2D:53:18:71:A7:10:01:01:A1:09:4F:A3:FD:59:BF:7E:90:80:84:F2:2C:9F:9A:62:7A:31:AF:DD
    Fingerprint (SHA1):
        83:B2:F5:56:8C:7D:1A:2A:30:1A:15:D6:57:41:8B:4D:DE:02:7A:5C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7093: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7094: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155648 (0x3cdd9940)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:01:16 2017
            Not After : Fri Oct 21 16:01:16 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:72:9d:62:56:ac:7f:03:e3:92:fc:eb:8f:09:27:68:
                    5a:8e:28:37:47:4e:d3:be:e7:c2:3b:9d:7b:96:0a:8f:
                    fc:47:ef:92:b0:b8:40:19:4f:90:ae:8a:95:84:f8:1b:
                    83:d5:18:7d:6b:0a:a0:9f:68:4b:b8:ef:34:a8:57:bd:
                    cf:46:74:ee:c6:4d:8b:81:fb:9e:1d:77:25:57:cb:ce:
                    55:84:ba:2c:c9:15:64:64:aa:1f:36:cb:f5:0f:84:53:
                    9a:ed:9b:de:4a:29:87:07:a8:5d:41:d8:f6:3d:88:07:
                    b1:63:c0:5f:07:6e:41:b6:97:14:c1:b6:ec:8d:f7:c0:
                    b9:4f:81:76:35:01:14:1e:1b:d2:09:53:05:a2:b1:6c:
                    39:ae:42:34:d6:6d:af:e0:ae:86:15:35:94:65:17:de:
                    46:b1:fc:e4:a2:24:1f:47:28:16:42:69:fd:bc:f3:41:
                    d9:b7:ce:8d:1e:08:5c:73:d6:77:36:e7:7d:83:e0:80:
                    71:05:c1:71:e4:6c:db:34:2c:99:3a:6a:be:9b:05:8a:
                    f3:18:01:40:18:df:d9:c6:74:47:ee:90:d0:69:ce:8d:
                    34:28:6d:05:c1:15:5a:ae:7a:03:44:05:22:7d:17:44:
                    d9:c8:57:63:c8:69:79:55:f7:74:f3:72:79:a5:96:e5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        83:32:ae:af:55:54:d6:f0:fa:6c:fb:c0:69:71:98:9b:
        58:a2:5c:a6:cc:b6:f8:97:98:2f:cf:f1:c6:4f:f6:f1:
        cd:57:74:eb:58:67:ef:7e:8d:3d:20:1a:c5:63:7d:3c:
        7f:d0:98:48:c2:90:b2:01:1c:ba:34:4c:fc:81:1c:5c:
        cc:33:35:e9:8c:0f:5f:e5:5d:72:bd:a8:66:08:aa:45:
        6b:b0:9c:c2:77:2e:7c:1b:76:a3:c3:83:cc:89:d0:61:
        ec:9a:53:68:47:bc:3a:f7:28:7c:1c:bc:74:c9:05:78:
        86:da:bc:3d:4e:a6:de:ce:25:0f:f2:38:27:39:a7:7d:
        29:bd:5b:02:40:8e:c3:f4:c2:9c:ea:b5:1e:4c:93:4d:
        3b:ee:e5:07:81:4d:e0:01:e9:8f:a6:3a:03:53:5e:77:
        6b:a4:fd:43:3d:3a:0d:26:10:7c:b0:1d:93:4d:71:02:
        17:80:a6:e9:20:f6:75:2b:e5:55:0f:64:c6:ab:cc:47:
        03:1f:45:f2:69:2f:45:dc:e3:cc:eb:ff:c3:08:d7:b6:
        2c:1d:c3:80:6b:20:f1:96:ea:8a:91:df:c7:ca:3d:0b:
        e0:41:e6:1b:b8:3b:e0:7c:96:9f:8b:c1:03:b7:7f:80:
        44:30:70:df:58:3b:9f:d9:50:5f:22:1b:ff:6c:7d:ba
    Fingerprint (SHA-256):
        F2:5F:E1:A0:C5:D6:B9:F3:9E:88:64:16:32:F8:59:4A:D1:AC:D9:5E:D8:C8:3E:10:D1:91:F7:72:8F:A6:26:A3
    Fingerprint (SHA1):
        55:05:D2:26:82:A3:CF:B4:5D:D9:C5:77:55:52:E9:AF:C1:01:68:C0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7095: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7096: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155649 (0x3cdd9941)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 16:01:21 2017
            Not After : Fri Oct 21 16:01:21 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:9e:dc:60:a4:8a:26:30:fc:5f:f2:cb:55:a7:4a:f4:
                    c2:3c:23:1b:ee:e2:76:3a:d9:9e:27:3b:ee:8e:43:2a:
                    a1:73:74:23:c7:70:38:19:1f:89:6b:81:42:6b:f7:e9:
                    a3:ac:ef:21:ae:f7:39:9f:59:69:62:cb:97:29:2c:27:
                    bd:8e:f7:97:55:12:fd:f5:b7:93:8c:46:72:82:37:7b:
                    81:8f:53:25:39:b5:42:a0:d6:54:34:06:35:38:6b:c2:
                    03:e1:fe:af:9a:b6:dc:d7:a9:35:f2:77:be:71:73:c8:
                    88:4e:be:e7:54:d3:0c:4f:83:2d:74:1e:31:8c:79:36:
                    47:78:0e:39:c9:9d:06:c4:ae:e7:25:2f:19:d9:f5:ec:
                    22:72:c9:15:07:c8:7c:56:fc:3b:97:6b:26:be:ec:48:
                    48:0f:2b:4a:6a:66:88:d4:5f:a0:40:b6:09:ec:ba:ed:
                    2d:0f:52:27:30:b2:38:85:0b:da:8f:ac:b4:29:2a:aa:
                    d7:2b:09:91:45:6a:9b:36:51:41:05:f3:9a:70:87:d3:
                    bc:ae:20:30:e0:de:3c:ed:d0:c1:7b:4e:97:f8:f7:9a:
                    d3:0d:ac:f6:5f:bc:fd:1f:7f:e0:28:0a:56:f8:bc:e1:
                    c3:62:31:8e:ee:f2:bc:1e:e7:6d:35:22:18:07:7b:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        af:91:c2:8e:6e:57:25:e4:5f:95:76:f1:86:5b:fe:9f:
        db:85:39:d8:5d:06:b8:ba:ea:c4:2f:55:9e:9d:79:4c:
        68:d9:0c:62:42:98:32:d2:e3:9b:93:56:32:cf:35:7f:
        d5:01:60:8b:59:90:c1:11:75:bb:48:f3:53:1c:3b:20:
        ec:2f:f3:04:00:c1:5d:20:ab:4e:ad:05:86:7e:07:08:
        b3:66:29:79:01:c7:c9:42:d2:89:8e:00:cb:ec:03:af:
        82:6c:92:e0:10:a6:98:8f:3d:24:55:31:71:ef:f2:55:
        5a:71:55:df:a7:ca:b0:fc:58:5a:ca:34:57:a9:43:bb:
        a6:dc:14:ce:d9:85:06:a0:54:a7:56:fb:ed:49:e0:ad:
        ca:fa:0a:c6:aa:38:e6:d9:f7:37:c3:7c:8f:ad:7b:aa:
        94:d3:7b:43:45:e5:c5:fc:07:ea:01:34:d2:f1:3d:f2:
        f0:b1:b2:8e:c2:4a:31:c2:20:33:f4:13:75:ef:c3:7a:
        b5:05:0f:69:a1:7f:43:31:3c:20:1d:93:5c:34:b5:44:
        e2:58:ba:e2:18:3d:85:21:3d:1a:df:44:3e:57:da:be:
        c9:44:c1:4f:2a:ac:b1:ce:29:84:2c:52:2e:39:02:53:
        0e:78:00:3f:00:bc:23:5b:04:c4:a7:b6:d7:2e:d8:7f
    Fingerprint (SHA-256):
        9C:6D:54:82:24:4D:1F:E7:44:FA:FA:1D:3D:07:28:D7:FF:E4:0E:09:B9:2E:0A:1A:95:AC:9A:70:82:AF:9F:2F
    Fingerprint (SHA1):
        80:E7:6D:4B:16:32:CF:45:38:0B:35:64:BE:64:97:9D:40:56:28:68
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7097: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7098: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7099: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7100: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7101: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155647 (0x3cdd993f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:01:12 2017
            Not After : Fri Oct 21 16:01:12 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:01:0a:81:e8:a2:00:03:8f:e5:90:d1:c0:e0:7b:82:
                    12:62:fb:5a:e6:97:c4:5c:79:0d:d6:77:9a:c9:8d:40:
                    a8:87:ae:d1:d5:31:74:70:5a:dd:a2:6b:b8:8f:81:22:
                    c3:0e:0c:f8:00:04:32:1c:ba:f2:b8:87:65:99:7e:78:
                    35:3c:1a:66:13:e3:f6:2d:19:e6:1d:04:15:96:1f:44:
                    70:c0:c1:e9:15:e8:9e:bf:96:90:b6:dc:7f:01:52:13:
                    62:0c:87:c3:fe:46:9a:9b:2b:5f:1e:36:27:2e:0a:7d:
                    0c:7f:e1:c4:ca:ef:3a:28:6d:6d:39:c4:80:6a:2e:1c:
                    df:ec:1f:ed:93:61:64:7a:0d:b3:4a:8a:dd:94:36:fb:
                    53:4e:47:51:aa:88:11:9c:fd:f5:83:39:a6:ab:e4:1e:
                    94:47:14:04:7d:5b:9d:48:89:15:c1:63:99:41:5a:a8:
                    e2:88:d8:40:28:6d:02:ff:f0:93:96:e9:6e:e4:ce:57:
                    4e:9f:4e:49:44:8c:d5:a5:89:40:95:e9:76:b3:9f:fd:
                    47:3a:9d:f7:a4:0f:94:13:1f:06:0f:0c:62:23:80:ba:
                    93:e4:03:a4:18:da:bb:81:0f:8d:55:5a:e7:b8:3e:ec:
                    c5:78:c1:5e:5a:e8:75:e4:1c:af:cb:dd:fe:b6:ef:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b6:92:ed:9d:e9:ee:93:25:ca:69:d2:d6:4a:27:d3:4c:
        f2:ef:e8:1b:3d:9e:51:c6:8f:11:8a:1c:50:81:58:82:
        24:f0:fa:a9:d9:81:47:bf:50:e4:72:db:cf:45:ba:1c:
        e1:54:2b:50:ea:c8:53:aa:a7:c0:ed:40:f7:fa:95:9a:
        75:0b:e6:6b:c5:f8:a4:bd:c2:84:4e:a0:06:03:b3:a7:
        73:07:f7:3b:4d:70:fb:94:a7:cc:9a:4f:e8:09:a1:5b:
        72:3b:8d:3a:fb:0b:da:bf:cd:19:1c:15:86:b7:0e:73:
        57:94:17:e4:84:6a:24:d4:52:04:59:ad:1d:46:23:5f:
        b2:0a:24:99:22:99:95:61:36:cb:28:a8:5c:54:51:4a:
        e9:85:81:37:55:b2:be:e8:60:3e:5b:1a:73:fa:3c:33:
        5a:26:71:ff:4b:d9:47:9e:09:1b:32:30:8f:e2:5c:ae:
        37:3e:ed:2e:10:4c:b8:a8:41:99:5b:2a:99:34:6d:fa:
        71:fd:0f:c5:d1:ae:73:64:a8:49:8a:70:55:01:aa:4b:
        f7:26:d0:50:3b:8e:c3:9c:83:20:64:35:a5:16:3f:bd:
        1d:7b:8f:b0:19:25:1d:46:9f:72:18:8f:81:93:6a:a4:
        b8:e0:08:18:53:60:24:f2:bf:92:2b:97:4c:a0:77:cb
    Fingerprint (SHA-256):
        F0:43:8D:DD:2D:53:18:71:A7:10:01:01:A1:09:4F:A3:FD:59:BF:7E:90:80:84:F2:2C:9F:9A:62:7A:31:AF:DD
    Fingerprint (SHA1):
        83:B2:F5:56:8C:7D:1A:2A:30:1A:15:D6:57:41:8B:4D:DE:02:7A:5C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7102: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7103: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155648 (0x3cdd9940)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:01:16 2017
            Not After : Fri Oct 21 16:01:16 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:72:9d:62:56:ac:7f:03:e3:92:fc:eb:8f:09:27:68:
                    5a:8e:28:37:47:4e:d3:be:e7:c2:3b:9d:7b:96:0a:8f:
                    fc:47:ef:92:b0:b8:40:19:4f:90:ae:8a:95:84:f8:1b:
                    83:d5:18:7d:6b:0a:a0:9f:68:4b:b8:ef:34:a8:57:bd:
                    cf:46:74:ee:c6:4d:8b:81:fb:9e:1d:77:25:57:cb:ce:
                    55:84:ba:2c:c9:15:64:64:aa:1f:36:cb:f5:0f:84:53:
                    9a:ed:9b:de:4a:29:87:07:a8:5d:41:d8:f6:3d:88:07:
                    b1:63:c0:5f:07:6e:41:b6:97:14:c1:b6:ec:8d:f7:c0:
                    b9:4f:81:76:35:01:14:1e:1b:d2:09:53:05:a2:b1:6c:
                    39:ae:42:34:d6:6d:af:e0:ae:86:15:35:94:65:17:de:
                    46:b1:fc:e4:a2:24:1f:47:28:16:42:69:fd:bc:f3:41:
                    d9:b7:ce:8d:1e:08:5c:73:d6:77:36:e7:7d:83:e0:80:
                    71:05:c1:71:e4:6c:db:34:2c:99:3a:6a:be:9b:05:8a:
                    f3:18:01:40:18:df:d9:c6:74:47:ee:90:d0:69:ce:8d:
                    34:28:6d:05:c1:15:5a:ae:7a:03:44:05:22:7d:17:44:
                    d9:c8:57:63:c8:69:79:55:f7:74:f3:72:79:a5:96:e5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        83:32:ae:af:55:54:d6:f0:fa:6c:fb:c0:69:71:98:9b:
        58:a2:5c:a6:cc:b6:f8:97:98:2f:cf:f1:c6:4f:f6:f1:
        cd:57:74:eb:58:67:ef:7e:8d:3d:20:1a:c5:63:7d:3c:
        7f:d0:98:48:c2:90:b2:01:1c:ba:34:4c:fc:81:1c:5c:
        cc:33:35:e9:8c:0f:5f:e5:5d:72:bd:a8:66:08:aa:45:
        6b:b0:9c:c2:77:2e:7c:1b:76:a3:c3:83:cc:89:d0:61:
        ec:9a:53:68:47:bc:3a:f7:28:7c:1c:bc:74:c9:05:78:
        86:da:bc:3d:4e:a6:de:ce:25:0f:f2:38:27:39:a7:7d:
        29:bd:5b:02:40:8e:c3:f4:c2:9c:ea:b5:1e:4c:93:4d:
        3b:ee:e5:07:81:4d:e0:01:e9:8f:a6:3a:03:53:5e:77:
        6b:a4:fd:43:3d:3a:0d:26:10:7c:b0:1d:93:4d:71:02:
        17:80:a6:e9:20:f6:75:2b:e5:55:0f:64:c6:ab:cc:47:
        03:1f:45:f2:69:2f:45:dc:e3:cc:eb:ff:c3:08:d7:b6:
        2c:1d:c3:80:6b:20:f1:96:ea:8a:91:df:c7:ca:3d:0b:
        e0:41:e6:1b:b8:3b:e0:7c:96:9f:8b:c1:03:b7:7f:80:
        44:30:70:df:58:3b:9f:d9:50:5f:22:1b:ff:6c:7d:ba
    Fingerprint (SHA-256):
        F2:5F:E1:A0:C5:D6:B9:F3:9E:88:64:16:32:F8:59:4A:D1:AC:D9:5E:D8:C8:3E:10:D1:91:F7:72:8F:A6:26:A3
    Fingerprint (SHA1):
        55:05:D2:26:82:A3:CF:B4:5D:D9:C5:77:55:52:E9:AF:C1:01:68:C0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7104: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7105: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155649 (0x3cdd9941)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 16:01:21 2017
            Not After : Fri Oct 21 16:01:21 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:9e:dc:60:a4:8a:26:30:fc:5f:f2:cb:55:a7:4a:f4:
                    c2:3c:23:1b:ee:e2:76:3a:d9:9e:27:3b:ee:8e:43:2a:
                    a1:73:74:23:c7:70:38:19:1f:89:6b:81:42:6b:f7:e9:
                    a3:ac:ef:21:ae:f7:39:9f:59:69:62:cb:97:29:2c:27:
                    bd:8e:f7:97:55:12:fd:f5:b7:93:8c:46:72:82:37:7b:
                    81:8f:53:25:39:b5:42:a0:d6:54:34:06:35:38:6b:c2:
                    03:e1:fe:af:9a:b6:dc:d7:a9:35:f2:77:be:71:73:c8:
                    88:4e:be:e7:54:d3:0c:4f:83:2d:74:1e:31:8c:79:36:
                    47:78:0e:39:c9:9d:06:c4:ae:e7:25:2f:19:d9:f5:ec:
                    22:72:c9:15:07:c8:7c:56:fc:3b:97:6b:26:be:ec:48:
                    48:0f:2b:4a:6a:66:88:d4:5f:a0:40:b6:09:ec:ba:ed:
                    2d:0f:52:27:30:b2:38:85:0b:da:8f:ac:b4:29:2a:aa:
                    d7:2b:09:91:45:6a:9b:36:51:41:05:f3:9a:70:87:d3:
                    bc:ae:20:30:e0:de:3c:ed:d0:c1:7b:4e:97:f8:f7:9a:
                    d3:0d:ac:f6:5f:bc:fd:1f:7f:e0:28:0a:56:f8:bc:e1:
                    c3:62:31:8e:ee:f2:bc:1e:e7:6d:35:22:18:07:7b:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        af:91:c2:8e:6e:57:25:e4:5f:95:76:f1:86:5b:fe:9f:
        db:85:39:d8:5d:06:b8:ba:ea:c4:2f:55:9e:9d:79:4c:
        68:d9:0c:62:42:98:32:d2:e3:9b:93:56:32:cf:35:7f:
        d5:01:60:8b:59:90:c1:11:75:bb:48:f3:53:1c:3b:20:
        ec:2f:f3:04:00:c1:5d:20:ab:4e:ad:05:86:7e:07:08:
        b3:66:29:79:01:c7:c9:42:d2:89:8e:00:cb:ec:03:af:
        82:6c:92:e0:10:a6:98:8f:3d:24:55:31:71:ef:f2:55:
        5a:71:55:df:a7:ca:b0:fc:58:5a:ca:34:57:a9:43:bb:
        a6:dc:14:ce:d9:85:06:a0:54:a7:56:fb:ed:49:e0:ad:
        ca:fa:0a:c6:aa:38:e6:d9:f7:37:c3:7c:8f:ad:7b:aa:
        94:d3:7b:43:45:e5:c5:fc:07:ea:01:34:d2:f1:3d:f2:
        f0:b1:b2:8e:c2:4a:31:c2:20:33:f4:13:75:ef:c3:7a:
        b5:05:0f:69:a1:7f:43:31:3c:20:1d:93:5c:34:b5:44:
        e2:58:ba:e2:18:3d:85:21:3d:1a:df:44:3e:57:da:be:
        c9:44:c1:4f:2a:ac:b1:ce:29:84:2c:52:2e:39:02:53:
        0e:78:00:3f:00:bc:23:5b:04:c4:a7:b6:d7:2e:d8:7f
    Fingerprint (SHA-256):
        9C:6D:54:82:24:4D:1F:E7:44:FA:FA:1D:3D:07:28:D7:FF:E4:0E:09:B9:2E:0A:1A:95:AC:9A:70:82:AF:9F:2F
    Fingerprint (SHA1):
        80:E7:6D:4B:16:32:CF:45:38:0B:35:64:BE:64:97:9D:40:56:28:68
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7106: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7107: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155647 (0x3cdd993f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:01:12 2017
            Not After : Fri Oct 21 16:01:12 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:01:0a:81:e8:a2:00:03:8f:e5:90:d1:c0:e0:7b:82:
                    12:62:fb:5a:e6:97:c4:5c:79:0d:d6:77:9a:c9:8d:40:
                    a8:87:ae:d1:d5:31:74:70:5a:dd:a2:6b:b8:8f:81:22:
                    c3:0e:0c:f8:00:04:32:1c:ba:f2:b8:87:65:99:7e:78:
                    35:3c:1a:66:13:e3:f6:2d:19:e6:1d:04:15:96:1f:44:
                    70:c0:c1:e9:15:e8:9e:bf:96:90:b6:dc:7f:01:52:13:
                    62:0c:87:c3:fe:46:9a:9b:2b:5f:1e:36:27:2e:0a:7d:
                    0c:7f:e1:c4:ca:ef:3a:28:6d:6d:39:c4:80:6a:2e:1c:
                    df:ec:1f:ed:93:61:64:7a:0d:b3:4a:8a:dd:94:36:fb:
                    53:4e:47:51:aa:88:11:9c:fd:f5:83:39:a6:ab:e4:1e:
                    94:47:14:04:7d:5b:9d:48:89:15:c1:63:99:41:5a:a8:
                    e2:88:d8:40:28:6d:02:ff:f0:93:96:e9:6e:e4:ce:57:
                    4e:9f:4e:49:44:8c:d5:a5:89:40:95:e9:76:b3:9f:fd:
                    47:3a:9d:f7:a4:0f:94:13:1f:06:0f:0c:62:23:80:ba:
                    93:e4:03:a4:18:da:bb:81:0f:8d:55:5a:e7:b8:3e:ec:
                    c5:78:c1:5e:5a:e8:75:e4:1c:af:cb:dd:fe:b6:ef:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b6:92:ed:9d:e9:ee:93:25:ca:69:d2:d6:4a:27:d3:4c:
        f2:ef:e8:1b:3d:9e:51:c6:8f:11:8a:1c:50:81:58:82:
        24:f0:fa:a9:d9:81:47:bf:50:e4:72:db:cf:45:ba:1c:
        e1:54:2b:50:ea:c8:53:aa:a7:c0:ed:40:f7:fa:95:9a:
        75:0b:e6:6b:c5:f8:a4:bd:c2:84:4e:a0:06:03:b3:a7:
        73:07:f7:3b:4d:70:fb:94:a7:cc:9a:4f:e8:09:a1:5b:
        72:3b:8d:3a:fb:0b:da:bf:cd:19:1c:15:86:b7:0e:73:
        57:94:17:e4:84:6a:24:d4:52:04:59:ad:1d:46:23:5f:
        b2:0a:24:99:22:99:95:61:36:cb:28:a8:5c:54:51:4a:
        e9:85:81:37:55:b2:be:e8:60:3e:5b:1a:73:fa:3c:33:
        5a:26:71:ff:4b:d9:47:9e:09:1b:32:30:8f:e2:5c:ae:
        37:3e:ed:2e:10:4c:b8:a8:41:99:5b:2a:99:34:6d:fa:
        71:fd:0f:c5:d1:ae:73:64:a8:49:8a:70:55:01:aa:4b:
        f7:26:d0:50:3b:8e:c3:9c:83:20:64:35:a5:16:3f:bd:
        1d:7b:8f:b0:19:25:1d:46:9f:72:18:8f:81:93:6a:a4:
        b8:e0:08:18:53:60:24:f2:bf:92:2b:97:4c:a0:77:cb
    Fingerprint (SHA-256):
        F0:43:8D:DD:2D:53:18:71:A7:10:01:01:A1:09:4F:A3:FD:59:BF:7E:90:80:84:F2:2C:9F:9A:62:7A:31:AF:DD
    Fingerprint (SHA1):
        83:B2:F5:56:8C:7D:1A:2A:30:1A:15:D6:57:41:8B:4D:DE:02:7A:5C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7108: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155647 (0x3cdd993f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:01:12 2017
            Not After : Fri Oct 21 16:01:12 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:01:0a:81:e8:a2:00:03:8f:e5:90:d1:c0:e0:7b:82:
                    12:62:fb:5a:e6:97:c4:5c:79:0d:d6:77:9a:c9:8d:40:
                    a8:87:ae:d1:d5:31:74:70:5a:dd:a2:6b:b8:8f:81:22:
                    c3:0e:0c:f8:00:04:32:1c:ba:f2:b8:87:65:99:7e:78:
                    35:3c:1a:66:13:e3:f6:2d:19:e6:1d:04:15:96:1f:44:
                    70:c0:c1:e9:15:e8:9e:bf:96:90:b6:dc:7f:01:52:13:
                    62:0c:87:c3:fe:46:9a:9b:2b:5f:1e:36:27:2e:0a:7d:
                    0c:7f:e1:c4:ca:ef:3a:28:6d:6d:39:c4:80:6a:2e:1c:
                    df:ec:1f:ed:93:61:64:7a:0d:b3:4a:8a:dd:94:36:fb:
                    53:4e:47:51:aa:88:11:9c:fd:f5:83:39:a6:ab:e4:1e:
                    94:47:14:04:7d:5b:9d:48:89:15:c1:63:99:41:5a:a8:
                    e2:88:d8:40:28:6d:02:ff:f0:93:96:e9:6e:e4:ce:57:
                    4e:9f:4e:49:44:8c:d5:a5:89:40:95:e9:76:b3:9f:fd:
                    47:3a:9d:f7:a4:0f:94:13:1f:06:0f:0c:62:23:80:ba:
                    93:e4:03:a4:18:da:bb:81:0f:8d:55:5a:e7:b8:3e:ec:
                    c5:78:c1:5e:5a:e8:75:e4:1c:af:cb:dd:fe:b6:ef:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b6:92:ed:9d:e9:ee:93:25:ca:69:d2:d6:4a:27:d3:4c:
        f2:ef:e8:1b:3d:9e:51:c6:8f:11:8a:1c:50:81:58:82:
        24:f0:fa:a9:d9:81:47:bf:50:e4:72:db:cf:45:ba:1c:
        e1:54:2b:50:ea:c8:53:aa:a7:c0:ed:40:f7:fa:95:9a:
        75:0b:e6:6b:c5:f8:a4:bd:c2:84:4e:a0:06:03:b3:a7:
        73:07:f7:3b:4d:70:fb:94:a7:cc:9a:4f:e8:09:a1:5b:
        72:3b:8d:3a:fb:0b:da:bf:cd:19:1c:15:86:b7:0e:73:
        57:94:17:e4:84:6a:24:d4:52:04:59:ad:1d:46:23:5f:
        b2:0a:24:99:22:99:95:61:36:cb:28:a8:5c:54:51:4a:
        e9:85:81:37:55:b2:be:e8:60:3e:5b:1a:73:fa:3c:33:
        5a:26:71:ff:4b:d9:47:9e:09:1b:32:30:8f:e2:5c:ae:
        37:3e:ed:2e:10:4c:b8:a8:41:99:5b:2a:99:34:6d:fa:
        71:fd:0f:c5:d1:ae:73:64:a8:49:8a:70:55:01:aa:4b:
        f7:26:d0:50:3b:8e:c3:9c:83:20:64:35:a5:16:3f:bd:
        1d:7b:8f:b0:19:25:1d:46:9f:72:18:8f:81:93:6a:a4:
        b8:e0:08:18:53:60:24:f2:bf:92:2b:97:4c:a0:77:cb
    Fingerprint (SHA-256):
        F0:43:8D:DD:2D:53:18:71:A7:10:01:01:A1:09:4F:A3:FD:59:BF:7E:90:80:84:F2:2C:9F:9A:62:7A:31:AF:DD
    Fingerprint (SHA1):
        83:B2:F5:56:8C:7D:1A:2A:30:1A:15:D6:57:41:8B:4D:DE:02:7A:5C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7109: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155648 (0x3cdd9940)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:01:16 2017
            Not After : Fri Oct 21 16:01:16 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:72:9d:62:56:ac:7f:03:e3:92:fc:eb:8f:09:27:68:
                    5a:8e:28:37:47:4e:d3:be:e7:c2:3b:9d:7b:96:0a:8f:
                    fc:47:ef:92:b0:b8:40:19:4f:90:ae:8a:95:84:f8:1b:
                    83:d5:18:7d:6b:0a:a0:9f:68:4b:b8:ef:34:a8:57:bd:
                    cf:46:74:ee:c6:4d:8b:81:fb:9e:1d:77:25:57:cb:ce:
                    55:84:ba:2c:c9:15:64:64:aa:1f:36:cb:f5:0f:84:53:
                    9a:ed:9b:de:4a:29:87:07:a8:5d:41:d8:f6:3d:88:07:
                    b1:63:c0:5f:07:6e:41:b6:97:14:c1:b6:ec:8d:f7:c0:
                    b9:4f:81:76:35:01:14:1e:1b:d2:09:53:05:a2:b1:6c:
                    39:ae:42:34:d6:6d:af:e0:ae:86:15:35:94:65:17:de:
                    46:b1:fc:e4:a2:24:1f:47:28:16:42:69:fd:bc:f3:41:
                    d9:b7:ce:8d:1e:08:5c:73:d6:77:36:e7:7d:83:e0:80:
                    71:05:c1:71:e4:6c:db:34:2c:99:3a:6a:be:9b:05:8a:
                    f3:18:01:40:18:df:d9:c6:74:47:ee:90:d0:69:ce:8d:
                    34:28:6d:05:c1:15:5a:ae:7a:03:44:05:22:7d:17:44:
                    d9:c8:57:63:c8:69:79:55:f7:74:f3:72:79:a5:96:e5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        83:32:ae:af:55:54:d6:f0:fa:6c:fb:c0:69:71:98:9b:
        58:a2:5c:a6:cc:b6:f8:97:98:2f:cf:f1:c6:4f:f6:f1:
        cd:57:74:eb:58:67:ef:7e:8d:3d:20:1a:c5:63:7d:3c:
        7f:d0:98:48:c2:90:b2:01:1c:ba:34:4c:fc:81:1c:5c:
        cc:33:35:e9:8c:0f:5f:e5:5d:72:bd:a8:66:08:aa:45:
        6b:b0:9c:c2:77:2e:7c:1b:76:a3:c3:83:cc:89:d0:61:
        ec:9a:53:68:47:bc:3a:f7:28:7c:1c:bc:74:c9:05:78:
        86:da:bc:3d:4e:a6:de:ce:25:0f:f2:38:27:39:a7:7d:
        29:bd:5b:02:40:8e:c3:f4:c2:9c:ea:b5:1e:4c:93:4d:
        3b:ee:e5:07:81:4d:e0:01:e9:8f:a6:3a:03:53:5e:77:
        6b:a4:fd:43:3d:3a:0d:26:10:7c:b0:1d:93:4d:71:02:
        17:80:a6:e9:20:f6:75:2b:e5:55:0f:64:c6:ab:cc:47:
        03:1f:45:f2:69:2f:45:dc:e3:cc:eb:ff:c3:08:d7:b6:
        2c:1d:c3:80:6b:20:f1:96:ea:8a:91:df:c7:ca:3d:0b:
        e0:41:e6:1b:b8:3b:e0:7c:96:9f:8b:c1:03:b7:7f:80:
        44:30:70:df:58:3b:9f:d9:50:5f:22:1b:ff:6c:7d:ba
    Fingerprint (SHA-256):
        F2:5F:E1:A0:C5:D6:B9:F3:9E:88:64:16:32:F8:59:4A:D1:AC:D9:5E:D8:C8:3E:10:D1:91:F7:72:8F:A6:26:A3
    Fingerprint (SHA1):
        55:05:D2:26:82:A3:CF:B4:5D:D9:C5:77:55:52:E9:AF:C1:01:68:C0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7110: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155648 (0x3cdd9940)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:01:16 2017
            Not After : Fri Oct 21 16:01:16 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:72:9d:62:56:ac:7f:03:e3:92:fc:eb:8f:09:27:68:
                    5a:8e:28:37:47:4e:d3:be:e7:c2:3b:9d:7b:96:0a:8f:
                    fc:47:ef:92:b0:b8:40:19:4f:90:ae:8a:95:84:f8:1b:
                    83:d5:18:7d:6b:0a:a0:9f:68:4b:b8:ef:34:a8:57:bd:
                    cf:46:74:ee:c6:4d:8b:81:fb:9e:1d:77:25:57:cb:ce:
                    55:84:ba:2c:c9:15:64:64:aa:1f:36:cb:f5:0f:84:53:
                    9a:ed:9b:de:4a:29:87:07:a8:5d:41:d8:f6:3d:88:07:
                    b1:63:c0:5f:07:6e:41:b6:97:14:c1:b6:ec:8d:f7:c0:
                    b9:4f:81:76:35:01:14:1e:1b:d2:09:53:05:a2:b1:6c:
                    39:ae:42:34:d6:6d:af:e0:ae:86:15:35:94:65:17:de:
                    46:b1:fc:e4:a2:24:1f:47:28:16:42:69:fd:bc:f3:41:
                    d9:b7:ce:8d:1e:08:5c:73:d6:77:36:e7:7d:83:e0:80:
                    71:05:c1:71:e4:6c:db:34:2c:99:3a:6a:be:9b:05:8a:
                    f3:18:01:40:18:df:d9:c6:74:47:ee:90:d0:69:ce:8d:
                    34:28:6d:05:c1:15:5a:ae:7a:03:44:05:22:7d:17:44:
                    d9:c8:57:63:c8:69:79:55:f7:74:f3:72:79:a5:96:e5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        83:32:ae:af:55:54:d6:f0:fa:6c:fb:c0:69:71:98:9b:
        58:a2:5c:a6:cc:b6:f8:97:98:2f:cf:f1:c6:4f:f6:f1:
        cd:57:74:eb:58:67:ef:7e:8d:3d:20:1a:c5:63:7d:3c:
        7f:d0:98:48:c2:90:b2:01:1c:ba:34:4c:fc:81:1c:5c:
        cc:33:35:e9:8c:0f:5f:e5:5d:72:bd:a8:66:08:aa:45:
        6b:b0:9c:c2:77:2e:7c:1b:76:a3:c3:83:cc:89:d0:61:
        ec:9a:53:68:47:bc:3a:f7:28:7c:1c:bc:74:c9:05:78:
        86:da:bc:3d:4e:a6:de:ce:25:0f:f2:38:27:39:a7:7d:
        29:bd:5b:02:40:8e:c3:f4:c2:9c:ea:b5:1e:4c:93:4d:
        3b:ee:e5:07:81:4d:e0:01:e9:8f:a6:3a:03:53:5e:77:
        6b:a4:fd:43:3d:3a:0d:26:10:7c:b0:1d:93:4d:71:02:
        17:80:a6:e9:20:f6:75:2b:e5:55:0f:64:c6:ab:cc:47:
        03:1f:45:f2:69:2f:45:dc:e3:cc:eb:ff:c3:08:d7:b6:
        2c:1d:c3:80:6b:20:f1:96:ea:8a:91:df:c7:ca:3d:0b:
        e0:41:e6:1b:b8:3b:e0:7c:96:9f:8b:c1:03:b7:7f:80:
        44:30:70:df:58:3b:9f:d9:50:5f:22:1b:ff:6c:7d:ba
    Fingerprint (SHA-256):
        F2:5F:E1:A0:C5:D6:B9:F3:9E:88:64:16:32:F8:59:4A:D1:AC:D9:5E:D8:C8:3E:10:D1:91:F7:72:8F:A6:26:A3
    Fingerprint (SHA1):
        55:05:D2:26:82:A3:CF:B4:5D:D9:C5:77:55:52:E9:AF:C1:01:68:C0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7111: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155649 (0x3cdd9941)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 16:01:21 2017
            Not After : Fri Oct 21 16:01:21 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:9e:dc:60:a4:8a:26:30:fc:5f:f2:cb:55:a7:4a:f4:
                    c2:3c:23:1b:ee:e2:76:3a:d9:9e:27:3b:ee:8e:43:2a:
                    a1:73:74:23:c7:70:38:19:1f:89:6b:81:42:6b:f7:e9:
                    a3:ac:ef:21:ae:f7:39:9f:59:69:62:cb:97:29:2c:27:
                    bd:8e:f7:97:55:12:fd:f5:b7:93:8c:46:72:82:37:7b:
                    81:8f:53:25:39:b5:42:a0:d6:54:34:06:35:38:6b:c2:
                    03:e1:fe:af:9a:b6:dc:d7:a9:35:f2:77:be:71:73:c8:
                    88:4e:be:e7:54:d3:0c:4f:83:2d:74:1e:31:8c:79:36:
                    47:78:0e:39:c9:9d:06:c4:ae:e7:25:2f:19:d9:f5:ec:
                    22:72:c9:15:07:c8:7c:56:fc:3b:97:6b:26:be:ec:48:
                    48:0f:2b:4a:6a:66:88:d4:5f:a0:40:b6:09:ec:ba:ed:
                    2d:0f:52:27:30:b2:38:85:0b:da:8f:ac:b4:29:2a:aa:
                    d7:2b:09:91:45:6a:9b:36:51:41:05:f3:9a:70:87:d3:
                    bc:ae:20:30:e0:de:3c:ed:d0:c1:7b:4e:97:f8:f7:9a:
                    d3:0d:ac:f6:5f:bc:fd:1f:7f:e0:28:0a:56:f8:bc:e1:
                    c3:62:31:8e:ee:f2:bc:1e:e7:6d:35:22:18:07:7b:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        af:91:c2:8e:6e:57:25:e4:5f:95:76:f1:86:5b:fe:9f:
        db:85:39:d8:5d:06:b8:ba:ea:c4:2f:55:9e:9d:79:4c:
        68:d9:0c:62:42:98:32:d2:e3:9b:93:56:32:cf:35:7f:
        d5:01:60:8b:59:90:c1:11:75:bb:48:f3:53:1c:3b:20:
        ec:2f:f3:04:00:c1:5d:20:ab:4e:ad:05:86:7e:07:08:
        b3:66:29:79:01:c7:c9:42:d2:89:8e:00:cb:ec:03:af:
        82:6c:92:e0:10:a6:98:8f:3d:24:55:31:71:ef:f2:55:
        5a:71:55:df:a7:ca:b0:fc:58:5a:ca:34:57:a9:43:bb:
        a6:dc:14:ce:d9:85:06:a0:54:a7:56:fb:ed:49:e0:ad:
        ca:fa:0a:c6:aa:38:e6:d9:f7:37:c3:7c:8f:ad:7b:aa:
        94:d3:7b:43:45:e5:c5:fc:07:ea:01:34:d2:f1:3d:f2:
        f0:b1:b2:8e:c2:4a:31:c2:20:33:f4:13:75:ef:c3:7a:
        b5:05:0f:69:a1:7f:43:31:3c:20:1d:93:5c:34:b5:44:
        e2:58:ba:e2:18:3d:85:21:3d:1a:df:44:3e:57:da:be:
        c9:44:c1:4f:2a:ac:b1:ce:29:84:2c:52:2e:39:02:53:
        0e:78:00:3f:00:bc:23:5b:04:c4:a7:b6:d7:2e:d8:7f
    Fingerprint (SHA-256):
        9C:6D:54:82:24:4D:1F:E7:44:FA:FA:1D:3D:07:28:D7:FF:E4:0E:09:B9:2E:0A:1A:95:AC:9A:70:82:AF:9F:2F
    Fingerprint (SHA1):
        80:E7:6D:4B:16:32:CF:45:38:0B:35:64:BE:64:97:9D:40:56:28:68
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7112: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155649 (0x3cdd9941)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 16:01:21 2017
            Not After : Fri Oct 21 16:01:21 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:9e:dc:60:a4:8a:26:30:fc:5f:f2:cb:55:a7:4a:f4:
                    c2:3c:23:1b:ee:e2:76:3a:d9:9e:27:3b:ee:8e:43:2a:
                    a1:73:74:23:c7:70:38:19:1f:89:6b:81:42:6b:f7:e9:
                    a3:ac:ef:21:ae:f7:39:9f:59:69:62:cb:97:29:2c:27:
                    bd:8e:f7:97:55:12:fd:f5:b7:93:8c:46:72:82:37:7b:
                    81:8f:53:25:39:b5:42:a0:d6:54:34:06:35:38:6b:c2:
                    03:e1:fe:af:9a:b6:dc:d7:a9:35:f2:77:be:71:73:c8:
                    88:4e:be:e7:54:d3:0c:4f:83:2d:74:1e:31:8c:79:36:
                    47:78:0e:39:c9:9d:06:c4:ae:e7:25:2f:19:d9:f5:ec:
                    22:72:c9:15:07:c8:7c:56:fc:3b:97:6b:26:be:ec:48:
                    48:0f:2b:4a:6a:66:88:d4:5f:a0:40:b6:09:ec:ba:ed:
                    2d:0f:52:27:30:b2:38:85:0b:da:8f:ac:b4:29:2a:aa:
                    d7:2b:09:91:45:6a:9b:36:51:41:05:f3:9a:70:87:d3:
                    bc:ae:20:30:e0:de:3c:ed:d0:c1:7b:4e:97:f8:f7:9a:
                    d3:0d:ac:f6:5f:bc:fd:1f:7f:e0:28:0a:56:f8:bc:e1:
                    c3:62:31:8e:ee:f2:bc:1e:e7:6d:35:22:18:07:7b:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        af:91:c2:8e:6e:57:25:e4:5f:95:76:f1:86:5b:fe:9f:
        db:85:39:d8:5d:06:b8:ba:ea:c4:2f:55:9e:9d:79:4c:
        68:d9:0c:62:42:98:32:d2:e3:9b:93:56:32:cf:35:7f:
        d5:01:60:8b:59:90:c1:11:75:bb:48:f3:53:1c:3b:20:
        ec:2f:f3:04:00:c1:5d:20:ab:4e:ad:05:86:7e:07:08:
        b3:66:29:79:01:c7:c9:42:d2:89:8e:00:cb:ec:03:af:
        82:6c:92:e0:10:a6:98:8f:3d:24:55:31:71:ef:f2:55:
        5a:71:55:df:a7:ca:b0:fc:58:5a:ca:34:57:a9:43:bb:
        a6:dc:14:ce:d9:85:06:a0:54:a7:56:fb:ed:49:e0:ad:
        ca:fa:0a:c6:aa:38:e6:d9:f7:37:c3:7c:8f:ad:7b:aa:
        94:d3:7b:43:45:e5:c5:fc:07:ea:01:34:d2:f1:3d:f2:
        f0:b1:b2:8e:c2:4a:31:c2:20:33:f4:13:75:ef:c3:7a:
        b5:05:0f:69:a1:7f:43:31:3c:20:1d:93:5c:34:b5:44:
        e2:58:ba:e2:18:3d:85:21:3d:1a:df:44:3e:57:da:be:
        c9:44:c1:4f:2a:ac:b1:ce:29:84:2c:52:2e:39:02:53:
        0e:78:00:3f:00:bc:23:5b:04:c4:a7:b6:d7:2e:d8:7f
    Fingerprint (SHA-256):
        9C:6D:54:82:24:4D:1F:E7:44:FA:FA:1D:3D:07:28:D7:FF:E4:0E:09:B9:2E:0A:1A:95:AC:9A:70:82:AF:9F:2F
    Fingerprint (SHA1):
        80:E7:6D:4B:16:32:CF:45:38:0B:35:64:BE:64:97:9D:40:56:28:68
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7113: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #7114: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155652 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7115: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #7116: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7117: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7118: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 1021155653   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7119: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7120: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7121: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7122: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021155654   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7123: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7124: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #7125: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7126: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 1021155655   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7127: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7128: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #7129: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7130: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 1021155656   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7131: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7132: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #7133: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7134: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 1021155657   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7135: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7136: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #7137: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7138: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 1021155658   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7139: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7140: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7141: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #7142: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #7143: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7144: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #7145: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155652 (0x3cdd9944)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:01:52 2017
            Not After : Fri Oct 21 16:01:52 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:da:4f:d6:f5:81:1c:f2:b3:17:e1:65:36:4f:a3:c2:
                    04:19:1d:93:d5:f7:e4:26:57:ad:0e:c9:60:f6:8b:f3:
                    14:bb:f2:14:13:a1:9f:76:8f:3b:63:fe:04:d8:41:00:
                    d6:10:08:b3:39:5d:06:e2:9f:62:2f:93:a7:c6:ad:3b:
                    50:6f:c1:75:bf:7f:e4:4c:96:a5:e4:5f:16:e3:59:c9:
                    8e:15:c5:79:55:c3:09:ba:8e:f2:0a:8d:2b:7c:ab:43:
                    f3:4b:8c:f7:3e:89:e9:6a:f0:07:f9:46:93:14:a4:13:
                    68:c6:1f:69:d9:cc:33:77:94:c0:e9:fe:b8:f6:9a:29:
                    2e:10:24:44:55:e4:f0:0a:cb:34:1d:33:78:ec:15:3a:
                    83:a0:62:9f:63:90:22:43:9c:6b:67:a1:4e:98:44:67:
                    cc:36:15:19:f7:63:46:15:26:18:0f:07:dc:6c:ba:ff:
                    50:4c:51:60:a5:81:65:f2:9a:cb:36:5a:7c:a4:0a:ef:
                    e5:75:b3:f5:a5:3c:53:29:7a:65:f7:b6:fc:ca:ce:b6:
                    a7:fc:9c:16:cb:d2:56:a8:c7:8b:6b:1f:8a:2a:af:f7:
                    d0:64:19:22:a4:2a:e6:7e:3a:ae:72:d5:8e:e5:c1:31:
                    e8:73:3e:a0:0c:17:7b:58:ab:13:18:82:be:06:7e:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ce:82:f2:fa:d0:d3:54:47:7e:ca:94:db:13:7c:3f:80:
        de:ee:af:66:0c:84:f6:7d:34:0c:1d:21:b3:21:54:44:
        39:ee:1f:0f:c1:f2:1d:32:ea:2c:86:18:b3:1f:bb:0f:
        bd:e6:e0:00:92:28:3e:77:9c:e8:96:c6:f3:40:e3:3d:
        67:a9:e5:8b:4d:32:ae:1a:97:48:48:e5:ef:06:83:f6:
        eb:50:45:74:ff:f3:17:f1:87:fc:ea:87:22:f4:72:d1:
        a8:c2:bb:b3:d8:2c:9d:fd:cb:ff:6c:a4:0b:fe:3d:ea:
        af:9e:8c:fe:16:e2:63:4f:63:39:39:f0:bb:4b:d9:14:
        28:50:ec:4e:43:65:dd:f6:a8:58:b8:48:75:79:fe:6d:
        a6:f5:42:05:ee:5a:c4:cc:f5:fa:b0:2e:9c:f0:e7:b6:
        94:e9:47:8c:42:a5:8d:42:19:eb:64:50:31:0b:86:1b:
        42:ca:05:51:c6:9d:74:fc:0b:55:11:43:bc:ef:0d:0f:
        b9:a8:7f:76:98:cb:14:36:2a:48:af:cc:d7:2a:a8:b6:
        13:46:53:fb:90:4b:35:90:5d:5c:4d:71:4a:72:6b:55:
        da:3b:df:ca:aa:34:09:42:21:69:4c:6a:4b:cc:99:bf:
        75:ef:db:b0:f4:69:20:93:47:9d:5c:b9:ff:25:cd:e0
    Fingerprint (SHA-256):
        E1:E8:BB:12:E5:AE:E0:A3:49:A8:A8:C4:B2:D2:06:66:99:0C:58:C2:AF:5D:EF:56:83:AC:8F:5C:9F:86:51:43
    Fingerprint (SHA1):
        4C:2F:03:90:FB:64:2A:FE:61:C8:A8:99:80:6C:D0:9B:CC:1F:FB:FD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7146: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7147: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7148: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7149: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155652 (0x3cdd9944)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:01:52 2017
            Not After : Fri Oct 21 16:01:52 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:da:4f:d6:f5:81:1c:f2:b3:17:e1:65:36:4f:a3:c2:
                    04:19:1d:93:d5:f7:e4:26:57:ad:0e:c9:60:f6:8b:f3:
                    14:bb:f2:14:13:a1:9f:76:8f:3b:63:fe:04:d8:41:00:
                    d6:10:08:b3:39:5d:06:e2:9f:62:2f:93:a7:c6:ad:3b:
                    50:6f:c1:75:bf:7f:e4:4c:96:a5:e4:5f:16:e3:59:c9:
                    8e:15:c5:79:55:c3:09:ba:8e:f2:0a:8d:2b:7c:ab:43:
                    f3:4b:8c:f7:3e:89:e9:6a:f0:07:f9:46:93:14:a4:13:
                    68:c6:1f:69:d9:cc:33:77:94:c0:e9:fe:b8:f6:9a:29:
                    2e:10:24:44:55:e4:f0:0a:cb:34:1d:33:78:ec:15:3a:
                    83:a0:62:9f:63:90:22:43:9c:6b:67:a1:4e:98:44:67:
                    cc:36:15:19:f7:63:46:15:26:18:0f:07:dc:6c:ba:ff:
                    50:4c:51:60:a5:81:65:f2:9a:cb:36:5a:7c:a4:0a:ef:
                    e5:75:b3:f5:a5:3c:53:29:7a:65:f7:b6:fc:ca:ce:b6:
                    a7:fc:9c:16:cb:d2:56:a8:c7:8b:6b:1f:8a:2a:af:f7:
                    d0:64:19:22:a4:2a:e6:7e:3a:ae:72:d5:8e:e5:c1:31:
                    e8:73:3e:a0:0c:17:7b:58:ab:13:18:82:be:06:7e:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ce:82:f2:fa:d0:d3:54:47:7e:ca:94:db:13:7c:3f:80:
        de:ee:af:66:0c:84:f6:7d:34:0c:1d:21:b3:21:54:44:
        39:ee:1f:0f:c1:f2:1d:32:ea:2c:86:18:b3:1f:bb:0f:
        bd:e6:e0:00:92:28:3e:77:9c:e8:96:c6:f3:40:e3:3d:
        67:a9:e5:8b:4d:32:ae:1a:97:48:48:e5:ef:06:83:f6:
        eb:50:45:74:ff:f3:17:f1:87:fc:ea:87:22:f4:72:d1:
        a8:c2:bb:b3:d8:2c:9d:fd:cb:ff:6c:a4:0b:fe:3d:ea:
        af:9e:8c:fe:16:e2:63:4f:63:39:39:f0:bb:4b:d9:14:
        28:50:ec:4e:43:65:dd:f6:a8:58:b8:48:75:79:fe:6d:
        a6:f5:42:05:ee:5a:c4:cc:f5:fa:b0:2e:9c:f0:e7:b6:
        94:e9:47:8c:42:a5:8d:42:19:eb:64:50:31:0b:86:1b:
        42:ca:05:51:c6:9d:74:fc:0b:55:11:43:bc:ef:0d:0f:
        b9:a8:7f:76:98:cb:14:36:2a:48:af:cc:d7:2a:a8:b6:
        13:46:53:fb:90:4b:35:90:5d:5c:4d:71:4a:72:6b:55:
        da:3b:df:ca:aa:34:09:42:21:69:4c:6a:4b:cc:99:bf:
        75:ef:db:b0:f4:69:20:93:47:9d:5c:b9:ff:25:cd:e0
    Fingerprint (SHA-256):
        E1:E8:BB:12:E5:AE:E0:A3:49:A8:A8:C4:B2:D2:06:66:99:0C:58:C2:AF:5D:EF:56:83:AC:8F:5C:9F:86:51:43
    Fingerprint (SHA1):
        4C:2F:03:90:FB:64:2A:FE:61:C8:A8:99:80:6C:D0:9B:CC:1F:FB:FD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7150: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7151: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #7152: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155659 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7153: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #7154: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7155: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7156: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 1021155660   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7157: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7158: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #7159: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7160: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 1021155661   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7161: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7162: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #7163: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7164: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 1021155662   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7165: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7166: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7167: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7168: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 1021155663   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7169: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7170: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #7171: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7172: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 1021155664   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7173: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7174: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #7175: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7176: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 1021155665   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7177: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7178: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7179: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7180: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 1021155666   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7181: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7182: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #7183: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7184: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 1021155667   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7185: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7186: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #7187: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7188: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 1021155668   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7189: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7190: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #7191: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7192: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 1021155669   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7193: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7194: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #7195: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7196: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 1021155670   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7197: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7198: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #7199: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7200: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 1021155671   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7201: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7202: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #7203: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7204: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 1021155672   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7205: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7206: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #7207: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7208: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 1021155673   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7209: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7210: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #7211: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7212: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 1021155674   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7213: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7214: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #7215: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7216: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 1021155675   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7217: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7218: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #7219: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7220: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 1021155676   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7221: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7222: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #7223: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7224: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 1021155677   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7225: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7226: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #7227: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7228: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 1021155678   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7229: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7230: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #7231: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7232: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 1021155679   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7233: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7234: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #7235: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7236: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 1021155680   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7237: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7238: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #7239: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7240: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 1021155681   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7241: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7242: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #7243: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7244: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 1021155682   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7245: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7246: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #7247: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7248: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 1021155683   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7249: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7250: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #7251: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7252: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 1021155684   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7253: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7254: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #7255: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7256: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 1021155685   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7257: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7258: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #7259: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7260: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 1021155686   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7261: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7262: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #7263: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7264: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 1021155687   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7265: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7266: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #7267: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7268: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 1021155688   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7269: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7270: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7271: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155659 (0x3cdd994b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:02:34 2017
            Not After : Fri Oct 21 16:02:34 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:7c:44:db:3e:3f:79:b6:af:02:21:cb:7a:fc:77:c2:
                    a5:96:20:43:cf:68:22:b1:9d:d0:3a:a5:f3:af:88:2e:
                    ea:8e:85:2f:e0:7f:7d:33:8d:68:f5:5b:3a:82:9b:af:
                    5b:cf:cb:3c:9f:28:19:07:79:aa:93:ed:6c:bd:79:1d:
                    d4:aa:09:0f:b0:9f:b9:95:43:5c:dd:03:00:3f:50:15:
                    77:b9:66:9b:f3:14:5d:79:a9:e1:bc:16:26:84:57:d7:
                    b2:32:fc:be:f4:64:46:54:db:e6:44:8e:e0:77:e6:24:
                    74:70:47:7f:3e:f8:d0:9c:78:05:97:f3:27:a3:d9:32:
                    45:10:1f:73:55:e6:d0:bd:2a:02:53:c1:92:93:d0:31:
                    8d:dd:8f:0b:57:3e:ab:f9:f5:9a:3c:cb:8a:a2:ae:a1:
                    53:5a:3e:4f:81:af:6a:a2:61:45:58:c4:12:c6:f0:61:
                    24:ce:89:4f:f5:32:eb:f2:6b:f6:dc:6c:64:62:fe:31:
                    e9:cf:59:80:28:3c:a4:d8:57:de:d7:7e:df:6c:57:5a:
                    0c:ea:f5:41:53:59:0f:fd:46:4d:0e:d6:e1:22:2f:0e:
                    70:d6:ef:0e:8d:2a:83:e4:1b:38:8d:5d:7a:a9:6b:ca:
                    cf:73:bf:22:99:37:50:6c:96:83:dc:1c:4d:10:b8:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:05:16:50:ec:bf:58:9c:18:4f:1b:69:8c:61:02:a0:
        02:5e:cb:6c:ba:38:fe:00:21:9e:42:f3:0b:49:fe:42:
        49:f9:67:75:89:82:cf:b9:45:8b:2a:b5:12:19:d3:0d:
        81:b9:53:44:9a:b6:ce:dd:99:91:e1:a3:9d:f7:9a:9f:
        ef:74:86:ac:16:31:d5:a5:45:ac:c5:81:38:4c:87:50:
        6d:3b:33:5c:e1:c3:8d:6f:1a:bd:f1:bb:4d:66:37:3f:
        22:b4:c2:e6:07:68:5f:bb:1d:24:d7:57:16:2c:95:c1:
        c1:69:e3:ca:9c:39:5b:d5:38:fb:ce:55:c2:6e:2e:3b:
        a2:43:a1:33:b3:9e:f1:ca:cf:f8:d4:50:8c:d7:78:22:
        32:ee:8f:c4:99:7a:f2:e0:50:1d:49:9d:20:98:22:7f:
        0c:cc:76:16:a0:c6:d9:1b:93:cf:28:2b:06:2d:f6:21:
        02:84:aa:74:3d:79:47:cd:07:cb:4f:f9:7e:4f:45:da:
        05:fe:64:5e:a4:66:ac:f6:f6:c7:cb:b7:d1:2a:18:d4:
        d8:c6:2a:4a:cb:65:41:a9:b9:87:06:7e:23:bf:c5:47:
        3f:11:1c:8a:a8:cc:10:a9:36:5e:f4:4a:0e:bc:06:c4:
        83:c3:9e:03:82:a3:9b:2d:42:64:01:4c:b6:ba:61:01
    Fingerprint (SHA-256):
        8D:1C:37:7F:99:51:2F:58:3B:09:EF:6C:70:06:0E:2B:D5:42:9D:84:88:07:12:8D:49:6A:58:32:2B:3D:F0:90
    Fingerprint (SHA1):
        2E:56:F0:36:9D:14:17:FC:A7:A0:7B:91:D7:E2:DB:E8:00:4B:59:88
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7272: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7273: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155659 (0x3cdd994b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:02:34 2017
            Not After : Fri Oct 21 16:02:34 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:7c:44:db:3e:3f:79:b6:af:02:21:cb:7a:fc:77:c2:
                    a5:96:20:43:cf:68:22:b1:9d:d0:3a:a5:f3:af:88:2e:
                    ea:8e:85:2f:e0:7f:7d:33:8d:68:f5:5b:3a:82:9b:af:
                    5b:cf:cb:3c:9f:28:19:07:79:aa:93:ed:6c:bd:79:1d:
                    d4:aa:09:0f:b0:9f:b9:95:43:5c:dd:03:00:3f:50:15:
                    77:b9:66:9b:f3:14:5d:79:a9:e1:bc:16:26:84:57:d7:
                    b2:32:fc:be:f4:64:46:54:db:e6:44:8e:e0:77:e6:24:
                    74:70:47:7f:3e:f8:d0:9c:78:05:97:f3:27:a3:d9:32:
                    45:10:1f:73:55:e6:d0:bd:2a:02:53:c1:92:93:d0:31:
                    8d:dd:8f:0b:57:3e:ab:f9:f5:9a:3c:cb:8a:a2:ae:a1:
                    53:5a:3e:4f:81:af:6a:a2:61:45:58:c4:12:c6:f0:61:
                    24:ce:89:4f:f5:32:eb:f2:6b:f6:dc:6c:64:62:fe:31:
                    e9:cf:59:80:28:3c:a4:d8:57:de:d7:7e:df:6c:57:5a:
                    0c:ea:f5:41:53:59:0f:fd:46:4d:0e:d6:e1:22:2f:0e:
                    70:d6:ef:0e:8d:2a:83:e4:1b:38:8d:5d:7a:a9:6b:ca:
                    cf:73:bf:22:99:37:50:6c:96:83:dc:1c:4d:10:b8:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:05:16:50:ec:bf:58:9c:18:4f:1b:69:8c:61:02:a0:
        02:5e:cb:6c:ba:38:fe:00:21:9e:42:f3:0b:49:fe:42:
        49:f9:67:75:89:82:cf:b9:45:8b:2a:b5:12:19:d3:0d:
        81:b9:53:44:9a:b6:ce:dd:99:91:e1:a3:9d:f7:9a:9f:
        ef:74:86:ac:16:31:d5:a5:45:ac:c5:81:38:4c:87:50:
        6d:3b:33:5c:e1:c3:8d:6f:1a:bd:f1:bb:4d:66:37:3f:
        22:b4:c2:e6:07:68:5f:bb:1d:24:d7:57:16:2c:95:c1:
        c1:69:e3:ca:9c:39:5b:d5:38:fb:ce:55:c2:6e:2e:3b:
        a2:43:a1:33:b3:9e:f1:ca:cf:f8:d4:50:8c:d7:78:22:
        32:ee:8f:c4:99:7a:f2:e0:50:1d:49:9d:20:98:22:7f:
        0c:cc:76:16:a0:c6:d9:1b:93:cf:28:2b:06:2d:f6:21:
        02:84:aa:74:3d:79:47:cd:07:cb:4f:f9:7e:4f:45:da:
        05:fe:64:5e:a4:66:ac:f6:f6:c7:cb:b7:d1:2a:18:d4:
        d8:c6:2a:4a:cb:65:41:a9:b9:87:06:7e:23:bf:c5:47:
        3f:11:1c:8a:a8:cc:10:a9:36:5e:f4:4a:0e:bc:06:c4:
        83:c3:9e:03:82:a3:9b:2d:42:64:01:4c:b6:ba:61:01
    Fingerprint (SHA-256):
        8D:1C:37:7F:99:51:2F:58:3B:09:EF:6C:70:06:0E:2B:D5:42:9D:84:88:07:12:8D:49:6A:58:32:2B:3D:F0:90
    Fingerprint (SHA1):
        2E:56:F0:36:9D:14:17:FC:A7:A0:7B:91:D7:E2:DB:E8:00:4B:59:88
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7274: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7275: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7276: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7277: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155659 (0x3cdd994b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:02:34 2017
            Not After : Fri Oct 21 16:02:34 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:7c:44:db:3e:3f:79:b6:af:02:21:cb:7a:fc:77:c2:
                    a5:96:20:43:cf:68:22:b1:9d:d0:3a:a5:f3:af:88:2e:
                    ea:8e:85:2f:e0:7f:7d:33:8d:68:f5:5b:3a:82:9b:af:
                    5b:cf:cb:3c:9f:28:19:07:79:aa:93:ed:6c:bd:79:1d:
                    d4:aa:09:0f:b0:9f:b9:95:43:5c:dd:03:00:3f:50:15:
                    77:b9:66:9b:f3:14:5d:79:a9:e1:bc:16:26:84:57:d7:
                    b2:32:fc:be:f4:64:46:54:db:e6:44:8e:e0:77:e6:24:
                    74:70:47:7f:3e:f8:d0:9c:78:05:97:f3:27:a3:d9:32:
                    45:10:1f:73:55:e6:d0:bd:2a:02:53:c1:92:93:d0:31:
                    8d:dd:8f:0b:57:3e:ab:f9:f5:9a:3c:cb:8a:a2:ae:a1:
                    53:5a:3e:4f:81:af:6a:a2:61:45:58:c4:12:c6:f0:61:
                    24:ce:89:4f:f5:32:eb:f2:6b:f6:dc:6c:64:62:fe:31:
                    e9:cf:59:80:28:3c:a4:d8:57:de:d7:7e:df:6c:57:5a:
                    0c:ea:f5:41:53:59:0f:fd:46:4d:0e:d6:e1:22:2f:0e:
                    70:d6:ef:0e:8d:2a:83:e4:1b:38:8d:5d:7a:a9:6b:ca:
                    cf:73:bf:22:99:37:50:6c:96:83:dc:1c:4d:10:b8:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:05:16:50:ec:bf:58:9c:18:4f:1b:69:8c:61:02:a0:
        02:5e:cb:6c:ba:38:fe:00:21:9e:42:f3:0b:49:fe:42:
        49:f9:67:75:89:82:cf:b9:45:8b:2a:b5:12:19:d3:0d:
        81:b9:53:44:9a:b6:ce:dd:99:91:e1:a3:9d:f7:9a:9f:
        ef:74:86:ac:16:31:d5:a5:45:ac:c5:81:38:4c:87:50:
        6d:3b:33:5c:e1:c3:8d:6f:1a:bd:f1:bb:4d:66:37:3f:
        22:b4:c2:e6:07:68:5f:bb:1d:24:d7:57:16:2c:95:c1:
        c1:69:e3:ca:9c:39:5b:d5:38:fb:ce:55:c2:6e:2e:3b:
        a2:43:a1:33:b3:9e:f1:ca:cf:f8:d4:50:8c:d7:78:22:
        32:ee:8f:c4:99:7a:f2:e0:50:1d:49:9d:20:98:22:7f:
        0c:cc:76:16:a0:c6:d9:1b:93:cf:28:2b:06:2d:f6:21:
        02:84:aa:74:3d:79:47:cd:07:cb:4f:f9:7e:4f:45:da:
        05:fe:64:5e:a4:66:ac:f6:f6:c7:cb:b7:d1:2a:18:d4:
        d8:c6:2a:4a:cb:65:41:a9:b9:87:06:7e:23:bf:c5:47:
        3f:11:1c:8a:a8:cc:10:a9:36:5e:f4:4a:0e:bc:06:c4:
        83:c3:9e:03:82:a3:9b:2d:42:64:01:4c:b6:ba:61:01
    Fingerprint (SHA-256):
        8D:1C:37:7F:99:51:2F:58:3B:09:EF:6C:70:06:0E:2B:D5:42:9D:84:88:07:12:8D:49:6A:58:32:2B:3D:F0:90
    Fingerprint (SHA1):
        2E:56:F0:36:9D:14:17:FC:A7:A0:7B:91:D7:E2:DB:E8:00:4B:59:88
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7278: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7279: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7280: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7281: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155659 (0x3cdd994b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:02:34 2017
            Not After : Fri Oct 21 16:02:34 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:7c:44:db:3e:3f:79:b6:af:02:21:cb:7a:fc:77:c2:
                    a5:96:20:43:cf:68:22:b1:9d:d0:3a:a5:f3:af:88:2e:
                    ea:8e:85:2f:e0:7f:7d:33:8d:68:f5:5b:3a:82:9b:af:
                    5b:cf:cb:3c:9f:28:19:07:79:aa:93:ed:6c:bd:79:1d:
                    d4:aa:09:0f:b0:9f:b9:95:43:5c:dd:03:00:3f:50:15:
                    77:b9:66:9b:f3:14:5d:79:a9:e1:bc:16:26:84:57:d7:
                    b2:32:fc:be:f4:64:46:54:db:e6:44:8e:e0:77:e6:24:
                    74:70:47:7f:3e:f8:d0:9c:78:05:97:f3:27:a3:d9:32:
                    45:10:1f:73:55:e6:d0:bd:2a:02:53:c1:92:93:d0:31:
                    8d:dd:8f:0b:57:3e:ab:f9:f5:9a:3c:cb:8a:a2:ae:a1:
                    53:5a:3e:4f:81:af:6a:a2:61:45:58:c4:12:c6:f0:61:
                    24:ce:89:4f:f5:32:eb:f2:6b:f6:dc:6c:64:62:fe:31:
                    e9:cf:59:80:28:3c:a4:d8:57:de:d7:7e:df:6c:57:5a:
                    0c:ea:f5:41:53:59:0f:fd:46:4d:0e:d6:e1:22:2f:0e:
                    70:d6:ef:0e:8d:2a:83:e4:1b:38:8d:5d:7a:a9:6b:ca:
                    cf:73:bf:22:99:37:50:6c:96:83:dc:1c:4d:10:b8:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:05:16:50:ec:bf:58:9c:18:4f:1b:69:8c:61:02:a0:
        02:5e:cb:6c:ba:38:fe:00:21:9e:42:f3:0b:49:fe:42:
        49:f9:67:75:89:82:cf:b9:45:8b:2a:b5:12:19:d3:0d:
        81:b9:53:44:9a:b6:ce:dd:99:91:e1:a3:9d:f7:9a:9f:
        ef:74:86:ac:16:31:d5:a5:45:ac:c5:81:38:4c:87:50:
        6d:3b:33:5c:e1:c3:8d:6f:1a:bd:f1:bb:4d:66:37:3f:
        22:b4:c2:e6:07:68:5f:bb:1d:24:d7:57:16:2c:95:c1:
        c1:69:e3:ca:9c:39:5b:d5:38:fb:ce:55:c2:6e:2e:3b:
        a2:43:a1:33:b3:9e:f1:ca:cf:f8:d4:50:8c:d7:78:22:
        32:ee:8f:c4:99:7a:f2:e0:50:1d:49:9d:20:98:22:7f:
        0c:cc:76:16:a0:c6:d9:1b:93:cf:28:2b:06:2d:f6:21:
        02:84:aa:74:3d:79:47:cd:07:cb:4f:f9:7e:4f:45:da:
        05:fe:64:5e:a4:66:ac:f6:f6:c7:cb:b7:d1:2a:18:d4:
        d8:c6:2a:4a:cb:65:41:a9:b9:87:06:7e:23:bf:c5:47:
        3f:11:1c:8a:a8:cc:10:a9:36:5e:f4:4a:0e:bc:06:c4:
        83:c3:9e:03:82:a3:9b:2d:42:64:01:4c:b6:ba:61:01
    Fingerprint (SHA-256):
        8D:1C:37:7F:99:51:2F:58:3B:09:EF:6C:70:06:0E:2B:D5:42:9D:84:88:07:12:8D:49:6A:58:32:2B:3D:F0:90
    Fingerprint (SHA1):
        2E:56:F0:36:9D:14:17:FC:A7:A0:7B:91:D7:E2:DB:E8:00:4B:59:88
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7282: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155659 (0x3cdd994b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:02:34 2017
            Not After : Fri Oct 21 16:02:34 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:7c:44:db:3e:3f:79:b6:af:02:21:cb:7a:fc:77:c2:
                    a5:96:20:43:cf:68:22:b1:9d:d0:3a:a5:f3:af:88:2e:
                    ea:8e:85:2f:e0:7f:7d:33:8d:68:f5:5b:3a:82:9b:af:
                    5b:cf:cb:3c:9f:28:19:07:79:aa:93:ed:6c:bd:79:1d:
                    d4:aa:09:0f:b0:9f:b9:95:43:5c:dd:03:00:3f:50:15:
                    77:b9:66:9b:f3:14:5d:79:a9:e1:bc:16:26:84:57:d7:
                    b2:32:fc:be:f4:64:46:54:db:e6:44:8e:e0:77:e6:24:
                    74:70:47:7f:3e:f8:d0:9c:78:05:97:f3:27:a3:d9:32:
                    45:10:1f:73:55:e6:d0:bd:2a:02:53:c1:92:93:d0:31:
                    8d:dd:8f:0b:57:3e:ab:f9:f5:9a:3c:cb:8a:a2:ae:a1:
                    53:5a:3e:4f:81:af:6a:a2:61:45:58:c4:12:c6:f0:61:
                    24:ce:89:4f:f5:32:eb:f2:6b:f6:dc:6c:64:62:fe:31:
                    e9:cf:59:80:28:3c:a4:d8:57:de:d7:7e:df:6c:57:5a:
                    0c:ea:f5:41:53:59:0f:fd:46:4d:0e:d6:e1:22:2f:0e:
                    70:d6:ef:0e:8d:2a:83:e4:1b:38:8d:5d:7a:a9:6b:ca:
                    cf:73:bf:22:99:37:50:6c:96:83:dc:1c:4d:10:b8:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:05:16:50:ec:bf:58:9c:18:4f:1b:69:8c:61:02:a0:
        02:5e:cb:6c:ba:38:fe:00:21:9e:42:f3:0b:49:fe:42:
        49:f9:67:75:89:82:cf:b9:45:8b:2a:b5:12:19:d3:0d:
        81:b9:53:44:9a:b6:ce:dd:99:91:e1:a3:9d:f7:9a:9f:
        ef:74:86:ac:16:31:d5:a5:45:ac:c5:81:38:4c:87:50:
        6d:3b:33:5c:e1:c3:8d:6f:1a:bd:f1:bb:4d:66:37:3f:
        22:b4:c2:e6:07:68:5f:bb:1d:24:d7:57:16:2c:95:c1:
        c1:69:e3:ca:9c:39:5b:d5:38:fb:ce:55:c2:6e:2e:3b:
        a2:43:a1:33:b3:9e:f1:ca:cf:f8:d4:50:8c:d7:78:22:
        32:ee:8f:c4:99:7a:f2:e0:50:1d:49:9d:20:98:22:7f:
        0c:cc:76:16:a0:c6:d9:1b:93:cf:28:2b:06:2d:f6:21:
        02:84:aa:74:3d:79:47:cd:07:cb:4f:f9:7e:4f:45:da:
        05:fe:64:5e:a4:66:ac:f6:f6:c7:cb:b7:d1:2a:18:d4:
        d8:c6:2a:4a:cb:65:41:a9:b9:87:06:7e:23:bf:c5:47:
        3f:11:1c:8a:a8:cc:10:a9:36:5e:f4:4a:0e:bc:06:c4:
        83:c3:9e:03:82:a3:9b:2d:42:64:01:4c:b6:ba:61:01
    Fingerprint (SHA-256):
        8D:1C:37:7F:99:51:2F:58:3B:09:EF:6C:70:06:0E:2B:D5:42:9D:84:88:07:12:8D:49:6A:58:32:2B:3D:F0:90
    Fingerprint (SHA1):
        2E:56:F0:36:9D:14:17:FC:A7:A0:7B:91:D7:E2:DB:E8:00:4B:59:88
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7283: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7284: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155659 (0x3cdd994b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:02:34 2017
            Not After : Fri Oct 21 16:02:34 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:7c:44:db:3e:3f:79:b6:af:02:21:cb:7a:fc:77:c2:
                    a5:96:20:43:cf:68:22:b1:9d:d0:3a:a5:f3:af:88:2e:
                    ea:8e:85:2f:e0:7f:7d:33:8d:68:f5:5b:3a:82:9b:af:
                    5b:cf:cb:3c:9f:28:19:07:79:aa:93:ed:6c:bd:79:1d:
                    d4:aa:09:0f:b0:9f:b9:95:43:5c:dd:03:00:3f:50:15:
                    77:b9:66:9b:f3:14:5d:79:a9:e1:bc:16:26:84:57:d7:
                    b2:32:fc:be:f4:64:46:54:db:e6:44:8e:e0:77:e6:24:
                    74:70:47:7f:3e:f8:d0:9c:78:05:97:f3:27:a3:d9:32:
                    45:10:1f:73:55:e6:d0:bd:2a:02:53:c1:92:93:d0:31:
                    8d:dd:8f:0b:57:3e:ab:f9:f5:9a:3c:cb:8a:a2:ae:a1:
                    53:5a:3e:4f:81:af:6a:a2:61:45:58:c4:12:c6:f0:61:
                    24:ce:89:4f:f5:32:eb:f2:6b:f6:dc:6c:64:62:fe:31:
                    e9:cf:59:80:28:3c:a4:d8:57:de:d7:7e:df:6c:57:5a:
                    0c:ea:f5:41:53:59:0f:fd:46:4d:0e:d6:e1:22:2f:0e:
                    70:d6:ef:0e:8d:2a:83:e4:1b:38:8d:5d:7a:a9:6b:ca:
                    cf:73:bf:22:99:37:50:6c:96:83:dc:1c:4d:10:b8:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:05:16:50:ec:bf:58:9c:18:4f:1b:69:8c:61:02:a0:
        02:5e:cb:6c:ba:38:fe:00:21:9e:42:f3:0b:49:fe:42:
        49:f9:67:75:89:82:cf:b9:45:8b:2a:b5:12:19:d3:0d:
        81:b9:53:44:9a:b6:ce:dd:99:91:e1:a3:9d:f7:9a:9f:
        ef:74:86:ac:16:31:d5:a5:45:ac:c5:81:38:4c:87:50:
        6d:3b:33:5c:e1:c3:8d:6f:1a:bd:f1:bb:4d:66:37:3f:
        22:b4:c2:e6:07:68:5f:bb:1d:24:d7:57:16:2c:95:c1:
        c1:69:e3:ca:9c:39:5b:d5:38:fb:ce:55:c2:6e:2e:3b:
        a2:43:a1:33:b3:9e:f1:ca:cf:f8:d4:50:8c:d7:78:22:
        32:ee:8f:c4:99:7a:f2:e0:50:1d:49:9d:20:98:22:7f:
        0c:cc:76:16:a0:c6:d9:1b:93:cf:28:2b:06:2d:f6:21:
        02:84:aa:74:3d:79:47:cd:07:cb:4f:f9:7e:4f:45:da:
        05:fe:64:5e:a4:66:ac:f6:f6:c7:cb:b7:d1:2a:18:d4:
        d8:c6:2a:4a:cb:65:41:a9:b9:87:06:7e:23:bf:c5:47:
        3f:11:1c:8a:a8:cc:10:a9:36:5e:f4:4a:0e:bc:06:c4:
        83:c3:9e:03:82:a3:9b:2d:42:64:01:4c:b6:ba:61:01
    Fingerprint (SHA-256):
        8D:1C:37:7F:99:51:2F:58:3B:09:EF:6C:70:06:0E:2B:D5:42:9D:84:88:07:12:8D:49:6A:58:32:2B:3D:F0:90
    Fingerprint (SHA1):
        2E:56:F0:36:9D:14:17:FC:A7:A0:7B:91:D7:E2:DB:E8:00:4B:59:88
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7285: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7286: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7287: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7288: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155659 (0x3cdd994b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:02:34 2017
            Not After : Fri Oct 21 16:02:34 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:7c:44:db:3e:3f:79:b6:af:02:21:cb:7a:fc:77:c2:
                    a5:96:20:43:cf:68:22:b1:9d:d0:3a:a5:f3:af:88:2e:
                    ea:8e:85:2f:e0:7f:7d:33:8d:68:f5:5b:3a:82:9b:af:
                    5b:cf:cb:3c:9f:28:19:07:79:aa:93:ed:6c:bd:79:1d:
                    d4:aa:09:0f:b0:9f:b9:95:43:5c:dd:03:00:3f:50:15:
                    77:b9:66:9b:f3:14:5d:79:a9:e1:bc:16:26:84:57:d7:
                    b2:32:fc:be:f4:64:46:54:db:e6:44:8e:e0:77:e6:24:
                    74:70:47:7f:3e:f8:d0:9c:78:05:97:f3:27:a3:d9:32:
                    45:10:1f:73:55:e6:d0:bd:2a:02:53:c1:92:93:d0:31:
                    8d:dd:8f:0b:57:3e:ab:f9:f5:9a:3c:cb:8a:a2:ae:a1:
                    53:5a:3e:4f:81:af:6a:a2:61:45:58:c4:12:c6:f0:61:
                    24:ce:89:4f:f5:32:eb:f2:6b:f6:dc:6c:64:62:fe:31:
                    e9:cf:59:80:28:3c:a4:d8:57:de:d7:7e:df:6c:57:5a:
                    0c:ea:f5:41:53:59:0f:fd:46:4d:0e:d6:e1:22:2f:0e:
                    70:d6:ef:0e:8d:2a:83:e4:1b:38:8d:5d:7a:a9:6b:ca:
                    cf:73:bf:22:99:37:50:6c:96:83:dc:1c:4d:10:b8:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:05:16:50:ec:bf:58:9c:18:4f:1b:69:8c:61:02:a0:
        02:5e:cb:6c:ba:38:fe:00:21:9e:42:f3:0b:49:fe:42:
        49:f9:67:75:89:82:cf:b9:45:8b:2a:b5:12:19:d3:0d:
        81:b9:53:44:9a:b6:ce:dd:99:91:e1:a3:9d:f7:9a:9f:
        ef:74:86:ac:16:31:d5:a5:45:ac:c5:81:38:4c:87:50:
        6d:3b:33:5c:e1:c3:8d:6f:1a:bd:f1:bb:4d:66:37:3f:
        22:b4:c2:e6:07:68:5f:bb:1d:24:d7:57:16:2c:95:c1:
        c1:69:e3:ca:9c:39:5b:d5:38:fb:ce:55:c2:6e:2e:3b:
        a2:43:a1:33:b3:9e:f1:ca:cf:f8:d4:50:8c:d7:78:22:
        32:ee:8f:c4:99:7a:f2:e0:50:1d:49:9d:20:98:22:7f:
        0c:cc:76:16:a0:c6:d9:1b:93:cf:28:2b:06:2d:f6:21:
        02:84:aa:74:3d:79:47:cd:07:cb:4f:f9:7e:4f:45:da:
        05:fe:64:5e:a4:66:ac:f6:f6:c7:cb:b7:d1:2a:18:d4:
        d8:c6:2a:4a:cb:65:41:a9:b9:87:06:7e:23:bf:c5:47:
        3f:11:1c:8a:a8:cc:10:a9:36:5e:f4:4a:0e:bc:06:c4:
        83:c3:9e:03:82:a3:9b:2d:42:64:01:4c:b6:ba:61:01
    Fingerprint (SHA-256):
        8D:1C:37:7F:99:51:2F:58:3B:09:EF:6C:70:06:0E:2B:D5:42:9D:84:88:07:12:8D:49:6A:58:32:2B:3D:F0:90
    Fingerprint (SHA1):
        2E:56:F0:36:9D:14:17:FC:A7:A0:7B:91:D7:E2:DB:E8:00:4B:59:88
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7289: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155659 (0x3cdd994b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:02:34 2017
            Not After : Fri Oct 21 16:02:34 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:7c:44:db:3e:3f:79:b6:af:02:21:cb:7a:fc:77:c2:
                    a5:96:20:43:cf:68:22:b1:9d:d0:3a:a5:f3:af:88:2e:
                    ea:8e:85:2f:e0:7f:7d:33:8d:68:f5:5b:3a:82:9b:af:
                    5b:cf:cb:3c:9f:28:19:07:79:aa:93:ed:6c:bd:79:1d:
                    d4:aa:09:0f:b0:9f:b9:95:43:5c:dd:03:00:3f:50:15:
                    77:b9:66:9b:f3:14:5d:79:a9:e1:bc:16:26:84:57:d7:
                    b2:32:fc:be:f4:64:46:54:db:e6:44:8e:e0:77:e6:24:
                    74:70:47:7f:3e:f8:d0:9c:78:05:97:f3:27:a3:d9:32:
                    45:10:1f:73:55:e6:d0:bd:2a:02:53:c1:92:93:d0:31:
                    8d:dd:8f:0b:57:3e:ab:f9:f5:9a:3c:cb:8a:a2:ae:a1:
                    53:5a:3e:4f:81:af:6a:a2:61:45:58:c4:12:c6:f0:61:
                    24:ce:89:4f:f5:32:eb:f2:6b:f6:dc:6c:64:62:fe:31:
                    e9:cf:59:80:28:3c:a4:d8:57:de:d7:7e:df:6c:57:5a:
                    0c:ea:f5:41:53:59:0f:fd:46:4d:0e:d6:e1:22:2f:0e:
                    70:d6:ef:0e:8d:2a:83:e4:1b:38:8d:5d:7a:a9:6b:ca:
                    cf:73:bf:22:99:37:50:6c:96:83:dc:1c:4d:10:b8:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:05:16:50:ec:bf:58:9c:18:4f:1b:69:8c:61:02:a0:
        02:5e:cb:6c:ba:38:fe:00:21:9e:42:f3:0b:49:fe:42:
        49:f9:67:75:89:82:cf:b9:45:8b:2a:b5:12:19:d3:0d:
        81:b9:53:44:9a:b6:ce:dd:99:91:e1:a3:9d:f7:9a:9f:
        ef:74:86:ac:16:31:d5:a5:45:ac:c5:81:38:4c:87:50:
        6d:3b:33:5c:e1:c3:8d:6f:1a:bd:f1:bb:4d:66:37:3f:
        22:b4:c2:e6:07:68:5f:bb:1d:24:d7:57:16:2c:95:c1:
        c1:69:e3:ca:9c:39:5b:d5:38:fb:ce:55:c2:6e:2e:3b:
        a2:43:a1:33:b3:9e:f1:ca:cf:f8:d4:50:8c:d7:78:22:
        32:ee:8f:c4:99:7a:f2:e0:50:1d:49:9d:20:98:22:7f:
        0c:cc:76:16:a0:c6:d9:1b:93:cf:28:2b:06:2d:f6:21:
        02:84:aa:74:3d:79:47:cd:07:cb:4f:f9:7e:4f:45:da:
        05:fe:64:5e:a4:66:ac:f6:f6:c7:cb:b7:d1:2a:18:d4:
        d8:c6:2a:4a:cb:65:41:a9:b9:87:06:7e:23:bf:c5:47:
        3f:11:1c:8a:a8:cc:10:a9:36:5e:f4:4a:0e:bc:06:c4:
        83:c3:9e:03:82:a3:9b:2d:42:64:01:4c:b6:ba:61:01
    Fingerprint (SHA-256):
        8D:1C:37:7F:99:51:2F:58:3B:09:EF:6C:70:06:0E:2B:D5:42:9D:84:88:07:12:8D:49:6A:58:32:2B:3D:F0:90
    Fingerprint (SHA1):
        2E:56:F0:36:9D:14:17:FC:A7:A0:7B:91:D7:E2:DB:E8:00:4B:59:88
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7290: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155659 (0x3cdd994b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:02:34 2017
            Not After : Fri Oct 21 16:02:34 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:7c:44:db:3e:3f:79:b6:af:02:21:cb:7a:fc:77:c2:
                    a5:96:20:43:cf:68:22:b1:9d:d0:3a:a5:f3:af:88:2e:
                    ea:8e:85:2f:e0:7f:7d:33:8d:68:f5:5b:3a:82:9b:af:
                    5b:cf:cb:3c:9f:28:19:07:79:aa:93:ed:6c:bd:79:1d:
                    d4:aa:09:0f:b0:9f:b9:95:43:5c:dd:03:00:3f:50:15:
                    77:b9:66:9b:f3:14:5d:79:a9:e1:bc:16:26:84:57:d7:
                    b2:32:fc:be:f4:64:46:54:db:e6:44:8e:e0:77:e6:24:
                    74:70:47:7f:3e:f8:d0:9c:78:05:97:f3:27:a3:d9:32:
                    45:10:1f:73:55:e6:d0:bd:2a:02:53:c1:92:93:d0:31:
                    8d:dd:8f:0b:57:3e:ab:f9:f5:9a:3c:cb:8a:a2:ae:a1:
                    53:5a:3e:4f:81:af:6a:a2:61:45:58:c4:12:c6:f0:61:
                    24:ce:89:4f:f5:32:eb:f2:6b:f6:dc:6c:64:62:fe:31:
                    e9:cf:59:80:28:3c:a4:d8:57:de:d7:7e:df:6c:57:5a:
                    0c:ea:f5:41:53:59:0f:fd:46:4d:0e:d6:e1:22:2f:0e:
                    70:d6:ef:0e:8d:2a:83:e4:1b:38:8d:5d:7a:a9:6b:ca:
                    cf:73:bf:22:99:37:50:6c:96:83:dc:1c:4d:10:b8:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:05:16:50:ec:bf:58:9c:18:4f:1b:69:8c:61:02:a0:
        02:5e:cb:6c:ba:38:fe:00:21:9e:42:f3:0b:49:fe:42:
        49:f9:67:75:89:82:cf:b9:45:8b:2a:b5:12:19:d3:0d:
        81:b9:53:44:9a:b6:ce:dd:99:91:e1:a3:9d:f7:9a:9f:
        ef:74:86:ac:16:31:d5:a5:45:ac:c5:81:38:4c:87:50:
        6d:3b:33:5c:e1:c3:8d:6f:1a:bd:f1:bb:4d:66:37:3f:
        22:b4:c2:e6:07:68:5f:bb:1d:24:d7:57:16:2c:95:c1:
        c1:69:e3:ca:9c:39:5b:d5:38:fb:ce:55:c2:6e:2e:3b:
        a2:43:a1:33:b3:9e:f1:ca:cf:f8:d4:50:8c:d7:78:22:
        32:ee:8f:c4:99:7a:f2:e0:50:1d:49:9d:20:98:22:7f:
        0c:cc:76:16:a0:c6:d9:1b:93:cf:28:2b:06:2d:f6:21:
        02:84:aa:74:3d:79:47:cd:07:cb:4f:f9:7e:4f:45:da:
        05:fe:64:5e:a4:66:ac:f6:f6:c7:cb:b7:d1:2a:18:d4:
        d8:c6:2a:4a:cb:65:41:a9:b9:87:06:7e:23:bf:c5:47:
        3f:11:1c:8a:a8:cc:10:a9:36:5e:f4:4a:0e:bc:06:c4:
        83:c3:9e:03:82:a3:9b:2d:42:64:01:4c:b6:ba:61:01
    Fingerprint (SHA-256):
        8D:1C:37:7F:99:51:2F:58:3B:09:EF:6C:70:06:0E:2B:D5:42:9D:84:88:07:12:8D:49:6A:58:32:2B:3D:F0:90
    Fingerprint (SHA1):
        2E:56:F0:36:9D:14:17:FC:A7:A0:7B:91:D7:E2:DB:E8:00:4B:59:88
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7291: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155659 (0x3cdd994b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:02:34 2017
            Not After : Fri Oct 21 16:02:34 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:7c:44:db:3e:3f:79:b6:af:02:21:cb:7a:fc:77:c2:
                    a5:96:20:43:cf:68:22:b1:9d:d0:3a:a5:f3:af:88:2e:
                    ea:8e:85:2f:e0:7f:7d:33:8d:68:f5:5b:3a:82:9b:af:
                    5b:cf:cb:3c:9f:28:19:07:79:aa:93:ed:6c:bd:79:1d:
                    d4:aa:09:0f:b0:9f:b9:95:43:5c:dd:03:00:3f:50:15:
                    77:b9:66:9b:f3:14:5d:79:a9:e1:bc:16:26:84:57:d7:
                    b2:32:fc:be:f4:64:46:54:db:e6:44:8e:e0:77:e6:24:
                    74:70:47:7f:3e:f8:d0:9c:78:05:97:f3:27:a3:d9:32:
                    45:10:1f:73:55:e6:d0:bd:2a:02:53:c1:92:93:d0:31:
                    8d:dd:8f:0b:57:3e:ab:f9:f5:9a:3c:cb:8a:a2:ae:a1:
                    53:5a:3e:4f:81:af:6a:a2:61:45:58:c4:12:c6:f0:61:
                    24:ce:89:4f:f5:32:eb:f2:6b:f6:dc:6c:64:62:fe:31:
                    e9:cf:59:80:28:3c:a4:d8:57:de:d7:7e:df:6c:57:5a:
                    0c:ea:f5:41:53:59:0f:fd:46:4d:0e:d6:e1:22:2f:0e:
                    70:d6:ef:0e:8d:2a:83:e4:1b:38:8d:5d:7a:a9:6b:ca:
                    cf:73:bf:22:99:37:50:6c:96:83:dc:1c:4d:10:b8:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:05:16:50:ec:bf:58:9c:18:4f:1b:69:8c:61:02:a0:
        02:5e:cb:6c:ba:38:fe:00:21:9e:42:f3:0b:49:fe:42:
        49:f9:67:75:89:82:cf:b9:45:8b:2a:b5:12:19:d3:0d:
        81:b9:53:44:9a:b6:ce:dd:99:91:e1:a3:9d:f7:9a:9f:
        ef:74:86:ac:16:31:d5:a5:45:ac:c5:81:38:4c:87:50:
        6d:3b:33:5c:e1:c3:8d:6f:1a:bd:f1:bb:4d:66:37:3f:
        22:b4:c2:e6:07:68:5f:bb:1d:24:d7:57:16:2c:95:c1:
        c1:69:e3:ca:9c:39:5b:d5:38:fb:ce:55:c2:6e:2e:3b:
        a2:43:a1:33:b3:9e:f1:ca:cf:f8:d4:50:8c:d7:78:22:
        32:ee:8f:c4:99:7a:f2:e0:50:1d:49:9d:20:98:22:7f:
        0c:cc:76:16:a0:c6:d9:1b:93:cf:28:2b:06:2d:f6:21:
        02:84:aa:74:3d:79:47:cd:07:cb:4f:f9:7e:4f:45:da:
        05:fe:64:5e:a4:66:ac:f6:f6:c7:cb:b7:d1:2a:18:d4:
        d8:c6:2a:4a:cb:65:41:a9:b9:87:06:7e:23:bf:c5:47:
        3f:11:1c:8a:a8:cc:10:a9:36:5e:f4:4a:0e:bc:06:c4:
        83:c3:9e:03:82:a3:9b:2d:42:64:01:4c:b6:ba:61:01
    Fingerprint (SHA-256):
        8D:1C:37:7F:99:51:2F:58:3B:09:EF:6C:70:06:0E:2B:D5:42:9D:84:88:07:12:8D:49:6A:58:32:2B:3D:F0:90
    Fingerprint (SHA1):
        2E:56:F0:36:9D:14:17:FC:A7:A0:7B:91:D7:E2:DB:E8:00:4B:59:88
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7292: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155659 (0x3cdd994b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:02:34 2017
            Not After : Fri Oct 21 16:02:34 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:7c:44:db:3e:3f:79:b6:af:02:21:cb:7a:fc:77:c2:
                    a5:96:20:43:cf:68:22:b1:9d:d0:3a:a5:f3:af:88:2e:
                    ea:8e:85:2f:e0:7f:7d:33:8d:68:f5:5b:3a:82:9b:af:
                    5b:cf:cb:3c:9f:28:19:07:79:aa:93:ed:6c:bd:79:1d:
                    d4:aa:09:0f:b0:9f:b9:95:43:5c:dd:03:00:3f:50:15:
                    77:b9:66:9b:f3:14:5d:79:a9:e1:bc:16:26:84:57:d7:
                    b2:32:fc:be:f4:64:46:54:db:e6:44:8e:e0:77:e6:24:
                    74:70:47:7f:3e:f8:d0:9c:78:05:97:f3:27:a3:d9:32:
                    45:10:1f:73:55:e6:d0:bd:2a:02:53:c1:92:93:d0:31:
                    8d:dd:8f:0b:57:3e:ab:f9:f5:9a:3c:cb:8a:a2:ae:a1:
                    53:5a:3e:4f:81:af:6a:a2:61:45:58:c4:12:c6:f0:61:
                    24:ce:89:4f:f5:32:eb:f2:6b:f6:dc:6c:64:62:fe:31:
                    e9:cf:59:80:28:3c:a4:d8:57:de:d7:7e:df:6c:57:5a:
                    0c:ea:f5:41:53:59:0f:fd:46:4d:0e:d6:e1:22:2f:0e:
                    70:d6:ef:0e:8d:2a:83:e4:1b:38:8d:5d:7a:a9:6b:ca:
                    cf:73:bf:22:99:37:50:6c:96:83:dc:1c:4d:10:b8:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:05:16:50:ec:bf:58:9c:18:4f:1b:69:8c:61:02:a0:
        02:5e:cb:6c:ba:38:fe:00:21:9e:42:f3:0b:49:fe:42:
        49:f9:67:75:89:82:cf:b9:45:8b:2a:b5:12:19:d3:0d:
        81:b9:53:44:9a:b6:ce:dd:99:91:e1:a3:9d:f7:9a:9f:
        ef:74:86:ac:16:31:d5:a5:45:ac:c5:81:38:4c:87:50:
        6d:3b:33:5c:e1:c3:8d:6f:1a:bd:f1:bb:4d:66:37:3f:
        22:b4:c2:e6:07:68:5f:bb:1d:24:d7:57:16:2c:95:c1:
        c1:69:e3:ca:9c:39:5b:d5:38:fb:ce:55:c2:6e:2e:3b:
        a2:43:a1:33:b3:9e:f1:ca:cf:f8:d4:50:8c:d7:78:22:
        32:ee:8f:c4:99:7a:f2:e0:50:1d:49:9d:20:98:22:7f:
        0c:cc:76:16:a0:c6:d9:1b:93:cf:28:2b:06:2d:f6:21:
        02:84:aa:74:3d:79:47:cd:07:cb:4f:f9:7e:4f:45:da:
        05:fe:64:5e:a4:66:ac:f6:f6:c7:cb:b7:d1:2a:18:d4:
        d8:c6:2a:4a:cb:65:41:a9:b9:87:06:7e:23:bf:c5:47:
        3f:11:1c:8a:a8:cc:10:a9:36:5e:f4:4a:0e:bc:06:c4:
        83:c3:9e:03:82:a3:9b:2d:42:64:01:4c:b6:ba:61:01
    Fingerprint (SHA-256):
        8D:1C:37:7F:99:51:2F:58:3B:09:EF:6C:70:06:0E:2B:D5:42:9D:84:88:07:12:8D:49:6A:58:32:2B:3D:F0:90
    Fingerprint (SHA1):
        2E:56:F0:36:9D:14:17:FC:A7:A0:7B:91:D7:E2:DB:E8:00:4B:59:88
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7293: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155659 (0x3cdd994b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:02:34 2017
            Not After : Fri Oct 21 16:02:34 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:7c:44:db:3e:3f:79:b6:af:02:21:cb:7a:fc:77:c2:
                    a5:96:20:43:cf:68:22:b1:9d:d0:3a:a5:f3:af:88:2e:
                    ea:8e:85:2f:e0:7f:7d:33:8d:68:f5:5b:3a:82:9b:af:
                    5b:cf:cb:3c:9f:28:19:07:79:aa:93:ed:6c:bd:79:1d:
                    d4:aa:09:0f:b0:9f:b9:95:43:5c:dd:03:00:3f:50:15:
                    77:b9:66:9b:f3:14:5d:79:a9:e1:bc:16:26:84:57:d7:
                    b2:32:fc:be:f4:64:46:54:db:e6:44:8e:e0:77:e6:24:
                    74:70:47:7f:3e:f8:d0:9c:78:05:97:f3:27:a3:d9:32:
                    45:10:1f:73:55:e6:d0:bd:2a:02:53:c1:92:93:d0:31:
                    8d:dd:8f:0b:57:3e:ab:f9:f5:9a:3c:cb:8a:a2:ae:a1:
                    53:5a:3e:4f:81:af:6a:a2:61:45:58:c4:12:c6:f0:61:
                    24:ce:89:4f:f5:32:eb:f2:6b:f6:dc:6c:64:62:fe:31:
                    e9:cf:59:80:28:3c:a4:d8:57:de:d7:7e:df:6c:57:5a:
                    0c:ea:f5:41:53:59:0f:fd:46:4d:0e:d6:e1:22:2f:0e:
                    70:d6:ef:0e:8d:2a:83:e4:1b:38:8d:5d:7a:a9:6b:ca:
                    cf:73:bf:22:99:37:50:6c:96:83:dc:1c:4d:10:b8:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:05:16:50:ec:bf:58:9c:18:4f:1b:69:8c:61:02:a0:
        02:5e:cb:6c:ba:38:fe:00:21:9e:42:f3:0b:49:fe:42:
        49:f9:67:75:89:82:cf:b9:45:8b:2a:b5:12:19:d3:0d:
        81:b9:53:44:9a:b6:ce:dd:99:91:e1:a3:9d:f7:9a:9f:
        ef:74:86:ac:16:31:d5:a5:45:ac:c5:81:38:4c:87:50:
        6d:3b:33:5c:e1:c3:8d:6f:1a:bd:f1:bb:4d:66:37:3f:
        22:b4:c2:e6:07:68:5f:bb:1d:24:d7:57:16:2c:95:c1:
        c1:69:e3:ca:9c:39:5b:d5:38:fb:ce:55:c2:6e:2e:3b:
        a2:43:a1:33:b3:9e:f1:ca:cf:f8:d4:50:8c:d7:78:22:
        32:ee:8f:c4:99:7a:f2:e0:50:1d:49:9d:20:98:22:7f:
        0c:cc:76:16:a0:c6:d9:1b:93:cf:28:2b:06:2d:f6:21:
        02:84:aa:74:3d:79:47:cd:07:cb:4f:f9:7e:4f:45:da:
        05:fe:64:5e:a4:66:ac:f6:f6:c7:cb:b7:d1:2a:18:d4:
        d8:c6:2a:4a:cb:65:41:a9:b9:87:06:7e:23:bf:c5:47:
        3f:11:1c:8a:a8:cc:10:a9:36:5e:f4:4a:0e:bc:06:c4:
        83:c3:9e:03:82:a3:9b:2d:42:64:01:4c:b6:ba:61:01
    Fingerprint (SHA-256):
        8D:1C:37:7F:99:51:2F:58:3B:09:EF:6C:70:06:0E:2B:D5:42:9D:84:88:07:12:8D:49:6A:58:32:2B:3D:F0:90
    Fingerprint (SHA1):
        2E:56:F0:36:9D:14:17:FC:A7:A0:7B:91:D7:E2:DB:E8:00:4B:59:88
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7294: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7295: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7296: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155689 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7297: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7298: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #7299: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7300: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 1021155690   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7301: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7302: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #7303: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7304: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 1021155691   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7305: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7306: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #7307: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7308: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 1021155692   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7309: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7310: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #7311: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7312: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 1021155693   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7313: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7314: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #7315: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7316: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 1021155694   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7317: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7318: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #7319: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7320: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 1021155695   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7321: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7322: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7323: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155689 (0x3cdd9969)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:05:50 2017
            Not After : Fri Oct 21 16:05:50 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:e6:1d:6e:da:b8:64:bc:96:81:24:0e:64:9c:07:56:
                    4f:24:76:fb:af:89:5a:12:e2:a5:57:c5:b7:0d:81:fe:
                    b9:2b:71:0c:00:8e:3a:c9:34:d1:3f:8b:0a:2a:a0:1c:
                    9c:ab:37:9c:bf:44:46:e1:48:66:39:eb:7d:86:50:b7:
                    10:5d:00:6b:8a:31:66:e6:1c:fc:19:71:59:21:c8:fa:
                    e1:12:6b:e5:e6:7d:d3:16:0a:15:07:ef:64:77:73:f4:
                    ff:26:88:a6:cb:e5:21:0d:d6:f8:58:ff:55:40:ca:73:
                    86:92:5e:a7:3b:5a:ff:b4:3b:08:e0:cf:35:e2:38:dd:
                    ab:37:15:5d:5c:4b:d1:e4:1c:35:8f:f0:3c:a1:7d:13:
                    3d:99:b3:3e:0f:09:54:3c:1f:5f:da:29:eb:06:71:c4:
                    ad:b3:21:57:c2:17:06:cf:91:41:c2:1a:f2:1f:3d:28:
                    70:b7:50:5f:76:18:18:0a:7d:eb:e8:45:c2:a1:d5:81:
                    3b:bb:3a:f5:53:9d:33:2b:e9:0f:a1:a5:ea:b5:83:a5:
                    2f:2d:90:e6:95:92:0a:e7:a7:a1:23:9f:11:15:c1:96:
                    97:84:23:61:19:61:af:bd:4b:ae:b4:19:c5:f4:2f:ca:
                    6e:5f:d9:7d:d3:1e:40:e7:76:5c:4b:74:6a:85:c1:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:b3:d8:94:a6:b8:44:b4:13:85:87:08:4a:4c:7a:34:
        a1:ed:8c:0c:50:bf:7d:ab:58:0d:ee:ec:f0:e0:90:31:
        c1:ec:46:ad:84:e6:62:36:5d:86:16:62:d0:3f:19:c4:
        4e:14:5c:8d:9b:ea:18:bd:3e:47:40:a5:46:8d:24:1d:
        d9:82:97:9f:c1:38:6f:e1:e3:0e:e3:69:15:25:52:d8:
        16:cb:27:89:78:fc:99:d7:97:69:6a:9a:5a:23:e9:93:
        f9:e0:8c:ff:d0:18:00:eb:aa:a6:59:68:33:7d:a2:1c:
        32:2f:69:7f:e1:87:cb:24:6f:92:c5:8f:40:04:a2:12:
        77:f3:b3:e3:e6:ec:ee:ce:81:f5:60:a2:90:3a:10:80:
        51:5d:ce:ee:f5:5d:e7:4c:35:dc:94:72:2b:22:13:4d:
        08:de:96:c9:a4:90:b0:74:e5:fc:5d:25:5e:c0:8c:46:
        eb:c0:dc:d3:8d:05:51:3d:d6:71:79:74:5d:e0:a4:26:
        aa:c1:03:8e:a0:b9:f3:94:ad:2f:12:48:3b:23:23:99:
        f4:bd:17:b5:91:79:78:8e:26:64:2e:d0:4d:79:56:b6:
        81:90:ab:49:bd:69:35:1b:65:ab:6d:6a:b4:4b:66:07:
        fe:59:5c:cd:1f:52:f9:57:fa:99:04:76:16:ab:3a:1a
    Fingerprint (SHA-256):
        00:9F:DB:17:9C:AB:60:70:E9:7B:7C:3B:3A:04:F2:A3:BC:8E:29:AA:76:F8:7B:AE:8A:D1:48:37:0E:74:59:7C
    Fingerprint (SHA1):
        E0:E0:FB:70:75:FE:70:53:CA:81:D3:31:EC:44:30:BE:81:37:B1:CE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7324: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7325: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7326: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7327: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155689 (0x3cdd9969)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:05:50 2017
            Not After : Fri Oct 21 16:05:50 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:e6:1d:6e:da:b8:64:bc:96:81:24:0e:64:9c:07:56:
                    4f:24:76:fb:af:89:5a:12:e2:a5:57:c5:b7:0d:81:fe:
                    b9:2b:71:0c:00:8e:3a:c9:34:d1:3f:8b:0a:2a:a0:1c:
                    9c:ab:37:9c:bf:44:46:e1:48:66:39:eb:7d:86:50:b7:
                    10:5d:00:6b:8a:31:66:e6:1c:fc:19:71:59:21:c8:fa:
                    e1:12:6b:e5:e6:7d:d3:16:0a:15:07:ef:64:77:73:f4:
                    ff:26:88:a6:cb:e5:21:0d:d6:f8:58:ff:55:40:ca:73:
                    86:92:5e:a7:3b:5a:ff:b4:3b:08:e0:cf:35:e2:38:dd:
                    ab:37:15:5d:5c:4b:d1:e4:1c:35:8f:f0:3c:a1:7d:13:
                    3d:99:b3:3e:0f:09:54:3c:1f:5f:da:29:eb:06:71:c4:
                    ad:b3:21:57:c2:17:06:cf:91:41:c2:1a:f2:1f:3d:28:
                    70:b7:50:5f:76:18:18:0a:7d:eb:e8:45:c2:a1:d5:81:
                    3b:bb:3a:f5:53:9d:33:2b:e9:0f:a1:a5:ea:b5:83:a5:
                    2f:2d:90:e6:95:92:0a:e7:a7:a1:23:9f:11:15:c1:96:
                    97:84:23:61:19:61:af:bd:4b:ae:b4:19:c5:f4:2f:ca:
                    6e:5f:d9:7d:d3:1e:40:e7:76:5c:4b:74:6a:85:c1:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:b3:d8:94:a6:b8:44:b4:13:85:87:08:4a:4c:7a:34:
        a1:ed:8c:0c:50:bf:7d:ab:58:0d:ee:ec:f0:e0:90:31:
        c1:ec:46:ad:84:e6:62:36:5d:86:16:62:d0:3f:19:c4:
        4e:14:5c:8d:9b:ea:18:bd:3e:47:40:a5:46:8d:24:1d:
        d9:82:97:9f:c1:38:6f:e1:e3:0e:e3:69:15:25:52:d8:
        16:cb:27:89:78:fc:99:d7:97:69:6a:9a:5a:23:e9:93:
        f9:e0:8c:ff:d0:18:00:eb:aa:a6:59:68:33:7d:a2:1c:
        32:2f:69:7f:e1:87:cb:24:6f:92:c5:8f:40:04:a2:12:
        77:f3:b3:e3:e6:ec:ee:ce:81:f5:60:a2:90:3a:10:80:
        51:5d:ce:ee:f5:5d:e7:4c:35:dc:94:72:2b:22:13:4d:
        08:de:96:c9:a4:90:b0:74:e5:fc:5d:25:5e:c0:8c:46:
        eb:c0:dc:d3:8d:05:51:3d:d6:71:79:74:5d:e0:a4:26:
        aa:c1:03:8e:a0:b9:f3:94:ad:2f:12:48:3b:23:23:99:
        f4:bd:17:b5:91:79:78:8e:26:64:2e:d0:4d:79:56:b6:
        81:90:ab:49:bd:69:35:1b:65:ab:6d:6a:b4:4b:66:07:
        fe:59:5c:cd:1f:52:f9:57:fa:99:04:76:16:ab:3a:1a
    Fingerprint (SHA-256):
        00:9F:DB:17:9C:AB:60:70:E9:7B:7C:3B:3A:04:F2:A3:BC:8E:29:AA:76:F8:7B:AE:8A:D1:48:37:0E:74:59:7C
    Fingerprint (SHA1):
        E0:E0:FB:70:75:FE:70:53:CA:81:D3:31:EC:44:30:BE:81:37:B1:CE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7328: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7329: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7330: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7331: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155696 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7332: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7333: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7334: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7335: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021155697   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7336: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7337: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7338: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7339: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021155698   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7340: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7341: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7342: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7343: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 1021155699   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7344: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7345: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7346: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7347: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7348: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7349: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155696 (0x3cdd9970)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:06:38 2017
            Not After : Fri Oct 21 16:06:38 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    98:fb:3b:81:49:e3:78:ce:e3:ef:79:00:0f:92:78:ae:
                    a9:bd:db:29:61:d3:73:3a:01:c8:a7:89:15:b6:11:e8:
                    b0:17:72:5d:81:63:29:22:c6:89:c0:19:d4:bf:f8:be:
                    86:e2:8e:77:c2:fd:0b:fb:5a:be:eb:2c:c4:d1:17:b3:
                    e5:9b:91:a3:5e:d9:34:46:21:94:fb:f4:d3:af:48:9c:
                    f7:fa:e1:d7:e5:ac:92:68:cc:a1:a5:44:4c:79:71:f8:
                    9f:83:c9:8c:af:a7:20:54:83:11:e1:a0:64:e5:c7:42:
                    69:8e:c9:0f:2f:ce:9b:68:26:a7:8a:bc:32:ed:82:cc:
                    b1:8a:3c:5d:ee:d2:5a:9f:30:21:c5:8a:a9:4f:c5:2b:
                    3b:51:be:52:06:f7:5f:d4:21:78:0f:4a:fc:8a:b4:94:
                    d2:69:26:e0:f3:08:85:40:1e:6b:31:0f:f2:a3:fd:6e:
                    79:7b:b1:5b:c1:07:1a:ba:a8:29:13:6b:aa:98:19:a0:
                    5e:5c:cb:c7:72:d4:1d:c5:9d:eb:37:e0:10:e3:ef:90:
                    1d:7c:cf:ca:4c:51:90:c1:f0:ec:6f:21:e3:d1:8b:04:
                    65:b7:80:e0:8c:7d:61:24:90:e7:72:88:48:45:1d:1a:
                    b5:e4:c6:af:25:66:62:49:4c:78:79:61:3b:7e:4d:73
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        44:56:b4:ea:3f:88:ce:76:f0:27:bb:d6:e7:fa:94:e9:
        33:74:0a:b6:ea:c0:61:24:39:a8:d4:5a:8f:8e:65:75:
        bb:9d:bb:25:37:82:e3:43:98:9f:68:ad:7d:2b:c1:99:
        91:53:52:0e:a6:19:25:3c:73:b7:7d:ff:a6:c3:66:26:
        88:1f:8c:60:3a:7e:60:9a:f3:77:2a:fd:ca:5e:5d:68:
        7a:36:2a:6b:28:2a:b7:5e:d4:01:87:89:b8:97:fa:e0:
        98:fa:33:93:b0:ce:b8:5e:fa:04:73:6c:03:29:28:e3:
        bb:8d:c3:35:69:31:74:b3:53:cf:4a:51:c7:5d:f7:8c:
        68:7d:70:84:43:10:f2:f2:54:15:b9:e4:00:cb:d1:4a:
        4c:6a:f0:ae:04:02:02:f9:8a:e3:e0:a1:33:ba:02:e5:
        14:7d:a0:a9:77:bd:a7:2d:ab:f2:3b:df:e6:40:2b:e6:
        7e:8f:b6:9f:88:62:32:10:f9:fc:28:96:3f:4e:46:79:
        89:3f:7d:51:4b:a2:e3:30:61:aa:1f:88:b1:85:ca:e9:
        3e:01:52:1f:1c:b5:c0:ac:ce:ed:29:0a:df:0e:56:d4:
        c9:ff:37:9d:7e:bc:0b:e0:40:d6:f2:68:63:b0:85:1a:
        9f:07:1b:b8:d1:51:47:88:bd:bb:6c:04:b9:82:11:47
    Fingerprint (SHA-256):
        40:89:AC:36:9B:7C:89:59:0A:FD:99:EF:DE:8B:77:5A:E0:91:9C:8F:B2:A7:6F:98:6C:65:E7:44:28:DB:60:10
    Fingerprint (SHA1):
        BC:F1:00:F4:E8:ED:56:25:0D:85:F0:18:C3:E0:F6:DA:29:8E:CD:7F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7350: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7351: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7352: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155697 (0x3cdd9971)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:06:42 2017
            Not After : Fri Oct 21 16:06:42 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:b8:53:19:45:77:5a:60:7a:3c:b4:f4:8c:ed:c7:b7:
                    5e:9f:00:a7:46:64:c0:96:4d:3c:c4:c3:d9:0e:9d:a2:
                    0f:7e:cf:43:89:ad:f9:07:31:9d:1e:6c:6b:77:69:6c:
                    ca:7f:a9:1c:bf:3f:b3:f4:72:fa:60:09:26:a4:65:7c:
                    82:9e:6a:1a:3f:c0:30:91:28:20:39:9b:64:a4:de:ff:
                    37:97:13:31:89:30:83:b9:cc:a4:7a:41:82:17:88:3d:
                    60:55:21:d1:e8:63:25:71:58:16:c3:ed:0b:00:9f:d4:
                    ea:86:f6:76:8e:74:b9:1e:42:87:cd:00:4e:bd:94:ab:
                    27:cb:93:a5:96:5b:a9:90:4c:0e:68:f7:a5:55:8f:fa:
                    63:11:ea:1a:6f:cd:f3:28:e2:6d:a4:85:cc:26:f6:b3:
                    1d:65:13:3c:4e:fa:c8:ac:39:27:62:db:7e:4e:7c:c1:
                    f1:4e:b8:ed:ad:f3:6d:ba:dd:f9:fa:cc:15:b7:f3:c8:
                    7a:fe:df:bc:7c:0c:5c:cd:ec:13:52:da:63:a6:d4:46:
                    7f:40:78:61:42:8c:8b:ce:17:94:a8:44:20:fe:39:24:
                    11:be:2f:d1:d1:dd:bc:00:f1:40:6d:b4:b0:24:0d:60:
                    3a:44:8e:51:10:98:59:c3:ed:08:54:32:51:34:e7:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:5a:c6:4a:8c:cb:b0:e7:80:ef:9a:29:57:e4:34:df:
        d6:08:69:7a:60:80:f5:37:b3:73:ab:ab:a9:d3:af:e1:
        02:00:e2:9b:23:e1:dd:b0:5a:cf:3a:2c:62:c7:d4:0b:
        3e:04:e2:e7:e7:22:40:46:69:a2:7a:ff:7f:48:27:32:
        4e:22:67:da:bf:f8:49:94:d3:51:d1:9f:4e:b4:91:ff:
        f2:1a:b6:24:e4:e5:c3:80:48:d3:9b:ac:8e:19:93:20:
        3a:a5:97:77:2c:e4:30:54:79:5c:36:3e:43:c8:e3:81:
        83:f0:1a:61:89:b1:3a:56:6c:6f:17:db:9b:b8:51:03:
        51:9e:ac:2f:08:11:8e:b2:0c:03:40:37:34:37:12:65:
        09:f0:8e:44:1c:99:da:0b:25:16:0a:7d:e8:9d:73:c6:
        e1:84:15:5b:48:67:80:9b:6b:ee:0d:ef:06:22:ad:49:
        a9:ac:23:03:ec:c8:3c:61:7e:e6:f7:cc:47:96:aa:8f:
        93:e2:e4:23:1e:4c:46:c0:41:8a:8d:b4:ee:b2:8f:ba:
        58:70:60:ce:09:d9:b5:0a:26:04:43:11:6d:6b:70:af:
        df:44:49:81:89:87:9a:57:6b:dc:84:f0:c3:05:3e:2d:
        ff:c1:37:1a:6d:b7:1f:c0:80:4f:d8:46:0f:0e:50:95
    Fingerprint (SHA-256):
        61:53:CD:6C:44:D8:9D:46:63:0E:D6:26:E1:A4:EA:57:0D:31:82:21:B2:9A:35:E0:B0:26:6D:75:64:90:2B:12
    Fingerprint (SHA1):
        47:A0:AC:D8:2F:54:9A:28:1E:73:A8:CE:7C:FC:71:59:E8:13:F8:7C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7353: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7354: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155698 (0x3cdd9972)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 16:06:46 2017
            Not After : Fri Oct 21 16:06:46 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:a8:88:18:f0:a9:39:d4:f1:1a:b4:80:f5:60:c9:a7:
                    f2:c1:98:ea:22:26:cb:09:f5:d0:6a:10:31:d2:fe:c5:
                    02:61:53:76:b5:97:a1:05:25:ed:a3:9f:bc:74:95:1d:
                    77:9f:ae:9c:3e:c2:1d:4c:85:25:45:b3:79:36:dc:58:
                    1e:29:6f:fb:03:f7:62:cd:9d:0f:38:f2:a4:04:db:5b:
                    49:1a:f7:dd:b3:4d:23:23:32:26:11:85:26:84:ab:8e:
                    81:23:8a:9d:10:18:3c:eb:3b:6a:a8:20:6b:ce:b1:91:
                    48:40:97:08:eb:6e:34:7b:2e:be:5d:bf:e1:fa:cd:53:
                    75:a6:08:fc:3b:d2:9f:02:95:1a:e7:e8:9f:61:36:04:
                    ff:d6:d2:44:1a:8a:29:98:33:24:74:71:0e:2b:2f:dc:
                    70:9f:33:7a:9d:fa:13:e2:18:99:2d:f9:54:ce:85:15:
                    b3:a7:c1:0b:95:17:bf:b4:92:06:82:15:a0:10:28:c0:
                    21:02:6f:28:83:77:4c:37:49:1b:04:c9:8f:52:81:3d:
                    c9:c4:5a:a7:dd:88:54:de:9e:f6:80:00:40:c4:fc:84:
                    86:ae:37:ef:9b:1b:68:d4:8b:20:47:74:51:c8:18:18:
                    e6:5e:36:05:e7:00:0e:f4:57:5c:f1:df:8d:14:ef:43
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9a:cb:30:0b:d6:a3:88:d3:3c:6e:b3:ce:ed:88:6b:51:
        7d:12:bb:2c:1b:6f:cb:5b:02:e5:19:4c:18:d6:89:ba:
        60:27:19:28:ef:19:63:63:f1:b2:4b:1a:0a:5c:db:0b:
        ac:cf:57:1b:42:58:03:c1:10:4a:9e:ab:7c:5d:1f:8b:
        87:2c:97:2c:fe:df:06:19:c6:02:50:fd:a1:40:f2:a9:
        a2:b3:7f:7b:c1:64:a2:73:d9:f8:ac:8e:9c:17:d0:85:
        f1:b8:36:b9:fa:5d:48:e8:42:9e:64:a8:df:b7:50:68:
        f0:50:b9:4d:d5:10:0a:1c:38:3c:c6:bc:83:73:ae:64:
        c3:16:d1:83:7f:eb:ec:ff:8c:14:78:bd:9a:cc:74:d3:
        e0:93:32:44:89:0d:f7:81:5f:ac:0a:42:bc:38:90:fa:
        59:18:bb:6a:42:72:ce:38:c0:d9:10:db:43:bc:ae:b9:
        6f:3b:c4:1c:51:d3:ab:67:ae:c7:93:45:7e:d8:46:9d:
        9e:79:83:00:1a:5d:29:2c:8d:99:59:5e:0c:eb:1a:a0:
        12:81:86:2b:58:f2:46:04:d1:3c:03:31:d6:c7:82:c3:
        13:82:7f:91:1c:f5:cb:67:49:6f:da:8f:4a:ca:9e:a1:
        ed:ae:1f:b4:1d:e3:7c:d1:c0:ce:4d:4e:87:ad:7a:7e
    Fingerprint (SHA-256):
        7E:1C:85:81:71:E1:3F:81:98:83:0E:7A:6F:26:0B:EA:97:8B:F2:91:94:0B:38:51:EB:B5:36:1C:66:A5:3D:8D
    Fingerprint (SHA1):
        E9:06:4C:15:24:9A:AD:E7:7C:04:23:1D:7B:D8:D1:C8:10:57:72:F0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #7355: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7356: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155700 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7357: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7358: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7359: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7360: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021155701   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7361: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7362: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7363: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7364: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021155702   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7365: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7366: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #7367: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7368: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 1021155703   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7369: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7370: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7371: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7372: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 1021155704   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7373: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7374: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7375: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7376: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7377: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7378: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #7379: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155700 (0x3cdd9974)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:07:04 2017
            Not After : Fri Oct 21 16:07:04 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:f9:b6:a0:26:0d:df:83:5e:51:7f:fd:4f:b4:67:aa:
                    4d:9a:34:bd:de:61:95:33:e8:d5:be:3f:25:0d:48:ae:
                    05:bc:5b:af:ad:16:e2:ad:57:ea:1b:bd:d6:eb:5e:bd:
                    77:51:fa:b4:a0:ed:b2:b1:03:4b:44:44:c7:67:3a:bb:
                    2a:60:95:fb:19:69:d2:a9:7f:aa:fa:c6:17:1f:61:f0:
                    78:12:1d:4a:4a:82:cf:a8:b9:e3:91:51:23:b5:95:46:
                    82:bd:38:66:85:30:23:72:fd:15:ac:7a:28:8f:7f:5c:
                    5c:03:3f:21:e8:8e:f1:eb:e8:fb:4b:7d:00:c8:16:a5:
                    e5:f5:02:43:d8:f4:3a:47:3b:35:e2:fd:f9:58:e1:1e:
                    79:c0:68:60:f2:8a:f7:1f:78:7f:89:e8:50:3c:50:83:
                    93:26:a0:87:bf:85:57:1d:de:57:83:fe:18:ad:7d:2d:
                    6b:0b:8e:61:8c:8f:71:1a:c2:53:54:ec:27:7e:75:5e:
                    f7:0a:86:8b:0b:59:0d:76:4d:85:63:28:9c:91:d2:7e:
                    c8:29:c8:32:a7:d0:6e:7c:82:fa:3f:f5:d3:f6:2d:cc:
                    d4:a0:74:16:f6:3b:d6:5d:40:dd:ea:4c:6f:1e:e9:5e:
                    84:78:0c:15:36:36:a5:25:4e:e7:55:4a:57:09:f4:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:57:3c:02:47:b8:43:ba:3d:99:49:06:97:6e:9a:1d:
        89:73:72:8d:cb:a0:40:65:66:76:00:dd:4b:ec:3c:8d:
        d5:4a:d0:8d:3c:a9:61:e8:1a:93:a3:f1:b7:c8:a3:18:
        f3:9c:ea:c1:58:b2:c8:44:ec:84:2f:7d:43:3d:1e:af:
        cb:75:a6:0c:0a:e1:02:27:7c:b4:58:78:a2:81:f8:75:
        ed:3a:bf:c4:5c:18:8a:c3:9b:8b:3e:14:18:0b:5a:49:
        14:22:b9:e9:8b:d0:ed:54:68:65:95:ef:9e:87:8b:79:
        eb:c2:0c:73:5b:f0:57:5e:37:55:d1:bf:e2:0b:55:5d:
        54:ef:06:1a:00:f3:30:b1:2a:05:b9:a2:f7:cd:d9:14:
        fb:1f:61:fc:d5:3c:d4:05:01:75:04:fc:46:7b:d4:5b:
        53:7c:3e:5a:a2:35:84:ee:18:3e:27:16:a3:a6:9c:f1:
        f9:41:88:82:66:43:72:f7:88:b5:87:11:7a:c1:65:3f:
        3f:11:9f:eb:c7:12:4f:47:9a:45:2e:7a:50:e8:30:2a:
        40:c5:3f:38:b5:be:da:64:c8:db:ca:32:b4:4f:52:3b:
        fb:a8:42:0b:0f:a8:2d:69:e6:4b:69:f4:25:fc:86:33:
        83:33:9b:04:83:bf:76:83:16:85:82:75:e4:93:9c:c1
    Fingerprint (SHA-256):
        04:28:2B:DD:9E:73:14:71:7B:45:8F:37:C6:E5:DA:3C:66:F9:5E:14:85:92:20:22:66:1C:90:87:50:AB:84:2D
    Fingerprint (SHA1):
        A2:F7:8E:F9:FA:35:62:22:87:77:EA:70:EA:31:82:87:66:F5:CD:E4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7380: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7381: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155701 (0x3cdd9975)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:07:09 2017
            Not After : Fri Oct 21 16:07:09 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:2f:72:0e:d4:57:ba:2c:d5:72:1a:d4:6b:4d:05:1e:
                    cc:10:02:cb:9d:24:01:ca:de:46:a0:af:7d:ad:70:8c:
                    de:be:40:1b:d4:52:41:8f:21:e4:5f:8c:d4:0f:e1:2c:
                    9e:a4:63:2c:28:15:4f:eb:3a:27:ef:e2:67:f0:cd:ad:
                    5a:ee:10:15:15:8c:1e:48:f8:c3:f0:83:ea:d2:f7:ef:
                    ff:12:29:8e:a5:de:1d:a8:f5:c3:e8:25:d2:e6:40:a2:
                    85:de:5e:e8:67:a7:1b:cf:34:a4:be:0c:21:9f:ba:7f:
                    4e:52:8e:95:86:78:5a:a9:58:57:0c:2b:fe:2f:ad:f9:
                    92:f8:53:b4:1e:c3:36:38:c3:f9:d9:e5:f1:b3:47:49:
                    fd:4e:f0:a8:4d:53:f1:13:97:c0:2d:92:3a:c7:0e:fe:
                    a3:1f:c9:a6:14:6c:e7:c6:ab:d1:91:73:3b:cd:55:10:
                    a4:cc:ea:68:c4:fe:48:0d:ec:81:39:18:73:e2:03:71:
                    6d:ac:b1:92:a3:0a:99:54:56:71:b3:84:6f:ff:2a:c1:
                    33:7f:76:bc:97:18:1a:45:ab:2a:70:1c:57:e4:2c:07:
                    cb:42:79:39:3a:72:65:f9:71:17:5b:ac:a2:96:14:50:
                    1a:40:e3:ce:90:fb:a1:5e:97:59:1d:a6:86:c1:f8:e7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:b1:a7:90:df:4a:5d:b2:47:1a:e7:88:ce:01:a7:ed:
        7f:7c:ed:71:c1:18:5e:c3:66:cb:23:5b:f2:ab:20:4a:
        8e:5e:67:f7:f5:c3:81:cc:96:7c:57:12:1c:91:31:54:
        0c:65:d1:65:e4:c2:01:c4:2c:00:34:ea:f3:dd:d7:68:
        49:d0:86:33:6a:06:42:27:6f:60:dc:bc:74:9c:fc:89:
        67:5c:3a:62:e1:6f:c5:d4:3b:32:ce:64:f6:15:42:67:
        c4:48:0a:a8:99:40:50:5c:39:7e:d5:51:24:3d:0c:ed:
        f8:4e:f7:90:41:b4:ed:6b:d9:18:73:69:59:e9:7e:d6:
        c0:b4:1b:9b:a3:e0:f0:09:95:71:26:ed:99:da:93:57:
        32:59:2a:86:d0:0e:46:d9:17:d6:d3:e7:e3:78:9d:1d:
        5c:44:9c:24:b3:b7:a3:a2:05:7b:93:2d:fe:b7:b0:e5:
        d3:c1:f8:39:67:7e:a5:1e:56:bf:06:1e:f4:a1:ed:a1:
        b6:0b:fd:a0:26:a5:bb:6f:e5:1f:79:71:e1:07:93:e9:
        c6:72:17:c4:35:85:4a:e2:81:2f:c4:17:f3:c3:1e:9f:
        20:67:42:c9:d5:0d:9f:d8:fa:c2:38:42:70:6a:f1:6d:
        24:d8:4c:63:7d:3f:07:43:24:79:9a:7d:f7:04:5e:91
    Fingerprint (SHA-256):
        55:82:F7:01:9E:BC:18:26:A7:76:2B:17:63:6D:C6:8C:30:52:A6:34:BB:83:D8:0F:94:CF:3F:91:3D:AB:B3:F0
    Fingerprint (SHA1):
        9A:A9:23:AA:71:C9:ED:66:EF:F7:6B:BF:78:EB:8C:CC:3B:E0:14:81
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7382: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7383: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7384: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155702 (0x3cdd9976)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 16:07:14 2017
            Not After : Fri Oct 21 16:07:14 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:05:db:79:06:b2:99:26:46:e9:d1:e0:8e:63:f4:8f:
                    f6:3a:df:2e:07:e0:dd:5f:c8:ff:24:d4:cb:f2:13:14:
                    e1:9e:9b:12:d0:2c:2d:75:a5:0c:d9:d3:ad:fd:ff:04:
                    8f:6c:c3:b7:16:6f:6b:3d:db:21:00:82:51:d2:d2:b2:
                    43:ce:ba:73:9b:a4:9f:70:b8:14:42:83:93:65:a7:58:
                    43:6d:f1:3b:df:46:c9:74:54:b6:0f:f2:09:8b:c9:52:
                    d5:c4:6d:97:31:54:fe:1c:ee:52:64:50:ca:e4:d8:58:
                    3b:90:09:b5:84:55:5f:a2:9a:c9:b3:c5:90:96:73:d9:
                    98:e2:97:7d:63:19:44:6a:bb:3c:dd:34:3e:36:e5:04:
                    1e:64:0d:20:bd:12:f6:9f:5e:18:45:2c:86:a8:79:01:
                    c2:53:38:8f:56:b1:8c:4f:86:8f:2b:5c:f7:d3:dc:9a:
                    74:d2:17:71:fd:81:f1:b3:73:46:82:a4:fc:a6:79:60:
                    6f:7e:b0:5d:7a:72:62:fa:89:9e:e0:dc:2b:6e:5f:1b:
                    8a:dc:f7:23:03:43:27:a1:3a:83:8d:3f:d1:e7:1f:c9:
                    d1:eb:51:d2:8a:d9:22:5d:46:1d:b3:d0:3c:33:06:db:
                    a2:06:91:a9:96:a5:4c:73:d6:f4:37:87:33:fd:f0:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:e5:87:2e:37:35:33:88:1c:c5:01:31:e8:d2:ef:57:
        ff:3a:56:55:46:cf:3a:b1:84:b4:74:b7:38:13:15:62:
        33:e3:14:07:32:75:47:45:b3:8e:0c:d2:9e:c5:06:46:
        4e:6d:b7:22:17:52:8d:19:d0:1c:a6:28:d3:ec:33:19:
        2c:52:3c:ea:db:c5:a4:21:20:28:aa:94:e2:01:13:68:
        6b:bd:25:c7:a3:64:29:f8:c1:6f:63:63:df:67:fb:5c:
        2f:21:8d:0d:91:01:56:40:10:5d:0d:81:db:33:b2:46:
        5d:74:9b:e2:dc:d2:1e:0c:1c:bf:17:25:43:08:db:d7:
        ab:aa:38:0f:0b:c9:1c:94:bf:dd:95:f2:41:70:2f:03:
        62:dd:0e:04:16:fd:ac:fd:10:13:16:27:0e:e0:af:68:
        75:88:fb:38:9e:ba:97:de:9c:c3:f8:b2:37:14:28:bf:
        fd:a1:c9:df:26:74:65:b5:ab:32:b3:5d:cc:6b:18:f3:
        87:8d:27:38:76:bd:b8:0b:14:75:c9:59:a4:6d:3b:ec:
        c6:c3:b9:e2:19:53:19:f8:1e:33:40:48:b9:fc:33:d4:
        c4:c0:1f:80:a6:5d:09:90:a5:27:1b:19:28:e0:e0:94:
        34:59:a6:91:b5:b0:8c:1d:50:26:92:c7:fd:c3:7d:a9
    Fingerprint (SHA-256):
        AF:10:B7:BB:7E:56:54:2C:EA:2E:B0:5F:75:09:E8:83:80:C4:08:76:B0:90:10:5D:8F:68:CC:85:D0:97:96:75
    Fingerprint (SHA1):
        66:AD:8C:6F:43:EF:7A:7E:E6:F6:66:BB:BF:70:3C:10:B3:7A:5F:BF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #7385: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7386: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155705 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7387: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7388: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7389: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7390: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021155706   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7391: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7392: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7393: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7394: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021155707   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA1Root-1021155614.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7395: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7396: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7397: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7398: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 1021155708   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7399: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7400: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #7401: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155705 (0x3cdd9979)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:07:36 2017
            Not After : Fri Oct 21 16:07:36 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:27:26:0c:dc:85:0b:ce:9e:fc:cc:74:53:1b:95:aa:
                    77:64:5f:f3:fd:83:36:f8:dd:1f:7a:4d:fe:d8:42:37:
                    48:82:89:3e:74:43:1e:f8:20:0e:67:4b:9c:43:47:4a:
                    c7:fb:76:33:af:e9:d5:fe:3b:5f:69:a7:91:e6:41:48:
                    92:3b:f6:d2:c5:15:f9:ef:f0:71:78:94:b8:26:67:f3:
                    e2:01:4a:8f:17:b9:e8:34:6f:53:86:3f:88:46:ed:f7:
                    bb:d0:fd:04:a7:ed:a6:e0:73:5f:a1:72:89:8f:fa:09:
                    40:3e:51:0b:f5:0a:c5:c6:6d:3c:26:2d:16:52:67:8a:
                    37:bb:dc:e3:ad:1e:66:df:a9:61:f3:7a:db:b6:1c:de:
                    c6:50:72:54:af:08:89:ce:ec:b4:f7:e9:75:0b:26:ab:
                    b4:27:8c:a3:14:04:8c:bf:d6:bc:13:9e:df:2f:75:f1:
                    06:11:84:8e:66:2f:11:75:dc:9f:2b:d0:3a:41:0c:02:
                    27:3a:60:9d:ab:15:c7:7c:65:a4:01:95:da:60:6f:fb:
                    6e:46:7b:df:12:5a:11:0c:6c:d9:a6:1f:40:fd:82:a4:
                    a0:5c:a4:51:53:61:05:33:37:ea:d4:15:9f:d6:78:58:
                    70:7f:3a:0c:da:ac:48:46:0a:07:ef:51:93:fa:62:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5c:57:82:bf:4d:d5:7c:3c:fd:b0:4a:ce:72:80:8a:00:
        ec:1a:eb:43:7d:c0:bd:d7:64:33:bc:3c:8f:3b:4f:6d:
        cf:33:e7:82:12:c7:3c:b4:f5:c1:20:6a:b4:7c:07:f2:
        8a:cc:d0:74:da:cf:36:0c:10:c9:00:2a:5a:e2:9d:18:
        c2:e2:59:06:d1:e2:96:bf:24:3c:5c:a0:e7:00:3c:16:
        a3:67:1b:97:71:4d:1b:60:5a:01:fa:f5:65:6c:ec:98:
        69:ad:ac:22:d8:4f:bc:c5:d0:87:1d:4f:c6:43:9c:23:
        bb:82:e4:a4:a7:08:db:df:38:a2:70:d9:25:43:25:16:
        9e:56:03:83:18:41:9d:b2:bf:81:06:5e:25:ae:2e:0f:
        23:bc:2f:97:87:73:31:c5:74:7f:f4:41:cd:43:ae:fc:
        7c:ab:17:30:cf:d9:d3:08:87:c6:0c:4f:9d:2b:bc:ab:
        50:a3:43:52:a3:8b:d9:57:f5:e5:13:90:56:79:c6:02:
        18:e1:04:65:0b:6f:b4:a1:2f:c8:55:72:33:97:e2:c2:
        7a:7d:8b:a3:6f:fd:7b:70:37:a6:00:77:a2:e9:8f:b7:
        5c:82:dd:24:b6:ca:cb:57:52:86:39:fd:39:a7:fc:a6:
        cb:d7:db:07:9b:d9:8c:28:a6:9b:4f:6b:f5:d9:1b:a3
    Fingerprint (SHA-256):
        4C:30:F2:9E:A2:63:48:8A:2D:17:20:75:E3:92:EF:D1:E0:3D:2A:A2:A7:D0:AD:28:82:F5:FF:3F:6B:1E:D3:9F
    Fingerprint (SHA1):
        0A:9B:A0:0B:3D:B8:E1:6D:0B:24:AB:BB:34:8B:B6:51:CC:36:B6:9C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7402: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #7403: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155709 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7404: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #7405: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #7406: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155710 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7407: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #7408: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #7409: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7410: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 1021155711 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7411: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7412: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 1021155712 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7413: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7414: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #7415: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7416: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7417: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 1021155713   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-Bridge-1021155615.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7418: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7419: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7420: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7421: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021155714   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7422: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7423: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #7424: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #7425: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155710 (0x3cdd997e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 16:08:02 2017
            Not After : Fri Oct 21 16:08:02 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:db:d6:b2:cf:ff:43:0b:47:4f:bd:10:dc:f6:59:72:
                    a6:96:84:b4:1c:07:f3:6d:75:ec:4f:19:2d:73:56:ec:
                    65:df:93:d3:fe:20:33:82:1c:e4:a3:3e:2c:45:91:6b:
                    8b:ec:e0:73:37:97:96:78:f7:0e:09:64:eb:59:11:79:
                    40:fa:67:07:13:ed:05:d8:5f:7e:99:3a:98:6b:3f:b1:
                    ae:ae:e5:8f:0c:70:72:6a:12:00:7b:75:a8:6c:5a:d8:
                    20:42:99:91:9c:03:8c:3a:4d:45:7c:a6:f2:3a:ec:6e:
                    7d:9d:0d:a6:47:61:27:b3:b1:3f:2a:d2:6d:b5:e8:da:
                    2d:0b:90:e6:38:a3:0f:26:8b:ea:49:f6:80:6b:f3:f6:
                    09:69:e6:bf:b5:ab:84:05:04:06:b4:3b:a7:47:63:33:
                    a7:76:8a:ea:06:e9:6c:1a:e8:ff:01:2c:10:24:b6:57:
                    1f:a9:5f:95:11:a9:56:e8:fc:b6:a5:2a:b1:42:f6:90:
                    e4:53:b4:09:d3:01:de:48:12:26:fb:e1:bd:c5:8f:53:
                    6b:6d:b4:00:37:8d:7b:80:dd:08:55:d2:b3:41:d5:82:
                    77:7c:98:67:c2:0d:b6:68:3f:a3:7c:7f:33:c8:4f:b9:
                    6e:0a:14:24:de:5a:35:90:73:5e:4c:4a:73:b1:4a:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        49:4d:67:05:99:ec:29:2b:af:5c:e2:89:9d:e9:e1:a2:
        e0:2a:1c:e5:9d:af:2c:e3:65:44:a0:d2:f6:0f:8b:09:
        53:be:82:4a:84:66:d1:68:3b:2f:95:1c:73:00:2a:e3:
        bd:c0:5f:77:cd:71:9e:34:8d:33:16:eb:34:95:ff:45:
        83:4c:38:df:ab:32:d1:12:81:51:b4:ca:71:54:c8:41:
        dc:12:b5:76:36:46:43:bd:62:0e:90:33:4b:28:4a:78:
        ad:f9:36:21:d4:3b:c4:1c:3a:ec:f6:91:74:c8:63:33:
        ab:12:7c:9e:8b:e2:f5:35:a4:65:62:48:24:59:ca:5d:
        95:6b:5d:54:7e:82:20:92:a2:3f:64:70:db:a6:2a:37:
        43:23:d6:91:fa:7e:af:9e:e6:50:1c:f5:84:de:bb:e8:
        5f:78:7c:67:38:56:2a:a1:6a:a0:df:eb:83:cf:70:4f:
        1b:78:28:ec:b9:b8:c4:2f:5a:ca:c8:80:91:c1:2b:9c:
        1e:e7:a3:16:8c:12:2e:ad:e5:fe:89:43:d1:29:5f:4e:
        b0:ec:fd:c7:79:29:33:cb:ed:77:e0:74:b0:c1:1d:27:
        27:0f:c5:5d:27:d5:38:a7:f3:0b:13:d7:03:c7:c4:e5:
        ea:fc:be:e8:5e:49:f4:73:a6:6e:9a:8a:4f:5a:de:d0
    Fingerprint (SHA-256):
        8D:72:A3:D8:53:D0:CE:CC:EF:02:D8:EB:0D:7F:B4:51:6F:63:6D:8E:7D:B0:29:37:3E:16:38:77:63:A5:2F:A2
    Fingerprint (SHA1):
        3A:7E:C6:78:44:57:01:2F:57:D9:58:06:E7:59:B0:23:36:3E:68:51
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7426: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155710 (0x3cdd997e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 16:08:02 2017
            Not After : Fri Oct 21 16:08:02 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:db:d6:b2:cf:ff:43:0b:47:4f:bd:10:dc:f6:59:72:
                    a6:96:84:b4:1c:07:f3:6d:75:ec:4f:19:2d:73:56:ec:
                    65:df:93:d3:fe:20:33:82:1c:e4:a3:3e:2c:45:91:6b:
                    8b:ec:e0:73:37:97:96:78:f7:0e:09:64:eb:59:11:79:
                    40:fa:67:07:13:ed:05:d8:5f:7e:99:3a:98:6b:3f:b1:
                    ae:ae:e5:8f:0c:70:72:6a:12:00:7b:75:a8:6c:5a:d8:
                    20:42:99:91:9c:03:8c:3a:4d:45:7c:a6:f2:3a:ec:6e:
                    7d:9d:0d:a6:47:61:27:b3:b1:3f:2a:d2:6d:b5:e8:da:
                    2d:0b:90:e6:38:a3:0f:26:8b:ea:49:f6:80:6b:f3:f6:
                    09:69:e6:bf:b5:ab:84:05:04:06:b4:3b:a7:47:63:33:
                    a7:76:8a:ea:06:e9:6c:1a:e8:ff:01:2c:10:24:b6:57:
                    1f:a9:5f:95:11:a9:56:e8:fc:b6:a5:2a:b1:42:f6:90:
                    e4:53:b4:09:d3:01:de:48:12:26:fb:e1:bd:c5:8f:53:
                    6b:6d:b4:00:37:8d:7b:80:dd:08:55:d2:b3:41:d5:82:
                    77:7c:98:67:c2:0d:b6:68:3f:a3:7c:7f:33:c8:4f:b9:
                    6e:0a:14:24:de:5a:35:90:73:5e:4c:4a:73:b1:4a:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        49:4d:67:05:99:ec:29:2b:af:5c:e2:89:9d:e9:e1:a2:
        e0:2a:1c:e5:9d:af:2c:e3:65:44:a0:d2:f6:0f:8b:09:
        53:be:82:4a:84:66:d1:68:3b:2f:95:1c:73:00:2a:e3:
        bd:c0:5f:77:cd:71:9e:34:8d:33:16:eb:34:95:ff:45:
        83:4c:38:df:ab:32:d1:12:81:51:b4:ca:71:54:c8:41:
        dc:12:b5:76:36:46:43:bd:62:0e:90:33:4b:28:4a:78:
        ad:f9:36:21:d4:3b:c4:1c:3a:ec:f6:91:74:c8:63:33:
        ab:12:7c:9e:8b:e2:f5:35:a4:65:62:48:24:59:ca:5d:
        95:6b:5d:54:7e:82:20:92:a2:3f:64:70:db:a6:2a:37:
        43:23:d6:91:fa:7e:af:9e:e6:50:1c:f5:84:de:bb:e8:
        5f:78:7c:67:38:56:2a:a1:6a:a0:df:eb:83:cf:70:4f:
        1b:78:28:ec:b9:b8:c4:2f:5a:ca:c8:80:91:c1:2b:9c:
        1e:e7:a3:16:8c:12:2e:ad:e5:fe:89:43:d1:29:5f:4e:
        b0:ec:fd:c7:79:29:33:cb:ed:77:e0:74:b0:c1:1d:27:
        27:0f:c5:5d:27:d5:38:a7:f3:0b:13:d7:03:c7:c4:e5:
        ea:fc:be:e8:5e:49:f4:73:a6:6e:9a:8a:4f:5a:de:d0
    Fingerprint (SHA-256):
        8D:72:A3:D8:53:D0:CE:CC:EF:02:D8:EB:0D:7F:B4:51:6F:63:6D:8E:7D:B0:29:37:3E:16:38:77:63:A5:2F:A2
    Fingerprint (SHA1):
        3A:7E:C6:78:44:57:01:2F:57:D9:58:06:E7:59:B0:23:36:3E:68:51
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7427: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #7428: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155715 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7429: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #7430: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #7431: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155716 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7432: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #7433: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #7434: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7435: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 1021155717 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7436: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7437: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 1021155718 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7438: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7439: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #7440: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7441: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7442: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 1021155719   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-Bridge-1021155616.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7443: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7444: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7445: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7446: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021155720   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7447: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7448: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7449: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7450: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 1021155721   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-BridgeNavy-1021155617.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7451: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7452: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7453: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7454: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 1021155722   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7455: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7456: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #7457: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #7458: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155716 (0x3cdd9984)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 16:08:28 2017
            Not After : Fri Oct 21 16:08:28 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:af:fb:57:bf:8f:e4:21:61:59:3e:38:d9:e8:20:ce:
                    d4:da:cc:69:21:14:23:7e:24:51:5b:98:7d:de:53:67:
                    73:ce:77:ae:c9:99:cd:9b:65:c4:78:bc:9e:4c:e8:3f:
                    67:99:44:69:f1:25:b7:8b:70:66:78:be:7b:c9:43:fb:
                    76:57:41:a7:eb:d5:95:94:a5:de:21:13:93:e7:21:ec:
                    a7:62:79:3a:80:8d:bf:8a:c0:9e:dd:28:69:7a:3e:c5:
                    51:91:30:fa:e2:76:d7:26:e5:a4:a8:e7:a5:d1:bc:ee:
                    53:1e:bc:aa:40:26:5f:fc:9c:32:f3:88:c3:4a:81:fa:
                    8e:5c:3d:ed:ec:32:27:18:f7:1f:21:e1:42:69:4f:4c:
                    3d:32:5d:19:97:ae:1c:53:41:57:c2:97:4d:ac:bc:91:
                    e0:65:54:8f:2c:ff:ae:79:67:a1:d1:d8:b9:68:ea:0b:
                    61:b0:06:99:e2:33:1f:1c:2c:4e:8e:c9:87:14:72:60:
                    04:1b:b0:07:d2:f4:28:23:31:75:dc:3c:37:3e:38:53:
                    bf:65:4b:72:59:4e:24:f1:7b:df:7e:88:f8:ba:89:09:
                    b4:30:61:07:6a:a4:e4:8b:c0:c6:91:9e:c9:b2:8e:9d:
                    12:8e:2a:af:50:19:7c:be:8f:e7:2b:40:85:15:56:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:ca:1f:54:12:e5:c2:01:c4:b5:98:66:a8:ae:07:76:
        2e:34:dd:f9:74:e0:fc:cf:0a:07:c7:2d:f5:74:9b:9a:
        31:26:78:f3:7b:b4:df:48:9a:4d:b9:8f:ad:0a:7b:fe:
        20:b5:3a:91:5c:41:df:d8:cc:61:32:fc:08:73:bc:e6:
        21:07:32:bd:d6:19:b3:d6:86:90:8b:9c:ff:c1:ee:50:
        2b:f3:94:82:a8:73:a2:ba:af:3f:17:56:69:3c:f2:6a:
        45:9d:e6:ec:e4:bd:72:5b:7e:98:71:f7:ea:f0:92:fd:
        84:38:11:95:f9:ff:43:00:41:89:65:88:93:1c:3c:8a:
        f5:6d:25:35:fa:56:1a:c1:06:d5:e4:22:fc:54:16:1a:
        81:a8:29:6e:ef:06:43:a8:31:89:f1:92:39:4a:65:b6:
        3f:83:dc:3c:30:7e:51:9e:f1:32:f8:cc:9b:96:30:94:
        a6:8a:03:06:2a:4f:7d:45:eb:23:c2:94:e9:1d:36:5b:
        da:e1:79:db:c0:f0:4e:89:4e:7b:34:7a:bf:c8:7a:9f:
        0a:5d:db:31:54:9a:e6:f7:e8:88:58:f6:61:aa:da:28:
        99:33:14:10:22:03:65:b3:6c:5a:c2:04:66:61:a9:48:
        0d:41:8f:4e:f9:cc:12:75:aa:dc:d2:67:66:71:f2:68
    Fingerprint (SHA-256):
        32:C8:48:1C:9C:BC:C7:72:F2:95:99:C7:08:92:C1:13:20:DD:CB:FB:01:6C:5E:10:41:F4:A6:26:3C:B0:9C:FC
    Fingerprint (SHA1):
        BC:DE:17:99:E5:EA:7A:F2:C6:C7:E9:BB:58:8D:06:D4:25:65:15:CD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7459: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155716 (0x3cdd9984)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 16:08:28 2017
            Not After : Fri Oct 21 16:08:28 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:af:fb:57:bf:8f:e4:21:61:59:3e:38:d9:e8:20:ce:
                    d4:da:cc:69:21:14:23:7e:24:51:5b:98:7d:de:53:67:
                    73:ce:77:ae:c9:99:cd:9b:65:c4:78:bc:9e:4c:e8:3f:
                    67:99:44:69:f1:25:b7:8b:70:66:78:be:7b:c9:43:fb:
                    76:57:41:a7:eb:d5:95:94:a5:de:21:13:93:e7:21:ec:
                    a7:62:79:3a:80:8d:bf:8a:c0:9e:dd:28:69:7a:3e:c5:
                    51:91:30:fa:e2:76:d7:26:e5:a4:a8:e7:a5:d1:bc:ee:
                    53:1e:bc:aa:40:26:5f:fc:9c:32:f3:88:c3:4a:81:fa:
                    8e:5c:3d:ed:ec:32:27:18:f7:1f:21:e1:42:69:4f:4c:
                    3d:32:5d:19:97:ae:1c:53:41:57:c2:97:4d:ac:bc:91:
                    e0:65:54:8f:2c:ff:ae:79:67:a1:d1:d8:b9:68:ea:0b:
                    61:b0:06:99:e2:33:1f:1c:2c:4e:8e:c9:87:14:72:60:
                    04:1b:b0:07:d2:f4:28:23:31:75:dc:3c:37:3e:38:53:
                    bf:65:4b:72:59:4e:24:f1:7b:df:7e:88:f8:ba:89:09:
                    b4:30:61:07:6a:a4:e4:8b:c0:c6:91:9e:c9:b2:8e:9d:
                    12:8e:2a:af:50:19:7c:be:8f:e7:2b:40:85:15:56:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:ca:1f:54:12:e5:c2:01:c4:b5:98:66:a8:ae:07:76:
        2e:34:dd:f9:74:e0:fc:cf:0a:07:c7:2d:f5:74:9b:9a:
        31:26:78:f3:7b:b4:df:48:9a:4d:b9:8f:ad:0a:7b:fe:
        20:b5:3a:91:5c:41:df:d8:cc:61:32:fc:08:73:bc:e6:
        21:07:32:bd:d6:19:b3:d6:86:90:8b:9c:ff:c1:ee:50:
        2b:f3:94:82:a8:73:a2:ba:af:3f:17:56:69:3c:f2:6a:
        45:9d:e6:ec:e4:bd:72:5b:7e:98:71:f7:ea:f0:92:fd:
        84:38:11:95:f9:ff:43:00:41:89:65:88:93:1c:3c:8a:
        f5:6d:25:35:fa:56:1a:c1:06:d5:e4:22:fc:54:16:1a:
        81:a8:29:6e:ef:06:43:a8:31:89:f1:92:39:4a:65:b6:
        3f:83:dc:3c:30:7e:51:9e:f1:32:f8:cc:9b:96:30:94:
        a6:8a:03:06:2a:4f:7d:45:eb:23:c2:94:e9:1d:36:5b:
        da:e1:79:db:c0:f0:4e:89:4e:7b:34:7a:bf:c8:7a:9f:
        0a:5d:db:31:54:9a:e6:f7:e8:88:58:f6:61:aa:da:28:
        99:33:14:10:22:03:65:b3:6c:5a:c2:04:66:61:a9:48:
        0d:41:8f:4e:f9:cc:12:75:aa:dc:d2:67:66:71:f2:68
    Fingerprint (SHA-256):
        32:C8:48:1C:9C:BC:C7:72:F2:95:99:C7:08:92:C1:13:20:DD:CB:FB:01:6C:5E:10:41:F4:A6:26:3C:B0:9C:FC
    Fingerprint (SHA1):
        BC:DE:17:99:E5:EA:7A:F2:C6:C7:E9:BB:58:8D:06:D4:25:65:15:CD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7460: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #7461: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155715 (0x3cdd9983)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 16:08:24 2017
            Not After : Fri Oct 21 16:08:24 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:43:1c:fa:ae:a4:bb:36:b6:06:d9:4d:46:ef:03:79:
                    c4:53:20:37:ec:71:3d:a2:50:a1:08:bc:6d:af:d0:ef:
                    7c:6e:e9:cc:81:75:60:5c:09:6e:33:27:43:2c:cb:d0:
                    fd:61:49:d6:09:cd:ed:9a:01:33:06:c3:14:91:71:ef:
                    27:5a:59:8b:5b:0b:46:eb:63:af:90:bf:9d:1e:2f:c3:
                    b9:a2:3a:c2:ca:c9:56:37:b0:f2:26:fa:83:4a:02:c9:
                    42:a1:d6:32:b8:9a:3e:99:77:94:22:9c:f4:16:96:8f:
                    bf:cf:a3:b0:98:d2:52:41:9e:58:c7:fe:31:44:7c:04:
                    95:f4:e0:71:f0:8e:1b:57:65:9d:fa:2e:95:bc:47:4a:
                    3b:6f:f7:ec:4f:69:3a:0b:44:2e:a9:51:d4:0f:1e:87:
                    5c:b3:62:92:f2:29:97:bd:7f:18:2e:37:b0:dc:47:3d:
                    a2:9b:27:b6:e2:57:2a:79:fd:f4:0c:cd:60:d6:17:26:
                    f6:53:df:e5:a1:eb:8f:35:42:13:80:52:bc:30:c8:33:
                    8c:f8:cf:9d:26:2d:c0:14:83:9e:8c:b6:b9:f2:14:52:
                    2f:8c:00:60:46:be:c2:d1:84:15:8d:4e:46:3f:c7:cb:
                    4c:68:4a:a8:df:ba:f2:3f:e9:5f:21:2a:f0:46:1c:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:a6:23:f4:76:14:9b:9c:dd:d7:e9:0c:dd:71:19:67:
        36:48:66:14:91:1d:57:c5:ed:ae:49:fa:1b:49:42:01:
        d5:c6:e2:7e:a4:fc:38:b5:0e:81:83:60:5c:a9:a9:6b:
        45:c7:9c:a0:c0:51:e0:bc:69:2a:1e:31:61:6c:89:d7:
        06:87:8f:36:bd:63:90:63:de:96:a9:db:b5:94:be:ab:
        77:4d:ff:18:4d:46:cb:cf:b6:e8:6f:e6:cf:22:cc:01:
        0f:17:cb:b6:f1:03:76:79:d4:f7:f8:d1:f2:51:d4:6d:
        c4:c2:33:c4:c3:06:d2:69:25:af:84:86:f3:5c:82:19:
        19:a5:d5:79:9e:10:8f:f0:51:7c:ad:99:31:f3:c4:ab:
        2c:02:8c:ec:d1:dc:27:60:4b:67:c0:e8:8e:9a:65:16:
        c5:a7:d1:05:7b:3b:b8:31:52:79:09:8f:41:d5:d5:38:
        12:d4:da:e5:b6:2f:1f:61:50:f7:21:e2:a8:15:cb:4f:
        1d:b0:f2:db:c9:02:97:19:b3:35:30:d7:2e:fc:b1:d3:
        79:85:78:70:c9:d8:1a:1c:74:fc:79:0e:8a:91:fa:b9:
        76:94:e5:ed:cd:3c:ef:80:c6:41:41:de:2b:2a:1a:40:
        cc:39:7f:69:a1:b9:8d:5d:91:5c:55:9d:1f:53:95:5a
    Fingerprint (SHA-256):
        4C:AA:1A:79:81:B3:B9:B9:8B:E9:33:28:A0:0B:D9:41:D0:15:71:76:1F:E6:7E:34:57:D2:64:E9:18:BA:E3:68
    Fingerprint (SHA1):
        91:DB:1C:EB:07:5F:C8:42:C8:40:B2:22:9B:18:04:DD:A3:B3:F9:99
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7462: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155716 (0x3cdd9984)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 16:08:28 2017
            Not After : Fri Oct 21 16:08:28 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:af:fb:57:bf:8f:e4:21:61:59:3e:38:d9:e8:20:ce:
                    d4:da:cc:69:21:14:23:7e:24:51:5b:98:7d:de:53:67:
                    73:ce:77:ae:c9:99:cd:9b:65:c4:78:bc:9e:4c:e8:3f:
                    67:99:44:69:f1:25:b7:8b:70:66:78:be:7b:c9:43:fb:
                    76:57:41:a7:eb:d5:95:94:a5:de:21:13:93:e7:21:ec:
                    a7:62:79:3a:80:8d:bf:8a:c0:9e:dd:28:69:7a:3e:c5:
                    51:91:30:fa:e2:76:d7:26:e5:a4:a8:e7:a5:d1:bc:ee:
                    53:1e:bc:aa:40:26:5f:fc:9c:32:f3:88:c3:4a:81:fa:
                    8e:5c:3d:ed:ec:32:27:18:f7:1f:21:e1:42:69:4f:4c:
                    3d:32:5d:19:97:ae:1c:53:41:57:c2:97:4d:ac:bc:91:
                    e0:65:54:8f:2c:ff:ae:79:67:a1:d1:d8:b9:68:ea:0b:
                    61:b0:06:99:e2:33:1f:1c:2c:4e:8e:c9:87:14:72:60:
                    04:1b:b0:07:d2:f4:28:23:31:75:dc:3c:37:3e:38:53:
                    bf:65:4b:72:59:4e:24:f1:7b:df:7e:88:f8:ba:89:09:
                    b4:30:61:07:6a:a4:e4:8b:c0:c6:91:9e:c9:b2:8e:9d:
                    12:8e:2a:af:50:19:7c:be:8f:e7:2b:40:85:15:56:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:ca:1f:54:12:e5:c2:01:c4:b5:98:66:a8:ae:07:76:
        2e:34:dd:f9:74:e0:fc:cf:0a:07:c7:2d:f5:74:9b:9a:
        31:26:78:f3:7b:b4:df:48:9a:4d:b9:8f:ad:0a:7b:fe:
        20:b5:3a:91:5c:41:df:d8:cc:61:32:fc:08:73:bc:e6:
        21:07:32:bd:d6:19:b3:d6:86:90:8b:9c:ff:c1:ee:50:
        2b:f3:94:82:a8:73:a2:ba:af:3f:17:56:69:3c:f2:6a:
        45:9d:e6:ec:e4:bd:72:5b:7e:98:71:f7:ea:f0:92:fd:
        84:38:11:95:f9:ff:43:00:41:89:65:88:93:1c:3c:8a:
        f5:6d:25:35:fa:56:1a:c1:06:d5:e4:22:fc:54:16:1a:
        81:a8:29:6e:ef:06:43:a8:31:89:f1:92:39:4a:65:b6:
        3f:83:dc:3c:30:7e:51:9e:f1:32:f8:cc:9b:96:30:94:
        a6:8a:03:06:2a:4f:7d:45:eb:23:c2:94:e9:1d:36:5b:
        da:e1:79:db:c0:f0:4e:89:4e:7b:34:7a:bf:c8:7a:9f:
        0a:5d:db:31:54:9a:e6:f7:e8:88:58:f6:61:aa:da:28:
        99:33:14:10:22:03:65:b3:6c:5a:c2:04:66:61:a9:48:
        0d:41:8f:4e:f9:cc:12:75:aa:dc:d2:67:66:71:f2:68
    Fingerprint (SHA-256):
        32:C8:48:1C:9C:BC:C7:72:F2:95:99:C7:08:92:C1:13:20:DD:CB:FB:01:6C:5E:10:41:F4:A6:26:3C:B0:9C:FC
    Fingerprint (SHA1):
        BC:DE:17:99:E5:EA:7A:F2:C6:C7:E9:BB:58:8D:06:D4:25:65:15:CD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7463: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155716 (0x3cdd9984)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 16:08:28 2017
            Not After : Fri Oct 21 16:08:28 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:af:fb:57:bf:8f:e4:21:61:59:3e:38:d9:e8:20:ce:
                    d4:da:cc:69:21:14:23:7e:24:51:5b:98:7d:de:53:67:
                    73:ce:77:ae:c9:99:cd:9b:65:c4:78:bc:9e:4c:e8:3f:
                    67:99:44:69:f1:25:b7:8b:70:66:78:be:7b:c9:43:fb:
                    76:57:41:a7:eb:d5:95:94:a5:de:21:13:93:e7:21:ec:
                    a7:62:79:3a:80:8d:bf:8a:c0:9e:dd:28:69:7a:3e:c5:
                    51:91:30:fa:e2:76:d7:26:e5:a4:a8:e7:a5:d1:bc:ee:
                    53:1e:bc:aa:40:26:5f:fc:9c:32:f3:88:c3:4a:81:fa:
                    8e:5c:3d:ed:ec:32:27:18:f7:1f:21:e1:42:69:4f:4c:
                    3d:32:5d:19:97:ae:1c:53:41:57:c2:97:4d:ac:bc:91:
                    e0:65:54:8f:2c:ff:ae:79:67:a1:d1:d8:b9:68:ea:0b:
                    61:b0:06:99:e2:33:1f:1c:2c:4e:8e:c9:87:14:72:60:
                    04:1b:b0:07:d2:f4:28:23:31:75:dc:3c:37:3e:38:53:
                    bf:65:4b:72:59:4e:24:f1:7b:df:7e:88:f8:ba:89:09:
                    b4:30:61:07:6a:a4:e4:8b:c0:c6:91:9e:c9:b2:8e:9d:
                    12:8e:2a:af:50:19:7c:be:8f:e7:2b:40:85:15:56:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:ca:1f:54:12:e5:c2:01:c4:b5:98:66:a8:ae:07:76:
        2e:34:dd:f9:74:e0:fc:cf:0a:07:c7:2d:f5:74:9b:9a:
        31:26:78:f3:7b:b4:df:48:9a:4d:b9:8f:ad:0a:7b:fe:
        20:b5:3a:91:5c:41:df:d8:cc:61:32:fc:08:73:bc:e6:
        21:07:32:bd:d6:19:b3:d6:86:90:8b:9c:ff:c1:ee:50:
        2b:f3:94:82:a8:73:a2:ba:af:3f:17:56:69:3c:f2:6a:
        45:9d:e6:ec:e4:bd:72:5b:7e:98:71:f7:ea:f0:92:fd:
        84:38:11:95:f9:ff:43:00:41:89:65:88:93:1c:3c:8a:
        f5:6d:25:35:fa:56:1a:c1:06:d5:e4:22:fc:54:16:1a:
        81:a8:29:6e:ef:06:43:a8:31:89:f1:92:39:4a:65:b6:
        3f:83:dc:3c:30:7e:51:9e:f1:32:f8:cc:9b:96:30:94:
        a6:8a:03:06:2a:4f:7d:45:eb:23:c2:94:e9:1d:36:5b:
        da:e1:79:db:c0:f0:4e:89:4e:7b:34:7a:bf:c8:7a:9f:
        0a:5d:db:31:54:9a:e6:f7:e8:88:58:f6:61:aa:da:28:
        99:33:14:10:22:03:65:b3:6c:5a:c2:04:66:61:a9:48:
        0d:41:8f:4e:f9:cc:12:75:aa:dc:d2:67:66:71:f2:68
    Fingerprint (SHA-256):
        32:C8:48:1C:9C:BC:C7:72:F2:95:99:C7:08:92:C1:13:20:DD:CB:FB:01:6C:5E:10:41:F4:A6:26:3C:B0:9C:FC
    Fingerprint (SHA1):
        BC:DE:17:99:E5:EA:7A:F2:C6:C7:E9:BB:58:8D:06:D4:25:65:15:CD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7464: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #7465: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155723 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7466: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #7467: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #7468: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155724 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7469: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #7470: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #7471: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7472: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 1021155725   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7473: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7474: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #7475: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7476: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 1021155726   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7477: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7478: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #7479: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7480: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 1021155727 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7481: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7482: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 1021155728 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7483: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7484: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #7485: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7486: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7487: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 1021155729   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7488: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7489: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7490: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7491: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 1021155730   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7492: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7493: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7494: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7495: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021155731   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7496: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7497: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7498: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7499: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 1021155732   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7500: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7501: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7502: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155723 (0x3cdd998b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 16:09:09 2017
            Not After : Fri Oct 21 16:09:09 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:47:8f:dd:8e:0c:75:14:b7:25:1d:9b:98:a2:b7:67:
                    51:49:9d:03:93:7a:84:40:d5:52:36:04:bd:d8:81:f9:
                    89:97:23:cd:f7:99:96:08:e6:a4:75:54:d4:a3:36:ac:
                    15:09:e3:84:e5:1b:24:7d:72:00:49:4a:da:43:4f:8d:
                    40:b1:b4:e5:6e:12:38:c4:26:b9:60:6a:66:e7:b6:85:
                    b4:f6:01:ef:66:26:10:c2:06:0b:69:34:2e:5b:22:b2:
                    82:e2:91:90:0f:30:1f:0b:78:6c:7c:36:73:6e:c1:e8:
                    47:00:0b:da:24:13:87:2b:2f:14:6b:06:be:03:5d:78:
                    b2:1d:fc:96:9d:1b:3b:67:65:b5:7f:97:f2:35:87:fb:
                    b1:fd:3b:b2:a7:bc:c4:c3:25:a8:c3:87:fd:76:ff:7a:
                    e4:d1:ca:bf:59:36:a9:2a:ba:53:fb:f6:d6:63:0e:9a:
                    7b:98:c9:a4:82:18:4f:5e:40:48:9c:b6:ae:ce:e3:f4:
                    59:d9:b5:cc:6b:3c:2d:be:70:98:27:7a:b5:df:48:a3:
                    1b:c1:b5:57:2c:52:84:5c:df:d9:2f:1c:de:61:90:88:
                    ff:bf:1a:f3:50:f5:66:41:0f:ef:1e:b7:70:d4:a3:66:
                    b7:06:77:ac:a2:0c:71:42:5c:99:30:06:ac:60:28:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a0:85:0e:52:53:69:19:00:28:43:3a:0b:a6:19:06:3b:
        f5:3b:57:f4:71:00:b7:bf:1f:f0:2e:26:e6:44:af:c4:
        28:b6:16:1c:63:ce:0a:e5:ef:44:38:24:e1:75:d4:e6:
        4a:f5:58:cc:4e:01:8d:73:0c:75:91:81:24:67:f6:f1:
        6d:a6:53:1d:d4:f2:ba:c1:78:3f:09:e8:02:74:db:f9:
        6b:18:db:b2:1c:8f:51:b5:4e:98:69:9c:01:9a:20:b7:
        cf:d2:f0:28:35:04:22:27:d6:33:ec:30:f1:0e:fe:8e:
        8c:26:5c:37:a0:f5:5a:36:65:18:a6:1d:ad:fd:62:92:
        b5:a1:f3:05:f4:1a:5b:bd:61:e1:9b:f9:93:e1:6e:37:
        dd:a8:30:27:ec:ec:df:a2:42:20:e2:fa:a1:34:cc:96:
        8f:29:7b:b0:ab:36:88:09:1d:0e:9c:a7:60:65:57:95:
        7d:5c:76:94:e8:05:d0:e8:4e:70:b3:d6:1a:03:bd:17:
        19:08:20:20:79:74:7d:ce:49:a3:a8:13:d7:ee:da:8f:
        4a:56:d7:59:4f:a9:a9:1e:9e:b9:00:78:5e:39:78:a7:
        17:40:35:bb:5a:fd:c3:16:79:46:cf:ec:eb:2b:31:dd:
        9c:e6:88:4d:99:93:08:18:a9:4c:c8:7b:6e:e7:00:22
    Fingerprint (SHA-256):
        EF:F1:99:B2:46:DD:B9:55:83:AC:29:59:39:18:1A:9E:05:05:F2:7A:C4:7F:B3:10:02:7A:4D:92:26:74:EB:AA
    Fingerprint (SHA1):
        D7:68:C7:98:96:89:CB:B1:B9:7F:8B:DC:19:9D:94:B0:39:43:0D:0A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #7503: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7504: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7505: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7506: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7507: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7508: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7509: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7510: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7511: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155724 (0x3cdd998c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 16:09:13 2017
            Not After : Fri Oct 21 16:09:13 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:68:fe:f6:37:d1:ac:b3:87:88:af:8f:e1:90:b5:86:
                    80:8e:9f:ee:24:cb:54:3f:1e:1d:61:38:85:fd:c8:ed:
                    f5:ec:4e:ad:74:d3:9e:93:5e:6b:fd:64:65:b2:a5:f1:
                    5a:de:4e:f9:c1:84:12:f3:f6:d4:70:b1:d7:98:fa:53:
                    4e:83:5d:11:c1:8c:4d:89:f2:99:a3:da:c6:51:f1:15:
                    41:a5:11:c3:6e:47:30:cf:71:81:aa:4e:14:cf:18:eb:
                    37:7a:e8:6f:d6:43:d1:88:2c:9d:ba:3b:62:02:2f:d6:
                    8a:32:6c:94:86:60:99:33:ab:fd:09:23:e7:ef:3d:2b:
                    0b:f7:7f:2a:82:2e:09:ee:f6:4d:36:91:52:cf:4c:2b:
                    a1:3f:e5:e5:6e:b2:ae:7d:2e:ac:0e:8e:29:72:63:1b:
                    f1:47:ce:3a:ae:5a:f3:a6:84:dc:ba:8d:fb:1a:91:ec:
                    50:80:8d:01:60:5b:cd:91:94:43:bb:26:58:15:c6:ee:
                    fe:e9:81:c9:06:7b:02:76:71:20:59:45:c1:8d:97:3e:
                    75:06:4d:22:d8:84:f6:fc:fd:e9:0d:a5:70:43:06:aa:
                    4b:8f:44:a8:00:78:95:09:4d:fd:9f:b1:9b:6f:db:04:
                    3a:aa:aa:08:84:3d:24:51:4e:3f:7f:e5:34:52:46:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:21:80:95:c9:ac:98:02:0e:5e:69:f9:1c:12:a7:5c:
        1c:2d:80:34:21:96:f1:4f:18:21:53:80:b6:73:5f:f6:
        de:0f:05:c2:98:bd:db:00:46:ef:30:3d:f7:05:82:7e:
        0c:16:1f:d0:08:22:05:f4:42:3a:fd:78:31:6d:bc:ce:
        76:52:56:bd:81:eb:34:e4:8d:8e:53:0c:57:54:09:f5:
        1c:37:fe:17:51:3f:d0:df:8e:3c:51:99:da:9f:57:19:
        3b:06:8f:1d:1e:97:21:20:c8:b1:9c:2e:2d:bc:e3:ba:
        c9:32:d2:bd:a3:0b:33:b8:39:26:e7:60:e8:0f:2e:c4:
        8c:10:fa:2e:b9:23:b6:bb:7f:f7:ee:03:38:a3:b1:ff:
        9f:4a:e4:42:f0:e7:48:86:26:f8:93:2f:72:2b:cf:c1:
        6d:fe:3b:26:f8:2e:ae:f8:f3:97:f5:a0:90:d3:27:85:
        3b:cc:3e:92:dd:ae:da:80:33:68:a0:8a:c8:bc:be:8e:
        e0:ff:44:89:c0:87:ee:16:2e:3f:f9:5c:38:79:c4:32:
        5c:78:7d:aa:de:a7:0e:e7:1e:7e:df:4b:95:b0:af:d2:
        7b:f4:9c:88:aa:8c:3d:cb:73:e3:a6:6a:98:8e:90:c1:
        15:ac:65:29:a2:49:97:5d:36:15:42:21:f2:f5:c6:58
    Fingerprint (SHA-256):
        C5:FC:D4:4E:A3:AC:21:F7:7E:07:2A:6C:56:89:E6:76:BC:97:0A:B3:E0:63:E2:61:C8:67:C5:AF:FE:53:9A:57
    Fingerprint (SHA1):
        24:27:9B:E9:3D:27:80:C1:AF:5F:78:8E:9B:07:6E:71:B6:E2:6A:0E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #7512: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7513: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7514: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7515: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7516: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7517: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7518: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #7519: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #7520: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #7521: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #7522: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #7523: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #7524: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #7525: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7526: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7527: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #7528: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #7529: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7530: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155733 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7531: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7532: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7533: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7534: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021155734   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7535: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7536: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7537: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7538: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021155735   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7539: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7540: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7541: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7542: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 1021155736   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7543: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7544: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7545: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7546: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 1021155737   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7547: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7548: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #7549: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7550: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 1021155738   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7551: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7552: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #7553: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7554: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 1021155739   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7555: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7556: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #7557: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7558: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 1021155740   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7559: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7560: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #7561: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7562: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 1021155741   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7563: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7564: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7565: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155733 (0x3cdd9995)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:10:26 2017
            Not After : Fri Oct 21 16:10:26 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    ba:b6:b3:8a:b2:9b:b5:32:c8:6c:56:05:b4:3e:37:ce:
                    e4:62:93:c4:10:9c:bf:5e:0c:6f:33:6f:1a:ad:56:c0:
                    8c:58:6c:c0:fd:9e:1f:8c:40:29:4c:35:6b:5d:67:41:
                    ab:48:17:e4:1f:1e:ef:7e:4f:20:07:5b:0c:71:68:ae:
                    94:e4:2b:8a:8e:5f:22:00:60:3b:5e:f8:83:76:e2:fd:
                    db:18:3a:c2:57:86:b0:58:e8:1e:a5:72:24:cf:21:f8:
                    6c:8a:e4:77:ee:2f:dd:12:7c:a4:d5:66:ff:1e:45:08:
                    62:58:31:41:45:fd:24:3c:75:f6:8f:b8:b6:af:24:1c:
                    3b:33:7e:23:72:43:cd:2e:18:35:29:0d:13:95:b8:24:
                    69:f6:25:40:e7:5e:eb:f1:3e:e0:fc:d0:97:d6:3b:83:
                    67:d3:c0:9a:1a:60:74:36:c9:bf:c0:6d:33:90:5a:b4:
                    3f:9b:7b:4c:b6:04:71:25:d0:c7:a5:75:44:74:e3:55:
                    98:dd:a8:47:b3:ce:00:8b:f9:b8:5b:d0:46:dc:02:e4:
                    7f:ff:e8:0e:8a:d4:ec:a2:c4:9e:a0:c9:af:d5:45:99:
                    5d:ab:9c:c8:0c:2c:c2:67:fa:8a:19:4b:19:a4:74:92:
                    fc:93:77:d1:59:bb:5b:26:0d:2c:21:7d:60:26:ba:d1
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1c:59:da:0c:cf:64:39:85:23:0f:13:ef:d0:
        97:81:3b:b9:67:cd:b0:22:67:67:0b:e0:04:a6:52:ef:
        02:1d:00:bd:aa:c3:99:0a:90:3b:8e:7d:29:e2:1f:54:
        83:39:bb:be:56:87:69:95:b7:bd:4e:bc:31:d8:f4
    Fingerprint (SHA-256):
        B1:F6:F6:27:6D:2C:2C:03:83:EF:65:E6:C7:A3:DA:69:39:C7:A9:E6:F1:80:5F:7D:2B:3A:96:7B:C7:13:40:6B
    Fingerprint (SHA1):
        01:F2:C0:CA:8C:A1:A0:26:B5:41:8C:D8:2C:66:AC:34:42:8E:91:8C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7566: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155733 (0x3cdd9995)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:10:26 2017
            Not After : Fri Oct 21 16:10:26 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    ba:b6:b3:8a:b2:9b:b5:32:c8:6c:56:05:b4:3e:37:ce:
                    e4:62:93:c4:10:9c:bf:5e:0c:6f:33:6f:1a:ad:56:c0:
                    8c:58:6c:c0:fd:9e:1f:8c:40:29:4c:35:6b:5d:67:41:
                    ab:48:17:e4:1f:1e:ef:7e:4f:20:07:5b:0c:71:68:ae:
                    94:e4:2b:8a:8e:5f:22:00:60:3b:5e:f8:83:76:e2:fd:
                    db:18:3a:c2:57:86:b0:58:e8:1e:a5:72:24:cf:21:f8:
                    6c:8a:e4:77:ee:2f:dd:12:7c:a4:d5:66:ff:1e:45:08:
                    62:58:31:41:45:fd:24:3c:75:f6:8f:b8:b6:af:24:1c:
                    3b:33:7e:23:72:43:cd:2e:18:35:29:0d:13:95:b8:24:
                    69:f6:25:40:e7:5e:eb:f1:3e:e0:fc:d0:97:d6:3b:83:
                    67:d3:c0:9a:1a:60:74:36:c9:bf:c0:6d:33:90:5a:b4:
                    3f:9b:7b:4c:b6:04:71:25:d0:c7:a5:75:44:74:e3:55:
                    98:dd:a8:47:b3:ce:00:8b:f9:b8:5b:d0:46:dc:02:e4:
                    7f:ff:e8:0e:8a:d4:ec:a2:c4:9e:a0:c9:af:d5:45:99:
                    5d:ab:9c:c8:0c:2c:c2:67:fa:8a:19:4b:19:a4:74:92:
                    fc:93:77:d1:59:bb:5b:26:0d:2c:21:7d:60:26:ba:d1
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1c:59:da:0c:cf:64:39:85:23:0f:13:ef:d0:
        97:81:3b:b9:67:cd:b0:22:67:67:0b:e0:04:a6:52:ef:
        02:1d:00:bd:aa:c3:99:0a:90:3b:8e:7d:29:e2:1f:54:
        83:39:bb:be:56:87:69:95:b7:bd:4e:bc:31:d8:f4
    Fingerprint (SHA-256):
        B1:F6:F6:27:6D:2C:2C:03:83:EF:65:E6:C7:A3:DA:69:39:C7:A9:E6:F1:80:5F:7D:2B:3A:96:7B:C7:13:40:6B
    Fingerprint (SHA1):
        01:F2:C0:CA:8C:A1:A0:26:B5:41:8C:D8:2C:66:AC:34:42:8E:91:8C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7567: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155733 (0x3cdd9995)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:10:26 2017
            Not After : Fri Oct 21 16:10:26 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    ba:b6:b3:8a:b2:9b:b5:32:c8:6c:56:05:b4:3e:37:ce:
                    e4:62:93:c4:10:9c:bf:5e:0c:6f:33:6f:1a:ad:56:c0:
                    8c:58:6c:c0:fd:9e:1f:8c:40:29:4c:35:6b:5d:67:41:
                    ab:48:17:e4:1f:1e:ef:7e:4f:20:07:5b:0c:71:68:ae:
                    94:e4:2b:8a:8e:5f:22:00:60:3b:5e:f8:83:76:e2:fd:
                    db:18:3a:c2:57:86:b0:58:e8:1e:a5:72:24:cf:21:f8:
                    6c:8a:e4:77:ee:2f:dd:12:7c:a4:d5:66:ff:1e:45:08:
                    62:58:31:41:45:fd:24:3c:75:f6:8f:b8:b6:af:24:1c:
                    3b:33:7e:23:72:43:cd:2e:18:35:29:0d:13:95:b8:24:
                    69:f6:25:40:e7:5e:eb:f1:3e:e0:fc:d0:97:d6:3b:83:
                    67:d3:c0:9a:1a:60:74:36:c9:bf:c0:6d:33:90:5a:b4:
                    3f:9b:7b:4c:b6:04:71:25:d0:c7:a5:75:44:74:e3:55:
                    98:dd:a8:47:b3:ce:00:8b:f9:b8:5b:d0:46:dc:02:e4:
                    7f:ff:e8:0e:8a:d4:ec:a2:c4:9e:a0:c9:af:d5:45:99:
                    5d:ab:9c:c8:0c:2c:c2:67:fa:8a:19:4b:19:a4:74:92:
                    fc:93:77:d1:59:bb:5b:26:0d:2c:21:7d:60:26:ba:d1
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1c:59:da:0c:cf:64:39:85:23:0f:13:ef:d0:
        97:81:3b:b9:67:cd:b0:22:67:67:0b:e0:04:a6:52:ef:
        02:1d:00:bd:aa:c3:99:0a:90:3b:8e:7d:29:e2:1f:54:
        83:39:bb:be:56:87:69:95:b7:bd:4e:bc:31:d8:f4
    Fingerprint (SHA-256):
        B1:F6:F6:27:6D:2C:2C:03:83:EF:65:E6:C7:A3:DA:69:39:C7:A9:E6:F1:80:5F:7D:2B:3A:96:7B:C7:13:40:6B
    Fingerprint (SHA1):
        01:F2:C0:CA:8C:A1:A0:26:B5:41:8C:D8:2C:66:AC:34:42:8E:91:8C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #7568: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155733 (0x3cdd9995)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:10:26 2017
            Not After : Fri Oct 21 16:10:26 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    ba:b6:b3:8a:b2:9b:b5:32:c8:6c:56:05:b4:3e:37:ce:
                    e4:62:93:c4:10:9c:bf:5e:0c:6f:33:6f:1a:ad:56:c0:
                    8c:58:6c:c0:fd:9e:1f:8c:40:29:4c:35:6b:5d:67:41:
                    ab:48:17:e4:1f:1e:ef:7e:4f:20:07:5b:0c:71:68:ae:
                    94:e4:2b:8a:8e:5f:22:00:60:3b:5e:f8:83:76:e2:fd:
                    db:18:3a:c2:57:86:b0:58:e8:1e:a5:72:24:cf:21:f8:
                    6c:8a:e4:77:ee:2f:dd:12:7c:a4:d5:66:ff:1e:45:08:
                    62:58:31:41:45:fd:24:3c:75:f6:8f:b8:b6:af:24:1c:
                    3b:33:7e:23:72:43:cd:2e:18:35:29:0d:13:95:b8:24:
                    69:f6:25:40:e7:5e:eb:f1:3e:e0:fc:d0:97:d6:3b:83:
                    67:d3:c0:9a:1a:60:74:36:c9:bf:c0:6d:33:90:5a:b4:
                    3f:9b:7b:4c:b6:04:71:25:d0:c7:a5:75:44:74:e3:55:
                    98:dd:a8:47:b3:ce:00:8b:f9:b8:5b:d0:46:dc:02:e4:
                    7f:ff:e8:0e:8a:d4:ec:a2:c4:9e:a0:c9:af:d5:45:99:
                    5d:ab:9c:c8:0c:2c:c2:67:fa:8a:19:4b:19:a4:74:92:
                    fc:93:77:d1:59:bb:5b:26:0d:2c:21:7d:60:26:ba:d1
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1c:59:da:0c:cf:64:39:85:23:0f:13:ef:d0:
        97:81:3b:b9:67:cd:b0:22:67:67:0b:e0:04:a6:52:ef:
        02:1d:00:bd:aa:c3:99:0a:90:3b:8e:7d:29:e2:1f:54:
        83:39:bb:be:56:87:69:95:b7:bd:4e:bc:31:d8:f4
    Fingerprint (SHA-256):
        B1:F6:F6:27:6D:2C:2C:03:83:EF:65:E6:C7:A3:DA:69:39:C7:A9:E6:F1:80:5F:7D:2B:3A:96:7B:C7:13:40:6B
    Fingerprint (SHA1):
        01:F2:C0:CA:8C:A1:A0:26:B5:41:8C:D8:2C:66:AC:34:42:8E:91:8C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #7569: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7570: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 10 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7571: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7572: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #7573: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7574: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7575: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7576: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7577: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7578: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7579: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7580: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #7581: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7582: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7583: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7584: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #7585: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7586: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7587: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7588: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7589: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7590: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7591: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7592: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #7593: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7594: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7595: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7596: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20171021161147Z
nextupdate=20181021161147Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Sat Oct 21 16:11:47 2017
    Next Update: Sun Oct 21 16:11:47 2018
    CRL Extensions:
chains.sh: #7597: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021161148Z
nextupdate=20181021161148Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 16:11:48 2017
    Next Update: Sun Oct 21 16:11:48 2018
    CRL Extensions:
chains.sh: #7598: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20171021161148Z
nextupdate=20181021161148Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Sat Oct 21 16:11:48 2017
    Next Update: Sun Oct 21 16:11:48 2018
    CRL Extensions:
chains.sh: #7599: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20171021161149Z
nextupdate=20181021161149Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Sat Oct 21 16:11:49 2017
    Next Update: Sun Oct 21 16:11:49 2018
    CRL Extensions:
chains.sh: #7600: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20171021161150Z
addcert 14 20171021161150Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Sat Oct 21 16:11:50 2017
    Next Update: Sun Oct 21 16:11:48 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Sat Oct 21 16:11:50 2017
    CRL Extensions:
chains.sh: #7601: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021161151Z
addcert 15 20171021161151Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 16:11:51 2017
    Next Update: Sun Oct 21 16:11:48 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Sat Oct 21 16:11:51 2017
    CRL Extensions:
chains.sh: #7602: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7603: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7604: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #7605: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #7606: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #7607: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #7608: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #7609: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #7610: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #7611: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:11:11 2017
            Not After : Fri Oct 21 16:11:11 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ee:88:c7:94:3a:1f:b8:f2:ac:a2:e1:1e:83:1f:6a:6d:
                    5e:d3:da:47:a6:25:f2:13:79:a5:87:b3:59:c2:cb:62:
                    ad:1c:3e:25:cf:68:de:2b:a1:f0:0c:52:fc:13:cb:eb:
                    ff:03:68:7a:26:47:fd:44:62:99:1e:4e:fa:a4:b7:6f:
                    d7:eb:37:b5:f4:eb:55:05:7e:44:84:df:c3:e5:12:96:
                    0e:88:91:fa:f2:f9:bb:91:d2:23:92:16:5a:0f:f6:cf:
                    fc:a3:08:f3:c8:6b:31:1a:26:1c:fc:81:f6:8e:df:83:
                    5f:55:da:52:26:d1:58:1f:4b:d2:c3:4c:00:bd:3b:de:
                    d5:38:a9:cd:8c:33:00:bd:2e:28:fe:15:e1:ac:55:d2:
                    c1:45:fc:df:a9:bc:30:38:5c:09:94:41:05:45:c4:12:
                    5f:b3:9e:7a:ea:1d:92:5c:43:0a:93:54:ba:5b:59:e6:
                    e6:7b:0c:1a:0e:f7:22:c5:62:d7:6a:52:48:75:b7:0e:
                    ab:d9:99:b3:96:57:44:32:45:4b:b3:4f:1c:e4:dc:46:
                    d2:98:5c:85:6a:49:17:22:cf:e2:52:19:b5:ab:01:fa:
                    08:37:c9:f6:a9:0a:19:79:ca:4b:fc:a0:1f:8f:99:96:
                    2b:d4:50:ad:b9:b2:60:47:cf:51:3b:50:2e:17:52:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        dd:c6:d7:ba:ac:e9:1a:14:04:3f:b0:2c:67:33:2e:5b:
        e9:f3:6d:66:06:55:4e:90:fc:f0:c1:26:d3:ac:6c:3b:
        d4:f3:43:7f:24:8a:b8:d7:88:33:b4:6b:13:5e:cf:c3:
        50:63:64:79:62:d4:a4:d9:4f:94:fd:89:cf:df:6b:d9:
        bf:4f:87:ab:a0:47:cd:28:c7:cb:b8:1c:ca:2b:d8:98:
        6b:99:e0:ed:c2:bc:ed:e8:ff:27:5c:11:73:01:fc:2c:
        a1:1e:f4:47:77:d6:f0:e9:ec:62:ad:42:23:15:53:77:
        02:25:d6:1e:92:63:06:3f:0b:a2:7a:ee:09:2f:49:6f:
        41:d5:78:a7:e9:c4:40:65:f2:a1:54:ac:9f:23:0d:95:
        14:07:db:32:6d:ab:aa:f5:38:92:2e:9a:9e:f9:76:43:
        de:1a:90:b5:7e:e9:84:b2:87:9f:16:bb:28:32:ba:89:
        f0:c4:75:47:ef:f4:53:76:19:bb:53:7b:ed:8f:ab:5d:
        4d:89:69:fd:21:de:84:27:37:6c:81:28:73:28:97:de:
        94:bc:e1:47:7b:b5:9b:d6:36:ea:44:41:1a:09:fe:f0:
        d3:49:63:1f:4f:0d:39:c9:06:0d:fe:ed:d8:13:a2:d3:
        6d:26:12:1b:21:e7:d6:78:7c:2f:56:b6:ee:bd:83:aa
    Fingerprint (SHA-256):
        55:49:63:D5:18:83:03:17:9D:5C:06:25:43:CE:DF:1D:83:D9:DE:9B:09:2A:0F:C1:12:C7:75:6B:30:D4:C9:36
    Fingerprint (SHA1):
        D2:D4:8F:25:F9:F3:71:AD:FC:37:D2:6C:9D:D8:9B:40:3E:EA:FC:90
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7612: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7613: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:11:11 2017
            Not After : Fri Oct 21 16:11:11 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ee:88:c7:94:3a:1f:b8:f2:ac:a2:e1:1e:83:1f:6a:6d:
                    5e:d3:da:47:a6:25:f2:13:79:a5:87:b3:59:c2:cb:62:
                    ad:1c:3e:25:cf:68:de:2b:a1:f0:0c:52:fc:13:cb:eb:
                    ff:03:68:7a:26:47:fd:44:62:99:1e:4e:fa:a4:b7:6f:
                    d7:eb:37:b5:f4:eb:55:05:7e:44:84:df:c3:e5:12:96:
                    0e:88:91:fa:f2:f9:bb:91:d2:23:92:16:5a:0f:f6:cf:
                    fc:a3:08:f3:c8:6b:31:1a:26:1c:fc:81:f6:8e:df:83:
                    5f:55:da:52:26:d1:58:1f:4b:d2:c3:4c:00:bd:3b:de:
                    d5:38:a9:cd:8c:33:00:bd:2e:28:fe:15:e1:ac:55:d2:
                    c1:45:fc:df:a9:bc:30:38:5c:09:94:41:05:45:c4:12:
                    5f:b3:9e:7a:ea:1d:92:5c:43:0a:93:54:ba:5b:59:e6:
                    e6:7b:0c:1a:0e:f7:22:c5:62:d7:6a:52:48:75:b7:0e:
                    ab:d9:99:b3:96:57:44:32:45:4b:b3:4f:1c:e4:dc:46:
                    d2:98:5c:85:6a:49:17:22:cf:e2:52:19:b5:ab:01:fa:
                    08:37:c9:f6:a9:0a:19:79:ca:4b:fc:a0:1f:8f:99:96:
                    2b:d4:50:ad:b9:b2:60:47:cf:51:3b:50:2e:17:52:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        dd:c6:d7:ba:ac:e9:1a:14:04:3f:b0:2c:67:33:2e:5b:
        e9:f3:6d:66:06:55:4e:90:fc:f0:c1:26:d3:ac:6c:3b:
        d4:f3:43:7f:24:8a:b8:d7:88:33:b4:6b:13:5e:cf:c3:
        50:63:64:79:62:d4:a4:d9:4f:94:fd:89:cf:df:6b:d9:
        bf:4f:87:ab:a0:47:cd:28:c7:cb:b8:1c:ca:2b:d8:98:
        6b:99:e0:ed:c2:bc:ed:e8:ff:27:5c:11:73:01:fc:2c:
        a1:1e:f4:47:77:d6:f0:e9:ec:62:ad:42:23:15:53:77:
        02:25:d6:1e:92:63:06:3f:0b:a2:7a:ee:09:2f:49:6f:
        41:d5:78:a7:e9:c4:40:65:f2:a1:54:ac:9f:23:0d:95:
        14:07:db:32:6d:ab:aa:f5:38:92:2e:9a:9e:f9:76:43:
        de:1a:90:b5:7e:e9:84:b2:87:9f:16:bb:28:32:ba:89:
        f0:c4:75:47:ef:f4:53:76:19:bb:53:7b:ed:8f:ab:5d:
        4d:89:69:fd:21:de:84:27:37:6c:81:28:73:28:97:de:
        94:bc:e1:47:7b:b5:9b:d6:36:ea:44:41:1a:09:fe:f0:
        d3:49:63:1f:4f:0d:39:c9:06:0d:fe:ed:d8:13:a2:d3:
        6d:26:12:1b:21:e7:d6:78:7c:2f:56:b6:ee:bd:83:aa
    Fingerprint (SHA-256):
        55:49:63:D5:18:83:03:17:9D:5C:06:25:43:CE:DF:1D:83:D9:DE:9B:09:2A:0F:C1:12:C7:75:6B:30:D4:C9:36
    Fingerprint (SHA1):
        D2:D4:8F:25:F9:F3:71:AD:FC:37:D2:6C:9D:D8:9B:40:3E:EA:FC:90
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7614: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7615: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7616: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155742 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7617: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7618: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #7619: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7620: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 1021155743   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7621: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7622: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7623: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021155633.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7624: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0Root-1021155618.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7625: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7626: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #7627: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021155633.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7628: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 1021155744   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7629: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7630: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7631: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021155633.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7632: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0Root-1021155619.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7633: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7634: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #7635: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7636: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 1021155745   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7637: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7638: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7639: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021155633.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7640: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0Root-1021155620.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7641: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7642: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7643: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021155633.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7644: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0Root-1021155621.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7645: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7646: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20171021161245Z
nextupdate=20181021161245Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Sat Oct 21 16:12:45 2017
    Next Update: Sun Oct 21 16:12:45 2018
    CRL Extensions:
chains.sh: #7647: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021161245Z
nextupdate=20181021161245Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 16:12:45 2017
    Next Update: Sun Oct 21 16:12:45 2018
    CRL Extensions:
chains.sh: #7648: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20171021161246Z
nextupdate=20181021161246Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Sat Oct 21 16:12:46 2017
    Next Update: Sun Oct 21 16:12:46 2018
    CRL Extensions:
chains.sh: #7649: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20171021161247Z
nextupdate=20181021161247Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Sat Oct 21 16:12:47 2017
    Next Update: Sun Oct 21 16:12:47 2018
    CRL Extensions:
chains.sh: #7650: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021161248Z
addcert 20 20171021161248Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 16:12:48 2017
    Next Update: Sun Oct 21 16:12:45 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Sat Oct 21 16:12:48 2017
    CRL Extensions:
chains.sh: #7651: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021161249Z
addcert 40 20171021161249Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 16:12:49 2017
    Next Update: Sun Oct 21 16:12:45 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Sat Oct 21 16:12:48 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Sat Oct 21 16:12:49 2017
    CRL Extensions:
chains.sh: #7652: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7653: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7654: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #7655: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155742 (0x3cdd999e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:12:04 2017
            Not After : Fri Oct 21 16:12:04 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:5b:7f:39:d6:5f:8d:3f:e8:da:dc:5e:dd:14:e0:69:
                    98:e5:c8:71:91:32:b3:d7:15:e7:ed:d9:54:9f:fc:43:
                    96:16:1c:84:e2:1c:4e:df:56:1e:9d:c7:fb:fc:86:19:
                    04:99:1c:d3:62:87:da:ee:b6:98:e5:23:9d:23:75:9b:
                    fa:ff:93:64:d7:e9:8d:b8:64:d0:fd:f0:16:e8:b4:a4:
                    ae:2b:d6:5f:34:80:05:56:66:c5:e6:6f:db:b2:5a:4f:
                    e4:dd:b5:de:2d:55:77:50:13:74:35:78:9e:94:82:bf:
                    e7:e3:f7:ec:d0:fd:33:da:bf:12:17:65:11:df:4c:33:
                    5c:11:a2:20:be:dd:68:78:68:54:6b:bc:f8:ec:30:dd:
                    01:71:f7:37:fb:8c:93:51:a7:86:50:99:fc:5c:b7:d2:
                    c3:6e:7a:77:d4:bd:a2:b5:6d:c5:45:0f:1d:2c:08:a1:
                    76:bd:77:f6:0a:0a:82:34:c8:62:b2:98:39:1f:33:7b:
                    c7:30:eb:76:dd:c1:bf:ef:04:95:73:bb:ea:88:c0:6c:
                    4b:07:5d:39:12:14:26:c3:a6:9f:bb:be:cc:a6:1c:4d:
                    97:ab:63:61:9f:b1:2f:bb:93:83:91:2a:d7:b1:82:96:
                    1d:c4:04:81:fa:fd:23:ea:72:9b:9d:f6:9f:38:15:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:8a:15:43:b4:12:07:4a:ea:79:05:a8:57:cc:3c:bc:
        14:77:a3:f7:a8:03:6d:0a:97:eb:b7:56:3b:3c:65:f2:
        63:4a:0b:b1:ee:19:7d:bf:29:8a:b7:97:07:aa:53:92:
        27:f8:fa:bd:0e:63:a9:51:37:17:ab:6a:d1:9b:df:3e:
        a5:cd:ea:13:f3:a5:74:1e:ed:12:29:c1:8d:04:08:3d:
        be:17:ea:88:ef:92:2b:ab:94:c4:ed:a6:69:5e:ab:3c:
        94:f7:b3:63:a2:37:d8:68:a6:39:4e:47:7f:e5:10:10:
        50:a1:64:c6:c9:03:c9:a5:c5:4c:a1:5b:bb:0d:89:b0:
        43:d5:d0:a5:da:30:6d:87:32:f6:bb:54:3f:d9:50:db:
        ca:6c:1b:b6:2a:19:e0:55:2d:b5:9a:91:1f:ad:ae:dd:
        2a:1a:52:6a:57:61:bf:3b:dc:c7:ce:cd:14:88:28:d3:
        fe:0b:1f:39:13:60:0b:e5:ec:eb:92:7b:2d:b6:db:f7:
        1e:92:3e:52:7c:e1:62:a9:2c:da:09:92:06:c1:64:05:
        f6:29:b7:24:ec:82:03:1d:5c:fd:f3:d7:71:b1:bb:42:
        fe:7d:b4:d3:bc:02:9f:13:9b:b4:40:74:82:2a:a6:4a:
        ac:b9:39:18:9a:02:5b:56:07:70:f3:59:cb:e2:cf:45
    Fingerprint (SHA-256):
        FA:A3:51:96:FC:BA:0F:AB:87:70:F5:BB:C9:C7:A1:86:ED:2D:30:EF:FA:C2:4E:E9:1E:7C:56:04:DE:B1:2F:71
    Fingerprint (SHA1):
        24:F8:26:58:0B:8A:88:71:3E:A2:79:86:4E:9F:73:70:EF:97:9A:91
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7656: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7657: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155742 (0x3cdd999e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:12:04 2017
            Not After : Fri Oct 21 16:12:04 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:5b:7f:39:d6:5f:8d:3f:e8:da:dc:5e:dd:14:e0:69:
                    98:e5:c8:71:91:32:b3:d7:15:e7:ed:d9:54:9f:fc:43:
                    96:16:1c:84:e2:1c:4e:df:56:1e:9d:c7:fb:fc:86:19:
                    04:99:1c:d3:62:87:da:ee:b6:98:e5:23:9d:23:75:9b:
                    fa:ff:93:64:d7:e9:8d:b8:64:d0:fd:f0:16:e8:b4:a4:
                    ae:2b:d6:5f:34:80:05:56:66:c5:e6:6f:db:b2:5a:4f:
                    e4:dd:b5:de:2d:55:77:50:13:74:35:78:9e:94:82:bf:
                    e7:e3:f7:ec:d0:fd:33:da:bf:12:17:65:11:df:4c:33:
                    5c:11:a2:20:be:dd:68:78:68:54:6b:bc:f8:ec:30:dd:
                    01:71:f7:37:fb:8c:93:51:a7:86:50:99:fc:5c:b7:d2:
                    c3:6e:7a:77:d4:bd:a2:b5:6d:c5:45:0f:1d:2c:08:a1:
                    76:bd:77:f6:0a:0a:82:34:c8:62:b2:98:39:1f:33:7b:
                    c7:30:eb:76:dd:c1:bf:ef:04:95:73:bb:ea:88:c0:6c:
                    4b:07:5d:39:12:14:26:c3:a6:9f:bb:be:cc:a6:1c:4d:
                    97:ab:63:61:9f:b1:2f:bb:93:83:91:2a:d7:b1:82:96:
                    1d:c4:04:81:fa:fd:23:ea:72:9b:9d:f6:9f:38:15:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:8a:15:43:b4:12:07:4a:ea:79:05:a8:57:cc:3c:bc:
        14:77:a3:f7:a8:03:6d:0a:97:eb:b7:56:3b:3c:65:f2:
        63:4a:0b:b1:ee:19:7d:bf:29:8a:b7:97:07:aa:53:92:
        27:f8:fa:bd:0e:63:a9:51:37:17:ab:6a:d1:9b:df:3e:
        a5:cd:ea:13:f3:a5:74:1e:ed:12:29:c1:8d:04:08:3d:
        be:17:ea:88:ef:92:2b:ab:94:c4:ed:a6:69:5e:ab:3c:
        94:f7:b3:63:a2:37:d8:68:a6:39:4e:47:7f:e5:10:10:
        50:a1:64:c6:c9:03:c9:a5:c5:4c:a1:5b:bb:0d:89:b0:
        43:d5:d0:a5:da:30:6d:87:32:f6:bb:54:3f:d9:50:db:
        ca:6c:1b:b6:2a:19:e0:55:2d:b5:9a:91:1f:ad:ae:dd:
        2a:1a:52:6a:57:61:bf:3b:dc:c7:ce:cd:14:88:28:d3:
        fe:0b:1f:39:13:60:0b:e5:ec:eb:92:7b:2d:b6:db:f7:
        1e:92:3e:52:7c:e1:62:a9:2c:da:09:92:06:c1:64:05:
        f6:29:b7:24:ec:82:03:1d:5c:fd:f3:d7:71:b1:bb:42:
        fe:7d:b4:d3:bc:02:9f:13:9b:b4:40:74:82:2a:a6:4a:
        ac:b9:39:18:9a:02:5b:56:07:70:f3:59:cb:e2:cf:45
    Fingerprint (SHA-256):
        FA:A3:51:96:FC:BA:0F:AB:87:70:F5:BB:C9:C7:A1:86:ED:2D:30:EF:FA:C2:4E:E9:1E:7C:56:04:DE:B1:2F:71
    Fingerprint (SHA1):
        24:F8:26:58:0B:8A:88:71:3E:A2:79:86:4E:9F:73:70:EF:97:9A:91
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7658: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7659: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #7660: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155746 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7661: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #7662: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7663: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7664: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 1021155747   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7665: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7666: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7667: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7668: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021155748   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7669: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7670: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7671: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7672: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 1021155749   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7673: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7674: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #7675: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155750 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7676: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #7677: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #7678: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7679: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 1021155751   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7680: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7681: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7682: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7683: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 1021155752   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7684: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7685: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #7686: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #7687: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #7688: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155746 (0x3cdd99a2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:12:59 2017
            Not After : Fri Oct 21 16:12:59 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a1:d9:72:6d:13:00:c8:62:60:30:0f:ba:1f:d9:f3:0b:
                    99:e6:53:f1:f6:f1:2f:3d:06:56:f8:17:b8:61:25:d0:
                    24:b4:3a:ef:39:ec:c9:6e:b9:fd:9f:e5:ad:4b:c5:20:
                    0b:82:1d:ab:3e:c1:4c:ac:2d:5d:b9:d9:7c:a0:95:27:
                    2a:c4:1d:93:a3:70:bf:18:d2:3d:9a:cd:f1:c2:17:69:
                    7a:db:ce:cc:46:59:5d:e9:da:b1:13:8a:4b:c7:f9:77:
                    3d:f3:2e:ad:7b:a6:12:eb:ca:27:fa:29:60:b7:9e:db:
                    e3:f6:64:3f:00:35:28:1d:7b:b5:9d:9e:bc:79:15:f8:
                    d0:85:85:b5:e6:20:21:e2:95:cc:5f:69:52:48:b9:38:
                    ba:ee:16:37:b0:45:41:6c:c0:5d:ea:58:f1:e1:1a:09:
                    aa:0e:9a:f3:b9:bd:f1:6f:6c:9f:be:31:a5:95:c8:0d:
                    a5:8d:e7:76:a6:f5:c7:88:fb:9d:a9:62:45:0d:79:83:
                    02:2e:00:66:72:0f:2b:56:e8:99:3f:bc:78:7e:74:72:
                    cc:77:f0:07:19:ef:60:dc:23:31:42:1f:44:0b:97:5b:
                    03:27:6a:81:e2:2f:d8:71:4d:d1:ef:89:ce:9f:86:c4:
                    40:ac:7e:cc:90:4c:38:92:6f:b3:95:a3:3a:5c:4b:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:0c:89:22:c5:f1:91:b5:15:e8:a9:54:46:02:91:d9:
        a8:88:1c:6f:25:aa:e7:fc:3d:1a:36:c8:f2:4d:57:0d:
        c3:07:85:e2:92:b9:6e:3e:b1:83:b8:6d:a5:80:e0:17:
        99:35:b9:02:c0:b1:75:34:23:c6:d6:95:bc:07:49:af:
        42:f8:da:0f:11:5a:c0:71:52:a8:e3:a0:cd:b8:54:d3:
        bf:d1:02:32:cf:55:67:92:03:c3:4d:fd:61:67:4b:9c:
        af:b1:b9:18:6d:6b:f3:7f:f0:7e:ea:49:d8:c9:8e:32:
        4f:8d:0b:f2:0d:b9:d8:78:e5:2e:55:17:bc:98:91:46:
        6d:ce:11:65:43:d9:67:2b:37:9d:55:c3:d4:cb:47:bf:
        c5:1b:d4:8f:9d:63:b7:25:72:64:eb:a5:31:b4:f6:87:
        b6:62:1e:15:f4:6f:6f:6e:16:a9:7c:0f:df:da:48:63:
        d8:6f:c4:72:81:c7:0d:c7:e3:f2:ef:fb:2e:fd:46:8b:
        3e:27:12:50:b3:1f:45:bf:46:64:0b:57:1b:10:e9:74:
        e0:a3:b0:87:fe:d5:4b:0a:ce:b0:5f:32:a4:ee:fe:b3:
        86:86:d3:e5:27:f1:70:b8:be:bf:4a:62:d6:e8:b3:b2:
        c1:b9:79:63:b1:1b:32:8b:af:26:fb:07:df:3f:85:d1
    Fingerprint (SHA-256):
        92:0C:FB:78:60:B4:02:83:28:48:EF:3C:42:56:3F:C2:3B:E4:09:1C:13:0C:70:8F:A1:16:2E:73:82:D0:B4:84
    Fingerprint (SHA1):
        DC:2E:DB:D0:1B:E8:96:2E:36:1F:C8:FE:03:5B:8F:0D:E5:D9:89:2A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7689: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155748 (0x3cdd99a4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 16:13:09 2017
            Not After : Fri Oct 21 16:13:09 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:f6:64:ea:ab:b2:15:7c:8e:fc:3f:5c:29:36:49:29:
                    11:f8:bc:9c:64:8d:bb:90:0d:45:91:85:f9:ef:5a:7c:
                    dc:85:47:b3:05:4e:56:42:c8:66:d2:67:a0:b3:63:d3:
                    14:0e:0f:40:23:6e:71:9a:fa:13:cc:ad:7d:77:25:d2:
                    f9:69:78:87:ee:e8:2b:fb:1f:c2:3b:b4:72:6a:cc:d2:
                    0c:b7:af:b5:7a:5f:9e:45:07:0a:65:da:1d:c9:8c:aa:
                    f1:00:9c:b3:5a:f5:cc:70:bb:c5:9b:a9:12:08:76:79:
                    9d:f0:b2:4d:86:dc:c4:94:43:18:58:ad:4a:77:02:cd:
                    8d:68:07:3b:99:02:cd:d8:b2:28:f2:bb:e7:ea:74:7f:
                    25:cc:f4:70:12:61:af:04:50:95:0b:28:a5:4f:a3:0a:
                    0b:1b:b6:dd:6b:d5:db:3e:7f:d1:e4:3e:77:f1:10:04:
                    84:57:60:07:9f:bd:11:1c:29:47:ee:2e:9c:93:71:61:
                    d4:6a:a0:f8:93:4a:dd:6b:95:3f:af:17:37:ee:a1:32:
                    d4:29:9a:0a:09:cf:64:8a:e4:b6:8b:6c:00:16:46:ac:
                    a0:64:6e:e8:86:a3:0a:0d:97:93:25:b4:ba:b4:8b:c4:
                    e5:21:70:93:15:7f:f3:ae:97:d3:5f:d9:01:8b:0e:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4b:a3:9a:9e:bc:03:cd:56:c0:9c:ec:11:54:dd:3a:9e:
        78:a4:ab:44:fa:ce:2e:d0:f0:f5:2a:7c:41:94:fb:61:
        bc:52:69:c7:bc:1f:c8:1f:3c:40:ac:61:ae:da:5f:cb:
        2b:81:cf:02:30:66:61:2d:e1:9d:1d:81:81:b4:73:5d:
        08:8c:70:4f:4b:22:08:f6:0a:e1:a5:6f:7b:aa:86:a5:
        63:db:8b:9c:a6:d6:fb:9a:00:ad:9a:4c:22:c3:b5:90:
        cf:85:8d:8e:a3:83:88:3b:c8:91:c7:c8:4a:05:3f:9b:
        97:a3:9a:ec:b1:d9:53:d2:83:75:55:80:ff:b0:26:a1:
        d3:4e:eb:2a:79:ab:ed:9a:55:d3:13:ca:20:11:e8:3a:
        cb:b2:b5:ff:63:a2:37:90:15:b0:4d:56:ad:da:39:01:
        8a:d9:45:fb:73:3e:36:e6:a1:ba:3b:db:d4:1a:04:b8:
        73:7d:06:b9:77:30:a8:b7:12:c5:4f:08:d7:3b:f5:26:
        96:05:da:8f:96:b9:e6:0a:b4:e1:27:10:f0:10:f2:ff:
        c4:02:8f:32:4c:2b:48:a6:7e:b0:2f:46:43:4a:25:1a:
        ab:b2:e9:c7:86:65:b8:4c:90:32:8d:60:dc:ff:14:89:
        73:ef:31:51:e6:fe:77:18:d3:bf:bf:f2:8b:a9:bf:d8
    Fingerprint (SHA-256):
        F8:00:AB:3B:00:B4:9F:E3:85:F4:45:D1:3E:E2:C1:BA:0B:0F:24:9E:18:26:53:BA:DD:26:76:65:78:40:42:A5
    Fingerprint (SHA1):
        2A:99:D1:31:F1:36:FE:05:53:B3:21:E2:8B:3F:74:F4:E7:09:C5:17
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7690: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155746 (0x3cdd99a2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:12:59 2017
            Not After : Fri Oct 21 16:12:59 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a1:d9:72:6d:13:00:c8:62:60:30:0f:ba:1f:d9:f3:0b:
                    99:e6:53:f1:f6:f1:2f:3d:06:56:f8:17:b8:61:25:d0:
                    24:b4:3a:ef:39:ec:c9:6e:b9:fd:9f:e5:ad:4b:c5:20:
                    0b:82:1d:ab:3e:c1:4c:ac:2d:5d:b9:d9:7c:a0:95:27:
                    2a:c4:1d:93:a3:70:bf:18:d2:3d:9a:cd:f1:c2:17:69:
                    7a:db:ce:cc:46:59:5d:e9:da:b1:13:8a:4b:c7:f9:77:
                    3d:f3:2e:ad:7b:a6:12:eb:ca:27:fa:29:60:b7:9e:db:
                    e3:f6:64:3f:00:35:28:1d:7b:b5:9d:9e:bc:79:15:f8:
                    d0:85:85:b5:e6:20:21:e2:95:cc:5f:69:52:48:b9:38:
                    ba:ee:16:37:b0:45:41:6c:c0:5d:ea:58:f1:e1:1a:09:
                    aa:0e:9a:f3:b9:bd:f1:6f:6c:9f:be:31:a5:95:c8:0d:
                    a5:8d:e7:76:a6:f5:c7:88:fb:9d:a9:62:45:0d:79:83:
                    02:2e:00:66:72:0f:2b:56:e8:99:3f:bc:78:7e:74:72:
                    cc:77:f0:07:19:ef:60:dc:23:31:42:1f:44:0b:97:5b:
                    03:27:6a:81:e2:2f:d8:71:4d:d1:ef:89:ce:9f:86:c4:
                    40:ac:7e:cc:90:4c:38:92:6f:b3:95:a3:3a:5c:4b:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:0c:89:22:c5:f1:91:b5:15:e8:a9:54:46:02:91:d9:
        a8:88:1c:6f:25:aa:e7:fc:3d:1a:36:c8:f2:4d:57:0d:
        c3:07:85:e2:92:b9:6e:3e:b1:83:b8:6d:a5:80:e0:17:
        99:35:b9:02:c0:b1:75:34:23:c6:d6:95:bc:07:49:af:
        42:f8:da:0f:11:5a:c0:71:52:a8:e3:a0:cd:b8:54:d3:
        bf:d1:02:32:cf:55:67:92:03:c3:4d:fd:61:67:4b:9c:
        af:b1:b9:18:6d:6b:f3:7f:f0:7e:ea:49:d8:c9:8e:32:
        4f:8d:0b:f2:0d:b9:d8:78:e5:2e:55:17:bc:98:91:46:
        6d:ce:11:65:43:d9:67:2b:37:9d:55:c3:d4:cb:47:bf:
        c5:1b:d4:8f:9d:63:b7:25:72:64:eb:a5:31:b4:f6:87:
        b6:62:1e:15:f4:6f:6f:6e:16:a9:7c:0f:df:da:48:63:
        d8:6f:c4:72:81:c7:0d:c7:e3:f2:ef:fb:2e:fd:46:8b:
        3e:27:12:50:b3:1f:45:bf:46:64:0b:57:1b:10:e9:74:
        e0:a3:b0:87:fe:d5:4b:0a:ce:b0:5f:32:a4:ee:fe:b3:
        86:86:d3:e5:27:f1:70:b8:be:bf:4a:62:d6:e8:b3:b2:
        c1:b9:79:63:b1:1b:32:8b:af:26:fb:07:df:3f:85:d1
    Fingerprint (SHA-256):
        92:0C:FB:78:60:B4:02:83:28:48:EF:3C:42:56:3F:C2:3B:E4:09:1C:13:0C:70:8F:A1:16:2E:73:82:D0:B4:84
    Fingerprint (SHA1):
        DC:2E:DB:D0:1B:E8:96:2E:36:1F:C8:FE:03:5B:8F:0D:E5:D9:89:2A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7691: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #7692: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155746 (0x3cdd99a2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:12:59 2017
            Not After : Fri Oct 21 16:12:59 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a1:d9:72:6d:13:00:c8:62:60:30:0f:ba:1f:d9:f3:0b:
                    99:e6:53:f1:f6:f1:2f:3d:06:56:f8:17:b8:61:25:d0:
                    24:b4:3a:ef:39:ec:c9:6e:b9:fd:9f:e5:ad:4b:c5:20:
                    0b:82:1d:ab:3e:c1:4c:ac:2d:5d:b9:d9:7c:a0:95:27:
                    2a:c4:1d:93:a3:70:bf:18:d2:3d:9a:cd:f1:c2:17:69:
                    7a:db:ce:cc:46:59:5d:e9:da:b1:13:8a:4b:c7:f9:77:
                    3d:f3:2e:ad:7b:a6:12:eb:ca:27:fa:29:60:b7:9e:db:
                    e3:f6:64:3f:00:35:28:1d:7b:b5:9d:9e:bc:79:15:f8:
                    d0:85:85:b5:e6:20:21:e2:95:cc:5f:69:52:48:b9:38:
                    ba:ee:16:37:b0:45:41:6c:c0:5d:ea:58:f1:e1:1a:09:
                    aa:0e:9a:f3:b9:bd:f1:6f:6c:9f:be:31:a5:95:c8:0d:
                    a5:8d:e7:76:a6:f5:c7:88:fb:9d:a9:62:45:0d:79:83:
                    02:2e:00:66:72:0f:2b:56:e8:99:3f:bc:78:7e:74:72:
                    cc:77:f0:07:19:ef:60:dc:23:31:42:1f:44:0b:97:5b:
                    03:27:6a:81:e2:2f:d8:71:4d:d1:ef:89:ce:9f:86:c4:
                    40:ac:7e:cc:90:4c:38:92:6f:b3:95:a3:3a:5c:4b:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:0c:89:22:c5:f1:91:b5:15:e8:a9:54:46:02:91:d9:
        a8:88:1c:6f:25:aa:e7:fc:3d:1a:36:c8:f2:4d:57:0d:
        c3:07:85:e2:92:b9:6e:3e:b1:83:b8:6d:a5:80:e0:17:
        99:35:b9:02:c0:b1:75:34:23:c6:d6:95:bc:07:49:af:
        42:f8:da:0f:11:5a:c0:71:52:a8:e3:a0:cd:b8:54:d3:
        bf:d1:02:32:cf:55:67:92:03:c3:4d:fd:61:67:4b:9c:
        af:b1:b9:18:6d:6b:f3:7f:f0:7e:ea:49:d8:c9:8e:32:
        4f:8d:0b:f2:0d:b9:d8:78:e5:2e:55:17:bc:98:91:46:
        6d:ce:11:65:43:d9:67:2b:37:9d:55:c3:d4:cb:47:bf:
        c5:1b:d4:8f:9d:63:b7:25:72:64:eb:a5:31:b4:f6:87:
        b6:62:1e:15:f4:6f:6f:6e:16:a9:7c:0f:df:da:48:63:
        d8:6f:c4:72:81:c7:0d:c7:e3:f2:ef:fb:2e:fd:46:8b:
        3e:27:12:50:b3:1f:45:bf:46:64:0b:57:1b:10:e9:74:
        e0:a3:b0:87:fe:d5:4b:0a:ce:b0:5f:32:a4:ee:fe:b3:
        86:86:d3:e5:27:f1:70:b8:be:bf:4a:62:d6:e8:b3:b2:
        c1:b9:79:63:b1:1b:32:8b:af:26:fb:07:df:3f:85:d1
    Fingerprint (SHA-256):
        92:0C:FB:78:60:B4:02:83:28:48:EF:3C:42:56:3F:C2:3B:E4:09:1C:13:0C:70:8F:A1:16:2E:73:82:D0:B4:84
    Fingerprint (SHA1):
        DC:2E:DB:D0:1B:E8:96:2E:36:1F:C8:FE:03:5B:8F:0D:E5:D9:89:2A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7693: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155748 (0x3cdd99a4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 16:13:09 2017
            Not After : Fri Oct 21 16:13:09 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:f6:64:ea:ab:b2:15:7c:8e:fc:3f:5c:29:36:49:29:
                    11:f8:bc:9c:64:8d:bb:90:0d:45:91:85:f9:ef:5a:7c:
                    dc:85:47:b3:05:4e:56:42:c8:66:d2:67:a0:b3:63:d3:
                    14:0e:0f:40:23:6e:71:9a:fa:13:cc:ad:7d:77:25:d2:
                    f9:69:78:87:ee:e8:2b:fb:1f:c2:3b:b4:72:6a:cc:d2:
                    0c:b7:af:b5:7a:5f:9e:45:07:0a:65:da:1d:c9:8c:aa:
                    f1:00:9c:b3:5a:f5:cc:70:bb:c5:9b:a9:12:08:76:79:
                    9d:f0:b2:4d:86:dc:c4:94:43:18:58:ad:4a:77:02:cd:
                    8d:68:07:3b:99:02:cd:d8:b2:28:f2:bb:e7:ea:74:7f:
                    25:cc:f4:70:12:61:af:04:50:95:0b:28:a5:4f:a3:0a:
                    0b:1b:b6:dd:6b:d5:db:3e:7f:d1:e4:3e:77:f1:10:04:
                    84:57:60:07:9f:bd:11:1c:29:47:ee:2e:9c:93:71:61:
                    d4:6a:a0:f8:93:4a:dd:6b:95:3f:af:17:37:ee:a1:32:
                    d4:29:9a:0a:09:cf:64:8a:e4:b6:8b:6c:00:16:46:ac:
                    a0:64:6e:e8:86:a3:0a:0d:97:93:25:b4:ba:b4:8b:c4:
                    e5:21:70:93:15:7f:f3:ae:97:d3:5f:d9:01:8b:0e:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4b:a3:9a:9e:bc:03:cd:56:c0:9c:ec:11:54:dd:3a:9e:
        78:a4:ab:44:fa:ce:2e:d0:f0:f5:2a:7c:41:94:fb:61:
        bc:52:69:c7:bc:1f:c8:1f:3c:40:ac:61:ae:da:5f:cb:
        2b:81:cf:02:30:66:61:2d:e1:9d:1d:81:81:b4:73:5d:
        08:8c:70:4f:4b:22:08:f6:0a:e1:a5:6f:7b:aa:86:a5:
        63:db:8b:9c:a6:d6:fb:9a:00:ad:9a:4c:22:c3:b5:90:
        cf:85:8d:8e:a3:83:88:3b:c8:91:c7:c8:4a:05:3f:9b:
        97:a3:9a:ec:b1:d9:53:d2:83:75:55:80:ff:b0:26:a1:
        d3:4e:eb:2a:79:ab:ed:9a:55:d3:13:ca:20:11:e8:3a:
        cb:b2:b5:ff:63:a2:37:90:15:b0:4d:56:ad:da:39:01:
        8a:d9:45:fb:73:3e:36:e6:a1:ba:3b:db:d4:1a:04:b8:
        73:7d:06:b9:77:30:a8:b7:12:c5:4f:08:d7:3b:f5:26:
        96:05:da:8f:96:b9:e6:0a:b4:e1:27:10:f0:10:f2:ff:
        c4:02:8f:32:4c:2b:48:a6:7e:b0:2f:46:43:4a:25:1a:
        ab:b2:e9:c7:86:65:b8:4c:90:32:8d:60:dc:ff:14:89:
        73:ef:31:51:e6:fe:77:18:d3:bf:bf:f2:8b:a9:bf:d8
    Fingerprint (SHA-256):
        F8:00:AB:3B:00:B4:9F:E3:85:F4:45:D1:3E:E2:C1:BA:0B:0F:24:9E:18:26:53:BA:DD:26:76:65:78:40:42:A5
    Fingerprint (SHA1):
        2A:99:D1:31:F1:36:FE:05:53:B3:21:E2:8B:3F:74:F4:E7:09:C5:17
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7694: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #7695: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #7696: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #7697: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155746 (0x3cdd99a2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:12:59 2017
            Not After : Fri Oct 21 16:12:59 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a1:d9:72:6d:13:00:c8:62:60:30:0f:ba:1f:d9:f3:0b:
                    99:e6:53:f1:f6:f1:2f:3d:06:56:f8:17:b8:61:25:d0:
                    24:b4:3a:ef:39:ec:c9:6e:b9:fd:9f:e5:ad:4b:c5:20:
                    0b:82:1d:ab:3e:c1:4c:ac:2d:5d:b9:d9:7c:a0:95:27:
                    2a:c4:1d:93:a3:70:bf:18:d2:3d:9a:cd:f1:c2:17:69:
                    7a:db:ce:cc:46:59:5d:e9:da:b1:13:8a:4b:c7:f9:77:
                    3d:f3:2e:ad:7b:a6:12:eb:ca:27:fa:29:60:b7:9e:db:
                    e3:f6:64:3f:00:35:28:1d:7b:b5:9d:9e:bc:79:15:f8:
                    d0:85:85:b5:e6:20:21:e2:95:cc:5f:69:52:48:b9:38:
                    ba:ee:16:37:b0:45:41:6c:c0:5d:ea:58:f1:e1:1a:09:
                    aa:0e:9a:f3:b9:bd:f1:6f:6c:9f:be:31:a5:95:c8:0d:
                    a5:8d:e7:76:a6:f5:c7:88:fb:9d:a9:62:45:0d:79:83:
                    02:2e:00:66:72:0f:2b:56:e8:99:3f:bc:78:7e:74:72:
                    cc:77:f0:07:19:ef:60:dc:23:31:42:1f:44:0b:97:5b:
                    03:27:6a:81:e2:2f:d8:71:4d:d1:ef:89:ce:9f:86:c4:
                    40:ac:7e:cc:90:4c:38:92:6f:b3:95:a3:3a:5c:4b:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:0c:89:22:c5:f1:91:b5:15:e8:a9:54:46:02:91:d9:
        a8:88:1c:6f:25:aa:e7:fc:3d:1a:36:c8:f2:4d:57:0d:
        c3:07:85:e2:92:b9:6e:3e:b1:83:b8:6d:a5:80:e0:17:
        99:35:b9:02:c0:b1:75:34:23:c6:d6:95:bc:07:49:af:
        42:f8:da:0f:11:5a:c0:71:52:a8:e3:a0:cd:b8:54:d3:
        bf:d1:02:32:cf:55:67:92:03:c3:4d:fd:61:67:4b:9c:
        af:b1:b9:18:6d:6b:f3:7f:f0:7e:ea:49:d8:c9:8e:32:
        4f:8d:0b:f2:0d:b9:d8:78:e5:2e:55:17:bc:98:91:46:
        6d:ce:11:65:43:d9:67:2b:37:9d:55:c3:d4:cb:47:bf:
        c5:1b:d4:8f:9d:63:b7:25:72:64:eb:a5:31:b4:f6:87:
        b6:62:1e:15:f4:6f:6f:6e:16:a9:7c:0f:df:da:48:63:
        d8:6f:c4:72:81:c7:0d:c7:e3:f2:ef:fb:2e:fd:46:8b:
        3e:27:12:50:b3:1f:45:bf:46:64:0b:57:1b:10:e9:74:
        e0:a3:b0:87:fe:d5:4b:0a:ce:b0:5f:32:a4:ee:fe:b3:
        86:86:d3:e5:27:f1:70:b8:be:bf:4a:62:d6:e8:b3:b2:
        c1:b9:79:63:b1:1b:32:8b:af:26:fb:07:df:3f:85:d1
    Fingerprint (SHA-256):
        92:0C:FB:78:60:B4:02:83:28:48:EF:3C:42:56:3F:C2:3B:E4:09:1C:13:0C:70:8F:A1:16:2E:73:82:D0:B4:84
    Fingerprint (SHA1):
        DC:2E:DB:D0:1B:E8:96:2E:36:1F:C8:FE:03:5B:8F:0D:E5:D9:89:2A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7698: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155750 (0x3cdd99a6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Sat Oct 21 16:13:20 2017
            Not After : Fri Oct 21 16:13:20 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:12:10:6f:22:c0:95:1b:97:56:cf:f7:f6:85:7c:6c:
                    df:9e:d2:db:8b:cd:2f:c8:48:1b:e8:fc:a6:73:cd:96:
                    d8:b1:47:7e:f9:06:52:c6:d8:8c:e5:b1:3b:1d:cb:9e:
                    47:8e:6f:78:95:4b:fd:ab:ab:0d:44:cb:c0:eb:ea:a3:
                    f2:d4:f2:af:03:08:a4:54:9d:ea:50:02:ba:42:93:ef:
                    b0:bf:94:cb:8f:ab:04:36:f5:22:a8:c2:f8:7d:cb:74:
                    03:86:ff:24:4e:4f:10:ad:37:ab:3e:d9:62:75:50:22:
                    8b:fa:3b:fa:f1:02:d5:e5:7c:de:5a:90:0f:92:c7:92:
                    78:d0:73:4c:dd:8c:f7:f5:1a:82:89:ee:a0:39:5b:5e:
                    31:94:f0:bf:39:dd:74:78:10:59:eb:c9:37:07:1a:e5:
                    dc:34:6a:50:96:e2:6f:94:02:00:68:49:c6:eb:01:71:
                    a5:0f:71:59:55:9f:e5:ec:c4:25:58:2a:9d:3e:c2:57:
                    5a:cd:7d:ed:ca:8c:41:36:fc:42:b9:8a:64:9e:65:ef:
                    b0:aa:46:15:ca:f5:b8:c7:31:b0:22:18:a3:ba:1d:e1:
                    c7:c8:65:3a:60:87:30:bf:be:26:68:3f:5d:89:d7:c2:
                    c7:43:8c:99:13:94:50:e8:82:88:5c:18:12:a5:75:03
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        21:10:59:7c:94:df:cf:25:d5:b8:e4:c4:9c:9d:f2:9b:
        5b:b4:dd:f3:70:12:02:18:6c:4e:1a:cd:7d:49:6c:f0:
        a8:ca:52:64:cc:c1:bb:4e:cb:ff:11:7e:2b:a0:e1:63:
        a5:85:f8:9e:5f:f6:d3:1e:e6:33:bc:f8:08:76:5a:d0:
        da:30:01:93:30:15:d3:4e:41:e8:79:fd:45:48:76:a5:
        e4:05:b4:2b:fa:94:70:54:e2:69:a1:cc:97:9c:f3:46:
        2a:ad:ed:99:c7:ec:f1:87:0d:c7:22:95:2d:f7:f2:63:
        f8:09:8d:ac:0e:b8:38:f7:d0:0d:f6:a1:e4:8a:b5:ee:
        17:28:9b:2a:05:0e:04:17:dc:97:8e:b6:ec:52:1b:75:
        99:10:d5:1a:7a:04:9c:c9:bb:4a:76:4b:3b:c2:26:22:
        2e:ae:19:96:1f:a5:2b:29:81:c1:ed:02:45:28:2b:7d:
        41:9e:27:14:f6:ee:06:b7:5f:07:13:48:a7:3c:f8:3d:
        eb:28:fe:f7:00:2c:37:4a:87:23:35:ef:6a:72:dd:e8:
        d4:10:32:51:41:fd:a4:8c:4f:2b:36:ac:88:81:21:44:
        87:09:ee:89:ab:3d:61:42:f6:f4:58:d1:24:3e:df:bb:
        9b:67:77:34:bc:00:53:17:2d:ed:5d:ac:a8:e6:33:1b
    Fingerprint (SHA-256):
        6B:4F:28:66:F0:04:F3:B0:17:50:B7:E6:43:20:25:C6:22:7D:8C:14:9E:65:E5:11:AE:9F:48:8C:B4:3A:D7:95
    Fingerprint (SHA1):
        76:2D:99:70:8B:CE:F1:26:AC:3F:1A:7E:5B:8F:18:9F:E8:CF:F5:F3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #7699: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155746 (0x3cdd99a2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:12:59 2017
            Not After : Fri Oct 21 16:12:59 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a1:d9:72:6d:13:00:c8:62:60:30:0f:ba:1f:d9:f3:0b:
                    99:e6:53:f1:f6:f1:2f:3d:06:56:f8:17:b8:61:25:d0:
                    24:b4:3a:ef:39:ec:c9:6e:b9:fd:9f:e5:ad:4b:c5:20:
                    0b:82:1d:ab:3e:c1:4c:ac:2d:5d:b9:d9:7c:a0:95:27:
                    2a:c4:1d:93:a3:70:bf:18:d2:3d:9a:cd:f1:c2:17:69:
                    7a:db:ce:cc:46:59:5d:e9:da:b1:13:8a:4b:c7:f9:77:
                    3d:f3:2e:ad:7b:a6:12:eb:ca:27:fa:29:60:b7:9e:db:
                    e3:f6:64:3f:00:35:28:1d:7b:b5:9d:9e:bc:79:15:f8:
                    d0:85:85:b5:e6:20:21:e2:95:cc:5f:69:52:48:b9:38:
                    ba:ee:16:37:b0:45:41:6c:c0:5d:ea:58:f1:e1:1a:09:
                    aa:0e:9a:f3:b9:bd:f1:6f:6c:9f:be:31:a5:95:c8:0d:
                    a5:8d:e7:76:a6:f5:c7:88:fb:9d:a9:62:45:0d:79:83:
                    02:2e:00:66:72:0f:2b:56:e8:99:3f:bc:78:7e:74:72:
                    cc:77:f0:07:19:ef:60:dc:23:31:42:1f:44:0b:97:5b:
                    03:27:6a:81:e2:2f:d8:71:4d:d1:ef:89:ce:9f:86:c4:
                    40:ac:7e:cc:90:4c:38:92:6f:b3:95:a3:3a:5c:4b:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:0c:89:22:c5:f1:91:b5:15:e8:a9:54:46:02:91:d9:
        a8:88:1c:6f:25:aa:e7:fc:3d:1a:36:c8:f2:4d:57:0d:
        c3:07:85:e2:92:b9:6e:3e:b1:83:b8:6d:a5:80:e0:17:
        99:35:b9:02:c0:b1:75:34:23:c6:d6:95:bc:07:49:af:
        42:f8:da:0f:11:5a:c0:71:52:a8:e3:a0:cd:b8:54:d3:
        bf:d1:02:32:cf:55:67:92:03:c3:4d:fd:61:67:4b:9c:
        af:b1:b9:18:6d:6b:f3:7f:f0:7e:ea:49:d8:c9:8e:32:
        4f:8d:0b:f2:0d:b9:d8:78:e5:2e:55:17:bc:98:91:46:
        6d:ce:11:65:43:d9:67:2b:37:9d:55:c3:d4:cb:47:bf:
        c5:1b:d4:8f:9d:63:b7:25:72:64:eb:a5:31:b4:f6:87:
        b6:62:1e:15:f4:6f:6f:6e:16:a9:7c:0f:df:da:48:63:
        d8:6f:c4:72:81:c7:0d:c7:e3:f2:ef:fb:2e:fd:46:8b:
        3e:27:12:50:b3:1f:45:bf:46:64:0b:57:1b:10:e9:74:
        e0:a3:b0:87:fe:d5:4b:0a:ce:b0:5f:32:a4:ee:fe:b3:
        86:86:d3:e5:27:f1:70:b8:be:bf:4a:62:d6:e8:b3:b2:
        c1:b9:79:63:b1:1b:32:8b:af:26:fb:07:df:3f:85:d1
    Fingerprint (SHA-256):
        92:0C:FB:78:60:B4:02:83:28:48:EF:3C:42:56:3F:C2:3B:E4:09:1C:13:0C:70:8F:A1:16:2E:73:82:D0:B4:84
    Fingerprint (SHA1):
        DC:2E:DB:D0:1B:E8:96:2E:36:1F:C8:FE:03:5B:8F:0D:E5:D9:89:2A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7700: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #7701: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #7702: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #7703: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #7704: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #7705: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155751 (0x3cdd99a7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Sat Oct 21 16:13:24 2017
            Not After : Fri Oct 21 16:13:24 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:77:4d:9f:03:96:3c:2f:c8:e2:2a:26:f3:5d:74:95:
                    98:10:25:5b:aa:5b:26:13:39:a8:d2:62:c6:cc:7d:f4:
                    1d:13:59:f1:00:ca:c3:36:02:de:d2:4e:33:77:29:ae:
                    84:40:f9:8b:0b:24:2e:dd:b9:07:db:b7:4f:41:cf:0b:
                    31:08:ae:72:c8:73:96:5e:93:98:a7:62:89:81:0b:e1:
                    10:ef:f1:b1:3c:50:f0:74:b0:ab:20:bf:ed:44:1c:94:
                    a5:6f:3b:48:2a:c4:e7:8d:03:9b:ea:b9:48:d0:33:b7:
                    be:46:4f:fb:9d:f2:b5:78:56:64:ef:e4:5b:ef:fc:ec:
                    92:35:18:cb:93:75:af:a9:ce:1e:c9:6e:41:b1:8f:10:
                    13:ec:2e:d2:93:a8:8a:98:27:68:9c:5f:f3:01:8b:46:
                    d9:fb:48:82:2b:ec:ad:61:2b:bd:ad:58:14:cc:79:0c:
                    22:38:5e:b5:b8:cd:95:92:a5:ad:3b:cb:a9:84:6f:83:
                    ef:17:57:10:30:48:1d:34:80:5c:35:a0:41:10:62:1e:
                    98:3f:91:f4:10:26:3b:4e:80:b0:81:b7:76:19:e0:50:
                    92:8c:ec:78:69:23:4b:3e:12:36:02:43:e8:ac:08:1d:
                    fd:2c:79:e1:fd:2e:7c:f4:90:93:2d:81:cd:1c:84:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2f:67:43:5f:99:c5:f2:53:e0:07:57:be:29:4b:bc:3d:
        13:8c:67:cf:fc:ef:5c:53:a5:1c:d6:f1:7b:0d:9a:a7:
        fd:f1:08:c5:ec:f8:6e:3f:00:b1:b1:83:6b:4e:5e:a6:
        2d:e3:a1:94:96:84:18:e8:2e:fd:1d:21:aa:ea:8a:c2:
        ba:4c:cb:70:85:4e:9d:b6:e9:71:6e:3a:8e:6f:35:7a:
        5b:86:74:3d:be:4b:3f:7f:d8:56:ca:50:f0:7e:c2:ca:
        9d:2f:a7:c5:98:9e:78:ec:80:91:d3:78:57:a1:84:7f:
        db:e1:08:6d:a8:c7:58:9f:47:2e:dd:da:8f:26:7c:11:
        40:68:c2:bd:90:a8:d6:5b:80:e2:63:d6:64:c5:15:4f:
        88:ec:40:58:09:2c:bf:b1:14:be:36:35:49:8d:5d:6a:
        d2:43:34:8e:23:9b:94:e3:ef:21:7f:ae:a3:47:a0:2a:
        b3:cd:2a:3f:1c:30:58:05:a6:e9:e5:05:55:d2:cb:7d:
        d7:5a:9c:7c:fb:55:e4:ef:58:b3:87:67:76:ba:f7:dc:
        92:23:e3:c5:7f:fb:f2:27:2b:11:fe:ca:5b:19:55:7d:
        ba:0f:1d:22:dc:94:c0:28:f5:69:8a:62:3f:f1:ce:d2:
        80:3a:e6:24:fe:aa:34:75:3f:85:b5:2e:0f:f8:67:cd
    Fingerprint (SHA-256):
        F2:92:99:75:DA:70:D4:38:F5:1A:F3:18:0A:78:06:5B:A9:62:B7:F3:C5:23:A0:F0:B3:6E:E7:12:80:9D:39:CA
    Fingerprint (SHA1):
        8B:86:37:18:1A:BC:51:7C:8C:CE:BE:B5:3C:80:0F:03:CB:15:5E:38
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7706: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #7707: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #7708: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #7709: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #7710: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7711: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7712: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7713: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7714: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7715: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7716: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7717: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7718: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7719: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7720: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7721: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7722: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7723: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7724: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #7725: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7726: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7727: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7728: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7729: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 28137 at Sat Oct 21 16:14:03 UTC 2017
kill -USR1 28137
httpserv: normal termination
httpserv -b -p 9193 2>/dev/null;
httpserv with PID 28137 killed at Sat Oct 21 16:14:04 UTC 2017
httpserv starting at Sat Oct 21 16:14:04 UTC 2017
httpserv -D -p 9193  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O get-unknown -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/aiahttp/http_pid.3868  &
trying to connect to httpserv at Sat Oct 21 16:14:04 UTC 2017
tstclnt -p 9193 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9193 (address=127.0.0.1)
tstclnt: exiting with return code 0
kill -0 11462 >/dev/null 2>/dev/null
httpserv with PID 11462 found at Sat Oct 21 16:14:04 UTC 2017
httpserv with PID 11462 started at Sat Oct 21 16:14:05 UTC 2017
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #7730: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155753 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7731: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #7732: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #7733: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155754 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7734: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #7735: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #7736: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7737: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 1021155755 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7738: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7739: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 1021155756 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7740: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7741: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #7742: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7743: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7744: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 1021155757   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7745: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7746: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7747: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #7748: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #7749: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155754 (0x3cdd99aa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 16:14:20 2017
            Not After : Fri Oct 21 16:14:20 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:74:8d:21:11:60:4a:f2:d0:94:b4:b4:90:82:68:b7:
                    a7:c8:a0:06:0d:a2:67:e3:7d:0e:8c:4e:42:8b:20:fa:
                    2a:79:41:8e:0b:da:af:8a:0a:b1:4e:e1:9a:f6:af:4d:
                    b6:8f:57:a6:ee:5e:02:ac:20:c2:db:94:1a:cd:a2:de:
                    1a:49:44:9f:a4:8f:33:28:dd:37:84:66:1d:28:24:84:
                    09:2b:38:bb:3f:fd:59:41:c7:df:b2:d7:99:e6:8d:92:
                    6d:8b:75:f6:fa:6d:f7:39:cd:87:cd:48:ac:2c:fb:bb:
                    3c:82:42:1c:8b:24:61:ff:3d:f7:af:1b:66:d8:29:13:
                    dd:e7:18:10:f6:1c:f3:1a:6a:1a:39:14:4d:a2:94:7d:
                    9d:d7:22:ad:ac:b1:4d:55:b3:25:da:36:82:30:aa:74:
                    79:9c:28:57:aa:05:b1:4a:f0:ae:bd:5a:05:a1:44:2e:
                    58:77:f8:53:8b:84:1e:86:83:ba:6b:df:77:ba:0f:ab:
                    ce:3f:a4:a8:bf:22:75:3c:74:a1:68:4a:19:4d:5a:7a:
                    81:8a:dc:60:f4:91:1f:61:ca:8b:97:36:52:5d:40:d4:
                    19:fd:a1:84:e1:78:bf:bd:82:cb:8c:ef:60:18:e7:d5:
                    ad:8a:4c:6d:b2:90:0b:cd:97:94:79:84:55:7f:1c:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        23:d2:70:60:8b:99:77:2d:c4:64:a0:8a:d5:6e:eb:78:
        c0:9a:bf:33:d5:08:10:00:ba:fd:5b:a1:e5:10:5e:86:
        eb:70:e4:d8:88:df:4b:1e:6a:68:2a:3a:36:8e:f7:a7:
        fe:9f:21:d3:de:18:52:fe:d3:24:37:f5:e6:ef:12:a1:
        bd:04:13:1b:1d:0e:9b:c8:7d:e6:d7:be:95:1e:ed:72:
        83:b7:fa:ad:d4:1d:8b:39:d6:af:10:00:ce:21:3c:6f:
        a3:b0:a5:03:6f:a1:55:1b:32:74:cd:2b:f8:94:90:0b:
        c0:b7:50:a4:24:45:82:b1:d8:44:a5:6c:3c:f3:64:ed:
        80:65:f8:fe:d1:0e:99:16:ab:0a:69:56:84:aa:4e:fa:
        12:93:e8:0e:05:06:25:64:6a:3b:27:6d:1c:b3:8d:c4:
        38:dd:1e:8d:b6:6c:dc:a7:f5:0a:cb:2d:f6:26:57:c3:
        80:77:cc:bf:3e:35:7e:f2:d4:b2:66:01:85:0b:46:3b:
        af:83:1c:ff:cd:1d:bb:64:65:e2:b3:0a:c1:12:e7:f3:
        3f:ac:cf:60:ef:27:ae:c1:de:c2:dd:48:c0:79:bd:73:
        63:f8:12:83:f5:4c:ee:bd:14:d7:d7:2e:0c:34:c7:93:
        13:0b:82:31:22:08:49:d0:ed:fd:03:0d:35:b0:87:b2
    Fingerprint (SHA-256):
        B6:7B:E4:14:C9:34:BA:89:C0:3A:2C:D1:1D:86:B6:56:10:3E:C1:FC:B3:0A:49:D7:B4:93:4D:7D:76:5F:DF:C2
    Fingerprint (SHA1):
        C6:9F:31:5C:10:40:48:F8:14:92:B5:B5:4C:A9:1C:C0:4C:B7:CF:62
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7750: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155753 (0x3cdd99a9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 16:14:15 2017
            Not After : Fri Oct 21 16:14:15 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:dd:cc:94:18:87:14:ad:7e:cf:e0:96:f8:f4:59:b2:
                    b8:df:3d:16:f4:16:4f:8c:29:37:6e:40:b7:81:0a:8b:
                    10:d0:0b:ed:61:38:17:4b:21:7f:c4:47:4d:3e:14:59:
                    80:ce:4f:e8:a1:9c:64:60:4f:e8:69:d4:9f:07:bb:31:
                    c7:d9:26:07:f1:59:3f:9a:32:ff:6f:b3:ed:fe:4e:2b:
                    a5:2e:90:66:2a:ca:c3:61:53:7f:36:85:83:b3:49:da:
                    ef:33:f4:f2:37:d8:da:92:71:c8:0e:61:c0:92:e5:68:
                    df:aa:7e:b4:5e:6a:c1:04:59:25:37:64:21:fc:4f:61:
                    7b:a7:8d:67:ec:a4:ef:29:bb:44:61:f1:1f:ca:4e:fd:
                    4f:d2:ee:09:41:97:9a:50:9a:4c:65:72:d5:66:5e:f4:
                    bc:13:ed:4d:f5:bf:b1:58:ef:5e:4e:b4:20:98:77:27:
                    66:23:7e:26:c2:f8:b6:10:1d:0c:4b:11:b6:3d:14:c6:
                    2f:05:c3:ae:7f:a3:e5:7f:67:b4:d4:b5:cc:35:09:bb:
                    14:6e:71:db:50:72:96:4c:68:9b:94:cb:48:fb:b2:50:
                    7b:e6:6b:be:ec:2f:86:c0:ff:6b:b7:13:24:50:c1:ed:
                    ea:c0:01:12:ea:45:38:57:4e:d0:b8:d2:7a:de:9f:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1b:23:ba:99:b1:0d:3f:47:10:a1:4f:79:bb:46:93:b7:
        3c:4b:54:93:a7:c5:18:2f:e7:80:a2:d7:b4:55:6a:6b:
        dd:bc:78:d6:13:e3:2a:84:a0:cb:11:9c:a8:e1:68:af:
        fa:54:76:dc:a5:12:cc:fd:81:76:a0:36:0e:da:98:7b:
        15:30:6a:ef:9c:af:8d:7f:d6:22:26:85:2b:5c:67:d5:
        d4:f9:38:95:61:34:3b:d1:4b:a1:1e:4c:77:d1:86:29:
        db:ad:1a:d0:10:11:50:42:a0:75:df:82:6d:f1:4f:8b:
        28:34:e0:21:e0:4b:82:f0:c6:60:95:f9:a6:e5:b0:c3:
        82:90:4b:6d:e8:4f:dd:c3:d3:52:e2:05:25:81:6f:79:
        06:b4:15:4e:ed:b6:db:d3:ac:63:71:a1:be:4f:31:1f:
        8b:62:c2:e3:d6:a0:8f:fc:f0:cb:c7:83:37:2b:24:9d:
        19:b7:c5:78:6c:84:03:88:da:17:bc:be:80:98:27:01:
        03:9a:c9:6c:fe:ee:ee:54:9d:fe:34:4e:20:96:90:b2:
        36:bd:38:19:48:10:b8:81:ee:4e:1e:04:1c:26:0b:0b:
        51:5c:4b:83:2e:c0:c5:db:92:ba:b1:c8:dc:53:9b:ae:
        ed:32:14:ff:f6:f2:9b:43:0c:41:37:16:a7:51:b7:d5
    Fingerprint (SHA-256):
        EC:59:B7:78:75:06:4A:CD:A2:CA:0F:6F:C6:5F:D9:9F:12:B3:D4:85:89:DC:B8:29:43:91:70:AA:54:2F:43:11
    Fingerprint (SHA1):
        A1:A5:F9:36:52:DF:04:30:33:61:43:11:91:4F:77:FC:35:F6:66:66
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7751: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #7752: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #7753: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #7754: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155753 (0x3cdd99a9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 16:14:15 2017
            Not After : Fri Oct 21 16:14:15 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:dd:cc:94:18:87:14:ad:7e:cf:e0:96:f8:f4:59:b2:
                    b8:df:3d:16:f4:16:4f:8c:29:37:6e:40:b7:81:0a:8b:
                    10:d0:0b:ed:61:38:17:4b:21:7f:c4:47:4d:3e:14:59:
                    80:ce:4f:e8:a1:9c:64:60:4f:e8:69:d4:9f:07:bb:31:
                    c7:d9:26:07:f1:59:3f:9a:32:ff:6f:b3:ed:fe:4e:2b:
                    a5:2e:90:66:2a:ca:c3:61:53:7f:36:85:83:b3:49:da:
                    ef:33:f4:f2:37:d8:da:92:71:c8:0e:61:c0:92:e5:68:
                    df:aa:7e:b4:5e:6a:c1:04:59:25:37:64:21:fc:4f:61:
                    7b:a7:8d:67:ec:a4:ef:29:bb:44:61:f1:1f:ca:4e:fd:
                    4f:d2:ee:09:41:97:9a:50:9a:4c:65:72:d5:66:5e:f4:
                    bc:13:ed:4d:f5:bf:b1:58:ef:5e:4e:b4:20:98:77:27:
                    66:23:7e:26:c2:f8:b6:10:1d:0c:4b:11:b6:3d:14:c6:
                    2f:05:c3:ae:7f:a3:e5:7f:67:b4:d4:b5:cc:35:09:bb:
                    14:6e:71:db:50:72:96:4c:68:9b:94:cb:48:fb:b2:50:
                    7b:e6:6b:be:ec:2f:86:c0:ff:6b:b7:13:24:50:c1:ed:
                    ea:c0:01:12:ea:45:38:57:4e:d0:b8:d2:7a:de:9f:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1b:23:ba:99:b1:0d:3f:47:10:a1:4f:79:bb:46:93:b7:
        3c:4b:54:93:a7:c5:18:2f:e7:80:a2:d7:b4:55:6a:6b:
        dd:bc:78:d6:13:e3:2a:84:a0:cb:11:9c:a8:e1:68:af:
        fa:54:76:dc:a5:12:cc:fd:81:76:a0:36:0e:da:98:7b:
        15:30:6a:ef:9c:af:8d:7f:d6:22:26:85:2b:5c:67:d5:
        d4:f9:38:95:61:34:3b:d1:4b:a1:1e:4c:77:d1:86:29:
        db:ad:1a:d0:10:11:50:42:a0:75:df:82:6d:f1:4f:8b:
        28:34:e0:21:e0:4b:82:f0:c6:60:95:f9:a6:e5:b0:c3:
        82:90:4b:6d:e8:4f:dd:c3:d3:52:e2:05:25:81:6f:79:
        06:b4:15:4e:ed:b6:db:d3:ac:63:71:a1:be:4f:31:1f:
        8b:62:c2:e3:d6:a0:8f:fc:f0:cb:c7:83:37:2b:24:9d:
        19:b7:c5:78:6c:84:03:88:da:17:bc:be:80:98:27:01:
        03:9a:c9:6c:fe:ee:ee:54:9d:fe:34:4e:20:96:90:b2:
        36:bd:38:19:48:10:b8:81:ee:4e:1e:04:1c:26:0b:0b:
        51:5c:4b:83:2e:c0:c5:db:92:ba:b1:c8:dc:53:9b:ae:
        ed:32:14:ff:f6:f2:9b:43:0c:41:37:16:a7:51:b7:d5
    Fingerprint (SHA-256):
        EC:59:B7:78:75:06:4A:CD:A2:CA:0F:6F:C6:5F:D9:9F:12:B3:D4:85:89:DC:B8:29:43:91:70:AA:54:2F:43:11
    Fingerprint (SHA1):
        A1:A5:F9:36:52:DF:04:30:33:61:43:11:91:4F:77:FC:35:F6:66:66
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7755: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155754 (0x3cdd99aa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 16:14:20 2017
            Not After : Fri Oct 21 16:14:20 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:74:8d:21:11:60:4a:f2:d0:94:b4:b4:90:82:68:b7:
                    a7:c8:a0:06:0d:a2:67:e3:7d:0e:8c:4e:42:8b:20:fa:
                    2a:79:41:8e:0b:da:af:8a:0a:b1:4e:e1:9a:f6:af:4d:
                    b6:8f:57:a6:ee:5e:02:ac:20:c2:db:94:1a:cd:a2:de:
                    1a:49:44:9f:a4:8f:33:28:dd:37:84:66:1d:28:24:84:
                    09:2b:38:bb:3f:fd:59:41:c7:df:b2:d7:99:e6:8d:92:
                    6d:8b:75:f6:fa:6d:f7:39:cd:87:cd:48:ac:2c:fb:bb:
                    3c:82:42:1c:8b:24:61:ff:3d:f7:af:1b:66:d8:29:13:
                    dd:e7:18:10:f6:1c:f3:1a:6a:1a:39:14:4d:a2:94:7d:
                    9d:d7:22:ad:ac:b1:4d:55:b3:25:da:36:82:30:aa:74:
                    79:9c:28:57:aa:05:b1:4a:f0:ae:bd:5a:05:a1:44:2e:
                    58:77:f8:53:8b:84:1e:86:83:ba:6b:df:77:ba:0f:ab:
                    ce:3f:a4:a8:bf:22:75:3c:74:a1:68:4a:19:4d:5a:7a:
                    81:8a:dc:60:f4:91:1f:61:ca:8b:97:36:52:5d:40:d4:
                    19:fd:a1:84:e1:78:bf:bd:82:cb:8c:ef:60:18:e7:d5:
                    ad:8a:4c:6d:b2:90:0b:cd:97:94:79:84:55:7f:1c:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        23:d2:70:60:8b:99:77:2d:c4:64:a0:8a:d5:6e:eb:78:
        c0:9a:bf:33:d5:08:10:00:ba:fd:5b:a1:e5:10:5e:86:
        eb:70:e4:d8:88:df:4b:1e:6a:68:2a:3a:36:8e:f7:a7:
        fe:9f:21:d3:de:18:52:fe:d3:24:37:f5:e6:ef:12:a1:
        bd:04:13:1b:1d:0e:9b:c8:7d:e6:d7:be:95:1e:ed:72:
        83:b7:fa:ad:d4:1d:8b:39:d6:af:10:00:ce:21:3c:6f:
        a3:b0:a5:03:6f:a1:55:1b:32:74:cd:2b:f8:94:90:0b:
        c0:b7:50:a4:24:45:82:b1:d8:44:a5:6c:3c:f3:64:ed:
        80:65:f8:fe:d1:0e:99:16:ab:0a:69:56:84:aa:4e:fa:
        12:93:e8:0e:05:06:25:64:6a:3b:27:6d:1c:b3:8d:c4:
        38:dd:1e:8d:b6:6c:dc:a7:f5:0a:cb:2d:f6:26:57:c3:
        80:77:cc:bf:3e:35:7e:f2:d4:b2:66:01:85:0b:46:3b:
        af:83:1c:ff:cd:1d:bb:64:65:e2:b3:0a:c1:12:e7:f3:
        3f:ac:cf:60:ef:27:ae:c1:de:c2:dd:48:c0:79:bd:73:
        63:f8:12:83:f5:4c:ee:bd:14:d7:d7:2e:0c:34:c7:93:
        13:0b:82:31:22:08:49:d0:ed:fd:03:0d:35:b0:87:b2
    Fingerprint (SHA-256):
        B6:7B:E4:14:C9:34:BA:89:C0:3A:2C:D1:1D:86:B6:56:10:3E:C1:FC:B3:0A:49:D7:B4:93:4D:7D:76:5F:DF:C2
    Fingerprint (SHA1):
        C6:9F:31:5C:10:40:48:F8:14:92:B5:B5:4C:A9:1C:C0:4C:B7:CF:62
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7756: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #7757: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #7758: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #7759: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #7760: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #7761: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155754 (0x3cdd99aa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 16:14:20 2017
            Not After : Fri Oct 21 16:14:20 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:74:8d:21:11:60:4a:f2:d0:94:b4:b4:90:82:68:b7:
                    a7:c8:a0:06:0d:a2:67:e3:7d:0e:8c:4e:42:8b:20:fa:
                    2a:79:41:8e:0b:da:af:8a:0a:b1:4e:e1:9a:f6:af:4d:
                    b6:8f:57:a6:ee:5e:02:ac:20:c2:db:94:1a:cd:a2:de:
                    1a:49:44:9f:a4:8f:33:28:dd:37:84:66:1d:28:24:84:
                    09:2b:38:bb:3f:fd:59:41:c7:df:b2:d7:99:e6:8d:92:
                    6d:8b:75:f6:fa:6d:f7:39:cd:87:cd:48:ac:2c:fb:bb:
                    3c:82:42:1c:8b:24:61:ff:3d:f7:af:1b:66:d8:29:13:
                    dd:e7:18:10:f6:1c:f3:1a:6a:1a:39:14:4d:a2:94:7d:
                    9d:d7:22:ad:ac:b1:4d:55:b3:25:da:36:82:30:aa:74:
                    79:9c:28:57:aa:05:b1:4a:f0:ae:bd:5a:05:a1:44:2e:
                    58:77:f8:53:8b:84:1e:86:83:ba:6b:df:77:ba:0f:ab:
                    ce:3f:a4:a8:bf:22:75:3c:74:a1:68:4a:19:4d:5a:7a:
                    81:8a:dc:60:f4:91:1f:61:ca:8b:97:36:52:5d:40:d4:
                    19:fd:a1:84:e1:78:bf:bd:82:cb:8c:ef:60:18:e7:d5:
                    ad:8a:4c:6d:b2:90:0b:cd:97:94:79:84:55:7f:1c:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        23:d2:70:60:8b:99:77:2d:c4:64:a0:8a:d5:6e:eb:78:
        c0:9a:bf:33:d5:08:10:00:ba:fd:5b:a1:e5:10:5e:86:
        eb:70:e4:d8:88:df:4b:1e:6a:68:2a:3a:36:8e:f7:a7:
        fe:9f:21:d3:de:18:52:fe:d3:24:37:f5:e6:ef:12:a1:
        bd:04:13:1b:1d:0e:9b:c8:7d:e6:d7:be:95:1e:ed:72:
        83:b7:fa:ad:d4:1d:8b:39:d6:af:10:00:ce:21:3c:6f:
        a3:b0:a5:03:6f:a1:55:1b:32:74:cd:2b:f8:94:90:0b:
        c0:b7:50:a4:24:45:82:b1:d8:44:a5:6c:3c:f3:64:ed:
        80:65:f8:fe:d1:0e:99:16:ab:0a:69:56:84:aa:4e:fa:
        12:93:e8:0e:05:06:25:64:6a:3b:27:6d:1c:b3:8d:c4:
        38:dd:1e:8d:b6:6c:dc:a7:f5:0a:cb:2d:f6:26:57:c3:
        80:77:cc:bf:3e:35:7e:f2:d4:b2:66:01:85:0b:46:3b:
        af:83:1c:ff:cd:1d:bb:64:65:e2:b3:0a:c1:12:e7:f3:
        3f:ac:cf:60:ef:27:ae:c1:de:c2:dd:48:c0:79:bd:73:
        63:f8:12:83:f5:4c:ee:bd:14:d7:d7:2e:0c:34:c7:93:
        13:0b:82:31:22:08:49:d0:ed:fd:03:0d:35:b0:87:b2
    Fingerprint (SHA-256):
        B6:7B:E4:14:C9:34:BA:89:C0:3A:2C:D1:1D:86:B6:56:10:3E:C1:FC:B3:0A:49:D7:B4:93:4D:7D:76:5F:DF:C2
    Fingerprint (SHA1):
        C6:9F:31:5C:10:40:48:F8:14:92:B5:B5:4C:A9:1C:C0:4C:B7:CF:62
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7762: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155754 (0x3cdd99aa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 16:14:20 2017
            Not After : Fri Oct 21 16:14:20 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:74:8d:21:11:60:4a:f2:d0:94:b4:b4:90:82:68:b7:
                    a7:c8:a0:06:0d:a2:67:e3:7d:0e:8c:4e:42:8b:20:fa:
                    2a:79:41:8e:0b:da:af:8a:0a:b1:4e:e1:9a:f6:af:4d:
                    b6:8f:57:a6:ee:5e:02:ac:20:c2:db:94:1a:cd:a2:de:
                    1a:49:44:9f:a4:8f:33:28:dd:37:84:66:1d:28:24:84:
                    09:2b:38:bb:3f:fd:59:41:c7:df:b2:d7:99:e6:8d:92:
                    6d:8b:75:f6:fa:6d:f7:39:cd:87:cd:48:ac:2c:fb:bb:
                    3c:82:42:1c:8b:24:61:ff:3d:f7:af:1b:66:d8:29:13:
                    dd:e7:18:10:f6:1c:f3:1a:6a:1a:39:14:4d:a2:94:7d:
                    9d:d7:22:ad:ac:b1:4d:55:b3:25:da:36:82:30:aa:74:
                    79:9c:28:57:aa:05:b1:4a:f0:ae:bd:5a:05:a1:44:2e:
                    58:77:f8:53:8b:84:1e:86:83:ba:6b:df:77:ba:0f:ab:
                    ce:3f:a4:a8:bf:22:75:3c:74:a1:68:4a:19:4d:5a:7a:
                    81:8a:dc:60:f4:91:1f:61:ca:8b:97:36:52:5d:40:d4:
                    19:fd:a1:84:e1:78:bf:bd:82:cb:8c:ef:60:18:e7:d5:
                    ad:8a:4c:6d:b2:90:0b:cd:97:94:79:84:55:7f:1c:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        23:d2:70:60:8b:99:77:2d:c4:64:a0:8a:d5:6e:eb:78:
        c0:9a:bf:33:d5:08:10:00:ba:fd:5b:a1:e5:10:5e:86:
        eb:70:e4:d8:88:df:4b:1e:6a:68:2a:3a:36:8e:f7:a7:
        fe:9f:21:d3:de:18:52:fe:d3:24:37:f5:e6:ef:12:a1:
        bd:04:13:1b:1d:0e:9b:c8:7d:e6:d7:be:95:1e:ed:72:
        83:b7:fa:ad:d4:1d:8b:39:d6:af:10:00:ce:21:3c:6f:
        a3:b0:a5:03:6f:a1:55:1b:32:74:cd:2b:f8:94:90:0b:
        c0:b7:50:a4:24:45:82:b1:d8:44:a5:6c:3c:f3:64:ed:
        80:65:f8:fe:d1:0e:99:16:ab:0a:69:56:84:aa:4e:fa:
        12:93:e8:0e:05:06:25:64:6a:3b:27:6d:1c:b3:8d:c4:
        38:dd:1e:8d:b6:6c:dc:a7:f5:0a:cb:2d:f6:26:57:c3:
        80:77:cc:bf:3e:35:7e:f2:d4:b2:66:01:85:0b:46:3b:
        af:83:1c:ff:cd:1d:bb:64:65:e2:b3:0a:c1:12:e7:f3:
        3f:ac:cf:60:ef:27:ae:c1:de:c2:dd:48:c0:79:bd:73:
        63:f8:12:83:f5:4c:ee:bd:14:d7:d7:2e:0c:34:c7:93:
        13:0b:82:31:22:08:49:d0:ed:fd:03:0d:35:b0:87:b2
    Fingerprint (SHA-256):
        B6:7B:E4:14:C9:34:BA:89:C0:3A:2C:D1:1D:86:B6:56:10:3E:C1:FC:B3:0A:49:D7:B4:93:4D:7D:76:5F:DF:C2
    Fingerprint (SHA1):
        C6:9F:31:5C:10:40:48:F8:14:92:B5:B5:4C:A9:1C:C0:4C:B7:CF:62
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7763: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #7764: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #7765: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #7766: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #7767: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #7768: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155753 (0x3cdd99a9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 16:14:15 2017
            Not After : Fri Oct 21 16:14:15 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:dd:cc:94:18:87:14:ad:7e:cf:e0:96:f8:f4:59:b2:
                    b8:df:3d:16:f4:16:4f:8c:29:37:6e:40:b7:81:0a:8b:
                    10:d0:0b:ed:61:38:17:4b:21:7f:c4:47:4d:3e:14:59:
                    80:ce:4f:e8:a1:9c:64:60:4f:e8:69:d4:9f:07:bb:31:
                    c7:d9:26:07:f1:59:3f:9a:32:ff:6f:b3:ed:fe:4e:2b:
                    a5:2e:90:66:2a:ca:c3:61:53:7f:36:85:83:b3:49:da:
                    ef:33:f4:f2:37:d8:da:92:71:c8:0e:61:c0:92:e5:68:
                    df:aa:7e:b4:5e:6a:c1:04:59:25:37:64:21:fc:4f:61:
                    7b:a7:8d:67:ec:a4:ef:29:bb:44:61:f1:1f:ca:4e:fd:
                    4f:d2:ee:09:41:97:9a:50:9a:4c:65:72:d5:66:5e:f4:
                    bc:13:ed:4d:f5:bf:b1:58:ef:5e:4e:b4:20:98:77:27:
                    66:23:7e:26:c2:f8:b6:10:1d:0c:4b:11:b6:3d:14:c6:
                    2f:05:c3:ae:7f:a3:e5:7f:67:b4:d4:b5:cc:35:09:bb:
                    14:6e:71:db:50:72:96:4c:68:9b:94:cb:48:fb:b2:50:
                    7b:e6:6b:be:ec:2f:86:c0:ff:6b:b7:13:24:50:c1:ed:
                    ea:c0:01:12:ea:45:38:57:4e:d0:b8:d2:7a:de:9f:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1b:23:ba:99:b1:0d:3f:47:10:a1:4f:79:bb:46:93:b7:
        3c:4b:54:93:a7:c5:18:2f:e7:80:a2:d7:b4:55:6a:6b:
        dd:bc:78:d6:13:e3:2a:84:a0:cb:11:9c:a8:e1:68:af:
        fa:54:76:dc:a5:12:cc:fd:81:76:a0:36:0e:da:98:7b:
        15:30:6a:ef:9c:af:8d:7f:d6:22:26:85:2b:5c:67:d5:
        d4:f9:38:95:61:34:3b:d1:4b:a1:1e:4c:77:d1:86:29:
        db:ad:1a:d0:10:11:50:42:a0:75:df:82:6d:f1:4f:8b:
        28:34:e0:21:e0:4b:82:f0:c6:60:95:f9:a6:e5:b0:c3:
        82:90:4b:6d:e8:4f:dd:c3:d3:52:e2:05:25:81:6f:79:
        06:b4:15:4e:ed:b6:db:d3:ac:63:71:a1:be:4f:31:1f:
        8b:62:c2:e3:d6:a0:8f:fc:f0:cb:c7:83:37:2b:24:9d:
        19:b7:c5:78:6c:84:03:88:da:17:bc:be:80:98:27:01:
        03:9a:c9:6c:fe:ee:ee:54:9d:fe:34:4e:20:96:90:b2:
        36:bd:38:19:48:10:b8:81:ee:4e:1e:04:1c:26:0b:0b:
        51:5c:4b:83:2e:c0:c5:db:92:ba:b1:c8:dc:53:9b:ae:
        ed:32:14:ff:f6:f2:9b:43:0c:41:37:16:a7:51:b7:d5
    Fingerprint (SHA-256):
        EC:59:B7:78:75:06:4A:CD:A2:CA:0F:6F:C6:5F:D9:9F:12:B3:D4:85:89:DC:B8:29:43:91:70:AA:54:2F:43:11
    Fingerprint (SHA1):
        A1:A5:F9:36:52:DF:04:30:33:61:43:11:91:4F:77:FC:35:F6:66:66
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7769: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155753 (0x3cdd99a9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 16:14:15 2017
            Not After : Fri Oct 21 16:14:15 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:dd:cc:94:18:87:14:ad:7e:cf:e0:96:f8:f4:59:b2:
                    b8:df:3d:16:f4:16:4f:8c:29:37:6e:40:b7:81:0a:8b:
                    10:d0:0b:ed:61:38:17:4b:21:7f:c4:47:4d:3e:14:59:
                    80:ce:4f:e8:a1:9c:64:60:4f:e8:69:d4:9f:07:bb:31:
                    c7:d9:26:07:f1:59:3f:9a:32:ff:6f:b3:ed:fe:4e:2b:
                    a5:2e:90:66:2a:ca:c3:61:53:7f:36:85:83:b3:49:da:
                    ef:33:f4:f2:37:d8:da:92:71:c8:0e:61:c0:92:e5:68:
                    df:aa:7e:b4:5e:6a:c1:04:59:25:37:64:21:fc:4f:61:
                    7b:a7:8d:67:ec:a4:ef:29:bb:44:61:f1:1f:ca:4e:fd:
                    4f:d2:ee:09:41:97:9a:50:9a:4c:65:72:d5:66:5e:f4:
                    bc:13:ed:4d:f5:bf:b1:58:ef:5e:4e:b4:20:98:77:27:
                    66:23:7e:26:c2:f8:b6:10:1d:0c:4b:11:b6:3d:14:c6:
                    2f:05:c3:ae:7f:a3:e5:7f:67:b4:d4:b5:cc:35:09:bb:
                    14:6e:71:db:50:72:96:4c:68:9b:94:cb:48:fb:b2:50:
                    7b:e6:6b:be:ec:2f:86:c0:ff:6b:b7:13:24:50:c1:ed:
                    ea:c0:01:12:ea:45:38:57:4e:d0:b8:d2:7a:de:9f:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1b:23:ba:99:b1:0d:3f:47:10:a1:4f:79:bb:46:93:b7:
        3c:4b:54:93:a7:c5:18:2f:e7:80:a2:d7:b4:55:6a:6b:
        dd:bc:78:d6:13:e3:2a:84:a0:cb:11:9c:a8:e1:68:af:
        fa:54:76:dc:a5:12:cc:fd:81:76:a0:36:0e:da:98:7b:
        15:30:6a:ef:9c:af:8d:7f:d6:22:26:85:2b:5c:67:d5:
        d4:f9:38:95:61:34:3b:d1:4b:a1:1e:4c:77:d1:86:29:
        db:ad:1a:d0:10:11:50:42:a0:75:df:82:6d:f1:4f:8b:
        28:34:e0:21:e0:4b:82:f0:c6:60:95:f9:a6:e5:b0:c3:
        82:90:4b:6d:e8:4f:dd:c3:d3:52:e2:05:25:81:6f:79:
        06:b4:15:4e:ed:b6:db:d3:ac:63:71:a1:be:4f:31:1f:
        8b:62:c2:e3:d6:a0:8f:fc:f0:cb:c7:83:37:2b:24:9d:
        19:b7:c5:78:6c:84:03:88:da:17:bc:be:80:98:27:01:
        03:9a:c9:6c:fe:ee:ee:54:9d:fe:34:4e:20:96:90:b2:
        36:bd:38:19:48:10:b8:81:ee:4e:1e:04:1c:26:0b:0b:
        51:5c:4b:83:2e:c0:c5:db:92:ba:b1:c8:dc:53:9b:ae:
        ed:32:14:ff:f6:f2:9b:43:0c:41:37:16:a7:51:b7:d5
    Fingerprint (SHA-256):
        EC:59:B7:78:75:06:4A:CD:A2:CA:0F:6F:C6:5F:D9:9F:12:B3:D4:85:89:DC:B8:29:43:91:70:AA:54:2F:43:11
    Fingerprint (SHA1):
        A1:A5:F9:36:52:DF:04:30:33:61:43:11:91:4F:77:FC:35:F6:66:66
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7770: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #7771: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155758 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7772: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #7773: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #7774: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155759 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7775: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #7776: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #7777: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155760 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7778: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #7779: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #7780: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155761 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7781: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #7782: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #7783: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155762 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7784: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #7785: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #7786: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155763 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7787: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #7788: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #7789: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155764 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7790: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #7791: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #7792: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155765 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7793: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #7794: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #7795: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155766 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7796: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #7797: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #7798: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7799: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 1021155767 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7800: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7801: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 1021155768 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7802: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7803: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 1021155769 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7804: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7805: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #7806: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #7807: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7808: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 1021155770 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7809: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7810: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 1021155771 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7811: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7812: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 1021155772 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7813: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7814: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #7815: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #7816: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7817: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 1021155773 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7818: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7819: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 1021155774 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7820: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7821: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 1021155775 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7822: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7823: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #7824: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #7825: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7826: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 1021155776 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7827: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7828: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 1021155777 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7829: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7830: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 1021155778 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7831: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7832: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #7833: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7834: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7835: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 1021155779   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7836: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7837: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7838: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7839: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021155780   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7840: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7841: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155758 (0x3cdd99ae)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Sat Oct 21 16:14:56 2017
            Not After : Fri Oct 21 16:14:56 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:b2:6a:57:36:83:d7:bb:44:1e:06:73:66:1d:a1:1d:
                    cf:63:93:f4:17:02:ac:26:af:8a:5c:68:54:eb:bc:80:
                    d9:53:69:51:c4:b6:aa:1c:26:a9:29:7b:9a:60:97:f5:
                    0f:3c:7f:42:b3:a3:02:8e:fb:d6:d1:b7:28:a0:83:e6:
                    80:eb:71:32:7a:1b:2c:e3:50:e0:17:2e:f6:97:ce:11:
                    c7:e2:df:52:0d:3a:5e:e4:a8:0d:74:c1:28:c4:28:32:
                    81:dc:f3:cd:dd:6e:d9:2f:60:a4:05:36:94:ee:5a:44:
                    7f:db:d9:b1:fb:d7:78:20:19:65:98:db:73:95:8b:30:
                    d4:02:36:3f:78:9b:e2:3f:64:84:77:c2:5d:8a:02:cb:
                    47:0f:a4:26:a9:11:93:50:52:6d:99:4d:29:75:55:cc:
                    32:62:51:5a:4e:04:0b:9b:8a:23:bb:58:5b:ac:be:e9:
                    14:e3:6a:62:d5:60:cc:db:2e:75:6b:fc:a3:61:bb:da:
                    5c:a8:c1:72:f1:40:2f:e2:f8:59:86:ec:c1:79:4b:35:
                    d7:59:4c:7e:95:3c:ba:6b:e5:d2:c4:0e:c3:99:54:55:
                    10:17:de:a9:97:ef:e7:c3:4e:1f:a6:27:1e:40:b3:ec:
                    01:d2:03:77:d4:7c:af:7f:bb:47:18:34:74:aa:00:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:28:d1:a0:9c:ed:22:e9:c7:f6:b6:00:10:b4:9a:27:
        14:88:1e:2d:af:d1:48:b9:2b:15:1f:25:7c:a8:6d:5d:
        75:79:df:e8:7e:a9:35:20:92:1e:4c:06:bb:41:ba:f5:
        38:8f:ab:a0:e9:97:fa:04:5f:2b:96:93:76:3d:c2:d9:
        bb:d7:5d:b6:4e:e5:7d:70:3f:a7:da:20:c6:85:93:81:
        04:7f:14:4e:4d:3b:45:25:b4:53:58:f9:34:f3:b6:83:
        71:61:aa:e0:33:b8:b6:db:1c:23:45:39:e3:e9:b5:01:
        dc:d7:85:b7:2a:80:3d:8c:ad:4a:58:f9:bb:86:51:09:
        dc:c3:49:45:d9:9d:98:c8:bb:fd:2a:43:6a:4d:4a:ed:
        96:d6:5a:7d:d7:23:34:94:cc:7c:df:bf:29:8e:8b:d8:
        e1:c2:4d:37:59:20:a7:cb:dc:eb:75:16:4f:b6:6a:a6:
        65:18:30:5f:06:21:f6:53:a9:c4:54:52:f7:84:e7:71:
        b7:04:4d:d1:17:eb:54:ca:72:a0:e0:e2:6e:e5:96:6e:
        f2:92:e5:d3:07:65:b4:95:71:0e:bb:2c:57:34:eb:56:
        23:55:36:f9:04:e8:0b:e7:53:bc:a9:94:f2:ed:c7:76:
        8e:9f:3c:4c:a4:eb:22:37:f4:e0:51:70:33:3d:51:16
    Fingerprint (SHA-256):
        4D:38:C7:19:1A:7F:AF:D0:D3:69:5C:FC:20:89:6F:73:67:72:A0:40:01:F1:DA:39:FF:94:F4:F5:5E:A8:D3:68
    Fingerprint (SHA1):
        CA:3F:B0:85:3B:82:8D:E3:58:C5:67:57:FE:EF:AB:12:8B:66:30:66
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #7842: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155759 (0x3cdd99af)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Sat Oct 21 16:15:00 2017
            Not After : Fri Oct 21 16:15:00 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:48:f0:1d:af:03:75:24:d0:48:dc:4e:0a:4b:77:30:
                    54:dd:11:c8:92:73:c3:f0:aa:75:6d:42:5b:43:ec:41:
                    0a:18:a5:26:e7:33:0f:b0:57:09:e4:de:3e:ee:16:5b:
                    04:52:fd:b6:c6:84:ed:df:cf:fb:d0:47:05:16:15:41:
                    2c:07:19:91:91:32:bd:dc:4e:58:2a:19:58:d3:32:86:
                    c2:63:ec:fe:89:21:b7:9c:15:03:00:fd:c9:55:99:cc:
                    8f:c1:30:47:2a:6f:72:39:ee:8b:16:75:fd:90:19:f8:
                    13:e1:f6:f9:ab:d9:10:99:e5:5c:c9:09:ee:9a:cf:d0:
                    ef:20:fc:29:5f:dd:1b:c9:aa:be:25:26:9a:08:fa:55:
                    1d:5e:38:77:b3:64:b3:2c:25:fe:da:e5:2b:50:22:75:
                    1c:ff:7b:fa:75:16:4c:54:70:3d:7e:17:a8:df:ca:7a:
                    24:2c:85:34:33:76:42:14:88:79:aa:24:0c:46:16:5d:
                    1e:41:87:9f:b2:e5:ec:86:cc:51:36:bf:d2:c7:8e:42:
                    90:d2:e3:bb:2b:a3:cf:d0:58:69:c3:7b:51:2b:42:0f:
                    90:7d:c6:2c:69:57:89:06:97:a1:30:25:a1:6f:40:14:
                    7f:90:9c:12:73:1b:68:7b:8c:40:ad:34:18:a2:fb:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1a:7c:c4:90:62:c8:db:0f:4c:d6:31:2f:55:3e:ea:d8:
        52:31:09:cc:9e:d2:59:77:c1:23:cb:83:0e:bd:7c:ad:
        4f:b0:6f:28:19:3c:c1:e9:89:50:36:82:64:fd:9f:3f:
        bd:18:8e:a1:d4:a4:bf:01:d1:ae:4f:25:b7:97:ce:23:
        89:b5:93:1a:35:7d:2a:b8:7a:41:47:72:59:59:dc:37:
        ad:b0:b1:b2:54:f2:ba:35:ed:b1:7c:0b:05:d7:05:a0:
        2e:26:db:a2:87:52:51:33:14:5d:09:cf:bc:4a:66:ab:
        7f:af:11:46:0a:01:97:c2:ad:b4:c4:65:28:a7:fd:67:
        c9:71:d7:fa:a4:ae:3e:7e:d7:80:30:d6:92:97:07:c9:
        8d:ac:a5:75:84:91:5a:10:27:a7:33:bd:ab:3b:8c:ce:
        c9:cd:a4:89:a7:66:3d:9d:95:42:3a:d1:47:cd:9b:1d:
        34:0c:35:9c:07:d1:c9:27:8d:12:aa:dc:c8:42:3f:8a:
        7b:16:08:51:d3:f8:00:db:28:1a:7d:15:54:d4:d1:9a:
        b4:c3:c9:2a:57:7a:64:fd:8c:6c:17:62:51:e7:9c:90:
        cb:69:ef:8f:13:77:dd:e9:3f:e9:43:76:22:a9:47:76:
        62:04:c7:0d:fd:e8:80:8b:0b:95:bb:dd:6e:d1:6c:7b
    Fingerprint (SHA-256):
        9A:BF:B9:B4:37:CC:51:74:0A:FF:3A:06:63:60:84:41:6A:E8:9E:69:2A:1A:0A:7C:4D:D8:84:C0:52:43:18:A3
    Fingerprint (SHA1):
        A6:FE:BD:4E:E7:6D:C6:8B:65:13:52:C1:07:B1:F7:3F:47:67:A9:AB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #7843: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155760 (0x3cdd99b0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Sat Oct 21 16:15:05 2017
            Not After : Fri Oct 21 16:15:05 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:29:d9:92:e8:50:aa:74:7e:56:cc:62:bb:03:34:d5:
                    6d:c4:3e:1e:36:df:dd:2b:bc:fe:13:ec:82:e4:3a:4a:
                    81:f1:2c:f5:71:9f:21:16:9d:5d:2b:00:1b:e4:77:91:
                    33:5d:ea:b4:8e:74:c3:ff:b3:5d:d9:31:ee:5e:50:40:
                    6b:9f:48:16:ae:11:71:7c:ba:42:f3:3b:21:0a:d8:6c:
                    26:96:ad:2a:b0:72:b3:78:d8:14:1e:ec:e1:74:19:c4:
                    ce:77:86:db:1d:c2:06:f9:29:1e:ed:cf:ac:7d:c1:82:
                    2a:58:59:f9:fe:35:aa:bd:e0:11:36:92:0d:ee:09:e0:
                    3f:a8:98:db:71:80:b5:55:33:1e:a1:6a:5e:a8:91:27:
                    7a:81:e1:75:b0:60:92:91:b5:d3:46:db:94:c0:1e:05:
                    7d:40:d2:07:47:22:1a:c0:e9:1b:0b:ec:ca:df:11:17:
                    a6:ef:ca:1f:c0:e9:bb:4c:bc:6f:f1:83:59:b1:fc:30:
                    f0:7d:08:3b:37:ea:0c:91:0e:d8:3a:5b:56:03:1f:e7:
                    60:db:09:77:82:45:b0:5d:6f:a9:e2:34:42:31:b7:56:
                    1d:71:a1:1f:e9:88:87:ea:f1:11:23:ce:bb:cf:c7:24:
                    47:38:0a:5a:d0:75:4b:83:45:a8:68:09:e1:37:da:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        10:dd:5f:c3:0e:85:48:56:c6:b1:63:bc:ad:17:7d:16:
        eb:c3:ee:3f:0c:3d:cf:60:1e:cd:36:02:fe:8c:81:ae:
        c0:20:1c:01:85:a2:a9:7b:88:d9:a2:a1:28:dc:f4:1c:
        fa:f4:fe:1d:2c:9e:8a:b6:51:56:90:9a:b0:42:13:c6:
        84:72:6d:32:a4:99:ba:b9:ad:f3:71:61:54:d3:f3:f0:
        11:3d:e0:38:56:84:f7:7d:22:71:11:d1:ed:a0:d1:23:
        f8:86:d7:2c:5a:d0:97:fd:85:6b:02:54:87:90:e2:ba:
        8d:9a:45:8a:a1:89:2e:39:cc:aa:23:40:81:25:79:01:
        28:63:60:40:ae:db:1d:93:43:0d:81:aa:d6:6b:ff:6c:
        17:58:cd:63:f5:61:79:a0:a7:af:e0:f7:bd:ab:68:85:
        5d:6c:43:aa:9c:20:89:09:90:bb:f3:0a:1c:e2:1c:5f:
        80:ce:49:6b:d3:7f:03:a1:3d:42:c4:14:8d:e0:38:85:
        1e:9f:64:3a:ff:ab:2d:65:5c:75:72:ec:89:c7:6f:2e:
        ed:5c:62:0b:cb:e3:cd:44:bc:31:89:ae:47:0c:8d:f8:
        d1:8b:eb:d8:96:0b:e5:2f:63:c6:98:d8:7e:6f:2f:aa:
        4b:c4:c8:12:36:cd:e7:1e:2c:a9:65:03:ce:33:86:f8
    Fingerprint (SHA-256):
        D0:C9:D6:6F:9C:C4:54:C9:90:F2:BC:9A:B8:57:FD:F4:06:4B:FB:05:9E:51:27:EA:E9:52:52:96:41:32:F3:83
    Fingerprint (SHA1):
        65:E2:69:79:F5:9E:CD:B7:AD:45:CD:4F:BE:65:95:E3:BC:95:A3:F5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #7844: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155761 (0x3cdd99b1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Sat Oct 21 16:15:09 2017
            Not After : Fri Oct 21 16:15:09 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:a5:45:99:39:eb:44:2b:93:4b:1b:32:c0:c7:c6:4d:
                    85:a6:f8:f7:c1:a2:28:80:c4:3c:22:c5:ec:b5:d7:98:
                    36:59:41:20:c7:7f:dd:c1:c4:20:b3:30:15:16:58:01:
                    d1:53:ec:50:e8:15:b9:5d:b1:63:64:84:92:ed:a1:3e:
                    b2:03:67:66:28:01:45:db:2c:b5:af:27:e1:f3:86:f5:
                    c6:3f:14:ea:00:39:9d:03:3a:c2:d8:eb:d4:92:23:1a:
                    22:28:19:90:69:26:b2:9e:21:e0:17:58:7f:67:43:5e:
                    1e:53:cf:25:a6:27:eb:5b:44:0d:87:bf:e1:dd:c6:24:
                    bf:fe:32:d8:4c:10:e2:15:8a:fe:be:a5:ed:0e:00:61:
                    dd:26:43:c0:33:72:cc:44:94:27:13:5b:5b:7c:85:7a:
                    d5:92:46:c4:88:c3:70:73:49:6c:4a:b6:82:0f:4a:61:
                    7e:c9:50:f3:2d:95:68:56:bd:17:98:19:f7:fb:3a:6f:
                    52:7a:99:5f:7f:70:f4:19:fd:46:0a:b4:3c:83:44:86:
                    d7:7a:6d:06:e5:b7:48:f3:6f:b9:76:8d:56:a7:90:1f:
                    22:ec:29:ab:d9:e7:75:80:ae:9d:76:43:15:8d:52:21:
                    76:cd:35:b4:bb:b9:0d:c3:11:e9:f1:c4:bd:da:56:45
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:1a:1c:77:54:63:01:57:12:61:77:c4:97:b8:62:ce:
        c2:2f:1e:55:77:05:b7:1f:31:66:94:ff:47:25:3e:e8:
        68:bb:85:ea:53:db:69:41:86:30:c3:1d:04:ce:11:6a:
        e2:4b:dd:9b:ee:d3:e7:9a:2a:b4:5e:b4:a5:46:c5:fc:
        8c:d6:08:33:e6:8a:4f:49:79:20:d5:98:02:52:ed:9b:
        07:5e:71:5e:b0:38:41:41:60:cc:13:9b:7f:f3:f2:c6:
        dd:19:fd:a8:58:04:47:dd:98:74:55:3d:66:28:d6:89:
        5e:08:bf:4a:ef:62:0b:a4:3e:9c:e2:e6:d7:89:56:4a:
        f5:c5:68:74:75:cc:77:92:a5:0b:f3:e8:af:4f:0f:10:
        5a:7e:0f:fc:af:80:25:83:bf:45:45:d1:c0:25:27:a2:
        be:98:89:8c:00:2c:90:54:1c:ac:d3:ab:a7:5f:fa:c3:
        86:a6:9f:ef:3f:be:60:37:2e:4c:ce:e3:64:ca:c1:3f:
        d2:27:b7:9f:83:d7:f3:be:a1:ed:7b:e6:34:6a:de:aa:
        46:85:dc:18:cf:b4:0e:60:45:d2:01:00:ed:d7:29:9f:
        36:36:db:1e:3a:93:08:2d:21:9c:4e:4b:7d:84:b4:fa:
        56:79:ea:8a:79:92:92:e2:16:3a:4f:a1:aa:98:5e:9b
    Fingerprint (SHA-256):
        BC:AA:01:7E:58:CF:5A:CA:3F:0F:75:70:CE:0A:88:5F:35:80:15:A4:D4:38:4E:1C:1A:20:2A:42:33:4E:01:D1
    Fingerprint (SHA1):
        1F:7D:5F:B9:D8:64:03:BA:9D:29:BA:D3:EC:2B:C0:83:69:31:27:92
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #7845: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155762 (0x3cdd99b2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Sat Oct 21 16:15:13 2017
            Not After : Fri Oct 21 16:15:13 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:05:a7:86:42:70:a7:61:42:1b:b2:74:b0:e9:13:bc:
                    91:a2:8f:24:65:58:d2:51:4a:3e:ec:e9:81:da:f5:28:
                    ae:c7:95:b3:5b:56:3f:49:ba:ef:7b:7e:d3:d2:e1:c8:
                    7b:dc:0a:34:3e:c1:6d:70:8c:f2:74:59:1b:e6:2d:92:
                    8d:f7:6d:24:bb:57:cf:7e:7e:93:aa:32:91:fa:c1:92:
                    7d:56:9d:ff:c5:f6:ad:1f:aa:ca:59:a1:f8:fd:f9:0f:
                    0c:ba:36:0c:5b:52:e4:ab:15:35:66:53:b6:da:30:94:
                    e9:d7:ce:0b:6b:a2:2c:04:11:6d:d7:2f:99:4a:a8:cf:
                    d1:d2:e4:63:ef:ba:2c:b1:2d:a1:78:09:31:b2:58:5b:
                    4a:e2:fe:e7:0e:5e:06:a3:a7:4c:7e:b4:0e:75:e3:b1:
                    f6:43:0f:d6:06:77:0a:05:ab:e0:01:1a:03:13:fb:2e:
                    f2:3e:8e:69:50:e7:1b:e3:09:ec:cd:f4:3e:26:8a:3d:
                    41:ad:3d:7d:ec:4c:d5:37:45:8a:31:cb:6d:74:e4:cd:
                    01:4d:93:16:d2:e8:d6:86:91:97:dd:a1:d0:8c:15:5b:
                    f1:9e:75:21:6a:7f:0b:d0:2b:a5:c2:ad:46:a8:e2:41:
                    82:59:94:c3:fc:0b:6f:6a:e1:1c:ad:55:29:52:70:45
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:1a:79:44:da:3f:bf:00:c7:11:8a:73:e3:eb:59:db:
        a4:f8:35:f2:e2:37:fb:36:8e:f9:64:b8:62:a2:77:84:
        20:b0:ae:88:16:d6:4f:44:dd:8a:83:c8:33:d9:1b:0b:
        ba:6a:e2:55:f5:65:6a:3a:55:a0:8e:6a:89:a5:70:fb:
        72:59:e7:7f:e8:8b:2f:ec:1d:56:af:4b:00:78:ae:f6:
        c1:ae:2a:47:14:f7:63:5e:c4:4d:d2:6f:83:4c:1a:b2:
        60:64:85:cc:28:ae:02:17:73:bc:5b:07:00:a7:5f:86:
        e3:9e:25:46:49:e7:11:9c:cb:db:ba:94:df:9d:2a:1a:
        fe:92:f8:8b:10:5e:4b:6a:cf:40:0f:81:43:c9:72:ae:
        8b:d2:d3:ee:7d:ba:2c:a4:fb:95:89:8d:eb:52:fd:de:
        64:78:b8:15:c7:32:73:aa:d4:94:db:46:3e:d0:1b:f9:
        7f:2d:41:c6:77:2b:94:56:55:8c:29:a6:bf:d8:8c:03:
        54:c8:d5:8e:08:2c:5e:df:10:e6:16:3e:fc:fb:1a:61:
        b7:78:21:61:70:de:ec:f6:b9:a7:c3:84:90:93:60:5c:
        cf:2d:16:64:ff:66:ef:ce:0d:63:4b:1c:29:38:0a:bb:
        5d:ab:d4:db:a6:0c:a5:b6:d5:a8:ac:97:dd:af:a9:56
    Fingerprint (SHA-256):
        FC:8B:46:F9:2E:87:31:49:DE:4E:DD:DE:A9:22:33:B6:2E:98:94:67:65:64:BD:A1:5E:E0:55:EE:95:59:F5:3B
    Fingerprint (SHA1):
        5F:B4:91:02:58:F3:1D:F3:95:28:05:1A:51:7F:81:5F:52:46:C0:B8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #7846: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155763 (0x3cdd99b3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Sat Oct 21 16:15:16 2017
            Not After : Fri Oct 21 16:15:16 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f5:96:26:81:b5:77:81:56:a6:bd:47:96:fc:2f:44:b9:
                    60:d3:69:1a:45:a5:3a:05:b8:4c:d9:45:58:06:30:3b:
                    2a:c9:f3:2b:40:38:7f:fd:3e:3d:36:43:67:a4:f5:7c:
                    2d:88:15:8a:95:92:d5:85:18:72:7f:1b:60:9c:0b:be:
                    03:34:ae:e6:d2:5e:cf:a6:75:73:4a:e7:01:0b:a6:9c:
                    a8:80:5b:78:de:37:05:2f:0a:97:f2:92:e5:07:31:03:
                    42:07:58:16:b1:c3:aa:a9:7c:2a:04:4a:8b:42:bc:0b:
                    e8:bb:30:80:f1:61:0e:74:37:af:ca:c4:2b:83:e5:81:
                    d9:f0:8e:ca:21:07:7d:63:06:f2:dc:41:ff:1c:f4:37:
                    9a:3c:93:57:4e:4a:59:b4:d8:4f:76:a5:de:55:74:ea:
                    a0:e7:99:32:5c:15:ac:55:02:dc:dd:73:62:c3:75:51:
                    9f:f3:22:71:92:b0:69:69:80:db:f8:44:8b:15:b7:26:
                    01:9a:e3:6e:94:ad:49:a3:46:3c:7e:1c:29:33:60:cc:
                    00:69:4a:e1:fa:6c:f5:72:7b:6f:e3:6f:e9:a3:6a:73:
                    5b:49:5a:2f:81:ae:9d:e5:a4:74:2b:46:14:b8:19:26:
                    9e:10:dd:86:62:51:70:a7:0f:ef:56:f7:61:c1:c8:27
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8c:93:b0:41:52:ea:c3:2e:e3:20:2d:03:20:3d:36:c4:
        23:d1:dd:6d:1d:03:d9:3b:86:be:43:69:2b:fe:ae:99:
        96:5e:4d:95:8a:89:19:56:04:55:11:d7:b4:b2:47:55:
        7d:2c:f6:76:41:ef:ea:f2:97:26:6e:d8:e2:15:32:2c:
        17:46:7a:f9:53:42:47:2d:b2:28:57:2e:41:15:49:69:
        55:5c:35:0a:6f:f4:bb:7f:01:f6:ac:71:d4:68:61:c5:
        fa:94:87:3f:24:e2:fa:36:7b:b3:f0:e3:0d:d2:82:29:
        29:42:8a:65:8d:31:07:c8:76:53:10:cf:ee:03:c5:14:
        f4:56:23:2a:d2:1f:32:f6:75:01:52:db:e3:24:33:07:
        e5:9f:0b:c6:32:b4:a1:6a:47:33:79:65:8f:8f:05:08:
        3e:89:37:80:49:9d:0d:8d:d0:6b:5b:4e:b1:81:1d:83:
        5b:11:83:bf:20:a6:3a:fa:6c:6f:45:b6:94:d8:ec:16:
        17:00:b1:27:70:aa:1d:e8:ae:f6:95:65:25:d4:7b:2c:
        bd:a4:56:e5:ce:19:64:fc:f9:f5:51:27:67:50:70:d7:
        d9:df:2f:40:6d:bb:46:30:97:f5:66:9d:06:11:ea:6f:
        fb:3c:cc:0d:81:4d:fb:8c:33:c3:94:17:7f:55:9c:25
    Fingerprint (SHA-256):
        0E:26:77:BA:45:B4:9C:DD:1C:BA:C8:F8:EF:5D:B7:53:3B:AD:B3:90:BF:13:F0:83:73:C9:A8:12:05:F6:FC:8D
    Fingerprint (SHA1):
        97:C4:54:3E:72:D5:4A:A1:45:E5:9B:D9:6E:6D:B1:D9:C2:A2:B6:21
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #7847: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155764 (0x3cdd99b4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Sat Oct 21 16:15:21 2017
            Not After : Fri Oct 21 16:15:21 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:ba:62:13:84:49:17:60:9d:fa:c3:1c:62:d7:0e:9f:
                    af:57:6b:ff:00:35:f8:47:18:7f:0a:6c:7d:89:e9:d3:
                    86:2a:ad:d9:fd:b4:b8:ef:0f:60:70:59:c3:b8:a8:5a:
                    82:3a:92:b5:49:63:18:15:7c:ad:84:ba:1a:47:10:d8:
                    4e:4b:21:5e:f4:b2:b2:b7:df:a9:a1:4c:11:39:a8:ff:
                    97:4c:a4:d6:ce:79:2e:6c:a0:81:04:b2:15:e2:4d:ef:
                    5c:9c:f3:86:c4:1b:c2:ab:0c:99:a5:10:1c:73:6d:df:
                    24:2f:57:c0:bc:e7:a3:5e:02:74:f2:c0:e0:32:83:3b:
                    9d:2c:27:40:66:38:64:bf:ba:68:dd:fc:4c:58:25:f0:
                    ae:8a:b2:c1:fc:b0:75:4c:3f:b2:9c:1e:df:e0:ba:b9:
                    15:32:64:11:86:62:8e:95:33:81:20:f8:89:5e:73:42:
                    0a:37:25:e3:49:43:ae:ea:98:9e:f1:81:97:e9:b7:f5:
                    27:48:16:46:ae:76:ec:c2:d4:84:fc:64:bf:0d:2e:60:
                    6b:ed:55:1d:4d:bd:b8:da:08:fe:cc:de:5f:1e:d1:6b:
                    0a:c4:50:8d:9a:01:91:d1:c1:ee:46:0e:35:65:c0:9b:
                    a2:98:8f:8d:38:ef:e3:6e:f2:a9:11:39:de:94:35:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:ef:58:45:7c:1c:cc:75:bc:e8:e5:61:08:b2:ca:f9:
        0f:1d:c5:24:bf:f4:a4:29:fd:cc:1d:66:69:d3:95:30:
        1b:50:e5:92:d6:a5:cb:47:e3:58:48:e8:da:ac:a1:2f:
        6d:49:6a:6d:5b:8a:6d:d6:8b:36:3b:f7:66:ae:84:b9:
        e2:36:66:cc:0d:7c:27:06:e3:4d:30:eb:ed:7c:a8:47:
        98:e1:f2:11:44:73:5d:e4:8a:b7:66:cd:f5:77:a5:76:
        1e:8e:89:b0:c8:e3:b7:e8:f4:6e:c2:83:75:c6:1a:d4:
        bb:92:e4:b7:5d:dd:8b:fe:b0:29:e3:e4:c2:7d:20:bf:
        26:07:55:ad:fd:e9:3f:10:c6:6b:31:21:be:b7:10:13:
        aa:b8:f5:35:49:0a:fd:ce:0f:b1:a2:c7:93:08:50:e4:
        34:f2:ea:87:02:66:0e:1e:99:09:c4:75:90:5f:c2:1c:
        d5:12:a5:48:b3:dd:b8:5a:00:db:81:d5:32:0e:ac:df:
        a7:38:5d:5e:e3:eb:b2:ac:8f:30:1f:81:f1:16:c5:0d:
        3f:44:d3:22:46:5a:72:61:d0:35:2a:c7:e4:d7:d0:a4:
        d7:e1:f3:5f:20:27:e2:a2:b8:c4:0c:5e:8e:d7:7d:36:
        c8:02:93:70:df:5d:35:0f:81:49:92:5f:44:f6:bb:75
    Fingerprint (SHA-256):
        37:04:74:F0:26:E6:40:34:AD:77:0E:5E:41:CB:AB:34:3B:06:C9:75:6E:D8:EA:94:73:9F:F0:DD:B3:03:46:15
    Fingerprint (SHA1):
        0E:06:6A:A9:A5:0F:51:59:A6:7F:D6:7E:1F:36:69:52:5E:9D:5C:0B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #7848: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155765 (0x3cdd99b5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Sat Oct 21 16:15:24 2017
            Not After : Fri Oct 21 16:15:24 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:28:85:c3:1b:b2:36:2e:7b:6a:2a:7b:f0:3e:b8:3e:
                    e6:1d:09:ee:ec:cc:07:ae:14:fc:a6:cd:46:42:83:22:
                    2e:cd:72:ae:19:3c:4a:4f:e5:d9:fd:d4:3e:05:87:74:
                    42:97:73:19:2f:5d:35:2b:77:1a:1d:7c:20:bf:e4:9b:
                    95:5a:86:c4:ce:12:a5:9b:4e:5a:c8:6b:67:76:29:49:
                    6a:cb:87:70:98:44:a1:9c:42:f4:16:f6:3d:71:82:f2:
                    c3:5f:13:ba:0d:ac:8e:d6:44:cd:a9:02:c3:e1:ee:6d:
                    8a:50:c9:80:dd:de:e1:19:92:97:a6:03:51:32:c5:56:
                    f9:ab:72:3d:a4:8d:ac:48:ee:74:cc:00:e1:0c:a2:ac:
                    b4:e7:72:10:39:88:cf:70:82:46:7e:b4:79:68:3f:72:
                    8d:68:ce:05:1c:c2:a0:7a:db:92:26:5d:59:5f:21:ca:
                    1e:2b:3a:52:f4:60:ee:aa:c9:e3:6d:ae:93:e3:3f:20:
                    2e:6d:8c:4b:90:06:7f:8f:80:36:b3:7d:7f:0a:0f:cf:
                    a9:11:ae:ae:85:79:7a:07:f4:ab:44:09:b0:aa:23:f3:
                    01:70:bc:5f:43:9c:4a:ac:d0:71:f6:34:b8:03:6b:20:
                    eb:cd:5c:1e:26:c5:ed:38:27:c3:60:01:70:2b:cd:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7c:80:d3:6d:f9:6f:06:3b:47:ef:55:15:dc:0d:a5:32:
        b4:6a:1e:2d:ef:8b:e2:14:fb:b9:d9:3d:33:eb:84:2d:
        d8:21:6a:dd:3d:dd:75:01:35:95:c8:25:cf:17:e9:c3:
        8b:1a:e8:e8:79:4e:0a:79:91:6e:eb:4f:ab:ab:67:bd:
        98:11:19:8e:8b:a0:35:11:0f:ec:49:ab:20:21:21:97:
        e2:51:ea:24:00:d4:27:5b:6b:fb:ca:d7:8a:e0:eb:23:
        e5:f9:df:83:de:36:4c:2a:1b:de:e8:a5:f3:7a:38:d4:
        43:4e:de:37:c6:7d:21:d8:de:5c:8b:72:bb:c3:5d:64:
        b8:cb:89:59:fc:3b:fa:2d:42:47:a2:ed:9d:6e:e4:95:
        e9:3b:93:b0:76:da:0e:11:57:ee:fd:35:14:d1:ff:b2:
        51:c6:52:c3:0f:ab:80:c6:18:cd:f0:6d:a2:2a:7c:86:
        6b:81:b5:ec:7a:9c:ed:35:67:74:25:a5:22:e1:39:66:
        54:c0:d7:a6:86:70:a2:0b:2b:10:76:06:48:48:6b:14:
        fc:01:34:30:cb:7d:4e:e0:64:c6:69:e3:00:1d:17:2a:
        81:ec:cf:98:bc:6f:28:00:b0:8c:11:a2:f1:ca:86:e9:
        50:20:b4:ab:7d:db:a9:b5:be:56:a0:79:de:1b:24:98
    Fingerprint (SHA-256):
        99:2F:0B:91:FA:EB:12:53:92:E5:68:7D:81:9F:E2:5F:B6:9D:73:42:B8:0B:EE:BB:7E:59:E7:35:75:21:D1:5E
    Fingerprint (SHA1):
        6C:A1:C3:81:52:BE:C8:73:F9:7B:25:08:34:02:BE:D8:DC:FA:E4:69
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #7849: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155766 (0x3cdd99b6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Sat Oct 21 16:15:29 2017
            Not After : Fri Oct 21 16:15:29 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:3a:a7:6e:f9:94:d3:55:cd:f0:0b:2b:c7:42:ad:78:
                    9f:12:c4:13:6e:52:bd:92:8d:42:c7:4a:39:2a:4d:4e:
                    08:e7:44:58:39:5f:6e:62:a4:22:00:79:59:73:e9:0a:
                    21:dd:47:44:a2:88:92:56:b6:cb:e5:b8:4a:b6:b4:82:
                    84:e5:e3:d7:2f:a2:32:40:0b:25:b0:77:15:10:31:ec:
                    9e:14:cc:3a:b4:88:38:8e:97:c9:1c:a9:b6:79:98:4c:
                    92:4b:dc:84:22:4f:e5:9b:fd:46:b1:2d:e3:bc:6b:9b:
                    e4:9a:f2:63:30:df:34:3f:b5:19:06:fb:36:94:76:aa:
                    41:c7:d0:0d:f9:9e:a3:8c:81:fb:77:75:06:23:4b:ce:
                    2f:9c:37:7f:76:0c:f9:60:4b:6b:11:1f:85:c4:2d:fc:
                    f2:22:3f:0b:97:27:1c:5c:15:a3:ba:f8:6f:73:fe:75:
                    d0:51:f5:7f:0c:91:7a:36:75:7a:a9:e0:d1:a7:bf:c7:
                    a6:03:1a:a0:70:8b:01:a1:e8:59:c4:78:f7:cd:bb:4b:
                    66:c7:88:9b:53:73:0a:f6:be:eb:dc:6f:24:42:d4:d5:
                    e9:f4:a6:c9:1e:47:4b:a9:30:51:49:7f:f5:a7:52:c6:
                    06:fc:17:25:9a:c4:1b:a6:b1:3c:04:0a:ae:ca:82:b1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:55:45:d6:68:d9:fd:95:02:60:37:ef:14:e7:20:8e:
        d9:da:9d:88:b8:05:5c:ba:42:3a:93:8e:e9:9c:a3:c8:
        db:62:2d:ec:7d:54:41:b0:af:cf:da:d0:b1:ca:16:e5:
        ac:0e:59:98:5f:a7:8f:f2:ec:d5:b9:97:88:e0:3f:89:
        a8:2b:fb:7a:c1:3b:11:92:7d:7b:00:b5:c2:04:ac:8d:
        c9:ea:6e:52:bd:20:8b:4f:09:20:3f:aa:05:1b:94:87:
        cf:b3:11:1e:16:ef:68:fc:ff:60:33:52:35:43:87:9a:
        28:64:e4:70:45:06:9b:21:7f:6a:62:bd:27:f9:32:1f:
        5f:f4:c7:25:e2:d5:1f:64:b4:8d:85:d8:65:80:60:cf:
        1b:18:a5:28:1d:6f:50:88:5a:03:d3:11:c4:3d:4f:5b:
        48:90:a4:8b:86:c2:92:38:62:80:ee:ce:ab:3a:11:28:
        48:97:cf:a4:40:eb:7a:f4:aa:94:0e:7f:2e:1b:6d:2c:
        b7:39:56:29:ee:6d:8c:bb:3f:a1:d2:4c:cd:40:93:f2:
        66:4e:6f:11:6b:cf:7c:2d:1d:7e:ec:ca:c1:3d:3e:6a:
        52:85:89:13:73:04:bd:d2:e9:cb:c0:9d:0e:26:3d:ed:
        29:dd:c8:69:20:ed:06:b9:ba:6b:ba:a5:b4:ab:a8:19
    Fingerprint (SHA-256):
        F5:FB:4C:E1:E5:F9:2D:27:15:D7:80:58:99:5B:1C:38:8A:C9:05:E7:4D:2B:38:AB:50:E5:E2:F7:9E:3B:9A:AC
    Fingerprint (SHA1):
        8F:6A:51:18:49:61:F9:B9:A6:EA:32:EF:14:9B:57:46:A5:54:A6:CB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #7850: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7851: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155781 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7852: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7853: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7854: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7855: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021155782   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7856: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7857: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7858: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7859: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021155783   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7860: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7861: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7862: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7863: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 1021155784   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7864: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7865: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7866: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155781 (0x3cdd99c5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:16:27 2017
            Not After : Fri Oct 21 16:16:27 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:eb:36:1a:13:35:39:f7:98:b7:cd:8b:ad:bc:fc:7d:
                    ca:8b:89:6b:a9:04:b0:f9:52:ac:e8:88:ca:d9:60:88:
                    30:d0:b3:9e:05:21:94:72:74:7a:47:6e:27:e5:d3:16:
                    69:14:5d:8a:9b:a3:e5:7f:02:98:dd:02:6c:36:23:b1:
                    41:ca:3f:20:7c:aa:2a:d5:76:1c:61:a8:df:f7:4f:b3:
                    58:73:7b:3b:8c:34:2a:08:58:88:74:f6:8d:0a:f2:f7:
                    84:f2:86:05:0d:bf:eb:43:b7:d1:5b:a9:8a:e0:d5:77:
                    a0:f9:37:a0:e0:f5:0a:30:15:c0:d9:1b:1a:de:f8:00:
                    19:62:af:e4:59:62:c4:d6:91:46:4b:26:00:88:04:9e:
                    25:2e:8b:d3:8d:49:45:21:3b:36:fa:d2:70:17:a7:00:
                    d6:92:36:25:14:df:c8:c4:4e:4d:80:e4:cc:0e:b4:20:
                    f4:30:f8:51:b1:9e:00:45:db:53:7c:1e:2a:7d:26:55:
                    73:28:26:58:bd:23:6f:4a:50:21:fd:db:70:5f:62:a3:
                    24:64:e3:f3:0f:ca:0f:1e:79:51:bd:07:f3:b7:9f:b0:
                    1b:4c:26:e4:47:16:99:08:5c:9f:0d:2b:4b:6a:32:11:
                    75:4e:63:96:17:5e:ca:fa:0b:33:f2:3e:bf:9f:29:21
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:40:e5:8b:78:57:24:01:0d:43:53:98:c6:d3:10:f5:
        61:e1:b1:31:43:e6:9f:73:dc:ea:a4:df:e0:8a:b4:ff:
        ee:4b:f8:d1:98:e4:24:01:9e:f4:c4:00:90:e1:67:3e:
        38:08:23:1b:27:a3:2a:09:f9:99:71:67:82:eb:fb:ac:
        9c:43:d7:67:ab:ba:81:24:cd:75:a7:2b:d5:01:bf:ba:
        48:e6:f8:c1:49:f2:04:f2:51:ff:c8:27:1c:90:7c:d1:
        0f:62:80:ae:77:b4:23:f4:59:84:06:8f:e2:2a:83:48:
        9b:8a:c8:8a:8d:35:e9:eb:f4:a1:18:bc:53:af:5f:59:
        e7:ac:bc:be:72:66:ea:1a:d6:35:3f:cb:4e:ff:60:bd:
        76:0d:77:79:c1:80:fe:e2:c5:70:0f:ba:2f:1c:5f:c7:
        9a:f8:6b:a7:d0:d1:03:5a:1b:f6:27:36:b2:0a:85:ec:
        99:04:ef:2d:9b:4c:cf:f1:1a:36:82:07:52:b4:09:8c:
        cc:b6:8a:6c:92:bd:84:ba:fe:0d:7f:58:c4:be:0d:26:
        a1:db:5a:90:ca:78:a9:ba:54:1f:de:48:a3:46:7e:bc:
        e1:14:6f:1b:14:fb:a1:a4:31:df:7e:ae:e6:59:a8:00:
        e4:3b:54:e0:e0:f0:d1:14:cd:cb:c1:5f:05:27:69:a9
    Fingerprint (SHA-256):
        9C:1F:74:B8:A5:37:B4:8A:07:38:F0:5A:6B:9C:5F:39:5A:83:4B:96:2E:00:06:D2:E2:BB:17:E5:E0:8A:EE:D5
    Fingerprint (SHA1):
        B5:AA:D2:D2:9D:F9:17:33:74:4E:18:11:5A:C1:65:31:D9:69:30:C3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7867: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7868: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155782 (0x3cdd99c6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:16:32 2017
            Not After : Fri Oct 21 16:16:32 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:af:32:6d:86:db:fe:a5:86:39:12:e1:e3:0f:d3:1d:
                    a1:0e:00:53:7c:10:6e:f7:9c:c5:38:d4:17:22:bf:5a:
                    5f:63:da:c4:50:e9:e0:f1:6b:0b:38:92:56:f6:e3:d9:
                    33:5d:08:a0:01:b0:e6:40:5b:26:a6:8f:83:8e:4f:a8:
                    54:fb:c3:ad:2f:db:29:63:3b:54:d5:fe:a3:e5:88:a6:
                    a5:01:a5:41:b6:2f:ab:f1:00:83:02:f5:57:b1:7d:ae:
                    c1:90:43:68:f3:54:b7:99:24:0f:e1:46:ea:f3:6b:8e:
                    f0:cc:c0:fa:bf:00:b0:be:4b:26:9d:a2:98:06:31:4a:
                    86:26:a2:bc:e1:b9:44:04:46:56:fa:9a:aa:35:8a:b1:
                    92:55:45:cb:13:f1:9f:5b:a9:b6:ef:78:a3:65:78:88:
                    1f:b6:be:49:cb:4d:e2:3f:00:5b:dc:42:85:b4:72:44:
                    35:78:5e:73:bd:3f:84:6e:a2:a8:15:e9:6d:f9:87:77:
                    2c:4b:b6:e7:ae:0d:b8:ee:2b:39:c6:87:cf:f1:fa:85:
                    59:24:7b:4e:69:08:af:7b:c4:67:05:3e:11:bf:1b:40:
                    9e:12:f0:24:81:b0:6a:fc:d0:8d:16:95:a1:1a:26:09:
                    d5:c8:57:e4:bf:50:14:5b:59:8e:ca:49:8d:98:17:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d4:8e:bb:2c:6a:d6:8e:0d:51:b6:55:a8:b2:6b:f7:94:
        0c:d1:4f:4c:c0:f0:fa:9c:1a:38:c8:f7:ff:a3:0f:fc:
        b7:38:7b:96:f5:16:af:49:59:ff:bb:9f:25:d4:66:73:
        95:92:a6:9d:2d:79:fa:b2:8a:3b:e9:b9:b2:e3:42:b9:
        2d:8f:40:14:d0:b5:d3:2d:ec:c5:73:cb:52:96:01:ed:
        87:13:5f:b9:42:df:f9:15:bb:ac:66:86:07:51:24:e0:
        b6:4c:59:f8:6d:96:0d:97:de:51:05:18:7b:fd:d0:1b:
        33:48:85:db:78:12:ae:c4:4a:a0:a0:2c:1f:50:40:8b:
        82:cf:8d:5f:4b:53:7d:1c:14:f1:92:76:f4:20:d4:b8:
        3d:b7:c3:66:ca:a0:2d:63:a0:2b:5d:f1:c8:ff:9f:f0:
        f2:e7:eb:d1:4c:68:40:2f:38:9a:d2:82:f0:d5:52:50:
        f7:54:aa:fb:47:cc:2a:0c:3a:4c:c2:c0:65:d3:8c:a3:
        61:44:b8:39:1d:29:02:3d:ba:7e:7e:16:d0:96:b5:af:
        6f:55:d3:e0:81:f8:4b:b7:de:4b:0c:6f:51:23:a1:e8:
        a0:af:c9:de:19:84:0e:d3:9e:bb:ab:f6:31:c9:ba:4c:
        6f:66:ee:80:87:6d:7d:6f:b1:9c:91:99:b4:3f:90:c3
    Fingerprint (SHA-256):
        47:6E:C1:54:6C:59:1E:BD:77:9E:A2:BB:A9:2C:E9:24:08:65:CC:80:45:A4:13:B8:11:C2:69:5E:16:CD:3F:48
    Fingerprint (SHA1):
        17:21:D7:C4:3E:59:EC:0A:31:19:EA:E6:B7:39:5F:A4:20:3A:47:A4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7869: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7870: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155783 (0x3cdd99c7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 16:16:37 2017
            Not After : Fri Oct 21 16:16:37 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:a1:9b:ab:99:a0:e6:3a:8b:84:f3:07:0f:4c:2e:aa:
                    5a:7d:60:13:bd:d0:85:de:3c:3a:77:c6:d6:09:07:56:
                    76:94:4a:3c:e6:0b:90:64:fc:32:c8:fe:8b:8a:41:57:
                    12:e6:3f:1f:a2:15:0a:36:1f:24:b0:ad:55:5b:9e:a5:
                    cc:e4:c4:ff:e3:7d:7a:f4:b6:af:49:a8:24:c6:6c:ec:
                    dc:9d:e5:fd:df:3a:35:68:b5:df:4a:a4:65:c5:39:4a:
                    4d:cc:ce:96:b9:82:18:56:a3:68:50:15:6e:dd:33:5a:
                    30:bd:61:d3:33:e7:5c:ba:f9:81:45:8e:4b:60:b4:f7:
                    28:e6:da:6a:55:48:ef:25:71:b0:5a:9f:3c:7d:f1:ee:
                    63:81:5f:bd:42:94:fc:2c:6d:01:ae:4f:83:5d:9e:8b:
                    21:d0:aa:42:f5:c8:d0:08:0d:95:a4:85:e4:d5:05:84:
                    53:ee:9d:1c:63:d2:26:3a:61:c8:f6:2f:60:bb:70:31:
                    a6:1e:c9:d1:7a:94:8b:d0:7b:3e:2c:8a:2f:1b:da:f2:
                    d4:5e:bf:64:52:26:ed:6a:92:bc:f4:95:f3:3f:30:09:
                    a8:eb:a0:b3:2d:f6:76:06:47:25:c7:9c:23:92:ae:7d:
                    7b:71:b7:f2:4d:50:ab:cf:b9:1a:72:82:c5:e9:c6:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        31:36:4c:a6:ee:b2:25:ce:1d:78:9c:c2:01:ca:60:7a:
        0e:29:5b:0d:af:93:0e:e5:27:b3:1c:a9:63:c0:d1:33:
        ad:c8:36:22:db:f7:d6:50:c5:f0:a0:90:cb:e0:a1:81:
        e9:a2:76:44:ab:35:df:ad:d9:2b:4f:14:16:67:d6:ce:
        d7:e9:38:04:e8:ea:eb:cf:29:78:4a:d3:c8:39:ad:c6:
        b2:4c:87:a9:84:02:5a:18:e6:46:a8:e2:a0:6b:f9:64:
        3c:b3:be:b0:ba:75:6c:49:b4:28:6d:b9:42:02:a8:28:
        8c:25:7e:1a:f5:dc:60:3a:47:43:57:95:e6:1b:c9:6f:
        b7:26:71:61:36:0f:53:f2:b9:9e:a7:80:df:9f:5d:8a:
        59:f9:32:dc:4e:7a:ee:21:01:02:77:74:62:55:35:04:
        07:d3:87:40:3c:2e:f1:a6:4f:48:ac:8f:5e:67:bb:44:
        4d:47:32:80:b9:8f:68:af:9a:a4:3a:03:d2:ba:d3:57:
        3b:6a:2f:6c:da:d3:f0:7c:58:ed:5e:4f:1f:62:08:f0:
        22:b9:d4:65:1c:7c:91:6d:b1:d6:b9:60:7e:8f:c6:7e:
        30:ab:59:af:0e:a5:56:73:40:89:6c:28:4f:9c:4f:f3:
        48:eb:6a:e0:87:46:fb:6d:57:32:32:4c:27:b7:3b:51
    Fingerprint (SHA-256):
        76:4F:9C:9F:6B:2B:D1:92:AC:30:05:9E:38:7E:55:E1:A0:75:62:62:2F:2B:22:67:30:DA:C0:6D:EB:44:9E:8F
    Fingerprint (SHA1):
        45:D0:4B:5E:BB:4F:AE:3B:32:9C:F8:98:4F:C8:48:3E:11:51:BB:AA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #7871: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7872: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7873: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7874: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7875: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155781 (0x3cdd99c5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:16:27 2017
            Not After : Fri Oct 21 16:16:27 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:eb:36:1a:13:35:39:f7:98:b7:cd:8b:ad:bc:fc:7d:
                    ca:8b:89:6b:a9:04:b0:f9:52:ac:e8:88:ca:d9:60:88:
                    30:d0:b3:9e:05:21:94:72:74:7a:47:6e:27:e5:d3:16:
                    69:14:5d:8a:9b:a3:e5:7f:02:98:dd:02:6c:36:23:b1:
                    41:ca:3f:20:7c:aa:2a:d5:76:1c:61:a8:df:f7:4f:b3:
                    58:73:7b:3b:8c:34:2a:08:58:88:74:f6:8d:0a:f2:f7:
                    84:f2:86:05:0d:bf:eb:43:b7:d1:5b:a9:8a:e0:d5:77:
                    a0:f9:37:a0:e0:f5:0a:30:15:c0:d9:1b:1a:de:f8:00:
                    19:62:af:e4:59:62:c4:d6:91:46:4b:26:00:88:04:9e:
                    25:2e:8b:d3:8d:49:45:21:3b:36:fa:d2:70:17:a7:00:
                    d6:92:36:25:14:df:c8:c4:4e:4d:80:e4:cc:0e:b4:20:
                    f4:30:f8:51:b1:9e:00:45:db:53:7c:1e:2a:7d:26:55:
                    73:28:26:58:bd:23:6f:4a:50:21:fd:db:70:5f:62:a3:
                    24:64:e3:f3:0f:ca:0f:1e:79:51:bd:07:f3:b7:9f:b0:
                    1b:4c:26:e4:47:16:99:08:5c:9f:0d:2b:4b:6a:32:11:
                    75:4e:63:96:17:5e:ca:fa:0b:33:f2:3e:bf:9f:29:21
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:40:e5:8b:78:57:24:01:0d:43:53:98:c6:d3:10:f5:
        61:e1:b1:31:43:e6:9f:73:dc:ea:a4:df:e0:8a:b4:ff:
        ee:4b:f8:d1:98:e4:24:01:9e:f4:c4:00:90:e1:67:3e:
        38:08:23:1b:27:a3:2a:09:f9:99:71:67:82:eb:fb:ac:
        9c:43:d7:67:ab:ba:81:24:cd:75:a7:2b:d5:01:bf:ba:
        48:e6:f8:c1:49:f2:04:f2:51:ff:c8:27:1c:90:7c:d1:
        0f:62:80:ae:77:b4:23:f4:59:84:06:8f:e2:2a:83:48:
        9b:8a:c8:8a:8d:35:e9:eb:f4:a1:18:bc:53:af:5f:59:
        e7:ac:bc:be:72:66:ea:1a:d6:35:3f:cb:4e:ff:60:bd:
        76:0d:77:79:c1:80:fe:e2:c5:70:0f:ba:2f:1c:5f:c7:
        9a:f8:6b:a7:d0:d1:03:5a:1b:f6:27:36:b2:0a:85:ec:
        99:04:ef:2d:9b:4c:cf:f1:1a:36:82:07:52:b4:09:8c:
        cc:b6:8a:6c:92:bd:84:ba:fe:0d:7f:58:c4:be:0d:26:
        a1:db:5a:90:ca:78:a9:ba:54:1f:de:48:a3:46:7e:bc:
        e1:14:6f:1b:14:fb:a1:a4:31:df:7e:ae:e6:59:a8:00:
        e4:3b:54:e0:e0:f0:d1:14:cd:cb:c1:5f:05:27:69:a9
    Fingerprint (SHA-256):
        9C:1F:74:B8:A5:37:B4:8A:07:38:F0:5A:6B:9C:5F:39:5A:83:4B:96:2E:00:06:D2:E2:BB:17:E5:E0:8A:EE:D5
    Fingerprint (SHA1):
        B5:AA:D2:D2:9D:F9:17:33:74:4E:18:11:5A:C1:65:31:D9:69:30:C3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7876: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7877: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155782 (0x3cdd99c6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:16:32 2017
            Not After : Fri Oct 21 16:16:32 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:af:32:6d:86:db:fe:a5:86:39:12:e1:e3:0f:d3:1d:
                    a1:0e:00:53:7c:10:6e:f7:9c:c5:38:d4:17:22:bf:5a:
                    5f:63:da:c4:50:e9:e0:f1:6b:0b:38:92:56:f6:e3:d9:
                    33:5d:08:a0:01:b0:e6:40:5b:26:a6:8f:83:8e:4f:a8:
                    54:fb:c3:ad:2f:db:29:63:3b:54:d5:fe:a3:e5:88:a6:
                    a5:01:a5:41:b6:2f:ab:f1:00:83:02:f5:57:b1:7d:ae:
                    c1:90:43:68:f3:54:b7:99:24:0f:e1:46:ea:f3:6b:8e:
                    f0:cc:c0:fa:bf:00:b0:be:4b:26:9d:a2:98:06:31:4a:
                    86:26:a2:bc:e1:b9:44:04:46:56:fa:9a:aa:35:8a:b1:
                    92:55:45:cb:13:f1:9f:5b:a9:b6:ef:78:a3:65:78:88:
                    1f:b6:be:49:cb:4d:e2:3f:00:5b:dc:42:85:b4:72:44:
                    35:78:5e:73:bd:3f:84:6e:a2:a8:15:e9:6d:f9:87:77:
                    2c:4b:b6:e7:ae:0d:b8:ee:2b:39:c6:87:cf:f1:fa:85:
                    59:24:7b:4e:69:08:af:7b:c4:67:05:3e:11:bf:1b:40:
                    9e:12:f0:24:81:b0:6a:fc:d0:8d:16:95:a1:1a:26:09:
                    d5:c8:57:e4:bf:50:14:5b:59:8e:ca:49:8d:98:17:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d4:8e:bb:2c:6a:d6:8e:0d:51:b6:55:a8:b2:6b:f7:94:
        0c:d1:4f:4c:c0:f0:fa:9c:1a:38:c8:f7:ff:a3:0f:fc:
        b7:38:7b:96:f5:16:af:49:59:ff:bb:9f:25:d4:66:73:
        95:92:a6:9d:2d:79:fa:b2:8a:3b:e9:b9:b2:e3:42:b9:
        2d:8f:40:14:d0:b5:d3:2d:ec:c5:73:cb:52:96:01:ed:
        87:13:5f:b9:42:df:f9:15:bb:ac:66:86:07:51:24:e0:
        b6:4c:59:f8:6d:96:0d:97:de:51:05:18:7b:fd:d0:1b:
        33:48:85:db:78:12:ae:c4:4a:a0:a0:2c:1f:50:40:8b:
        82:cf:8d:5f:4b:53:7d:1c:14:f1:92:76:f4:20:d4:b8:
        3d:b7:c3:66:ca:a0:2d:63:a0:2b:5d:f1:c8:ff:9f:f0:
        f2:e7:eb:d1:4c:68:40:2f:38:9a:d2:82:f0:d5:52:50:
        f7:54:aa:fb:47:cc:2a:0c:3a:4c:c2:c0:65:d3:8c:a3:
        61:44:b8:39:1d:29:02:3d:ba:7e:7e:16:d0:96:b5:af:
        6f:55:d3:e0:81:f8:4b:b7:de:4b:0c:6f:51:23:a1:e8:
        a0:af:c9:de:19:84:0e:d3:9e:bb:ab:f6:31:c9:ba:4c:
        6f:66:ee:80:87:6d:7d:6f:b1:9c:91:99:b4:3f:90:c3
    Fingerprint (SHA-256):
        47:6E:C1:54:6C:59:1E:BD:77:9E:A2:BB:A9:2C:E9:24:08:65:CC:80:45:A4:13:B8:11:C2:69:5E:16:CD:3F:48
    Fingerprint (SHA1):
        17:21:D7:C4:3E:59:EC:0A:31:19:EA:E6:B7:39:5F:A4:20:3A:47:A4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7878: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7879: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155783 (0x3cdd99c7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 16:16:37 2017
            Not After : Fri Oct 21 16:16:37 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:a1:9b:ab:99:a0:e6:3a:8b:84:f3:07:0f:4c:2e:aa:
                    5a:7d:60:13:bd:d0:85:de:3c:3a:77:c6:d6:09:07:56:
                    76:94:4a:3c:e6:0b:90:64:fc:32:c8:fe:8b:8a:41:57:
                    12:e6:3f:1f:a2:15:0a:36:1f:24:b0:ad:55:5b:9e:a5:
                    cc:e4:c4:ff:e3:7d:7a:f4:b6:af:49:a8:24:c6:6c:ec:
                    dc:9d:e5:fd:df:3a:35:68:b5:df:4a:a4:65:c5:39:4a:
                    4d:cc:ce:96:b9:82:18:56:a3:68:50:15:6e:dd:33:5a:
                    30:bd:61:d3:33:e7:5c:ba:f9:81:45:8e:4b:60:b4:f7:
                    28:e6:da:6a:55:48:ef:25:71:b0:5a:9f:3c:7d:f1:ee:
                    63:81:5f:bd:42:94:fc:2c:6d:01:ae:4f:83:5d:9e:8b:
                    21:d0:aa:42:f5:c8:d0:08:0d:95:a4:85:e4:d5:05:84:
                    53:ee:9d:1c:63:d2:26:3a:61:c8:f6:2f:60:bb:70:31:
                    a6:1e:c9:d1:7a:94:8b:d0:7b:3e:2c:8a:2f:1b:da:f2:
                    d4:5e:bf:64:52:26:ed:6a:92:bc:f4:95:f3:3f:30:09:
                    a8:eb:a0:b3:2d:f6:76:06:47:25:c7:9c:23:92:ae:7d:
                    7b:71:b7:f2:4d:50:ab:cf:b9:1a:72:82:c5:e9:c6:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        31:36:4c:a6:ee:b2:25:ce:1d:78:9c:c2:01:ca:60:7a:
        0e:29:5b:0d:af:93:0e:e5:27:b3:1c:a9:63:c0:d1:33:
        ad:c8:36:22:db:f7:d6:50:c5:f0:a0:90:cb:e0:a1:81:
        e9:a2:76:44:ab:35:df:ad:d9:2b:4f:14:16:67:d6:ce:
        d7:e9:38:04:e8:ea:eb:cf:29:78:4a:d3:c8:39:ad:c6:
        b2:4c:87:a9:84:02:5a:18:e6:46:a8:e2:a0:6b:f9:64:
        3c:b3:be:b0:ba:75:6c:49:b4:28:6d:b9:42:02:a8:28:
        8c:25:7e:1a:f5:dc:60:3a:47:43:57:95:e6:1b:c9:6f:
        b7:26:71:61:36:0f:53:f2:b9:9e:a7:80:df:9f:5d:8a:
        59:f9:32:dc:4e:7a:ee:21:01:02:77:74:62:55:35:04:
        07:d3:87:40:3c:2e:f1:a6:4f:48:ac:8f:5e:67:bb:44:
        4d:47:32:80:b9:8f:68:af:9a:a4:3a:03:d2:ba:d3:57:
        3b:6a:2f:6c:da:d3:f0:7c:58:ed:5e:4f:1f:62:08:f0:
        22:b9:d4:65:1c:7c:91:6d:b1:d6:b9:60:7e:8f:c6:7e:
        30:ab:59:af:0e:a5:56:73:40:89:6c:28:4f:9c:4f:f3:
        48:eb:6a:e0:87:46:fb:6d:57:32:32:4c:27:b7:3b:51
    Fingerprint (SHA-256):
        76:4F:9C:9F:6B:2B:D1:92:AC:30:05:9E:38:7E:55:E1:A0:75:62:62:2F:2B:22:67:30:DA:C0:6D:EB:44:9E:8F
    Fingerprint (SHA1):
        45:D0:4B:5E:BB:4F:AE:3B:32:9C:F8:98:4F:C8:48:3E:11:51:BB:AA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #7880: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7881: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7882: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155785 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7883: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7884: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7885: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7886: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021155786   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7887: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7888: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7889: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7890: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021155787   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7891: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7892: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #7893: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7894: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 1021155788   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7895: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7896: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #7897: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7898: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 1021155789   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7899: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7900: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7901: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155785 (0x3cdd99c9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:17:01 2017
            Not After : Fri Oct 21 16:17:01 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:ae:65:13:73:79:34:a6:c1:45:39:a3:50:ed:05:40:
                    91:10:7f:50:8e:59:00:8e:f4:b2:2e:df:08:fa:65:f4:
                    d4:23:78:a1:42:9e:19:b9:c3:ff:a7:7c:9d:cc:ec:0e:
                    5a:57:f1:6a:9a:b1:4e:e5:67:7c:8b:6c:b9:00:53:0a:
                    3f:ed:bb:a6:93:e8:ac:f9:53:d2:87:39:48:13:3f:0d:
                    2c:47:e3:bf:a2:76:33:f9:82:fa:ad:14:71:18:3e:0b:
                    9c:a1:f3:8a:fb:fd:24:33:92:d3:e8:50:12:6a:dd:d7:
                    34:71:03:1a:ba:43:a7:10:1a:ad:bb:13:6b:42:5c:64:
                    f4:31:ec:64:7a:88:34:b1:d0:ea:bb:04:78:1c:46:69:
                    42:7f:97:5c:3b:ba:ba:55:4a:6f:38:19:e9:5e:93:a1:
                    a1:79:f6:27:29:47:9e:4d:59:3b:93:e3:54:e0:65:b4:
                    ef:58:34:3a:f3:0a:d4:64:e5:14:46:da:6c:3e:c1:cf:
                    58:74:d5:89:ae:a2:da:14:95:0c:fd:30:44:a0:bd:c5:
                    28:4b:f7:a8:bc:89:88:6d:cd:5b:0b:a5:64:9e:0a:58:
                    ae:0d:32:54:87:56:03:40:85:6d:47:09:c0:08:6d:d9:
                    6f:0b:94:44:7a:92:e7:94:86:0d:7a:dd:d1:df:ca:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:92:48:a7:1c:38:78:47:c3:04:47:88:22:59:ee:dc:
        f0:1a:18:65:43:5b:75:54:b9:12:43:95:8a:84:b3:c7:
        19:b9:a7:2c:f7:e8:5c:ee:35:e6:d0:10:2d:1a:9b:65:
        27:18:cc:48:d9:94:d1:40:21:f6:ad:b6:fb:07:d3:05:
        76:93:46:0e:bf:3e:a2:f7:e2:4f:89:a7:c5:a1:d1:c6:
        0a:70:d1:52:c3:32:08:8e:49:f9:a7:47:01:d3:db:a3:
        86:b6:6b:c7:2f:b3:92:07:31:97:0a:02:aa:97:5c:2b:
        5f:35:b9:17:e6:da:89:6b:9f:69:c6:3b:d0:72:47:bb:
        68:fa:e6:07:49:25:88:ac:4c:9c:59:08:74:3d:a8:9b:
        27:b7:f9:62:e9:6b:e8:1a:3a:ba:fd:3b:72:b1:db:85:
        66:03:f3:2f:e4:4d:62:7b:d9:7c:de:88:c3:18:4f:04:
        97:48:6d:51:79:c8:7a:6e:b0:a7:51:46:f3:bd:15:33:
        17:82:46:aa:20:59:d9:df:68:da:55:e4:bb:c1:12:a2:
        ca:c3:74:be:fd:d8:a5:02:49:d8:c8:87:53:61:61:46:
        a7:d4:8a:ad:43:81:21:99:62:42:07:b6:f9:fb:98:03:
        3a:18:dd:74:d8:00:43:ed:67:0c:8f:b8:f8:4d:a4:23
    Fingerprint (SHA-256):
        4E:6C:0C:C5:01:B2:89:64:4A:7C:D3:5F:CD:E1:CE:00:C3:F4:D5:B2:B3:40:4D:89:81:F7:FA:65:80:13:4B:40
    Fingerprint (SHA1):
        F1:52:14:4C:5B:66:DC:ED:01:B8:D5:AD:AB:C2:4E:69:57:DB:D5:8D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7902: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7903: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155786 (0x3cdd99ca)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:17:07 2017
            Not After : Fri Oct 21 16:17:07 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:5a:5d:dd:dd:9e:c6:cb:87:9b:e9:60:09:86:cb:63:
                    15:cb:00:05:14:7d:f6:e9:85:63:4c:54:fc:7a:ed:92:
                    66:0e:4b:d4:55:a1:65:4a:e5:a2:73:9b:c8:01:62:50:
                    c5:90:77:de:44:22:f5:9e:74:51:81:1a:3c:51:71:df:
                    d2:77:9d:4a:75:fa:38:59:78:73:f8:27:65:d4:3b:80:
                    32:24:9d:04:f6:07:e8:a7:86:e7:91:c7:c7:2b:24:3f:
                    69:98:2d:78:02:72:a8:de:a9:41:37:fe:0e:b3:7a:aa:
                    53:31:b7:a6:18:ae:fe:f7:c9:00:5a:4d:f1:31:04:dc:
                    3b:da:80:31:95:73:e3:67:73:d9:cf:29:68:12:ac:c6:
                    54:3b:c0:f8:ae:5d:43:4f:24:1d:e8:2d:d1:dd:25:dc:
                    78:1a:1a:d4:38:df:c9:de:cd:41:37:9b:a8:26:3d:3d:
                    0f:17:a7:0a:f3:bd:f3:7b:b6:0a:5f:14:20:20:96:ab:
                    d9:ab:40:36:08:5f:8f:c5:29:22:02:11:c3:b7:20:0a:
                    51:d7:ea:f0:de:a6:a3:40:da:9a:b0:55:b2:02:56:f6:
                    1d:76:ba:14:a1:1b:3d:b7:2a:28:7a:01:54:93:c4:21:
                    26:30:ef:bc:ab:a5:5e:d9:ac:6a:9f:b9:e8:21:67:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:03:6a:f0:73:2b:82:e0:58:72:5e:a4:6b:0b:66:e3:
        9f:24:d0:d0:61:dc:5c:76:1d:e0:8b:f8:a9:a7:8b:b1:
        4e:8b:8e:47:f0:88:48:48:59:16:c0:e2:5f:0a:ae:fd:
        dc:91:7f:34:12:6d:00:41:9d:f0:bf:18:7e:f5:85:9d:
        64:b3:f2:d3:a1:45:88:a8:be:54:8b:0a:2e:8d:0b:ed:
        cf:cf:49:2f:cf:fe:bf:05:7c:d9:ac:e6:26:eb:32:80:
        9d:65:18:43:0f:d6:8e:7f:4f:13:7d:d2:17:e0:09:7b:
        eb:ee:2d:3b:6c:e0:69:f3:3b:f6:13:e0:61:cf:dc:80:
        b7:c5:7c:70:fe:c8:7e:bc:a4:d3:1d:f4:bf:42:74:89:
        19:6c:da:ce:d3:19:31:bd:c6:81:8a:77:5f:6d:f2:b2:
        af:bb:50:38:dd:5d:13:2d:ea:0a:dd:b6:aa:20:4d:a3:
        35:48:78:ed:6a:85:b4:59:fb:66:fe:5b:ee:81:15:e2:
        c7:89:a8:36:43:a4:ce:87:a6:31:ea:f2:60:33:68:ae:
        df:16:5c:43:4e:96:94:6f:c1:a4:e3:8e:fc:c1:21:be:
        85:50:6d:12:46:ed:ec:35:3f:5f:cd:42:41:82:05:88:
        05:b8:36:f8:90:8a:fd:34:82:46:e4:d6:26:8c:ed:03
    Fingerprint (SHA-256):
        08:72:A5:DA:3F:82:62:72:B4:68:EC:1D:24:13:4F:D5:67:F6:86:73:9F:C3:FE:9A:BA:63:E1:82:2F:19:2C:41
    Fingerprint (SHA1):
        D3:0E:26:29:5B:4B:05:9A:32:BA:A7:27:15:28:DC:55:35:4D:C9:7A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7904: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7905: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155787 (0x3cdd99cb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 16:17:16 2017
            Not After : Fri Oct 21 16:17:16 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:4d:e9:7b:98:3c:ff:bc:16:c2:09:fc:85:6b:bd:b3:
                    35:37:66:17:49:e2:3f:d0:14:18:46:94:c0:82:a6:a6:
                    aa:49:72:ff:15:34:28:aa:17:b0:70:99:14:62:c4:29:
                    95:6e:57:1f:f2:a5:8e:97:6d:85:80:85:4d:a0:12:0b:
                    a6:de:60:36:5f:15:64:c0:81:68:5d:ce:ca:d5:27:b5:
                    e7:7a:ba:54:3d:78:81:94:2e:84:59:87:1e:78:bf:54:
                    53:16:15:01:ec:82:a6:36:15:1b:ab:9e:f9:2c:00:59:
                    79:5f:d7:91:bf:1d:3f:ce:be:02:c7:ea:21:2f:27:aa:
                    4f:21:20:a5:f3:14:4a:74:2e:89:24:af:4e:17:65:e5:
                    2f:b4:1a:a7:8a:08:25:dd:d7:c9:3a:11:04:30:fe:cd:
                    f0:a9:62:28:a4:c2:46:c7:63:99:da:5c:4c:e0:43:1b:
                    4b:17:29:bf:04:57:5f:d1:c0:56:cb:3b:50:76:f3:2f:
                    22:87:47:c7:9e:9c:b2:71:b1:12:6d:6c:22:9a:fc:df:
                    4f:d9:fe:f6:68:12:f2:14:df:88:5d:d3:43:6f:1c:7c:
                    02:7d:cd:9d:b0:01:50:f4:57:ba:ea:07:9a:21:bc:f5:
                    2f:13:aa:48:51:1e:2c:56:82:a5:a0:37:7e:96:4c:91
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:c2:9c:77:fa:6f:db:6f:db:9d:4f:fa:ff:c1:1f:f0:
        30:de:f8:3d:1f:7c:d6:0d:54:81:47:f8:16:28:18:f2:
        b8:7b:35:ea:76:a6:37:95:29:c9:0e:dd:ce:6c:f6:47:
        25:58:d7:45:0d:11:53:98:af:65:a5:5a:e1:df:e8:66:
        c0:87:a3:7b:0d:83:27:d3:2b:79:3a:bc:d3:98:d5:c8:
        84:17:ac:c8:b9:c1:92:0a:a4:b2:0f:80:ca:49:08:46:
        6c:64:da:e7:cd:85:6f:48:19:43:d5:99:79:d9:1b:ca:
        46:c7:3d:d8:75:43:9d:b1:e6:bb:85:43:0d:77:f4:85:
        b0:1c:0c:73:c4:6e:20:40:ea:60:1b:45:8c:7c:54:e3:
        61:e3:a8:86:b3:14:a8:f3:3f:21:f3:2f:f6:0d:d6:73:
        5a:f1:16:24:e8:72:b8:87:7c:d8:88:6a:aa:d8:d0:e5:
        45:2d:af:91:9e:30:04:81:20:fb:3d:7a:a1:6f:5f:fb:
        51:8a:9d:f8:e3:73:47:1a:7a:a5:29:a9:92:bd:84:92:
        0f:7f:65:f8:42:50:fc:90:e0:2c:d0:0a:d3:3a:a5:53:
        43:17:3b:ba:d3:06:f9:06:a2:d7:0e:6f:43:1a:3d:5c:
        2f:84:e7:02:49:34:d9:40:84:75:c8:d4:0c:fd:a1:8b
    Fingerprint (SHA-256):
        CB:6D:7C:0B:8F:12:CC:9B:2D:3F:E5:B1:65:C2:8C:88:EF:DE:7F:91:32:CC:00:F2:76:CB:CF:0F:72:AF:0D:B0
    Fingerprint (SHA1):
        95:2E:FD:82:8B:BB:9B:D3:AF:B6:2C:7B:BE:C1:50:C3:69:EF:2A:B1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7906: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7907: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7908: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7909: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7910: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155785 (0x3cdd99c9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:17:01 2017
            Not After : Fri Oct 21 16:17:01 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:ae:65:13:73:79:34:a6:c1:45:39:a3:50:ed:05:40:
                    91:10:7f:50:8e:59:00:8e:f4:b2:2e:df:08:fa:65:f4:
                    d4:23:78:a1:42:9e:19:b9:c3:ff:a7:7c:9d:cc:ec:0e:
                    5a:57:f1:6a:9a:b1:4e:e5:67:7c:8b:6c:b9:00:53:0a:
                    3f:ed:bb:a6:93:e8:ac:f9:53:d2:87:39:48:13:3f:0d:
                    2c:47:e3:bf:a2:76:33:f9:82:fa:ad:14:71:18:3e:0b:
                    9c:a1:f3:8a:fb:fd:24:33:92:d3:e8:50:12:6a:dd:d7:
                    34:71:03:1a:ba:43:a7:10:1a:ad:bb:13:6b:42:5c:64:
                    f4:31:ec:64:7a:88:34:b1:d0:ea:bb:04:78:1c:46:69:
                    42:7f:97:5c:3b:ba:ba:55:4a:6f:38:19:e9:5e:93:a1:
                    a1:79:f6:27:29:47:9e:4d:59:3b:93:e3:54:e0:65:b4:
                    ef:58:34:3a:f3:0a:d4:64:e5:14:46:da:6c:3e:c1:cf:
                    58:74:d5:89:ae:a2:da:14:95:0c:fd:30:44:a0:bd:c5:
                    28:4b:f7:a8:bc:89:88:6d:cd:5b:0b:a5:64:9e:0a:58:
                    ae:0d:32:54:87:56:03:40:85:6d:47:09:c0:08:6d:d9:
                    6f:0b:94:44:7a:92:e7:94:86:0d:7a:dd:d1:df:ca:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:92:48:a7:1c:38:78:47:c3:04:47:88:22:59:ee:dc:
        f0:1a:18:65:43:5b:75:54:b9:12:43:95:8a:84:b3:c7:
        19:b9:a7:2c:f7:e8:5c:ee:35:e6:d0:10:2d:1a:9b:65:
        27:18:cc:48:d9:94:d1:40:21:f6:ad:b6:fb:07:d3:05:
        76:93:46:0e:bf:3e:a2:f7:e2:4f:89:a7:c5:a1:d1:c6:
        0a:70:d1:52:c3:32:08:8e:49:f9:a7:47:01:d3:db:a3:
        86:b6:6b:c7:2f:b3:92:07:31:97:0a:02:aa:97:5c:2b:
        5f:35:b9:17:e6:da:89:6b:9f:69:c6:3b:d0:72:47:bb:
        68:fa:e6:07:49:25:88:ac:4c:9c:59:08:74:3d:a8:9b:
        27:b7:f9:62:e9:6b:e8:1a:3a:ba:fd:3b:72:b1:db:85:
        66:03:f3:2f:e4:4d:62:7b:d9:7c:de:88:c3:18:4f:04:
        97:48:6d:51:79:c8:7a:6e:b0:a7:51:46:f3:bd:15:33:
        17:82:46:aa:20:59:d9:df:68:da:55:e4:bb:c1:12:a2:
        ca:c3:74:be:fd:d8:a5:02:49:d8:c8:87:53:61:61:46:
        a7:d4:8a:ad:43:81:21:99:62:42:07:b6:f9:fb:98:03:
        3a:18:dd:74:d8:00:43:ed:67:0c:8f:b8:f8:4d:a4:23
    Fingerprint (SHA-256):
        4E:6C:0C:C5:01:B2:89:64:4A:7C:D3:5F:CD:E1:CE:00:C3:F4:D5:B2:B3:40:4D:89:81:F7:FA:65:80:13:4B:40
    Fingerprint (SHA1):
        F1:52:14:4C:5B:66:DC:ED:01:B8:D5:AD:AB:C2:4E:69:57:DB:D5:8D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7911: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7912: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155786 (0x3cdd99ca)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:17:07 2017
            Not After : Fri Oct 21 16:17:07 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:5a:5d:dd:dd:9e:c6:cb:87:9b:e9:60:09:86:cb:63:
                    15:cb:00:05:14:7d:f6:e9:85:63:4c:54:fc:7a:ed:92:
                    66:0e:4b:d4:55:a1:65:4a:e5:a2:73:9b:c8:01:62:50:
                    c5:90:77:de:44:22:f5:9e:74:51:81:1a:3c:51:71:df:
                    d2:77:9d:4a:75:fa:38:59:78:73:f8:27:65:d4:3b:80:
                    32:24:9d:04:f6:07:e8:a7:86:e7:91:c7:c7:2b:24:3f:
                    69:98:2d:78:02:72:a8:de:a9:41:37:fe:0e:b3:7a:aa:
                    53:31:b7:a6:18:ae:fe:f7:c9:00:5a:4d:f1:31:04:dc:
                    3b:da:80:31:95:73:e3:67:73:d9:cf:29:68:12:ac:c6:
                    54:3b:c0:f8:ae:5d:43:4f:24:1d:e8:2d:d1:dd:25:dc:
                    78:1a:1a:d4:38:df:c9:de:cd:41:37:9b:a8:26:3d:3d:
                    0f:17:a7:0a:f3:bd:f3:7b:b6:0a:5f:14:20:20:96:ab:
                    d9:ab:40:36:08:5f:8f:c5:29:22:02:11:c3:b7:20:0a:
                    51:d7:ea:f0:de:a6:a3:40:da:9a:b0:55:b2:02:56:f6:
                    1d:76:ba:14:a1:1b:3d:b7:2a:28:7a:01:54:93:c4:21:
                    26:30:ef:bc:ab:a5:5e:d9:ac:6a:9f:b9:e8:21:67:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:03:6a:f0:73:2b:82:e0:58:72:5e:a4:6b:0b:66:e3:
        9f:24:d0:d0:61:dc:5c:76:1d:e0:8b:f8:a9:a7:8b:b1:
        4e:8b:8e:47:f0:88:48:48:59:16:c0:e2:5f:0a:ae:fd:
        dc:91:7f:34:12:6d:00:41:9d:f0:bf:18:7e:f5:85:9d:
        64:b3:f2:d3:a1:45:88:a8:be:54:8b:0a:2e:8d:0b:ed:
        cf:cf:49:2f:cf:fe:bf:05:7c:d9:ac:e6:26:eb:32:80:
        9d:65:18:43:0f:d6:8e:7f:4f:13:7d:d2:17:e0:09:7b:
        eb:ee:2d:3b:6c:e0:69:f3:3b:f6:13:e0:61:cf:dc:80:
        b7:c5:7c:70:fe:c8:7e:bc:a4:d3:1d:f4:bf:42:74:89:
        19:6c:da:ce:d3:19:31:bd:c6:81:8a:77:5f:6d:f2:b2:
        af:bb:50:38:dd:5d:13:2d:ea:0a:dd:b6:aa:20:4d:a3:
        35:48:78:ed:6a:85:b4:59:fb:66:fe:5b:ee:81:15:e2:
        c7:89:a8:36:43:a4:ce:87:a6:31:ea:f2:60:33:68:ae:
        df:16:5c:43:4e:96:94:6f:c1:a4:e3:8e:fc:c1:21:be:
        85:50:6d:12:46:ed:ec:35:3f:5f:cd:42:41:82:05:88:
        05:b8:36:f8:90:8a:fd:34:82:46:e4:d6:26:8c:ed:03
    Fingerprint (SHA-256):
        08:72:A5:DA:3F:82:62:72:B4:68:EC:1D:24:13:4F:D5:67:F6:86:73:9F:C3:FE:9A:BA:63:E1:82:2F:19:2C:41
    Fingerprint (SHA1):
        D3:0E:26:29:5B:4B:05:9A:32:BA:A7:27:15:28:DC:55:35:4D:C9:7A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7913: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7914: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155787 (0x3cdd99cb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 16:17:16 2017
            Not After : Fri Oct 21 16:17:16 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:4d:e9:7b:98:3c:ff:bc:16:c2:09:fc:85:6b:bd:b3:
                    35:37:66:17:49:e2:3f:d0:14:18:46:94:c0:82:a6:a6:
                    aa:49:72:ff:15:34:28:aa:17:b0:70:99:14:62:c4:29:
                    95:6e:57:1f:f2:a5:8e:97:6d:85:80:85:4d:a0:12:0b:
                    a6:de:60:36:5f:15:64:c0:81:68:5d:ce:ca:d5:27:b5:
                    e7:7a:ba:54:3d:78:81:94:2e:84:59:87:1e:78:bf:54:
                    53:16:15:01:ec:82:a6:36:15:1b:ab:9e:f9:2c:00:59:
                    79:5f:d7:91:bf:1d:3f:ce:be:02:c7:ea:21:2f:27:aa:
                    4f:21:20:a5:f3:14:4a:74:2e:89:24:af:4e:17:65:e5:
                    2f:b4:1a:a7:8a:08:25:dd:d7:c9:3a:11:04:30:fe:cd:
                    f0:a9:62:28:a4:c2:46:c7:63:99:da:5c:4c:e0:43:1b:
                    4b:17:29:bf:04:57:5f:d1:c0:56:cb:3b:50:76:f3:2f:
                    22:87:47:c7:9e:9c:b2:71:b1:12:6d:6c:22:9a:fc:df:
                    4f:d9:fe:f6:68:12:f2:14:df:88:5d:d3:43:6f:1c:7c:
                    02:7d:cd:9d:b0:01:50:f4:57:ba:ea:07:9a:21:bc:f5:
                    2f:13:aa:48:51:1e:2c:56:82:a5:a0:37:7e:96:4c:91
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:c2:9c:77:fa:6f:db:6f:db:9d:4f:fa:ff:c1:1f:f0:
        30:de:f8:3d:1f:7c:d6:0d:54:81:47:f8:16:28:18:f2:
        b8:7b:35:ea:76:a6:37:95:29:c9:0e:dd:ce:6c:f6:47:
        25:58:d7:45:0d:11:53:98:af:65:a5:5a:e1:df:e8:66:
        c0:87:a3:7b:0d:83:27:d3:2b:79:3a:bc:d3:98:d5:c8:
        84:17:ac:c8:b9:c1:92:0a:a4:b2:0f:80:ca:49:08:46:
        6c:64:da:e7:cd:85:6f:48:19:43:d5:99:79:d9:1b:ca:
        46:c7:3d:d8:75:43:9d:b1:e6:bb:85:43:0d:77:f4:85:
        b0:1c:0c:73:c4:6e:20:40:ea:60:1b:45:8c:7c:54:e3:
        61:e3:a8:86:b3:14:a8:f3:3f:21:f3:2f:f6:0d:d6:73:
        5a:f1:16:24:e8:72:b8:87:7c:d8:88:6a:aa:d8:d0:e5:
        45:2d:af:91:9e:30:04:81:20:fb:3d:7a:a1:6f:5f:fb:
        51:8a:9d:f8:e3:73:47:1a:7a:a5:29:a9:92:bd:84:92:
        0f:7f:65:f8:42:50:fc:90:e0:2c:d0:0a:d3:3a:a5:53:
        43:17:3b:ba:d3:06:f9:06:a2:d7:0e:6f:43:1a:3d:5c:
        2f:84:e7:02:49:34:d9:40:84:75:c8:d4:0c:fd:a1:8b
    Fingerprint (SHA-256):
        CB:6D:7C:0B:8F:12:CC:9B:2D:3F:E5:B1:65:C2:8C:88:EF:DE:7F:91:32:CC:00:F2:76:CB:CF:0F:72:AF:0D:B0
    Fingerprint (SHA1):
        95:2E:FD:82:8B:BB:9B:D3:AF:B6:2C:7B:BE:C1:50:C3:69:EF:2A:B1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7915: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7916: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155785 (0x3cdd99c9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:17:01 2017
            Not After : Fri Oct 21 16:17:01 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:ae:65:13:73:79:34:a6:c1:45:39:a3:50:ed:05:40:
                    91:10:7f:50:8e:59:00:8e:f4:b2:2e:df:08:fa:65:f4:
                    d4:23:78:a1:42:9e:19:b9:c3:ff:a7:7c:9d:cc:ec:0e:
                    5a:57:f1:6a:9a:b1:4e:e5:67:7c:8b:6c:b9:00:53:0a:
                    3f:ed:bb:a6:93:e8:ac:f9:53:d2:87:39:48:13:3f:0d:
                    2c:47:e3:bf:a2:76:33:f9:82:fa:ad:14:71:18:3e:0b:
                    9c:a1:f3:8a:fb:fd:24:33:92:d3:e8:50:12:6a:dd:d7:
                    34:71:03:1a:ba:43:a7:10:1a:ad:bb:13:6b:42:5c:64:
                    f4:31:ec:64:7a:88:34:b1:d0:ea:bb:04:78:1c:46:69:
                    42:7f:97:5c:3b:ba:ba:55:4a:6f:38:19:e9:5e:93:a1:
                    a1:79:f6:27:29:47:9e:4d:59:3b:93:e3:54:e0:65:b4:
                    ef:58:34:3a:f3:0a:d4:64:e5:14:46:da:6c:3e:c1:cf:
                    58:74:d5:89:ae:a2:da:14:95:0c:fd:30:44:a0:bd:c5:
                    28:4b:f7:a8:bc:89:88:6d:cd:5b:0b:a5:64:9e:0a:58:
                    ae:0d:32:54:87:56:03:40:85:6d:47:09:c0:08:6d:d9:
                    6f:0b:94:44:7a:92:e7:94:86:0d:7a:dd:d1:df:ca:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:92:48:a7:1c:38:78:47:c3:04:47:88:22:59:ee:dc:
        f0:1a:18:65:43:5b:75:54:b9:12:43:95:8a:84:b3:c7:
        19:b9:a7:2c:f7:e8:5c:ee:35:e6:d0:10:2d:1a:9b:65:
        27:18:cc:48:d9:94:d1:40:21:f6:ad:b6:fb:07:d3:05:
        76:93:46:0e:bf:3e:a2:f7:e2:4f:89:a7:c5:a1:d1:c6:
        0a:70:d1:52:c3:32:08:8e:49:f9:a7:47:01:d3:db:a3:
        86:b6:6b:c7:2f:b3:92:07:31:97:0a:02:aa:97:5c:2b:
        5f:35:b9:17:e6:da:89:6b:9f:69:c6:3b:d0:72:47:bb:
        68:fa:e6:07:49:25:88:ac:4c:9c:59:08:74:3d:a8:9b:
        27:b7:f9:62:e9:6b:e8:1a:3a:ba:fd:3b:72:b1:db:85:
        66:03:f3:2f:e4:4d:62:7b:d9:7c:de:88:c3:18:4f:04:
        97:48:6d:51:79:c8:7a:6e:b0:a7:51:46:f3:bd:15:33:
        17:82:46:aa:20:59:d9:df:68:da:55:e4:bb:c1:12:a2:
        ca:c3:74:be:fd:d8:a5:02:49:d8:c8:87:53:61:61:46:
        a7:d4:8a:ad:43:81:21:99:62:42:07:b6:f9:fb:98:03:
        3a:18:dd:74:d8:00:43:ed:67:0c:8f:b8:f8:4d:a4:23
    Fingerprint (SHA-256):
        4E:6C:0C:C5:01:B2:89:64:4A:7C:D3:5F:CD:E1:CE:00:C3:F4:D5:B2:B3:40:4D:89:81:F7:FA:65:80:13:4B:40
    Fingerprint (SHA1):
        F1:52:14:4C:5B:66:DC:ED:01:B8:D5:AD:AB:C2:4E:69:57:DB:D5:8D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7917: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155785 (0x3cdd99c9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:17:01 2017
            Not After : Fri Oct 21 16:17:01 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:ae:65:13:73:79:34:a6:c1:45:39:a3:50:ed:05:40:
                    91:10:7f:50:8e:59:00:8e:f4:b2:2e:df:08:fa:65:f4:
                    d4:23:78:a1:42:9e:19:b9:c3:ff:a7:7c:9d:cc:ec:0e:
                    5a:57:f1:6a:9a:b1:4e:e5:67:7c:8b:6c:b9:00:53:0a:
                    3f:ed:bb:a6:93:e8:ac:f9:53:d2:87:39:48:13:3f:0d:
                    2c:47:e3:bf:a2:76:33:f9:82:fa:ad:14:71:18:3e:0b:
                    9c:a1:f3:8a:fb:fd:24:33:92:d3:e8:50:12:6a:dd:d7:
                    34:71:03:1a:ba:43:a7:10:1a:ad:bb:13:6b:42:5c:64:
                    f4:31:ec:64:7a:88:34:b1:d0:ea:bb:04:78:1c:46:69:
                    42:7f:97:5c:3b:ba:ba:55:4a:6f:38:19:e9:5e:93:a1:
                    a1:79:f6:27:29:47:9e:4d:59:3b:93:e3:54:e0:65:b4:
                    ef:58:34:3a:f3:0a:d4:64:e5:14:46:da:6c:3e:c1:cf:
                    58:74:d5:89:ae:a2:da:14:95:0c:fd:30:44:a0:bd:c5:
                    28:4b:f7:a8:bc:89:88:6d:cd:5b:0b:a5:64:9e:0a:58:
                    ae:0d:32:54:87:56:03:40:85:6d:47:09:c0:08:6d:d9:
                    6f:0b:94:44:7a:92:e7:94:86:0d:7a:dd:d1:df:ca:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:92:48:a7:1c:38:78:47:c3:04:47:88:22:59:ee:dc:
        f0:1a:18:65:43:5b:75:54:b9:12:43:95:8a:84:b3:c7:
        19:b9:a7:2c:f7:e8:5c:ee:35:e6:d0:10:2d:1a:9b:65:
        27:18:cc:48:d9:94:d1:40:21:f6:ad:b6:fb:07:d3:05:
        76:93:46:0e:bf:3e:a2:f7:e2:4f:89:a7:c5:a1:d1:c6:
        0a:70:d1:52:c3:32:08:8e:49:f9:a7:47:01:d3:db:a3:
        86:b6:6b:c7:2f:b3:92:07:31:97:0a:02:aa:97:5c:2b:
        5f:35:b9:17:e6:da:89:6b:9f:69:c6:3b:d0:72:47:bb:
        68:fa:e6:07:49:25:88:ac:4c:9c:59:08:74:3d:a8:9b:
        27:b7:f9:62:e9:6b:e8:1a:3a:ba:fd:3b:72:b1:db:85:
        66:03:f3:2f:e4:4d:62:7b:d9:7c:de:88:c3:18:4f:04:
        97:48:6d:51:79:c8:7a:6e:b0:a7:51:46:f3:bd:15:33:
        17:82:46:aa:20:59:d9:df:68:da:55:e4:bb:c1:12:a2:
        ca:c3:74:be:fd:d8:a5:02:49:d8:c8:87:53:61:61:46:
        a7:d4:8a:ad:43:81:21:99:62:42:07:b6:f9:fb:98:03:
        3a:18:dd:74:d8:00:43:ed:67:0c:8f:b8:f8:4d:a4:23
    Fingerprint (SHA-256):
        4E:6C:0C:C5:01:B2:89:64:4A:7C:D3:5F:CD:E1:CE:00:C3:F4:D5:B2:B3:40:4D:89:81:F7:FA:65:80:13:4B:40
    Fingerprint (SHA1):
        F1:52:14:4C:5B:66:DC:ED:01:B8:D5:AD:AB:C2:4E:69:57:DB:D5:8D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7918: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155786 (0x3cdd99ca)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:17:07 2017
            Not After : Fri Oct 21 16:17:07 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:5a:5d:dd:dd:9e:c6:cb:87:9b:e9:60:09:86:cb:63:
                    15:cb:00:05:14:7d:f6:e9:85:63:4c:54:fc:7a:ed:92:
                    66:0e:4b:d4:55:a1:65:4a:e5:a2:73:9b:c8:01:62:50:
                    c5:90:77:de:44:22:f5:9e:74:51:81:1a:3c:51:71:df:
                    d2:77:9d:4a:75:fa:38:59:78:73:f8:27:65:d4:3b:80:
                    32:24:9d:04:f6:07:e8:a7:86:e7:91:c7:c7:2b:24:3f:
                    69:98:2d:78:02:72:a8:de:a9:41:37:fe:0e:b3:7a:aa:
                    53:31:b7:a6:18:ae:fe:f7:c9:00:5a:4d:f1:31:04:dc:
                    3b:da:80:31:95:73:e3:67:73:d9:cf:29:68:12:ac:c6:
                    54:3b:c0:f8:ae:5d:43:4f:24:1d:e8:2d:d1:dd:25:dc:
                    78:1a:1a:d4:38:df:c9:de:cd:41:37:9b:a8:26:3d:3d:
                    0f:17:a7:0a:f3:bd:f3:7b:b6:0a:5f:14:20:20:96:ab:
                    d9:ab:40:36:08:5f:8f:c5:29:22:02:11:c3:b7:20:0a:
                    51:d7:ea:f0:de:a6:a3:40:da:9a:b0:55:b2:02:56:f6:
                    1d:76:ba:14:a1:1b:3d:b7:2a:28:7a:01:54:93:c4:21:
                    26:30:ef:bc:ab:a5:5e:d9:ac:6a:9f:b9:e8:21:67:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:03:6a:f0:73:2b:82:e0:58:72:5e:a4:6b:0b:66:e3:
        9f:24:d0:d0:61:dc:5c:76:1d:e0:8b:f8:a9:a7:8b:b1:
        4e:8b:8e:47:f0:88:48:48:59:16:c0:e2:5f:0a:ae:fd:
        dc:91:7f:34:12:6d:00:41:9d:f0:bf:18:7e:f5:85:9d:
        64:b3:f2:d3:a1:45:88:a8:be:54:8b:0a:2e:8d:0b:ed:
        cf:cf:49:2f:cf:fe:bf:05:7c:d9:ac:e6:26:eb:32:80:
        9d:65:18:43:0f:d6:8e:7f:4f:13:7d:d2:17:e0:09:7b:
        eb:ee:2d:3b:6c:e0:69:f3:3b:f6:13:e0:61:cf:dc:80:
        b7:c5:7c:70:fe:c8:7e:bc:a4:d3:1d:f4:bf:42:74:89:
        19:6c:da:ce:d3:19:31:bd:c6:81:8a:77:5f:6d:f2:b2:
        af:bb:50:38:dd:5d:13:2d:ea:0a:dd:b6:aa:20:4d:a3:
        35:48:78:ed:6a:85:b4:59:fb:66:fe:5b:ee:81:15:e2:
        c7:89:a8:36:43:a4:ce:87:a6:31:ea:f2:60:33:68:ae:
        df:16:5c:43:4e:96:94:6f:c1:a4:e3:8e:fc:c1:21:be:
        85:50:6d:12:46:ed:ec:35:3f:5f:cd:42:41:82:05:88:
        05:b8:36:f8:90:8a:fd:34:82:46:e4:d6:26:8c:ed:03
    Fingerprint (SHA-256):
        08:72:A5:DA:3F:82:62:72:B4:68:EC:1D:24:13:4F:D5:67:F6:86:73:9F:C3:FE:9A:BA:63:E1:82:2F:19:2C:41
    Fingerprint (SHA1):
        D3:0E:26:29:5B:4B:05:9A:32:BA:A7:27:15:28:DC:55:35:4D:C9:7A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7919: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155786 (0x3cdd99ca)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:17:07 2017
            Not After : Fri Oct 21 16:17:07 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:5a:5d:dd:dd:9e:c6:cb:87:9b:e9:60:09:86:cb:63:
                    15:cb:00:05:14:7d:f6:e9:85:63:4c:54:fc:7a:ed:92:
                    66:0e:4b:d4:55:a1:65:4a:e5:a2:73:9b:c8:01:62:50:
                    c5:90:77:de:44:22:f5:9e:74:51:81:1a:3c:51:71:df:
                    d2:77:9d:4a:75:fa:38:59:78:73:f8:27:65:d4:3b:80:
                    32:24:9d:04:f6:07:e8:a7:86:e7:91:c7:c7:2b:24:3f:
                    69:98:2d:78:02:72:a8:de:a9:41:37:fe:0e:b3:7a:aa:
                    53:31:b7:a6:18:ae:fe:f7:c9:00:5a:4d:f1:31:04:dc:
                    3b:da:80:31:95:73:e3:67:73:d9:cf:29:68:12:ac:c6:
                    54:3b:c0:f8:ae:5d:43:4f:24:1d:e8:2d:d1:dd:25:dc:
                    78:1a:1a:d4:38:df:c9:de:cd:41:37:9b:a8:26:3d:3d:
                    0f:17:a7:0a:f3:bd:f3:7b:b6:0a:5f:14:20:20:96:ab:
                    d9:ab:40:36:08:5f:8f:c5:29:22:02:11:c3:b7:20:0a:
                    51:d7:ea:f0:de:a6:a3:40:da:9a:b0:55:b2:02:56:f6:
                    1d:76:ba:14:a1:1b:3d:b7:2a:28:7a:01:54:93:c4:21:
                    26:30:ef:bc:ab:a5:5e:d9:ac:6a:9f:b9:e8:21:67:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:03:6a:f0:73:2b:82:e0:58:72:5e:a4:6b:0b:66:e3:
        9f:24:d0:d0:61:dc:5c:76:1d:e0:8b:f8:a9:a7:8b:b1:
        4e:8b:8e:47:f0:88:48:48:59:16:c0:e2:5f:0a:ae:fd:
        dc:91:7f:34:12:6d:00:41:9d:f0:bf:18:7e:f5:85:9d:
        64:b3:f2:d3:a1:45:88:a8:be:54:8b:0a:2e:8d:0b:ed:
        cf:cf:49:2f:cf:fe:bf:05:7c:d9:ac:e6:26:eb:32:80:
        9d:65:18:43:0f:d6:8e:7f:4f:13:7d:d2:17:e0:09:7b:
        eb:ee:2d:3b:6c:e0:69:f3:3b:f6:13:e0:61:cf:dc:80:
        b7:c5:7c:70:fe:c8:7e:bc:a4:d3:1d:f4:bf:42:74:89:
        19:6c:da:ce:d3:19:31:bd:c6:81:8a:77:5f:6d:f2:b2:
        af:bb:50:38:dd:5d:13:2d:ea:0a:dd:b6:aa:20:4d:a3:
        35:48:78:ed:6a:85:b4:59:fb:66:fe:5b:ee:81:15:e2:
        c7:89:a8:36:43:a4:ce:87:a6:31:ea:f2:60:33:68:ae:
        df:16:5c:43:4e:96:94:6f:c1:a4:e3:8e:fc:c1:21:be:
        85:50:6d:12:46:ed:ec:35:3f:5f:cd:42:41:82:05:88:
        05:b8:36:f8:90:8a:fd:34:82:46:e4:d6:26:8c:ed:03
    Fingerprint (SHA-256):
        08:72:A5:DA:3F:82:62:72:B4:68:EC:1D:24:13:4F:D5:67:F6:86:73:9F:C3:FE:9A:BA:63:E1:82:2F:19:2C:41
    Fingerprint (SHA1):
        D3:0E:26:29:5B:4B:05:9A:32:BA:A7:27:15:28:DC:55:35:4D:C9:7A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7920: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155787 (0x3cdd99cb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 16:17:16 2017
            Not After : Fri Oct 21 16:17:16 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:4d:e9:7b:98:3c:ff:bc:16:c2:09:fc:85:6b:bd:b3:
                    35:37:66:17:49:e2:3f:d0:14:18:46:94:c0:82:a6:a6:
                    aa:49:72:ff:15:34:28:aa:17:b0:70:99:14:62:c4:29:
                    95:6e:57:1f:f2:a5:8e:97:6d:85:80:85:4d:a0:12:0b:
                    a6:de:60:36:5f:15:64:c0:81:68:5d:ce:ca:d5:27:b5:
                    e7:7a:ba:54:3d:78:81:94:2e:84:59:87:1e:78:bf:54:
                    53:16:15:01:ec:82:a6:36:15:1b:ab:9e:f9:2c:00:59:
                    79:5f:d7:91:bf:1d:3f:ce:be:02:c7:ea:21:2f:27:aa:
                    4f:21:20:a5:f3:14:4a:74:2e:89:24:af:4e:17:65:e5:
                    2f:b4:1a:a7:8a:08:25:dd:d7:c9:3a:11:04:30:fe:cd:
                    f0:a9:62:28:a4:c2:46:c7:63:99:da:5c:4c:e0:43:1b:
                    4b:17:29:bf:04:57:5f:d1:c0:56:cb:3b:50:76:f3:2f:
                    22:87:47:c7:9e:9c:b2:71:b1:12:6d:6c:22:9a:fc:df:
                    4f:d9:fe:f6:68:12:f2:14:df:88:5d:d3:43:6f:1c:7c:
                    02:7d:cd:9d:b0:01:50:f4:57:ba:ea:07:9a:21:bc:f5:
                    2f:13:aa:48:51:1e:2c:56:82:a5:a0:37:7e:96:4c:91
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:c2:9c:77:fa:6f:db:6f:db:9d:4f:fa:ff:c1:1f:f0:
        30:de:f8:3d:1f:7c:d6:0d:54:81:47:f8:16:28:18:f2:
        b8:7b:35:ea:76:a6:37:95:29:c9:0e:dd:ce:6c:f6:47:
        25:58:d7:45:0d:11:53:98:af:65:a5:5a:e1:df:e8:66:
        c0:87:a3:7b:0d:83:27:d3:2b:79:3a:bc:d3:98:d5:c8:
        84:17:ac:c8:b9:c1:92:0a:a4:b2:0f:80:ca:49:08:46:
        6c:64:da:e7:cd:85:6f:48:19:43:d5:99:79:d9:1b:ca:
        46:c7:3d:d8:75:43:9d:b1:e6:bb:85:43:0d:77:f4:85:
        b0:1c:0c:73:c4:6e:20:40:ea:60:1b:45:8c:7c:54:e3:
        61:e3:a8:86:b3:14:a8:f3:3f:21:f3:2f:f6:0d:d6:73:
        5a:f1:16:24:e8:72:b8:87:7c:d8:88:6a:aa:d8:d0:e5:
        45:2d:af:91:9e:30:04:81:20:fb:3d:7a:a1:6f:5f:fb:
        51:8a:9d:f8:e3:73:47:1a:7a:a5:29:a9:92:bd:84:92:
        0f:7f:65:f8:42:50:fc:90:e0:2c:d0:0a:d3:3a:a5:53:
        43:17:3b:ba:d3:06:f9:06:a2:d7:0e:6f:43:1a:3d:5c:
        2f:84:e7:02:49:34:d9:40:84:75:c8:d4:0c:fd:a1:8b
    Fingerprint (SHA-256):
        CB:6D:7C:0B:8F:12:CC:9B:2D:3F:E5:B1:65:C2:8C:88:EF:DE:7F:91:32:CC:00:F2:76:CB:CF:0F:72:AF:0D:B0
    Fingerprint (SHA1):
        95:2E:FD:82:8B:BB:9B:D3:AF:B6:2C:7B:BE:C1:50:C3:69:EF:2A:B1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7921: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155787 (0x3cdd99cb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 16:17:16 2017
            Not After : Fri Oct 21 16:17:16 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:4d:e9:7b:98:3c:ff:bc:16:c2:09:fc:85:6b:bd:b3:
                    35:37:66:17:49:e2:3f:d0:14:18:46:94:c0:82:a6:a6:
                    aa:49:72:ff:15:34:28:aa:17:b0:70:99:14:62:c4:29:
                    95:6e:57:1f:f2:a5:8e:97:6d:85:80:85:4d:a0:12:0b:
                    a6:de:60:36:5f:15:64:c0:81:68:5d:ce:ca:d5:27:b5:
                    e7:7a:ba:54:3d:78:81:94:2e:84:59:87:1e:78:bf:54:
                    53:16:15:01:ec:82:a6:36:15:1b:ab:9e:f9:2c:00:59:
                    79:5f:d7:91:bf:1d:3f:ce:be:02:c7:ea:21:2f:27:aa:
                    4f:21:20:a5:f3:14:4a:74:2e:89:24:af:4e:17:65:e5:
                    2f:b4:1a:a7:8a:08:25:dd:d7:c9:3a:11:04:30:fe:cd:
                    f0:a9:62:28:a4:c2:46:c7:63:99:da:5c:4c:e0:43:1b:
                    4b:17:29:bf:04:57:5f:d1:c0:56:cb:3b:50:76:f3:2f:
                    22:87:47:c7:9e:9c:b2:71:b1:12:6d:6c:22:9a:fc:df:
                    4f:d9:fe:f6:68:12:f2:14:df:88:5d:d3:43:6f:1c:7c:
                    02:7d:cd:9d:b0:01:50:f4:57:ba:ea:07:9a:21:bc:f5:
                    2f:13:aa:48:51:1e:2c:56:82:a5:a0:37:7e:96:4c:91
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:c2:9c:77:fa:6f:db:6f:db:9d:4f:fa:ff:c1:1f:f0:
        30:de:f8:3d:1f:7c:d6:0d:54:81:47:f8:16:28:18:f2:
        b8:7b:35:ea:76:a6:37:95:29:c9:0e:dd:ce:6c:f6:47:
        25:58:d7:45:0d:11:53:98:af:65:a5:5a:e1:df:e8:66:
        c0:87:a3:7b:0d:83:27:d3:2b:79:3a:bc:d3:98:d5:c8:
        84:17:ac:c8:b9:c1:92:0a:a4:b2:0f:80:ca:49:08:46:
        6c:64:da:e7:cd:85:6f:48:19:43:d5:99:79:d9:1b:ca:
        46:c7:3d:d8:75:43:9d:b1:e6:bb:85:43:0d:77:f4:85:
        b0:1c:0c:73:c4:6e:20:40:ea:60:1b:45:8c:7c:54:e3:
        61:e3:a8:86:b3:14:a8:f3:3f:21:f3:2f:f6:0d:d6:73:
        5a:f1:16:24:e8:72:b8:87:7c:d8:88:6a:aa:d8:d0:e5:
        45:2d:af:91:9e:30:04:81:20:fb:3d:7a:a1:6f:5f:fb:
        51:8a:9d:f8:e3:73:47:1a:7a:a5:29:a9:92:bd:84:92:
        0f:7f:65:f8:42:50:fc:90:e0:2c:d0:0a:d3:3a:a5:53:
        43:17:3b:ba:d3:06:f9:06:a2:d7:0e:6f:43:1a:3d:5c:
        2f:84:e7:02:49:34:d9:40:84:75:c8:d4:0c:fd:a1:8b
    Fingerprint (SHA-256):
        CB:6D:7C:0B:8F:12:CC:9B:2D:3F:E5:B1:65:C2:8C:88:EF:DE:7F:91:32:CC:00:F2:76:CB:CF:0F:72:AF:0D:B0
    Fingerprint (SHA1):
        95:2E:FD:82:8B:BB:9B:D3:AF:B6:2C:7B:BE:C1:50:C3:69:EF:2A:B1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7922: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #7923: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155790 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7924: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #7925: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7926: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7927: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 1021155791   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7928: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7929: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7930: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7931: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021155792   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7932: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7933: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #7934: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7935: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 1021155793   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7936: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7937: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #7938: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7939: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 1021155794   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7940: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7941: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #7942: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7943: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 1021155795   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7944: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7945: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #7946: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7947: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 1021155796   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7948: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7949: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7950: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #7951: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #7952: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7953: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #7954: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155790 (0x3cdd99ce)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:17:52 2017
            Not After : Fri Oct 21 16:17:52 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:95:d8:b7:1a:28:fe:f9:83:25:e7:de:a0:2c:b0:91:
                    bc:a7:09:ae:24:65:2b:af:aa:36:cd:c4:af:fc:d4:d1:
                    c7:f9:9c:c9:58:7b:fb:68:d0:a6:fd:57:cd:12:92:9d:
                    5e:bb:03:da:09:2e:84:83:fc:ea:8b:3e:ca:52:19:02:
                    8c:ce:57:7e:2d:17:f1:8e:9f:0a:e4:5a:4c:44:c0:96:
                    ed:1e:a7:6f:9c:f6:55:20:84:24:1d:90:e9:8b:b5:9e:
                    9f:ca:73:2b:5f:36:dd:c2:c0:6b:16:5c:59:25:12:43:
                    0e:16:24:bc:7d:57:7f:e3:ea:10:12:89:dd:69:37:5b:
                    46:37:47:31:54:78:73:74:41:31:1f:41:c2:07:b4:04:
                    c7:00:46:e6:0d:68:5e:e1:c1:41:e4:74:72:32:bf:96:
                    2f:12:17:42:5c:18:52:69:fe:19:a1:13:6e:bc:84:e2:
                    63:fb:db:4e:3c:89:1b:8f:ba:ca:ac:93:fe:d7:99:0a:
                    4d:07:d8:a8:d0:40:ea:3b:41:1c:cc:e0:eb:ec:76:32:
                    5f:82:13:85:d9:2d:62:27:92:49:85:41:35:e7:fd:b9:
                    fe:af:90:80:a0:03:7c:2f:a3:96:8f:14:ad:f9:1c:60:
                    74:44:eb:76:de:97:57:97:8b:9b:5f:f4:42:e6:54:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        11:49:3a:69:5a:4d:f9:19:be:ab:97:46:40:37:e8:13:
        59:40:ac:f7:0f:09:7a:6c:1a:51:e2:da:81:c1:14:31:
        b4:b2:8a:7a:20:31:ad:3c:c7:ad:6e:01:c9:40:55:80:
        e0:7f:62:5a:45:5f:34:06:98:5d:e3:1f:0b:72:5f:93:
        21:6d:19:76:42:ff:3e:bb:84:64:b0:01:a7:b9:7d:0c:
        81:9a:50:a9:15:8f:5e:ce:76:c9:0a:48:b7:d5:c4:d8:
        ac:7b:ab:a0:af:fe:83:b8:36:5b:7d:f1:b5:e2:c4:2f:
        8f:a6:21:17:60:c9:43:54:3d:98:42:18:be:bb:a6:2b:
        7a:87:2f:3e:e7:62:46:b1:00:92:cf:0f:e8:fb:f2:6d:
        3b:33:45:26:67:0c:d2:84:62:70:16:2a:e4:c2:e8:fb:
        03:32:91:2f:77:a2:15:98:51:c1:9e:90:1a:ea:80:c2:
        89:38:d0:8e:62:c0:99:73:a9:e6:7c:c4:c4:d9:fd:6c:
        0d:eb:ae:18:62:8e:5c:0d:17:5e:a6:79:cf:d6:6a:ba:
        f1:c4:c4:c1:0e:01:b1:cb:c4:50:62:fb:dc:ae:7a:b1:
        47:6b:37:22:63:f0:a0:3c:72:d2:66:84:06:68:ac:40:
        53:30:cb:be:d8:f6:da:50:46:40:70:8e:f0:86:5d:83
    Fingerprint (SHA-256):
        C1:4C:0C:7D:0E:69:A0:3C:A1:87:20:DE:79:C4:0C:5C:9A:ED:C2:B9:56:0F:FB:6D:99:62:5B:E1:64:81:1A:94
    Fingerprint (SHA1):
        07:CA:C9:76:49:DC:56:92:B4:8C:04:7B:DB:0B:0A:1C:5E:C2:7B:21
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7955: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7956: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7957: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7958: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155790 (0x3cdd99ce)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:17:52 2017
            Not After : Fri Oct 21 16:17:52 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:95:d8:b7:1a:28:fe:f9:83:25:e7:de:a0:2c:b0:91:
                    bc:a7:09:ae:24:65:2b:af:aa:36:cd:c4:af:fc:d4:d1:
                    c7:f9:9c:c9:58:7b:fb:68:d0:a6:fd:57:cd:12:92:9d:
                    5e:bb:03:da:09:2e:84:83:fc:ea:8b:3e:ca:52:19:02:
                    8c:ce:57:7e:2d:17:f1:8e:9f:0a:e4:5a:4c:44:c0:96:
                    ed:1e:a7:6f:9c:f6:55:20:84:24:1d:90:e9:8b:b5:9e:
                    9f:ca:73:2b:5f:36:dd:c2:c0:6b:16:5c:59:25:12:43:
                    0e:16:24:bc:7d:57:7f:e3:ea:10:12:89:dd:69:37:5b:
                    46:37:47:31:54:78:73:74:41:31:1f:41:c2:07:b4:04:
                    c7:00:46:e6:0d:68:5e:e1:c1:41:e4:74:72:32:bf:96:
                    2f:12:17:42:5c:18:52:69:fe:19:a1:13:6e:bc:84:e2:
                    63:fb:db:4e:3c:89:1b:8f:ba:ca:ac:93:fe:d7:99:0a:
                    4d:07:d8:a8:d0:40:ea:3b:41:1c:cc:e0:eb:ec:76:32:
                    5f:82:13:85:d9:2d:62:27:92:49:85:41:35:e7:fd:b9:
                    fe:af:90:80:a0:03:7c:2f:a3:96:8f:14:ad:f9:1c:60:
                    74:44:eb:76:de:97:57:97:8b:9b:5f:f4:42:e6:54:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        11:49:3a:69:5a:4d:f9:19:be:ab:97:46:40:37:e8:13:
        59:40:ac:f7:0f:09:7a:6c:1a:51:e2:da:81:c1:14:31:
        b4:b2:8a:7a:20:31:ad:3c:c7:ad:6e:01:c9:40:55:80:
        e0:7f:62:5a:45:5f:34:06:98:5d:e3:1f:0b:72:5f:93:
        21:6d:19:76:42:ff:3e:bb:84:64:b0:01:a7:b9:7d:0c:
        81:9a:50:a9:15:8f:5e:ce:76:c9:0a:48:b7:d5:c4:d8:
        ac:7b:ab:a0:af:fe:83:b8:36:5b:7d:f1:b5:e2:c4:2f:
        8f:a6:21:17:60:c9:43:54:3d:98:42:18:be:bb:a6:2b:
        7a:87:2f:3e:e7:62:46:b1:00:92:cf:0f:e8:fb:f2:6d:
        3b:33:45:26:67:0c:d2:84:62:70:16:2a:e4:c2:e8:fb:
        03:32:91:2f:77:a2:15:98:51:c1:9e:90:1a:ea:80:c2:
        89:38:d0:8e:62:c0:99:73:a9:e6:7c:c4:c4:d9:fd:6c:
        0d:eb:ae:18:62:8e:5c:0d:17:5e:a6:79:cf:d6:6a:ba:
        f1:c4:c4:c1:0e:01:b1:cb:c4:50:62:fb:dc:ae:7a:b1:
        47:6b:37:22:63:f0:a0:3c:72:d2:66:84:06:68:ac:40:
        53:30:cb:be:d8:f6:da:50:46:40:70:8e:f0:86:5d:83
    Fingerprint (SHA-256):
        C1:4C:0C:7D:0E:69:A0:3C:A1:87:20:DE:79:C4:0C:5C:9A:ED:C2:B9:56:0F:FB:6D:99:62:5B:E1:64:81:1A:94
    Fingerprint (SHA1):
        07:CA:C9:76:49:DC:56:92:B4:8C:04:7B:DB:0B:0A:1C:5E:C2:7B:21
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7959: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7960: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #7961: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155797 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7962: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #7963: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7964: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7965: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 1021155798   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7966: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7967: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #7968: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7969: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 1021155799   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7970: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7971: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #7972: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7973: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 1021155800   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7974: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7975: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7976: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7977: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 1021155801   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7978: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7979: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #7980: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7981: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 1021155802   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7982: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7983: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #7984: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7985: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 1021155803   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7986: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7987: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7988: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7989: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 1021155804   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7990: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7991: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #7992: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7993: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 1021155805   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7994: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7995: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #7996: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7997: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 1021155806   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7998: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7999: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #8000: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8001: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 1021155807   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8002: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8003: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #8004: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8005: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 1021155808   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8006: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8007: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #8008: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8009: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 1021155809   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8010: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8011: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #8012: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8013: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 1021155810   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8014: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8015: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #8016: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8017: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 1021155811   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8018: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8019: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #8020: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8021: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 1021155812   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8022: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8023: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #8024: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8025: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 1021155813   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8026: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8027: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #8028: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8029: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 1021155814   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #8030: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8031: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #8032: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8033: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 1021155815   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8034: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8035: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #8036: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8037: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 1021155816   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8038: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8039: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #8040: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8041: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 1021155817   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8042: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8043: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #8044: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8045: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 1021155818   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8046: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8047: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #8048: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8049: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 1021155819   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8050: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8051: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #8052: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8053: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 1021155820   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8054: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8055: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #8056: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8057: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 1021155821   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8058: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8059: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #8060: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8061: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 1021155822   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8062: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8063: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #8064: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8065: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 1021155823   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8066: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8067: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #8068: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8069: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 1021155824   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8070: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8071: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #8072: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8073: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 1021155825   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8074: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8075: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #8076: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8077: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 1021155826   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8078: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8079: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #8080: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155797 (0x3cdd99d5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:18:36 2017
            Not After : Fri Oct 21 16:18:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:f9:af:ee:4e:64:c4:00:10:91:67:74:a6:db:40:c7:
                    3d:4b:47:c6:1c:b6:c2:25:59:0d:a2:2e:b1:48:cd:c9:
                    03:ab:c9:55:0a:ee:7a:eb:ac:98:0d:f6:98:a9:5b:03:
                    2e:9b:4d:df:1b:0f:58:4f:4b:0b:e5:98:2a:84:b3:61:
                    d0:41:ba:1e:15:64:d3:16:f9:50:e0:e1:ba:f3:80:6b:
                    c5:5c:71:ce:88:a3:ff:cc:fa:62:f8:28:36:f1:ec:80:
                    74:31:08:cc:0d:96:89:f8:66:00:fd:7c:8a:52:e1:66:
                    3f:a5:d6:7c:46:68:31:cb:ac:c3:a4:8e:a9:32:58:bb:
                    57:73:bb:7c:c6:f0:0f:23:98:1e:98:cc:12:45:62:99:
                    86:f4:66:d4:c5:5f:23:b3:8b:40:fe:36:0d:0d:69:14:
                    66:bb:c8:5f:65:2b:3e:55:8a:ce:10:03:b8:05:ff:09:
                    70:25:ca:1c:63:93:79:62:e6:b3:0b:19:d8:a5:73:50:
                    bf:53:ac:e6:11:19:54:e4:ff:34:eb:0e:ae:75:bf:d6:
                    05:34:cb:d4:dc:d1:c1:e1:22:b6:ba:b8:4c:b7:d3:22:
                    ba:bb:d3:66:9c:bc:93:52:67:ff:8a:a9:53:78:cc:f1:
                    6e:d0:92:eb:75:58:56:1d:6c:c4:7a:bb:00:0b:44:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:f3:ec:88:06:38:89:ab:2f:95:1c:3a:f9:73:e3:82:
        e2:a1:30:2c:b1:66:40:dc:a2:9f:03:bd:79:6e:ab:ad:
        ea:a0:b6:c3:52:bd:e6:b3:78:f9:3a:f5:df:09:88:32:
        5d:58:c9:26:d5:2e:00:87:d7:59:36:13:03:16:39:d5:
        86:8b:da:5a:f0:60:95:92:91:5f:3f:58:2b:23:c5:56:
        4e:47:9b:a0:2d:fc:ff:0a:88:c9:0f:18:63:e5:54:61:
        c3:53:9f:71:3a:0f:bc:a7:a9:78:18:ad:3b:0f:7a:69:
        8f:66:fe:97:57:63:ae:f4:69:c4:e8:89:1f:d8:67:96:
        5b:6a:16:8e:4e:21:2a:b5:d7:d4:e2:4a:2c:31:da:0d:
        a9:f5:d3:a8:3b:57:3d:33:9e:33:c5:8d:a9:fb:cb:7d:
        d5:51:15:b0:58:7d:ea:3e:0f:1a:b5:9c:44:19:4d:5f:
        07:b0:c8:21:54:aa:5c:af:67:72:d1:c0:5b:65:b9:83:
        17:a5:d8:73:51:80:87:9f:70:83:6f:59:df:6e:7e:a2:
        6a:fa:c5:d7:ef:09:6f:51:1d:23:33:da:d8:3c:37:8f:
        1b:4e:d9:4e:f1:20:a1:f5:36:ac:c9:02:db:f1:f6:20:
        7e:43:6b:2d:d5:04:ca:07:f2:7c:a6:88:20:9c:65:81
    Fingerprint (SHA-256):
        D8:9D:60:85:8B:83:03:6A:96:F5:CD:8E:E8:63:4E:7D:40:A2:72:C4:CF:B8:4D:0B:A8:23:F5:E0:F8:5B:FB:5D
    Fingerprint (SHA1):
        DB:34:CE:BE:55:DA:42:8C:6A:21:89:0B:56:46:95:01:53:80:E8:80
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8081: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8082: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155797 (0x3cdd99d5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:18:36 2017
            Not After : Fri Oct 21 16:18:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:f9:af:ee:4e:64:c4:00:10:91:67:74:a6:db:40:c7:
                    3d:4b:47:c6:1c:b6:c2:25:59:0d:a2:2e:b1:48:cd:c9:
                    03:ab:c9:55:0a:ee:7a:eb:ac:98:0d:f6:98:a9:5b:03:
                    2e:9b:4d:df:1b:0f:58:4f:4b:0b:e5:98:2a:84:b3:61:
                    d0:41:ba:1e:15:64:d3:16:f9:50:e0:e1:ba:f3:80:6b:
                    c5:5c:71:ce:88:a3:ff:cc:fa:62:f8:28:36:f1:ec:80:
                    74:31:08:cc:0d:96:89:f8:66:00:fd:7c:8a:52:e1:66:
                    3f:a5:d6:7c:46:68:31:cb:ac:c3:a4:8e:a9:32:58:bb:
                    57:73:bb:7c:c6:f0:0f:23:98:1e:98:cc:12:45:62:99:
                    86:f4:66:d4:c5:5f:23:b3:8b:40:fe:36:0d:0d:69:14:
                    66:bb:c8:5f:65:2b:3e:55:8a:ce:10:03:b8:05:ff:09:
                    70:25:ca:1c:63:93:79:62:e6:b3:0b:19:d8:a5:73:50:
                    bf:53:ac:e6:11:19:54:e4:ff:34:eb:0e:ae:75:bf:d6:
                    05:34:cb:d4:dc:d1:c1:e1:22:b6:ba:b8:4c:b7:d3:22:
                    ba:bb:d3:66:9c:bc:93:52:67:ff:8a:a9:53:78:cc:f1:
                    6e:d0:92:eb:75:58:56:1d:6c:c4:7a:bb:00:0b:44:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:f3:ec:88:06:38:89:ab:2f:95:1c:3a:f9:73:e3:82:
        e2:a1:30:2c:b1:66:40:dc:a2:9f:03:bd:79:6e:ab:ad:
        ea:a0:b6:c3:52:bd:e6:b3:78:f9:3a:f5:df:09:88:32:
        5d:58:c9:26:d5:2e:00:87:d7:59:36:13:03:16:39:d5:
        86:8b:da:5a:f0:60:95:92:91:5f:3f:58:2b:23:c5:56:
        4e:47:9b:a0:2d:fc:ff:0a:88:c9:0f:18:63:e5:54:61:
        c3:53:9f:71:3a:0f:bc:a7:a9:78:18:ad:3b:0f:7a:69:
        8f:66:fe:97:57:63:ae:f4:69:c4:e8:89:1f:d8:67:96:
        5b:6a:16:8e:4e:21:2a:b5:d7:d4:e2:4a:2c:31:da:0d:
        a9:f5:d3:a8:3b:57:3d:33:9e:33:c5:8d:a9:fb:cb:7d:
        d5:51:15:b0:58:7d:ea:3e:0f:1a:b5:9c:44:19:4d:5f:
        07:b0:c8:21:54:aa:5c:af:67:72:d1:c0:5b:65:b9:83:
        17:a5:d8:73:51:80:87:9f:70:83:6f:59:df:6e:7e:a2:
        6a:fa:c5:d7:ef:09:6f:51:1d:23:33:da:d8:3c:37:8f:
        1b:4e:d9:4e:f1:20:a1:f5:36:ac:c9:02:db:f1:f6:20:
        7e:43:6b:2d:d5:04:ca:07:f2:7c:a6:88:20:9c:65:81
    Fingerprint (SHA-256):
        D8:9D:60:85:8B:83:03:6A:96:F5:CD:8E:E8:63:4E:7D:40:A2:72:C4:CF:B8:4D:0B:A8:23:F5:E0:F8:5B:FB:5D
    Fingerprint (SHA1):
        DB:34:CE:BE:55:DA:42:8C:6A:21:89:0B:56:46:95:01:53:80:E8:80
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8083: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8084: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8085: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8086: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155797 (0x3cdd99d5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:18:36 2017
            Not After : Fri Oct 21 16:18:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:f9:af:ee:4e:64:c4:00:10:91:67:74:a6:db:40:c7:
                    3d:4b:47:c6:1c:b6:c2:25:59:0d:a2:2e:b1:48:cd:c9:
                    03:ab:c9:55:0a:ee:7a:eb:ac:98:0d:f6:98:a9:5b:03:
                    2e:9b:4d:df:1b:0f:58:4f:4b:0b:e5:98:2a:84:b3:61:
                    d0:41:ba:1e:15:64:d3:16:f9:50:e0:e1:ba:f3:80:6b:
                    c5:5c:71:ce:88:a3:ff:cc:fa:62:f8:28:36:f1:ec:80:
                    74:31:08:cc:0d:96:89:f8:66:00:fd:7c:8a:52:e1:66:
                    3f:a5:d6:7c:46:68:31:cb:ac:c3:a4:8e:a9:32:58:bb:
                    57:73:bb:7c:c6:f0:0f:23:98:1e:98:cc:12:45:62:99:
                    86:f4:66:d4:c5:5f:23:b3:8b:40:fe:36:0d:0d:69:14:
                    66:bb:c8:5f:65:2b:3e:55:8a:ce:10:03:b8:05:ff:09:
                    70:25:ca:1c:63:93:79:62:e6:b3:0b:19:d8:a5:73:50:
                    bf:53:ac:e6:11:19:54:e4:ff:34:eb:0e:ae:75:bf:d6:
                    05:34:cb:d4:dc:d1:c1:e1:22:b6:ba:b8:4c:b7:d3:22:
                    ba:bb:d3:66:9c:bc:93:52:67:ff:8a:a9:53:78:cc:f1:
                    6e:d0:92:eb:75:58:56:1d:6c:c4:7a:bb:00:0b:44:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:f3:ec:88:06:38:89:ab:2f:95:1c:3a:f9:73:e3:82:
        e2:a1:30:2c:b1:66:40:dc:a2:9f:03:bd:79:6e:ab:ad:
        ea:a0:b6:c3:52:bd:e6:b3:78:f9:3a:f5:df:09:88:32:
        5d:58:c9:26:d5:2e:00:87:d7:59:36:13:03:16:39:d5:
        86:8b:da:5a:f0:60:95:92:91:5f:3f:58:2b:23:c5:56:
        4e:47:9b:a0:2d:fc:ff:0a:88:c9:0f:18:63:e5:54:61:
        c3:53:9f:71:3a:0f:bc:a7:a9:78:18:ad:3b:0f:7a:69:
        8f:66:fe:97:57:63:ae:f4:69:c4:e8:89:1f:d8:67:96:
        5b:6a:16:8e:4e:21:2a:b5:d7:d4:e2:4a:2c:31:da:0d:
        a9:f5:d3:a8:3b:57:3d:33:9e:33:c5:8d:a9:fb:cb:7d:
        d5:51:15:b0:58:7d:ea:3e:0f:1a:b5:9c:44:19:4d:5f:
        07:b0:c8:21:54:aa:5c:af:67:72:d1:c0:5b:65:b9:83:
        17:a5:d8:73:51:80:87:9f:70:83:6f:59:df:6e:7e:a2:
        6a:fa:c5:d7:ef:09:6f:51:1d:23:33:da:d8:3c:37:8f:
        1b:4e:d9:4e:f1:20:a1:f5:36:ac:c9:02:db:f1:f6:20:
        7e:43:6b:2d:d5:04:ca:07:f2:7c:a6:88:20:9c:65:81
    Fingerprint (SHA-256):
        D8:9D:60:85:8B:83:03:6A:96:F5:CD:8E:E8:63:4E:7D:40:A2:72:C4:CF:B8:4D:0B:A8:23:F5:E0:F8:5B:FB:5D
    Fingerprint (SHA1):
        DB:34:CE:BE:55:DA:42:8C:6A:21:89:0B:56:46:95:01:53:80:E8:80
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8087: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8088: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8089: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8090: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155797 (0x3cdd99d5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:18:36 2017
            Not After : Fri Oct 21 16:18:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:f9:af:ee:4e:64:c4:00:10:91:67:74:a6:db:40:c7:
                    3d:4b:47:c6:1c:b6:c2:25:59:0d:a2:2e:b1:48:cd:c9:
                    03:ab:c9:55:0a:ee:7a:eb:ac:98:0d:f6:98:a9:5b:03:
                    2e:9b:4d:df:1b:0f:58:4f:4b:0b:e5:98:2a:84:b3:61:
                    d0:41:ba:1e:15:64:d3:16:f9:50:e0:e1:ba:f3:80:6b:
                    c5:5c:71:ce:88:a3:ff:cc:fa:62:f8:28:36:f1:ec:80:
                    74:31:08:cc:0d:96:89:f8:66:00:fd:7c:8a:52:e1:66:
                    3f:a5:d6:7c:46:68:31:cb:ac:c3:a4:8e:a9:32:58:bb:
                    57:73:bb:7c:c6:f0:0f:23:98:1e:98:cc:12:45:62:99:
                    86:f4:66:d4:c5:5f:23:b3:8b:40:fe:36:0d:0d:69:14:
                    66:bb:c8:5f:65:2b:3e:55:8a:ce:10:03:b8:05:ff:09:
                    70:25:ca:1c:63:93:79:62:e6:b3:0b:19:d8:a5:73:50:
                    bf:53:ac:e6:11:19:54:e4:ff:34:eb:0e:ae:75:bf:d6:
                    05:34:cb:d4:dc:d1:c1:e1:22:b6:ba:b8:4c:b7:d3:22:
                    ba:bb:d3:66:9c:bc:93:52:67:ff:8a:a9:53:78:cc:f1:
                    6e:d0:92:eb:75:58:56:1d:6c:c4:7a:bb:00:0b:44:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:f3:ec:88:06:38:89:ab:2f:95:1c:3a:f9:73:e3:82:
        e2:a1:30:2c:b1:66:40:dc:a2:9f:03:bd:79:6e:ab:ad:
        ea:a0:b6:c3:52:bd:e6:b3:78:f9:3a:f5:df:09:88:32:
        5d:58:c9:26:d5:2e:00:87:d7:59:36:13:03:16:39:d5:
        86:8b:da:5a:f0:60:95:92:91:5f:3f:58:2b:23:c5:56:
        4e:47:9b:a0:2d:fc:ff:0a:88:c9:0f:18:63:e5:54:61:
        c3:53:9f:71:3a:0f:bc:a7:a9:78:18:ad:3b:0f:7a:69:
        8f:66:fe:97:57:63:ae:f4:69:c4:e8:89:1f:d8:67:96:
        5b:6a:16:8e:4e:21:2a:b5:d7:d4:e2:4a:2c:31:da:0d:
        a9:f5:d3:a8:3b:57:3d:33:9e:33:c5:8d:a9:fb:cb:7d:
        d5:51:15:b0:58:7d:ea:3e:0f:1a:b5:9c:44:19:4d:5f:
        07:b0:c8:21:54:aa:5c:af:67:72:d1:c0:5b:65:b9:83:
        17:a5:d8:73:51:80:87:9f:70:83:6f:59:df:6e:7e:a2:
        6a:fa:c5:d7:ef:09:6f:51:1d:23:33:da:d8:3c:37:8f:
        1b:4e:d9:4e:f1:20:a1:f5:36:ac:c9:02:db:f1:f6:20:
        7e:43:6b:2d:d5:04:ca:07:f2:7c:a6:88:20:9c:65:81
    Fingerprint (SHA-256):
        D8:9D:60:85:8B:83:03:6A:96:F5:CD:8E:E8:63:4E:7D:40:A2:72:C4:CF:B8:4D:0B:A8:23:F5:E0:F8:5B:FB:5D
    Fingerprint (SHA1):
        DB:34:CE:BE:55:DA:42:8C:6A:21:89:0B:56:46:95:01:53:80:E8:80
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8091: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155797 (0x3cdd99d5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:18:36 2017
            Not After : Fri Oct 21 16:18:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:f9:af:ee:4e:64:c4:00:10:91:67:74:a6:db:40:c7:
                    3d:4b:47:c6:1c:b6:c2:25:59:0d:a2:2e:b1:48:cd:c9:
                    03:ab:c9:55:0a:ee:7a:eb:ac:98:0d:f6:98:a9:5b:03:
                    2e:9b:4d:df:1b:0f:58:4f:4b:0b:e5:98:2a:84:b3:61:
                    d0:41:ba:1e:15:64:d3:16:f9:50:e0:e1:ba:f3:80:6b:
                    c5:5c:71:ce:88:a3:ff:cc:fa:62:f8:28:36:f1:ec:80:
                    74:31:08:cc:0d:96:89:f8:66:00:fd:7c:8a:52:e1:66:
                    3f:a5:d6:7c:46:68:31:cb:ac:c3:a4:8e:a9:32:58:bb:
                    57:73:bb:7c:c6:f0:0f:23:98:1e:98:cc:12:45:62:99:
                    86:f4:66:d4:c5:5f:23:b3:8b:40:fe:36:0d:0d:69:14:
                    66:bb:c8:5f:65:2b:3e:55:8a:ce:10:03:b8:05:ff:09:
                    70:25:ca:1c:63:93:79:62:e6:b3:0b:19:d8:a5:73:50:
                    bf:53:ac:e6:11:19:54:e4:ff:34:eb:0e:ae:75:bf:d6:
                    05:34:cb:d4:dc:d1:c1:e1:22:b6:ba:b8:4c:b7:d3:22:
                    ba:bb:d3:66:9c:bc:93:52:67:ff:8a:a9:53:78:cc:f1:
                    6e:d0:92:eb:75:58:56:1d:6c:c4:7a:bb:00:0b:44:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:f3:ec:88:06:38:89:ab:2f:95:1c:3a:f9:73:e3:82:
        e2:a1:30:2c:b1:66:40:dc:a2:9f:03:bd:79:6e:ab:ad:
        ea:a0:b6:c3:52:bd:e6:b3:78:f9:3a:f5:df:09:88:32:
        5d:58:c9:26:d5:2e:00:87:d7:59:36:13:03:16:39:d5:
        86:8b:da:5a:f0:60:95:92:91:5f:3f:58:2b:23:c5:56:
        4e:47:9b:a0:2d:fc:ff:0a:88:c9:0f:18:63:e5:54:61:
        c3:53:9f:71:3a:0f:bc:a7:a9:78:18:ad:3b:0f:7a:69:
        8f:66:fe:97:57:63:ae:f4:69:c4:e8:89:1f:d8:67:96:
        5b:6a:16:8e:4e:21:2a:b5:d7:d4:e2:4a:2c:31:da:0d:
        a9:f5:d3:a8:3b:57:3d:33:9e:33:c5:8d:a9:fb:cb:7d:
        d5:51:15:b0:58:7d:ea:3e:0f:1a:b5:9c:44:19:4d:5f:
        07:b0:c8:21:54:aa:5c:af:67:72:d1:c0:5b:65:b9:83:
        17:a5:d8:73:51:80:87:9f:70:83:6f:59:df:6e:7e:a2:
        6a:fa:c5:d7:ef:09:6f:51:1d:23:33:da:d8:3c:37:8f:
        1b:4e:d9:4e:f1:20:a1:f5:36:ac:c9:02:db:f1:f6:20:
        7e:43:6b:2d:d5:04:ca:07:f2:7c:a6:88:20:9c:65:81
    Fingerprint (SHA-256):
        D8:9D:60:85:8B:83:03:6A:96:F5:CD:8E:E8:63:4E:7D:40:A2:72:C4:CF:B8:4D:0B:A8:23:F5:E0:F8:5B:FB:5D
    Fingerprint (SHA1):
        DB:34:CE:BE:55:DA:42:8C:6A:21:89:0B:56:46:95:01:53:80:E8:80
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8092: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8093: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155797 (0x3cdd99d5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:18:36 2017
            Not After : Fri Oct 21 16:18:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:f9:af:ee:4e:64:c4:00:10:91:67:74:a6:db:40:c7:
                    3d:4b:47:c6:1c:b6:c2:25:59:0d:a2:2e:b1:48:cd:c9:
                    03:ab:c9:55:0a:ee:7a:eb:ac:98:0d:f6:98:a9:5b:03:
                    2e:9b:4d:df:1b:0f:58:4f:4b:0b:e5:98:2a:84:b3:61:
                    d0:41:ba:1e:15:64:d3:16:f9:50:e0:e1:ba:f3:80:6b:
                    c5:5c:71:ce:88:a3:ff:cc:fa:62:f8:28:36:f1:ec:80:
                    74:31:08:cc:0d:96:89:f8:66:00:fd:7c:8a:52:e1:66:
                    3f:a5:d6:7c:46:68:31:cb:ac:c3:a4:8e:a9:32:58:bb:
                    57:73:bb:7c:c6:f0:0f:23:98:1e:98:cc:12:45:62:99:
                    86:f4:66:d4:c5:5f:23:b3:8b:40:fe:36:0d:0d:69:14:
                    66:bb:c8:5f:65:2b:3e:55:8a:ce:10:03:b8:05:ff:09:
                    70:25:ca:1c:63:93:79:62:e6:b3:0b:19:d8:a5:73:50:
                    bf:53:ac:e6:11:19:54:e4:ff:34:eb:0e:ae:75:bf:d6:
                    05:34:cb:d4:dc:d1:c1:e1:22:b6:ba:b8:4c:b7:d3:22:
                    ba:bb:d3:66:9c:bc:93:52:67:ff:8a:a9:53:78:cc:f1:
                    6e:d0:92:eb:75:58:56:1d:6c:c4:7a:bb:00:0b:44:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:f3:ec:88:06:38:89:ab:2f:95:1c:3a:f9:73:e3:82:
        e2:a1:30:2c:b1:66:40:dc:a2:9f:03:bd:79:6e:ab:ad:
        ea:a0:b6:c3:52:bd:e6:b3:78:f9:3a:f5:df:09:88:32:
        5d:58:c9:26:d5:2e:00:87:d7:59:36:13:03:16:39:d5:
        86:8b:da:5a:f0:60:95:92:91:5f:3f:58:2b:23:c5:56:
        4e:47:9b:a0:2d:fc:ff:0a:88:c9:0f:18:63:e5:54:61:
        c3:53:9f:71:3a:0f:bc:a7:a9:78:18:ad:3b:0f:7a:69:
        8f:66:fe:97:57:63:ae:f4:69:c4:e8:89:1f:d8:67:96:
        5b:6a:16:8e:4e:21:2a:b5:d7:d4:e2:4a:2c:31:da:0d:
        a9:f5:d3:a8:3b:57:3d:33:9e:33:c5:8d:a9:fb:cb:7d:
        d5:51:15:b0:58:7d:ea:3e:0f:1a:b5:9c:44:19:4d:5f:
        07:b0:c8:21:54:aa:5c:af:67:72:d1:c0:5b:65:b9:83:
        17:a5:d8:73:51:80:87:9f:70:83:6f:59:df:6e:7e:a2:
        6a:fa:c5:d7:ef:09:6f:51:1d:23:33:da:d8:3c:37:8f:
        1b:4e:d9:4e:f1:20:a1:f5:36:ac:c9:02:db:f1:f6:20:
        7e:43:6b:2d:d5:04:ca:07:f2:7c:a6:88:20:9c:65:81
    Fingerprint (SHA-256):
        D8:9D:60:85:8B:83:03:6A:96:F5:CD:8E:E8:63:4E:7D:40:A2:72:C4:CF:B8:4D:0B:A8:23:F5:E0:F8:5B:FB:5D
    Fingerprint (SHA1):
        DB:34:CE:BE:55:DA:42:8C:6A:21:89:0B:56:46:95:01:53:80:E8:80
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8094: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8095: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8096: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8097: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155797 (0x3cdd99d5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:18:36 2017
            Not After : Fri Oct 21 16:18:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:f9:af:ee:4e:64:c4:00:10:91:67:74:a6:db:40:c7:
                    3d:4b:47:c6:1c:b6:c2:25:59:0d:a2:2e:b1:48:cd:c9:
                    03:ab:c9:55:0a:ee:7a:eb:ac:98:0d:f6:98:a9:5b:03:
                    2e:9b:4d:df:1b:0f:58:4f:4b:0b:e5:98:2a:84:b3:61:
                    d0:41:ba:1e:15:64:d3:16:f9:50:e0:e1:ba:f3:80:6b:
                    c5:5c:71:ce:88:a3:ff:cc:fa:62:f8:28:36:f1:ec:80:
                    74:31:08:cc:0d:96:89:f8:66:00:fd:7c:8a:52:e1:66:
                    3f:a5:d6:7c:46:68:31:cb:ac:c3:a4:8e:a9:32:58:bb:
                    57:73:bb:7c:c6:f0:0f:23:98:1e:98:cc:12:45:62:99:
                    86:f4:66:d4:c5:5f:23:b3:8b:40:fe:36:0d:0d:69:14:
                    66:bb:c8:5f:65:2b:3e:55:8a:ce:10:03:b8:05:ff:09:
                    70:25:ca:1c:63:93:79:62:e6:b3:0b:19:d8:a5:73:50:
                    bf:53:ac:e6:11:19:54:e4:ff:34:eb:0e:ae:75:bf:d6:
                    05:34:cb:d4:dc:d1:c1:e1:22:b6:ba:b8:4c:b7:d3:22:
                    ba:bb:d3:66:9c:bc:93:52:67:ff:8a:a9:53:78:cc:f1:
                    6e:d0:92:eb:75:58:56:1d:6c:c4:7a:bb:00:0b:44:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:f3:ec:88:06:38:89:ab:2f:95:1c:3a:f9:73:e3:82:
        e2:a1:30:2c:b1:66:40:dc:a2:9f:03:bd:79:6e:ab:ad:
        ea:a0:b6:c3:52:bd:e6:b3:78:f9:3a:f5:df:09:88:32:
        5d:58:c9:26:d5:2e:00:87:d7:59:36:13:03:16:39:d5:
        86:8b:da:5a:f0:60:95:92:91:5f:3f:58:2b:23:c5:56:
        4e:47:9b:a0:2d:fc:ff:0a:88:c9:0f:18:63:e5:54:61:
        c3:53:9f:71:3a:0f:bc:a7:a9:78:18:ad:3b:0f:7a:69:
        8f:66:fe:97:57:63:ae:f4:69:c4:e8:89:1f:d8:67:96:
        5b:6a:16:8e:4e:21:2a:b5:d7:d4:e2:4a:2c:31:da:0d:
        a9:f5:d3:a8:3b:57:3d:33:9e:33:c5:8d:a9:fb:cb:7d:
        d5:51:15:b0:58:7d:ea:3e:0f:1a:b5:9c:44:19:4d:5f:
        07:b0:c8:21:54:aa:5c:af:67:72:d1:c0:5b:65:b9:83:
        17:a5:d8:73:51:80:87:9f:70:83:6f:59:df:6e:7e:a2:
        6a:fa:c5:d7:ef:09:6f:51:1d:23:33:da:d8:3c:37:8f:
        1b:4e:d9:4e:f1:20:a1:f5:36:ac:c9:02:db:f1:f6:20:
        7e:43:6b:2d:d5:04:ca:07:f2:7c:a6:88:20:9c:65:81
    Fingerprint (SHA-256):
        D8:9D:60:85:8B:83:03:6A:96:F5:CD:8E:E8:63:4E:7D:40:A2:72:C4:CF:B8:4D:0B:A8:23:F5:E0:F8:5B:FB:5D
    Fingerprint (SHA1):
        DB:34:CE:BE:55:DA:42:8C:6A:21:89:0B:56:46:95:01:53:80:E8:80
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8098: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155797 (0x3cdd99d5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:18:36 2017
            Not After : Fri Oct 21 16:18:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:f9:af:ee:4e:64:c4:00:10:91:67:74:a6:db:40:c7:
                    3d:4b:47:c6:1c:b6:c2:25:59:0d:a2:2e:b1:48:cd:c9:
                    03:ab:c9:55:0a:ee:7a:eb:ac:98:0d:f6:98:a9:5b:03:
                    2e:9b:4d:df:1b:0f:58:4f:4b:0b:e5:98:2a:84:b3:61:
                    d0:41:ba:1e:15:64:d3:16:f9:50:e0:e1:ba:f3:80:6b:
                    c5:5c:71:ce:88:a3:ff:cc:fa:62:f8:28:36:f1:ec:80:
                    74:31:08:cc:0d:96:89:f8:66:00:fd:7c:8a:52:e1:66:
                    3f:a5:d6:7c:46:68:31:cb:ac:c3:a4:8e:a9:32:58:bb:
                    57:73:bb:7c:c6:f0:0f:23:98:1e:98:cc:12:45:62:99:
                    86:f4:66:d4:c5:5f:23:b3:8b:40:fe:36:0d:0d:69:14:
                    66:bb:c8:5f:65:2b:3e:55:8a:ce:10:03:b8:05:ff:09:
                    70:25:ca:1c:63:93:79:62:e6:b3:0b:19:d8:a5:73:50:
                    bf:53:ac:e6:11:19:54:e4:ff:34:eb:0e:ae:75:bf:d6:
                    05:34:cb:d4:dc:d1:c1:e1:22:b6:ba:b8:4c:b7:d3:22:
                    ba:bb:d3:66:9c:bc:93:52:67:ff:8a:a9:53:78:cc:f1:
                    6e:d0:92:eb:75:58:56:1d:6c:c4:7a:bb:00:0b:44:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:f3:ec:88:06:38:89:ab:2f:95:1c:3a:f9:73:e3:82:
        e2:a1:30:2c:b1:66:40:dc:a2:9f:03:bd:79:6e:ab:ad:
        ea:a0:b6:c3:52:bd:e6:b3:78:f9:3a:f5:df:09:88:32:
        5d:58:c9:26:d5:2e:00:87:d7:59:36:13:03:16:39:d5:
        86:8b:da:5a:f0:60:95:92:91:5f:3f:58:2b:23:c5:56:
        4e:47:9b:a0:2d:fc:ff:0a:88:c9:0f:18:63:e5:54:61:
        c3:53:9f:71:3a:0f:bc:a7:a9:78:18:ad:3b:0f:7a:69:
        8f:66:fe:97:57:63:ae:f4:69:c4:e8:89:1f:d8:67:96:
        5b:6a:16:8e:4e:21:2a:b5:d7:d4:e2:4a:2c:31:da:0d:
        a9:f5:d3:a8:3b:57:3d:33:9e:33:c5:8d:a9:fb:cb:7d:
        d5:51:15:b0:58:7d:ea:3e:0f:1a:b5:9c:44:19:4d:5f:
        07:b0:c8:21:54:aa:5c:af:67:72:d1:c0:5b:65:b9:83:
        17:a5:d8:73:51:80:87:9f:70:83:6f:59:df:6e:7e:a2:
        6a:fa:c5:d7:ef:09:6f:51:1d:23:33:da:d8:3c:37:8f:
        1b:4e:d9:4e:f1:20:a1:f5:36:ac:c9:02:db:f1:f6:20:
        7e:43:6b:2d:d5:04:ca:07:f2:7c:a6:88:20:9c:65:81
    Fingerprint (SHA-256):
        D8:9D:60:85:8B:83:03:6A:96:F5:CD:8E:E8:63:4E:7D:40:A2:72:C4:CF:B8:4D:0B:A8:23:F5:E0:F8:5B:FB:5D
    Fingerprint (SHA1):
        DB:34:CE:BE:55:DA:42:8C:6A:21:89:0B:56:46:95:01:53:80:E8:80
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #8099: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155797 (0x3cdd99d5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:18:36 2017
            Not After : Fri Oct 21 16:18:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:f9:af:ee:4e:64:c4:00:10:91:67:74:a6:db:40:c7:
                    3d:4b:47:c6:1c:b6:c2:25:59:0d:a2:2e:b1:48:cd:c9:
                    03:ab:c9:55:0a:ee:7a:eb:ac:98:0d:f6:98:a9:5b:03:
                    2e:9b:4d:df:1b:0f:58:4f:4b:0b:e5:98:2a:84:b3:61:
                    d0:41:ba:1e:15:64:d3:16:f9:50:e0:e1:ba:f3:80:6b:
                    c5:5c:71:ce:88:a3:ff:cc:fa:62:f8:28:36:f1:ec:80:
                    74:31:08:cc:0d:96:89:f8:66:00:fd:7c:8a:52:e1:66:
                    3f:a5:d6:7c:46:68:31:cb:ac:c3:a4:8e:a9:32:58:bb:
                    57:73:bb:7c:c6:f0:0f:23:98:1e:98:cc:12:45:62:99:
                    86:f4:66:d4:c5:5f:23:b3:8b:40:fe:36:0d:0d:69:14:
                    66:bb:c8:5f:65:2b:3e:55:8a:ce:10:03:b8:05:ff:09:
                    70:25:ca:1c:63:93:79:62:e6:b3:0b:19:d8:a5:73:50:
                    bf:53:ac:e6:11:19:54:e4:ff:34:eb:0e:ae:75:bf:d6:
                    05:34:cb:d4:dc:d1:c1:e1:22:b6:ba:b8:4c:b7:d3:22:
                    ba:bb:d3:66:9c:bc:93:52:67:ff:8a:a9:53:78:cc:f1:
                    6e:d0:92:eb:75:58:56:1d:6c:c4:7a:bb:00:0b:44:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:f3:ec:88:06:38:89:ab:2f:95:1c:3a:f9:73:e3:82:
        e2:a1:30:2c:b1:66:40:dc:a2:9f:03:bd:79:6e:ab:ad:
        ea:a0:b6:c3:52:bd:e6:b3:78:f9:3a:f5:df:09:88:32:
        5d:58:c9:26:d5:2e:00:87:d7:59:36:13:03:16:39:d5:
        86:8b:da:5a:f0:60:95:92:91:5f:3f:58:2b:23:c5:56:
        4e:47:9b:a0:2d:fc:ff:0a:88:c9:0f:18:63:e5:54:61:
        c3:53:9f:71:3a:0f:bc:a7:a9:78:18:ad:3b:0f:7a:69:
        8f:66:fe:97:57:63:ae:f4:69:c4:e8:89:1f:d8:67:96:
        5b:6a:16:8e:4e:21:2a:b5:d7:d4:e2:4a:2c:31:da:0d:
        a9:f5:d3:a8:3b:57:3d:33:9e:33:c5:8d:a9:fb:cb:7d:
        d5:51:15:b0:58:7d:ea:3e:0f:1a:b5:9c:44:19:4d:5f:
        07:b0:c8:21:54:aa:5c:af:67:72:d1:c0:5b:65:b9:83:
        17:a5:d8:73:51:80:87:9f:70:83:6f:59:df:6e:7e:a2:
        6a:fa:c5:d7:ef:09:6f:51:1d:23:33:da:d8:3c:37:8f:
        1b:4e:d9:4e:f1:20:a1:f5:36:ac:c9:02:db:f1:f6:20:
        7e:43:6b:2d:d5:04:ca:07:f2:7c:a6:88:20:9c:65:81
    Fingerprint (SHA-256):
        D8:9D:60:85:8B:83:03:6A:96:F5:CD:8E:E8:63:4E:7D:40:A2:72:C4:CF:B8:4D:0B:A8:23:F5:E0:F8:5B:FB:5D
    Fingerprint (SHA1):
        DB:34:CE:BE:55:DA:42:8C:6A:21:89:0B:56:46:95:01:53:80:E8:80
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #8100: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155797 (0x3cdd99d5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:18:36 2017
            Not After : Fri Oct 21 16:18:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:f9:af:ee:4e:64:c4:00:10:91:67:74:a6:db:40:c7:
                    3d:4b:47:c6:1c:b6:c2:25:59:0d:a2:2e:b1:48:cd:c9:
                    03:ab:c9:55:0a:ee:7a:eb:ac:98:0d:f6:98:a9:5b:03:
                    2e:9b:4d:df:1b:0f:58:4f:4b:0b:e5:98:2a:84:b3:61:
                    d0:41:ba:1e:15:64:d3:16:f9:50:e0:e1:ba:f3:80:6b:
                    c5:5c:71:ce:88:a3:ff:cc:fa:62:f8:28:36:f1:ec:80:
                    74:31:08:cc:0d:96:89:f8:66:00:fd:7c:8a:52:e1:66:
                    3f:a5:d6:7c:46:68:31:cb:ac:c3:a4:8e:a9:32:58:bb:
                    57:73:bb:7c:c6:f0:0f:23:98:1e:98:cc:12:45:62:99:
                    86:f4:66:d4:c5:5f:23:b3:8b:40:fe:36:0d:0d:69:14:
                    66:bb:c8:5f:65:2b:3e:55:8a:ce:10:03:b8:05:ff:09:
                    70:25:ca:1c:63:93:79:62:e6:b3:0b:19:d8:a5:73:50:
                    bf:53:ac:e6:11:19:54:e4:ff:34:eb:0e:ae:75:bf:d6:
                    05:34:cb:d4:dc:d1:c1:e1:22:b6:ba:b8:4c:b7:d3:22:
                    ba:bb:d3:66:9c:bc:93:52:67:ff:8a:a9:53:78:cc:f1:
                    6e:d0:92:eb:75:58:56:1d:6c:c4:7a:bb:00:0b:44:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:f3:ec:88:06:38:89:ab:2f:95:1c:3a:f9:73:e3:82:
        e2:a1:30:2c:b1:66:40:dc:a2:9f:03:bd:79:6e:ab:ad:
        ea:a0:b6:c3:52:bd:e6:b3:78:f9:3a:f5:df:09:88:32:
        5d:58:c9:26:d5:2e:00:87:d7:59:36:13:03:16:39:d5:
        86:8b:da:5a:f0:60:95:92:91:5f:3f:58:2b:23:c5:56:
        4e:47:9b:a0:2d:fc:ff:0a:88:c9:0f:18:63:e5:54:61:
        c3:53:9f:71:3a:0f:bc:a7:a9:78:18:ad:3b:0f:7a:69:
        8f:66:fe:97:57:63:ae:f4:69:c4:e8:89:1f:d8:67:96:
        5b:6a:16:8e:4e:21:2a:b5:d7:d4:e2:4a:2c:31:da:0d:
        a9:f5:d3:a8:3b:57:3d:33:9e:33:c5:8d:a9:fb:cb:7d:
        d5:51:15:b0:58:7d:ea:3e:0f:1a:b5:9c:44:19:4d:5f:
        07:b0:c8:21:54:aa:5c:af:67:72:d1:c0:5b:65:b9:83:
        17:a5:d8:73:51:80:87:9f:70:83:6f:59:df:6e:7e:a2:
        6a:fa:c5:d7:ef:09:6f:51:1d:23:33:da:d8:3c:37:8f:
        1b:4e:d9:4e:f1:20:a1:f5:36:ac:c9:02:db:f1:f6:20:
        7e:43:6b:2d:d5:04:ca:07:f2:7c:a6:88:20:9c:65:81
    Fingerprint (SHA-256):
        D8:9D:60:85:8B:83:03:6A:96:F5:CD:8E:E8:63:4E:7D:40:A2:72:C4:CF:B8:4D:0B:A8:23:F5:E0:F8:5B:FB:5D
    Fingerprint (SHA1):
        DB:34:CE:BE:55:DA:42:8C:6A:21:89:0B:56:46:95:01:53:80:E8:80
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #8101: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155797 (0x3cdd99d5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:18:36 2017
            Not After : Fri Oct 21 16:18:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:f9:af:ee:4e:64:c4:00:10:91:67:74:a6:db:40:c7:
                    3d:4b:47:c6:1c:b6:c2:25:59:0d:a2:2e:b1:48:cd:c9:
                    03:ab:c9:55:0a:ee:7a:eb:ac:98:0d:f6:98:a9:5b:03:
                    2e:9b:4d:df:1b:0f:58:4f:4b:0b:e5:98:2a:84:b3:61:
                    d0:41:ba:1e:15:64:d3:16:f9:50:e0:e1:ba:f3:80:6b:
                    c5:5c:71:ce:88:a3:ff:cc:fa:62:f8:28:36:f1:ec:80:
                    74:31:08:cc:0d:96:89:f8:66:00:fd:7c:8a:52:e1:66:
                    3f:a5:d6:7c:46:68:31:cb:ac:c3:a4:8e:a9:32:58:bb:
                    57:73:bb:7c:c6:f0:0f:23:98:1e:98:cc:12:45:62:99:
                    86:f4:66:d4:c5:5f:23:b3:8b:40:fe:36:0d:0d:69:14:
                    66:bb:c8:5f:65:2b:3e:55:8a:ce:10:03:b8:05:ff:09:
                    70:25:ca:1c:63:93:79:62:e6:b3:0b:19:d8:a5:73:50:
                    bf:53:ac:e6:11:19:54:e4:ff:34:eb:0e:ae:75:bf:d6:
                    05:34:cb:d4:dc:d1:c1:e1:22:b6:ba:b8:4c:b7:d3:22:
                    ba:bb:d3:66:9c:bc:93:52:67:ff:8a:a9:53:78:cc:f1:
                    6e:d0:92:eb:75:58:56:1d:6c:c4:7a:bb:00:0b:44:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:f3:ec:88:06:38:89:ab:2f:95:1c:3a:f9:73:e3:82:
        e2:a1:30:2c:b1:66:40:dc:a2:9f:03:bd:79:6e:ab:ad:
        ea:a0:b6:c3:52:bd:e6:b3:78:f9:3a:f5:df:09:88:32:
        5d:58:c9:26:d5:2e:00:87:d7:59:36:13:03:16:39:d5:
        86:8b:da:5a:f0:60:95:92:91:5f:3f:58:2b:23:c5:56:
        4e:47:9b:a0:2d:fc:ff:0a:88:c9:0f:18:63:e5:54:61:
        c3:53:9f:71:3a:0f:bc:a7:a9:78:18:ad:3b:0f:7a:69:
        8f:66:fe:97:57:63:ae:f4:69:c4:e8:89:1f:d8:67:96:
        5b:6a:16:8e:4e:21:2a:b5:d7:d4:e2:4a:2c:31:da:0d:
        a9:f5:d3:a8:3b:57:3d:33:9e:33:c5:8d:a9:fb:cb:7d:
        d5:51:15:b0:58:7d:ea:3e:0f:1a:b5:9c:44:19:4d:5f:
        07:b0:c8:21:54:aa:5c:af:67:72:d1:c0:5b:65:b9:83:
        17:a5:d8:73:51:80:87:9f:70:83:6f:59:df:6e:7e:a2:
        6a:fa:c5:d7:ef:09:6f:51:1d:23:33:da:d8:3c:37:8f:
        1b:4e:d9:4e:f1:20:a1:f5:36:ac:c9:02:db:f1:f6:20:
        7e:43:6b:2d:d5:04:ca:07:f2:7c:a6:88:20:9c:65:81
    Fingerprint (SHA-256):
        D8:9D:60:85:8B:83:03:6A:96:F5:CD:8E:E8:63:4E:7D:40:A2:72:C4:CF:B8:4D:0B:A8:23:F5:E0:F8:5B:FB:5D
    Fingerprint (SHA1):
        DB:34:CE:BE:55:DA:42:8C:6A:21:89:0B:56:46:95:01:53:80:E8:80
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #8102: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155797 (0x3cdd99d5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:18:36 2017
            Not After : Fri Oct 21 16:18:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:f9:af:ee:4e:64:c4:00:10:91:67:74:a6:db:40:c7:
                    3d:4b:47:c6:1c:b6:c2:25:59:0d:a2:2e:b1:48:cd:c9:
                    03:ab:c9:55:0a:ee:7a:eb:ac:98:0d:f6:98:a9:5b:03:
                    2e:9b:4d:df:1b:0f:58:4f:4b:0b:e5:98:2a:84:b3:61:
                    d0:41:ba:1e:15:64:d3:16:f9:50:e0:e1:ba:f3:80:6b:
                    c5:5c:71:ce:88:a3:ff:cc:fa:62:f8:28:36:f1:ec:80:
                    74:31:08:cc:0d:96:89:f8:66:00:fd:7c:8a:52:e1:66:
                    3f:a5:d6:7c:46:68:31:cb:ac:c3:a4:8e:a9:32:58:bb:
                    57:73:bb:7c:c6:f0:0f:23:98:1e:98:cc:12:45:62:99:
                    86:f4:66:d4:c5:5f:23:b3:8b:40:fe:36:0d:0d:69:14:
                    66:bb:c8:5f:65:2b:3e:55:8a:ce:10:03:b8:05:ff:09:
                    70:25:ca:1c:63:93:79:62:e6:b3:0b:19:d8:a5:73:50:
                    bf:53:ac:e6:11:19:54:e4:ff:34:eb:0e:ae:75:bf:d6:
                    05:34:cb:d4:dc:d1:c1:e1:22:b6:ba:b8:4c:b7:d3:22:
                    ba:bb:d3:66:9c:bc:93:52:67:ff:8a:a9:53:78:cc:f1:
                    6e:d0:92:eb:75:58:56:1d:6c:c4:7a:bb:00:0b:44:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:f3:ec:88:06:38:89:ab:2f:95:1c:3a:f9:73:e3:82:
        e2:a1:30:2c:b1:66:40:dc:a2:9f:03:bd:79:6e:ab:ad:
        ea:a0:b6:c3:52:bd:e6:b3:78:f9:3a:f5:df:09:88:32:
        5d:58:c9:26:d5:2e:00:87:d7:59:36:13:03:16:39:d5:
        86:8b:da:5a:f0:60:95:92:91:5f:3f:58:2b:23:c5:56:
        4e:47:9b:a0:2d:fc:ff:0a:88:c9:0f:18:63:e5:54:61:
        c3:53:9f:71:3a:0f:bc:a7:a9:78:18:ad:3b:0f:7a:69:
        8f:66:fe:97:57:63:ae:f4:69:c4:e8:89:1f:d8:67:96:
        5b:6a:16:8e:4e:21:2a:b5:d7:d4:e2:4a:2c:31:da:0d:
        a9:f5:d3:a8:3b:57:3d:33:9e:33:c5:8d:a9:fb:cb:7d:
        d5:51:15:b0:58:7d:ea:3e:0f:1a:b5:9c:44:19:4d:5f:
        07:b0:c8:21:54:aa:5c:af:67:72:d1:c0:5b:65:b9:83:
        17:a5:d8:73:51:80:87:9f:70:83:6f:59:df:6e:7e:a2:
        6a:fa:c5:d7:ef:09:6f:51:1d:23:33:da:d8:3c:37:8f:
        1b:4e:d9:4e:f1:20:a1:f5:36:ac:c9:02:db:f1:f6:20:
        7e:43:6b:2d:d5:04:ca:07:f2:7c:a6:88:20:9c:65:81
    Fingerprint (SHA-256):
        D8:9D:60:85:8B:83:03:6A:96:F5:CD:8E:E8:63:4E:7D:40:A2:72:C4:CF:B8:4D:0B:A8:23:F5:E0:F8:5B:FB:5D
    Fingerprint (SHA1):
        DB:34:CE:BE:55:DA:42:8C:6A:21:89:0B:56:46:95:01:53:80:E8:80
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #8103: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8104: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #8105: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155827 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8106: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #8107: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #8108: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8109: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 1021155828   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8110: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8111: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #8112: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8113: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 1021155829   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8114: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8115: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #8116: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8117: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 1021155830   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8118: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8119: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #8120: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8121: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 1021155831   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8122: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8123: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #8124: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8125: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 1021155832   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8126: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8127: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #8128: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8129: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 1021155833   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8130: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8131: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #8132: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155827 (0x3cdd99f3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:21:45 2017
            Not After : Fri Oct 21 16:21:45 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:ea:58:5b:12:27:b4:8d:5f:b7:e8:c5:bd:2f:ed:61:
                    73:50:80:6b:c7:7f:e9:e7:b6:66:0f:71:af:92:2c:bd:
                    55:5f:9d:03:d3:2d:76:a5:3c:e2:b6:59:ce:2f:16:8c:
                    df:7c:63:c1:8d:34:2f:17:3e:10:bb:73:23:40:8f:5a:
                    7d:aa:cd:39:b9:04:3f:12:9a:bc:24:80:2a:21:11:2a:
                    7d:7c:4b:3a:b6:27:56:83:fe:8c:2f:f9:45:cb:36:8d:
                    9f:a6:32:d9:43:16:b8:3d:a2:b7:b6:16:76:48:33:f7:
                    13:fb:35:15:4d:f2:69:40:4a:e9:6a:97:46:ab:ed:bc:
                    08:c3:d6:d1:fd:54:2a:94:0c:44:f1:de:90:9e:23:15:
                    ed:fe:f3:73:91:54:c5:6a:b0:ee:06:e0:8c:ea:59:52:
                    f7:b4:43:ee:ec:c0:55:20:fe:3a:cd:c3:f0:c1:c8:89:
                    6c:b1:c4:ad:5c:56:03:de:65:3a:81:9f:b1:90:33:19:
                    a8:a2:ca:37:a0:d0:4c:e4:8e:56:b6:ec:9a:be:5a:97:
                    49:b8:18:ed:9a:72:16:9b:12:9d:62:7f:13:b8:6d:b8:
                    0c:87:97:9c:19:f0:c4:e3:b5:60:30:4e:0e:91:46:fe:
                    11:7e:0f:ba:47:84:47:02:b1:1f:7f:86:0d:6d:72:75
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0c:b8:2a:22:8a:37:a2:53:75:17:80:4c:33:c6:c9:c5:
        bd:00:ff:a7:e8:dd:f3:df:d6:c9:76:98:18:40:1c:f4:
        2d:5d:0d:80:d9:41:ec:af:a9:ca:89:e1:48:e5:22:4b:
        a6:9a:3b:37:17:a8:3f:29:79:44:6b:14:fa:a6:4a:dc:
        5b:93:3b:22:d1:bf:c4:a6:8a:94:84:e5:08:9b:24:58:
        bc:d7:0c:a1:45:bf:0a:29:3c:d0:32:3b:55:86:7d:f1:
        9e:52:96:d3:2f:08:34:ee:58:9f:33:2f:03:ca:c0:16:
        94:5c:a6:70:56:1f:3e:9c:a8:e0:ed:27:57:5b:79:bc:
        18:b7:77:6c:33:3b:2c:04:27:75:30:09:0c:db:bb:e3:
        69:25:a5:74:a4:04:b8:d9:93:0b:a9:0b:7c:9b:0a:b6:
        70:d5:33:c4:7a:ff:4d:b8:9b:ff:60:88:2f:e8:ac:27:
        07:6b:f7:18:3c:80:c9:80:a7:a9:bc:bb:d3:3a:88:e9:
        9c:72:be:10:b7:ea:10:19:58:88:64:4b:3e:ea:0b:dd:
        fb:fa:09:a4:79:08:cb:42:94:86:a9:87:13:8e:3a:5c:
        9d:41:7f:4c:c1:e7:dc:69:b6:74:2a:20:c3:fd:8c:a5:
        22:de:a1:9d:3a:c7:49:6f:ca:c4:78:6f:45:19:70:c9
    Fingerprint (SHA-256):
        31:04:1A:3E:4F:F8:52:A7:3A:1B:30:FB:5E:A5:9D:2C:F3:D2:E3:76:80:4E:5F:AE:5B:31:CA:7B:8F:4C:C1:60
    Fingerprint (SHA1):
        E7:91:BA:4E:D5:F2:6F:A5:CF:50:14:93:52:90:DE:E0:23:18:70:D6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #8133: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8134: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8135: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #8136: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155827 (0x3cdd99f3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:21:45 2017
            Not After : Fri Oct 21 16:21:45 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:ea:58:5b:12:27:b4:8d:5f:b7:e8:c5:bd:2f:ed:61:
                    73:50:80:6b:c7:7f:e9:e7:b6:66:0f:71:af:92:2c:bd:
                    55:5f:9d:03:d3:2d:76:a5:3c:e2:b6:59:ce:2f:16:8c:
                    df:7c:63:c1:8d:34:2f:17:3e:10:bb:73:23:40:8f:5a:
                    7d:aa:cd:39:b9:04:3f:12:9a:bc:24:80:2a:21:11:2a:
                    7d:7c:4b:3a:b6:27:56:83:fe:8c:2f:f9:45:cb:36:8d:
                    9f:a6:32:d9:43:16:b8:3d:a2:b7:b6:16:76:48:33:f7:
                    13:fb:35:15:4d:f2:69:40:4a:e9:6a:97:46:ab:ed:bc:
                    08:c3:d6:d1:fd:54:2a:94:0c:44:f1:de:90:9e:23:15:
                    ed:fe:f3:73:91:54:c5:6a:b0:ee:06:e0:8c:ea:59:52:
                    f7:b4:43:ee:ec:c0:55:20:fe:3a:cd:c3:f0:c1:c8:89:
                    6c:b1:c4:ad:5c:56:03:de:65:3a:81:9f:b1:90:33:19:
                    a8:a2:ca:37:a0:d0:4c:e4:8e:56:b6:ec:9a:be:5a:97:
                    49:b8:18:ed:9a:72:16:9b:12:9d:62:7f:13:b8:6d:b8:
                    0c:87:97:9c:19:f0:c4:e3:b5:60:30:4e:0e:91:46:fe:
                    11:7e:0f:ba:47:84:47:02:b1:1f:7f:86:0d:6d:72:75
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0c:b8:2a:22:8a:37:a2:53:75:17:80:4c:33:c6:c9:c5:
        bd:00:ff:a7:e8:dd:f3:df:d6:c9:76:98:18:40:1c:f4:
        2d:5d:0d:80:d9:41:ec:af:a9:ca:89:e1:48:e5:22:4b:
        a6:9a:3b:37:17:a8:3f:29:79:44:6b:14:fa:a6:4a:dc:
        5b:93:3b:22:d1:bf:c4:a6:8a:94:84:e5:08:9b:24:58:
        bc:d7:0c:a1:45:bf:0a:29:3c:d0:32:3b:55:86:7d:f1:
        9e:52:96:d3:2f:08:34:ee:58:9f:33:2f:03:ca:c0:16:
        94:5c:a6:70:56:1f:3e:9c:a8:e0:ed:27:57:5b:79:bc:
        18:b7:77:6c:33:3b:2c:04:27:75:30:09:0c:db:bb:e3:
        69:25:a5:74:a4:04:b8:d9:93:0b:a9:0b:7c:9b:0a:b6:
        70:d5:33:c4:7a:ff:4d:b8:9b:ff:60:88:2f:e8:ac:27:
        07:6b:f7:18:3c:80:c9:80:a7:a9:bc:bb:d3:3a:88:e9:
        9c:72:be:10:b7:ea:10:19:58:88:64:4b:3e:ea:0b:dd:
        fb:fa:09:a4:79:08:cb:42:94:86:a9:87:13:8e:3a:5c:
        9d:41:7f:4c:c1:e7:dc:69:b6:74:2a:20:c3:fd:8c:a5:
        22:de:a1:9d:3a:c7:49:6f:ca:c4:78:6f:45:19:70:c9
    Fingerprint (SHA-256):
        31:04:1A:3E:4F:F8:52:A7:3A:1B:30:FB:5E:A5:9D:2C:F3:D2:E3:76:80:4E:5F:AE:5B:31:CA:7B:8F:4C:C1:60
    Fingerprint (SHA1):
        E7:91:BA:4E:D5:F2:6F:A5:CF:50:14:93:52:90:DE:E0:23:18:70:D6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #8137: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8138: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8139: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #8140: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155834 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8141: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #8142: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8143: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8144: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021155835   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #8145: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8146: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #8147: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8148: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021155836   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8149: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8150: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #8151: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8152: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 1021155837   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8153: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8154: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #8155: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #8156: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #8157: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #8158: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155834 (0x3cdd99fa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:22:35 2017
            Not After : Fri Oct 21 16:22:35 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:c0:60:59:f8:94:94:e2:eb:a2:2b:6b:60:09:a1:0b:
                    ee:b2:d6:de:a6:5b:94:34:f5:36:8e:b6:d5:0e:f5:77:
                    3d:86:66:49:60:ac:cc:c2:97:30:2c:92:91:39:99:c8:
                    4f:cd:77:3c:7a:41:d7:83:95:13:fc:fc:ca:1d:79:c0:
                    a2:b4:4d:ab:69:05:86:6a:93:c5:1d:ef:d7:3f:df:0f:
                    39:ec:8d:7e:42:b7:69:99:e6:17:5c:bc:d2:b7:e4:2a:
                    8b:fe:1f:8d:b4:e5:df:bf:c9:e1:87:43:4f:48:09:0c:
                    6c:3b:fa:ba:bd:b6:06:cc:58:54:e8:d5:b6:80:30:92:
                    d1:15:72:2b:d6:9e:57:71:73:fc:40:54:58:94:c0:27:
                    34:c2:94:42:07:72:1c:fd:99:6a:49:e6:0a:5d:e3:3b:
                    0a:ec:8d:b0:08:25:a6:a8:5c:f3:4c:79:24:0d:b2:73:
                    a1:ed:84:71:ae:a4:fb:91:b3:54:5c:83:fe:75:aa:37:
                    0f:e4:97:f7:58:9a:40:f5:0b:ec:eb:d1:69:da:ac:81:
                    06:3c:66:04:9b:57:88:97:2c:a6:5c:0a:03:14:1a:1e:
                    c0:cb:a9:93:36:6c:cd:a7:05:86:dd:ba:73:e0:66:76:
                    e9:2d:cd:37:45:c0:54:4c:d0:37:42:85:9a:e4:af:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        57:61:e0:cd:aa:70:38:31:78:47:e4:45:52:fa:7a:a8:
        2a:d9:7e:36:af:0d:e4:b3:06:6b:07:22:e8:c9:c9:9e:
        b6:fc:89:98:31:34:1b:f3:bd:6b:fc:2f:74:36:c1:e4:
        a6:c0:16:99:72:e1:c0:a3:e0:a3:f8:11:c2:c5:39:9f:
        1f:13:0f:4f:06:55:3e:e3:2e:4e:5b:f8:2a:40:a5:30:
        6f:ce:ee:79:11:f9:e5:78:2c:5d:6b:db:4f:08:e8:98:
        09:82:e0:09:0b:59:9a:8b:1e:bc:7c:30:63:e7:40:18:
        e3:ea:75:ac:33:79:dd:71:72:8d:84:e4:bf:34:e5:02:
        d8:ad:8c:8a:33:aa:fa:08:54:50:97:0c:1e:4b:73:75:
        0c:d6:9e:15:07:60:f2:a3:81:70:0e:e1:3b:2b:34:e0:
        35:2d:92:1e:13:ab:42:7c:78:d1:c8:96:ef:0a:b6:72:
        73:cf:d6:88:fc:e4:cc:43:16:8b:59:92:34:4d:df:c8:
        b9:ba:20:c2:81:ac:72:96:e7:4f:cb:a0:ca:73:24:03:
        e9:8e:f3:3d:86:ab:70:53:b7:56:71:b9:7a:9b:ca:93:
        df:b5:b9:a5:5d:96:22:91:aa:f3:07:71:f0:b1:5a:9e:
        a0:e6:95:99:3a:ea:7a:ce:da:a1:7b:d3:6b:28:2b:37
    Fingerprint (SHA-256):
        C4:10:B8:88:25:CC:CD:A0:7C:74:B9:1B:55:0E:7F:B6:26:E7:0D:84:65:F9:B0:4C:82:BD:51:FA:6C:21:71:F0
    Fingerprint (SHA1):
        D1:6F:9E:4E:AD:80:B1:AD:B9:E7:7F:21:69:F4:BB:52:53:D2:9B:7F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8159: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8160: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8161: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155835 (0x3cdd99fb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:22:41 2017
            Not After : Fri Oct 21 16:22:41 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:c0:d7:92:36:7a:2a:8d:41:1c:17:d9:41:ea:97:f0:
                    c9:57:7b:d9:f3:0c:55:b3:9f:24:45:05:0c:95:c3:ca:
                    9d:26:cb:13:9e:36:e0:54:27:dd:a3:a9:e0:cf:53:d8:
                    cb:e0:28:55:9a:23:39:0f:05:d3:1c:7c:99:43:be:4b:
                    b9:18:e1:89:8a:28:26:f4:85:79:49:6a:29:b7:ee:ee:
                    14:b0:d3:8b:5d:cc:6d:d8:b8:ec:79:01:9a:53:b6:1c:
                    48:21:b2:37:a6:29:f1:a9:9d:fc:1f:05:19:46:79:36:
                    1a:3d:bb:45:30:32:73:bc:95:54:56:89:01:79:08:2e:
                    d4:41:77:8c:a2:0a:65:2e:67:07:28:3a:08:e8:19:2f:
                    2e:0d:61:72:d6:cc:e3:b6:30:be:a0:31:7a:bb:6b:10:
                    22:e7:06:c6:f6:a3:e8:88:48:a0:cb:49:03:4c:db:5c:
                    81:d9:12:c8:c2:e9:13:bf:81:c7:93:a5:1e:67:4a:7e:
                    84:b9:5e:0d:5c:51:9d:d2:b8:12:ab:1f:49:c8:3d:16:
                    e1:45:5b:20:df:e0:ec:44:f9:73:95:fd:df:08:63:9c:
                    ca:5a:8a:3a:df:90:7f:51:59:97:2e:b2:da:f2:35:cb:
                    34:1d:a3:d5:37:0f:92:b1:ef:43:fa:84:c1:7c:3b:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bc:10:35:a7:cd:72:05:66:4c:0b:d5:47:33:6b:8b:fd:
        82:16:cf:45:5f:99:32:1c:2e:5f:87:6a:b2:c0:a0:27:
        fb:de:79:17:6b:c3:e7:de:52:31:d3:46:7d:a3:47:d8:
        16:75:75:62:4f:fd:0c:68:22:f5:61:14:2c:e0:5c:e4:
        00:69:4d:40:bf:03:5e:8f:ca:7e:66:cc:05:0f:61:92:
        ca:d1:5e:0e:0e:6e:af:34:e1:3b:be:44:75:f8:0d:0c:
        32:88:3d:d9:a1:74:9b:a1:fd:66:b7:73:92:66:07:95:
        f0:2a:2d:37:d1:d3:8d:f8:94:cb:26:c0:c5:c5:be:3c:
        db:13:75:bd:3f:2b:35:75:d1:98:04:17:96:ac:ca:26:
        7d:3c:ef:97:ca:68:ea:19:77:6d:9c:9e:8b:96:5a:ce:
        fe:32:86:b7:b6:ba:be:87:1a:59:77:b0:c6:f7:91:50:
        b5:04:5f:a7:66:20:c3:21:80:1e:50:2e:bc:12:a0:a9:
        38:2d:c5:dd:43:45:c1:7e:45:bb:da:25:ba:08:38:84:
        7a:55:aa:c8:c2:29:70:49:90:44:30:e9:ec:12:a1:49:
        cc:82:73:d4:aa:f2:1d:be:65:2f:b3:89:9f:fa:d7:86:
        19:a2:df:eb:4e:cb:7f:75:bd:c6:06:7a:60:b9:37:61
    Fingerprint (SHA-256):
        3E:1B:C9:A6:FD:05:C4:24:29:C3:66:34:E2:57:62:B4:56:3E:C8:94:A5:25:82:91:79:86:CB:25:25:2B:5F:EC
    Fingerprint (SHA1):
        03:36:F9:5F:60:CE:9D:16:61:2C:54:08:11:DA:9B:BD:30:CF:76:C4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #8162: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8163: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155836 (0x3cdd99fc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 16:22:47 2017
            Not After : Fri Oct 21 16:22:47 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:5a:6a:0c:11:18:3f:52:4c:5e:2e:72:59:2e:a8:87:
                    84:03:ba:37:60:bf:6f:e6:b5:e3:05:25:f7:98:0e:b2:
                    77:93:d2:2f:ca:db:db:5e:6e:57:8d:e6:4a:85:a9:00:
                    a4:79:d8:88:51:d3:d4:57:65:4a:31:70:b2:12:49:09:
                    0d:ae:2e:5f:c1:ae:fb:86:86:93:7c:9c:f8:d0:b4:c1:
                    82:19:3b:fd:2c:3f:3c:db:ad:24:1a:47:ad:35:0c:9c:
                    22:91:99:3f:29:13:dc:3f:96:ef:85:66:b4:dc:27:a4:
                    b4:3d:25:d9:98:8f:e3:c9:04:88:89:28:2b:10:b5:ea:
                    53:3e:fe:68:bb:61:55:d2:eb:7b:5e:53:c0:f5:7f:7f:
                    02:cd:e5:54:12:0e:53:1b:c2:b6:1b:c7:8b:16:a7:83:
                    93:db:fe:e8:4d:46:b6:8c:5d:4c:63:4c:f2:c7:f2:35:
                    71:54:94:a4:c8:0a:4b:34:61:c6:10:9a:fc:d0:df:44:
                    2a:f1:0c:fa:83:2b:24:6d:20:fe:dd:17:c7:2b:59:a1:
                    20:d1:15:97:0d:25:e3:4c:ed:91:25:d9:68:ef:75:14:
                    6d:33:22:dd:af:21:13:6f:d9:48:ae:d3:10:07:73:79:
                    7f:3d:ca:48:ca:69:d3:a0:00:ce:a0:0b:cf:5d:2d:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        92:cc:fe:fd:92:12:54:c6:7e:12:f0:14:35:ec:ad:58:
        8c:32:21:d8:45:ae:bc:64:4b:5f:56:a7:9b:c6:1c:a4:
        4f:d6:07:c2:39:f4:18:95:8b:3c:e3:9f:56:69:fa:79:
        90:54:23:e0:05:02:49:f1:63:72:c6:43:d9:c3:43:8e:
        aa:da:a7:4f:ee:25:20:80:69:c4:27:f7:e4:59:1a:15:
        e5:4b:63:16:d8:f3:f3:86:93:d8:b7:f4:d6:7e:fb:cf:
        12:62:30:26:d1:19:97:b0:db:1d:94:2e:aa:33:27:b1:
        56:42:f8:8f:f4:3a:8e:ff:6c:7c:79:39:70:cc:f7:35:
        df:9f:0f:41:c1:44:a8:13:1d:a7:2e:50:f6:93:62:24:
        09:66:dc:9d:2c:bb:26:b4:db:59:dc:76:78:b9:fe:79:
        e9:67:6c:4e:cf:02:6d:9c:cf:37:92:41:fb:18:a0:39:
        28:4e:e4:70:ad:3b:6c:7d:48:71:63:32:41:9a:9c:bc:
        b7:79:93:44:31:2c:15:14:61:9d:3f:9b:36:5f:1b:ec:
        fe:9f:70:38:71:da:93:32:c2:63:81:84:dc:cb:8f:2c:
        d7:22:d0:15:53:16:fd:1e:55:7e:33:6c:99:ae:bf:e0:
        8b:01:30:29:c7:53:29:7e:8a:ec:4a:62:8a:5b:41:17
    Fingerprint (SHA-256):
        E4:BA:F8:61:78:83:E9:A2:70:55:9B:81:6E:83:FA:BC:37:41:52:F6:2A:A0:EF:CE:E5:50:AA:1B:E9:F0:13:43
    Fingerprint (SHA1):
        0B:C0:B3:CE:ED:79:29:0A:A9:FB:A4:28:70:B9:EF:B3:80:7C:64:7D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #8164: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #8165: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155838 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8166: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #8167: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8168: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8169: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021155839   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8170: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8171: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #8172: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8173: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021155840   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #8174: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8175: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #8176: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8177: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 1021155841   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8178: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8179: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #8180: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8181: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 1021155842   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8182: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8183: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #8184: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #8185: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #8186: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #8187: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #8188: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155838 (0x3cdd99fe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:23:09 2017
            Not After : Fri Oct 21 16:23:09 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:cc:94:8e:49:19:29:52:c5:95:8e:bd:5e:ac:6d:b2:
                    40:b4:ca:14:31:d8:00:4f:7f:f6:f8:4f:15:5f:f2:31:
                    de:e3:ae:38:b2:65:e6:5d:99:36:26:a4:d5:60:17:eb:
                    ac:78:ee:08:e1:d8:d5:f0:40:22:83:a5:64:81:05:90:
                    ac:c5:21:07:ca:f8:0c:93:bc:7f:f0:60:8c:e4:e6:92:
                    20:20:69:96:8b:bf:fb:46:d8:7c:b3:66:9f:fd:6d:68:
                    e1:8a:09:43:26:56:15:82:dc:b9:cd:59:6b:f2:f8:da:
                    41:59:38:48:5a:df:b7:d8:83:63:6e:76:e8:91:4a:56:
                    79:a6:35:97:53:01:a5:23:e1:50:11:33:ef:5f:73:98:
                    1c:73:c6:4d:c2:f1:e2:60:ea:af:ed:47:b8:3a:f1:d0:
                    ac:6d:11:b2:6d:c1:64:c0:9c:36:f9:cc:0e:47:ba:d0:
                    db:66:af:c8:e6:43:ed:9c:ca:bd:95:00:b0:c6:fd:1e:
                    ec:a7:d3:58:55:19:69:63:65:28:a5:e2:1c:f0:fc:47:
                    c0:8f:6c:a6:bc:84:3e:39:f0:cb:43:9d:05:78:c1:bc:
                    54:5f:1a:b5:1a:de:e6:a0:68:bd:82:bd:fa:ea:2a:aa:
                    13:45:18:d8:f2:ec:76:e5:fe:7d:3c:6a:37:7c:c2:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:da:1a:2e:ad:e5:f9:67:fd:2d:fc:42:bb:6f:88:cf:
        12:a0:24:f8:c0:5b:44:f4:27:7f:78:c7:90:70:47:71:
        a9:92:3d:59:cd:bc:44:87:b7:8a:14:f2:cc:74:10:e3:
        13:68:7c:05:3f:4c:90:2c:92:99:3d:77:01:9a:b5:84:
        5c:da:75:1c:de:e2:a2:e9:a3:68:84:3b:12:0b:32:ff:
        c3:e0:53:6f:26:d7:8e:e3:11:52:e1:bf:60:a3:e4:f3:
        fe:26:c8:f1:9a:00:48:aa:7f:12:aa:70:2d:60:0f:f8:
        e0:af:65:b8:a7:c2:0d:0e:83:91:b2:29:0e:0d:f2:9c:
        c0:1b:00:73:f0:d3:e6:be:d4:bf:2b:73:5f:82:a3:bd:
        fe:9c:d5:27:90:ac:d9:ba:89:ea:71:81:b4:c2:4a:26:
        87:b0:7a:ae:8b:a7:81:74:a9:25:fe:57:27:0d:e5:5c:
        3e:8d:d9:ff:cc:29:ab:dd:1d:c5:7a:0f:eb:bb:81:ba:
        d4:ec:a8:f6:2d:fb:ac:42:d3:d8:fa:e1:42:be:c2:e5:
        b9:3d:4f:9d:09:76:3a:8a:bd:33:63:a2:9b:5d:7c:cf:
        95:36:9a:6d:85:84:30:68:a9:24:51:e9:d7:b9:40:3a:
        03:cc:6e:c6:94:0c:5a:b3:09:c2:77:ec:ff:01:df:56
    Fingerprint (SHA-256):
        DA:01:15:D9:9E:02:64:31:CC:FD:ED:22:48:17:09:DF:3D:77:CB:62:8F:A4:8F:2F:C0:45:75:00:93:CB:A2:1A
    Fingerprint (SHA1):
        F8:1D:06:1D:F3:65:CE:27:3A:F2:9C:05:2E:82:DA:C3:10:25:E9:39
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8189: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8190: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155839 (0x3cdd99ff)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:23:14 2017
            Not After : Fri Oct 21 16:23:14 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:1b:40:ab:65:e8:b4:70:2d:0f:98:00:31:7e:36:9a:
                    43:81:4c:ff:cf:35:01:d1:d5:f7:a8:25:56:d7:c7:72:
                    d4:73:f8:d1:7e:52:80:28:e1:29:50:f8:b1:a1:09:bf:
                    07:14:04:9c:31:90:8a:1e:7d:d0:21:70:5d:80:43:d7:
                    a4:ff:71:0e:0c:ce:dd:67:a1:93:72:fd:6a:bc:2e:c9:
                    86:05:94:95:ea:74:dd:03:8e:a6:ea:75:18:06:63:d2:
                    4d:2a:64:e5:08:5b:b3:60:eb:5a:6b:bb:95:4a:c2:98:
                    34:d8:c6:ea:b8:a2:85:82:2d:05:ab:42:78:01:4e:8c:
                    bc:43:6b:98:73:06:bc:16:6e:86:b2:64:3a:bc:91:12:
                    18:3e:98:9e:60:34:66:2f:2c:c4:6b:d2:05:15:85:f2:
                    1f:ba:53:74:00:05:83:2f:79:f9:9d:af:87:6d:df:aa:
                    e2:a8:73:04:b6:5d:07:73:ee:a3:35:41:da:69:dc:f6:
                    8d:9a:91:87:f8:63:d2:fd:5e:b3:56:b0:a7:6e:a9:51:
                    c4:d4:82:e2:a3:2c:35:bd:70:b4:0d:d9:67:43:b6:15:
                    9c:a9:c9:5f:d9:46:05:62:a2:c5:c8:a3:d5:19:22:3b:
                    6c:ab:b5:37:1e:e6:15:91:42:83:2c:db:c5:7a:70:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        92:d7:7e:09:28:a4:25:c2:c9:c8:02:2a:0c:18:9c:78:
        6e:b5:e9:f1:4b:0b:39:c2:38:bd:67:d0:48:94:31:75:
        7d:26:49:5b:33:52:9b:74:af:4d:92:93:7f:86:7d:13:
        fc:fb:11:98:00:a5:ad:c0:ec:ad:54:f8:c7:d6:e1:26:
        13:1d:94:3a:8d:41:6d:06:f2:c2:8a:8d:85:3b:9e:a2:
        02:eb:04:2a:bf:1e:f1:22:36:e5:75:78:a1:08:6b:70:
        f8:4c:49:c2:37:ff:48:94:8c:3d:d2:fd:bf:ba:cd:90:
        e1:d3:3b:06:3d:d1:c2:4c:e9:27:e1:1d:38:10:76:7c:
        eb:74:d3:f6:2f:7c:35:c9:d4:f2:43:25:1b:c9:cd:29:
        75:f3:dd:0d:a7:11:5c:30:a8:23:65:e6:98:99:ce:07:
        3f:57:64:c6:6f:25:2a:d4:f1:fa:68:65:ec:20:bf:75:
        74:30:92:04:35:b0:9a:ce:e3:84:91:61:e3:1b:81:81:
        e3:20:76:b2:2c:0d:53:67:73:f6:7b:b9:d9:be:d2:ab:
        a0:5e:a1:8b:6f:05:9a:a3:a1:31:77:24:3e:bb:d2:ef:
        a2:f6:b9:d1:93:92:af:54:ff:27:1e:20:3c:44:75:25:
        d4:6b:91:bc:7c:cf:dc:25:07:41:33:67:a5:be:9a:4a
    Fingerprint (SHA-256):
        62:60:CC:38:54:43:72:BA:56:82:7F:B6:9B:E8:C2:9C:2D:8A:0C:E1:2E:BC:77:4E:25:13:E2:E0:92:A9:01:C9
    Fingerprint (SHA1):
        31:44:27:B5:50:CD:27:12:60:12:E1:3E:EB:BE:72:69:12:6A:4D:FC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #8191: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8192: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8193: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155840 (0x3cdd9a00)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 16:23:21 2017
            Not After : Fri Oct 21 16:23:21 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:f6:29:e6:70:2a:83:7d:83:62:e7:08:53:2f:6b:fc:
                    76:3c:8a:cc:59:29:26:ed:20:a5:e4:d1:95:c8:a3:79:
                    04:d7:bb:82:27:ea:a0:c5:24:76:92:24:8b:9b:03:4e:
                    97:85:db:c7:ed:de:20:ae:3c:43:f3:4b:8a:57:8b:05:
                    64:0a:fa:bb:f9:9f:c0:07:19:a6:f1:ad:8f:4a:1e:94:
                    3f:5f:45:ff:82:25:b0:4c:e2:4b:0c:2d:94:1f:21:c6:
                    98:ce:6d:65:b1:d8:c7:c5:8c:a0:9b:ef:ce:cf:0c:3f:
                    ff:3a:1b:77:89:f2:69:cc:17:d8:f8:75:d0:e8:56:15:
                    32:0e:06:35:c9:52:ae:f2:ad:e3:49:ce:6f:f8:ba:d4:
                    c0:29:f3:e3:dd:28:47:42:42:31:da:27:6b:a1:bf:96:
                    2b:37:69:52:37:61:f1:83:0a:8d:ff:0c:7e:60:5f:d5:
                    07:28:8b:6e:87:50:37:d7:cb:a0:35:c1:10:22:75:55:
                    4d:15:60:f2:f4:7a:c8:83:07:1b:27:6e:8e:60:e3:f0:
                    89:b8:02:b4:87:95:7d:35:88:24:a2:41:7f:c5:d3:68:
                    f6:33:8d:ab:8a:d1:e9:58:37:c9:c8:47:5b:3b:c7:e0:
                    d5:9f:55:c1:24:07:bc:7c:46:1a:23:a8:bf:c6:f7:43
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:f6:8f:11:d1:3d:a9:83:86:c4:5d:70:51:f0:b6:23:
        b2:e1:f5:7e:b4:b6:81:2f:41:3b:61:9c:5b:3b:87:6f:
        56:91:2b:06:91:ac:47:49:91:60:e2:59:30:f2:04:5a:
        91:d9:08:85:ff:d0:47:39:6e:a5:f4:66:55:c3:5e:7a:
        3f:12:54:41:df:8b:b7:f3:c7:a8:cd:27:23:db:71:1c:
        7b:13:93:10:b1:ac:69:48:a2:7d:a7:15:19:f2:14:a2:
        ac:5b:fd:5e:46:d8:ec:54:e8:df:df:33:23:db:d8:dc:
        1b:40:3b:a5:3d:fc:4e:e6:e3:e2:ab:83:60:fd:c1:5e:
        c8:8a:2d:f6:0f:7b:f6:cb:09:a5:d9:76:15:0a:b0:34:
        af:5f:c9:0d:3e:d7:bd:43:c5:85:6c:65:30:73:5e:d8:
        d2:f0:87:75:f2:9c:51:a5:5b:08:f6:ee:6a:a4:5e:e4:
        dc:39:fc:c8:cd:88:c5:24:2a:78:b5:19:be:6e:1c:6b:
        a3:c6:b5:00:09:fd:d9:d5:b1:ea:d7:83:67:89:e6:00:
        ae:f7:f0:0f:e8:8f:d8:64:c8:07:c1:9c:5c:14:0a:3b:
        2e:fb:97:51:25:57:5a:db:e9:48:ca:d2:9d:c5:12:26:
        60:65:a1:0b:16:eb:b5:94:a1:93:01:25:98:ab:b5:2e
    Fingerprint (SHA-256):
        C7:1F:47:81:1C:10:82:90:6D:FF:C8:1E:27:D5:0F:E0:F4:5B:0F:AF:60:FD:84:1D:97:5C:A2:FD:24:9F:54:2C
    Fingerprint (SHA1):
        D3:30:E2:60:14:48:34:5A:C1:C7:C1:EF:39:CD:5E:9B:61:F4:6D:36
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #8194: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #8195: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155843 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8196: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #8197: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8198: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8199: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021155844   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8200: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8201: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #8202: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8203: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021155845   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA1Root-1021155622.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #8204: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8205: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #8206: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8207: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 1021155846   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8208: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8209: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #8210: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155843 (0x3cdd9a03)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:23:43 2017
            Not After : Fri Oct 21 16:23:43 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:42:05:08:8b:c8:77:49:df:0b:db:5d:ce:b8:98:7c:
                    e2:b8:0d:75:a2:a4:05:c9:11:3c:85:cd:77:0d:5c:f5:
                    42:bb:1d:04:ff:6b:93:2f:0b:71:88:60:5c:e6:08:72:
                    1b:cb:03:31:e4:5f:1a:5c:29:6b:de:1a:3e:7d:61:ea:
                    b0:e6:9e:c4:0b:4b:cb:21:e8:97:6f:6a:91:65:f3:ff:
                    14:96:14:16:4d:cc:60:91:17:c1:9d:b2:68:09:c4:2c:
                    7a:51:1e:49:d0:70:81:97:c8:4a:4b:79:c9:1f:a1:f9:
                    01:63:89:2e:e8:ba:32:e4:5b:0c:55:92:95:b8:23:e5:
                    26:44:3e:5f:45:df:5c:29:b6:23:16:76:1d:f8:a3:6e:
                    63:89:69:2a:7b:49:a7:d9:cd:c8:fc:ff:33:31:d2:50:
                    ce:9e:51:be:fd:03:6e:44:3d:ee:ae:c5:90:01:b4:df:
                    f4:e3:67:01:8f:81:a8:99:2e:20:69:65:5e:cb:26:90:
                    61:6a:a2:7a:99:0c:ad:dc:0f:6d:e1:47:b3:17:3d:8a:
                    54:52:4b:16:d8:2a:bf:6e:6a:08:3b:e5:30:91:d2:55:
                    b8:d4:ef:c6:b8:e7:98:f7:ac:87:6b:55:99:1e:fe:e8:
                    c0:e4:b0:06:c0:fd:e2:38:92:4f:95:65:31:23:5b:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3c:88:cf:38:a7:60:96:5a:4e:29:b5:6f:5f:af:0e:8f:
        09:8c:3b:9f:8d:1a:c3:00:56:e7:3a:c9:2e:c4:11:43:
        68:59:8f:a2:fd:cf:86:e3:0a:61:2d:2a:05:7e:93:b2:
        fb:62:f6:9f:a4:ed:6c:78:5c:f8:ce:aa:88:39:f5:8e:
        9d:12:40:dd:51:b6:f8:3d:4f:0e:84:90:60:a3:b9:be:
        d0:27:b2:21:12:7e:e0:9e:d6:e9:4d:c5:b3:7c:ff:f5:
        18:92:4e:0e:ba:e9:62:39:74:e0:2d:ad:a0:64:85:8c:
        ac:1b:3f:1b:c2:a7:8f:60:1b:ac:4f:e7:20:8f:b0:4f:
        56:d8:76:07:d1:f4:26:32:62:d0:ef:2e:55:a8:a9:30:
        15:29:24:3a:4f:54:77:ec:dd:aa:0a:81:9f:de:0b:25:
        10:af:f5:64:d9:59:3f:44:3d:98:f9:32:c1:bb:dc:a2:
        1f:67:14:35:36:d3:22:0c:40:c1:ab:83:f0:23:b1:e4:
        82:a8:3b:5d:ea:ef:1e:ef:d6:b1:4b:19:01:08:d7:f1:
        72:32:8d:2e:77:68:4a:71:4e:77:e2:8a:6e:55:0c:c9:
        90:fc:14:7d:16:ea:84:f8:83:34:3f:4c:86:c0:2c:cf:
        4e:d4:05:a6:61:9d:c6:a8:ca:77:c3:c9:33:7b:a5:3f
    Fingerprint (SHA-256):
        80:BB:9D:4D:B6:FA:DD:03:C5:1A:BB:AB:5D:91:04:6F:A3:7E:A4:59:19:F6:9B:7C:6B:E7:C8:D8:2F:83:78:8F
    Fingerprint (SHA1):
        8E:D2:89:66:03:A6:3B:55:FC:C4:38:E9:F5:31:8D:A4:83:D6:F8:06
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8211: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #8212: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155847 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8213: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #8214: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #8215: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155848 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8216: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #8217: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #8218: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8219: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 1021155849 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8220: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8221: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 1021155850 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8222: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8223: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #8224: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8225: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8226: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 1021155851   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-Bridge-1021155623.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #8227: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8228: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #8229: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8230: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021155852   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8231: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8232: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #8233: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #8234: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155848 (0x3cdd9a08)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 16:24:09 2017
            Not After : Fri Oct 21 16:24:09 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:a6:9b:7a:02:04:a5:6b:85:d1:9a:a4:a0:44:2a:fb:
                    68:ef:65:f7:09:d0:d2:a7:9d:dd:a1:8d:8a:4b:5e:31:
                    27:55:c4:54:cf:cf:48:1f:7b:79:a1:d3:2a:50:12:ab:
                    67:cb:0f:d8:ec:70:73:dc:98:91:26:64:97:3f:4a:cb:
                    ff:c3:3c:41:17:0b:8b:78:8c:ac:4e:fd:d1:66:75:69:
                    97:b2:37:b7:6a:06:ac:ee:60:70:21:52:bb:6d:97:9d:
                    7d:df:7f:e6:98:ba:ed:af:15:b2:7e:d4:e5:13:50:06:
                    36:65:61:5a:5f:d9:93:ef:66:d0:84:06:2b:bf:a6:9b:
                    2c:22:02:3c:1f:f9:bd:5a:7b:c1:6c:75:a9:f5:e8:e4:
                    4d:32:15:53:15:e4:5c:73:bf:b1:ba:3d:fc:16:82:b3:
                    ac:5d:d9:07:ce:bf:f0:ad:52:79:c5:db:16:55:5b:70:
                    df:9b:d7:5a:8f:d5:da:90:dc:5a:8b:5d:d6:f7:5d:4a:
                    3f:ca:a4:8c:5e:75:0f:10:1d:6c:36:50:5b:26:01:e4:
                    b4:e7:31:1d:32:36:3e:04:0e:9b:17:0d:af:e3:ca:6b:
                    2f:e7:49:e7:12:af:da:bd:ac:1e:39:51:df:d6:70:ad:
                    83:bc:13:ca:a9:a1:03:df:65:4e:1b:db:4a:f5:e3:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        18:d1:5f:40:ba:fe:ea:ec:8c:c3:e0:18:e0:15:b9:92:
        76:e1:ef:aa:43:e1:f3:7b:97:b3:e6:c7:7c:ee:c5:10:
        5c:d6:d8:07:bc:7c:bf:11:79:f6:17:dd:34:73:65:30:
        a1:0a:b0:a4:ab:ff:83:05:95:02:34:bb:a4:cc:6c:ce:
        14:ff:18:dc:14:c1:2a:0d:dd:ea:49:d2:76:be:14:5e:
        2c:64:26:b3:61:b9:34:e0:b2:7a:4d:18:e6:21:2d:2a:
        ad:0e:8a:39:e5:bd:01:01:0b:8b:ff:49:87:85:47:3f:
        f4:71:f8:d6:97:aa:77:63:af:f1:ac:ee:cb:8c:4b:4c:
        84:ba:9a:78:f0:ff:14:8b:98:85:6c:33:f6:43:7b:d8:
        51:9a:19:d1:a8:c0:a9:b4:0b:4f:bc:82:82:ae:d4:da:
        3c:d9:26:a8:48:5c:59:14:53:f0:36:f4:71:f1:31:37:
        cf:0b:4b:d3:42:8f:e2:a9:3c:dc:f8:d3:3b:1a:dc:4d:
        f0:1c:38:8b:71:41:c1:4c:5e:60:fc:cd:9a:65:65:0d:
        af:05:d8:f2:42:9a:1e:2b:80:cb:f3:25:6a:b3:28:7f:
        9a:4c:3d:86:ae:bc:55:99:56:9c:c5:0f:7e:30:8f:31:
        da:d2:36:15:87:f3:a7:08:24:91:ec:cd:c4:ba:aa:b6
    Fingerprint (SHA-256):
        2A:81:A9:6D:24:28:1A:59:25:BA:B9:92:A0:C6:23:7B:61:54:F3:73:7D:3F:98:7D:BA:0C:9D:A4:DC:A4:E6:EB
    Fingerprint (SHA1):
        9C:A5:E7:7F:28:5E:5D:30:53:0F:48:7E:88:FE:51:B7:7F:14:C2:B1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #8235: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155848 (0x3cdd9a08)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 16:24:09 2017
            Not After : Fri Oct 21 16:24:09 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:a6:9b:7a:02:04:a5:6b:85:d1:9a:a4:a0:44:2a:fb:
                    68:ef:65:f7:09:d0:d2:a7:9d:dd:a1:8d:8a:4b:5e:31:
                    27:55:c4:54:cf:cf:48:1f:7b:79:a1:d3:2a:50:12:ab:
                    67:cb:0f:d8:ec:70:73:dc:98:91:26:64:97:3f:4a:cb:
                    ff:c3:3c:41:17:0b:8b:78:8c:ac:4e:fd:d1:66:75:69:
                    97:b2:37:b7:6a:06:ac:ee:60:70:21:52:bb:6d:97:9d:
                    7d:df:7f:e6:98:ba:ed:af:15:b2:7e:d4:e5:13:50:06:
                    36:65:61:5a:5f:d9:93:ef:66:d0:84:06:2b:bf:a6:9b:
                    2c:22:02:3c:1f:f9:bd:5a:7b:c1:6c:75:a9:f5:e8:e4:
                    4d:32:15:53:15:e4:5c:73:bf:b1:ba:3d:fc:16:82:b3:
                    ac:5d:d9:07:ce:bf:f0:ad:52:79:c5:db:16:55:5b:70:
                    df:9b:d7:5a:8f:d5:da:90:dc:5a:8b:5d:d6:f7:5d:4a:
                    3f:ca:a4:8c:5e:75:0f:10:1d:6c:36:50:5b:26:01:e4:
                    b4:e7:31:1d:32:36:3e:04:0e:9b:17:0d:af:e3:ca:6b:
                    2f:e7:49:e7:12:af:da:bd:ac:1e:39:51:df:d6:70:ad:
                    83:bc:13:ca:a9:a1:03:df:65:4e:1b:db:4a:f5:e3:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        18:d1:5f:40:ba:fe:ea:ec:8c:c3:e0:18:e0:15:b9:92:
        76:e1:ef:aa:43:e1:f3:7b:97:b3:e6:c7:7c:ee:c5:10:
        5c:d6:d8:07:bc:7c:bf:11:79:f6:17:dd:34:73:65:30:
        a1:0a:b0:a4:ab:ff:83:05:95:02:34:bb:a4:cc:6c:ce:
        14:ff:18:dc:14:c1:2a:0d:dd:ea:49:d2:76:be:14:5e:
        2c:64:26:b3:61:b9:34:e0:b2:7a:4d:18:e6:21:2d:2a:
        ad:0e:8a:39:e5:bd:01:01:0b:8b:ff:49:87:85:47:3f:
        f4:71:f8:d6:97:aa:77:63:af:f1:ac:ee:cb:8c:4b:4c:
        84:ba:9a:78:f0:ff:14:8b:98:85:6c:33:f6:43:7b:d8:
        51:9a:19:d1:a8:c0:a9:b4:0b:4f:bc:82:82:ae:d4:da:
        3c:d9:26:a8:48:5c:59:14:53:f0:36:f4:71:f1:31:37:
        cf:0b:4b:d3:42:8f:e2:a9:3c:dc:f8:d3:3b:1a:dc:4d:
        f0:1c:38:8b:71:41:c1:4c:5e:60:fc:cd:9a:65:65:0d:
        af:05:d8:f2:42:9a:1e:2b:80:cb:f3:25:6a:b3:28:7f:
        9a:4c:3d:86:ae:bc:55:99:56:9c:c5:0f:7e:30:8f:31:
        da:d2:36:15:87:f3:a7:08:24:91:ec:cd:c4:ba:aa:b6
    Fingerprint (SHA-256):
        2A:81:A9:6D:24:28:1A:59:25:BA:B9:92:A0:C6:23:7B:61:54:F3:73:7D:3F:98:7D:BA:0C:9D:A4:DC:A4:E6:EB
    Fingerprint (SHA1):
        9C:A5:E7:7F:28:5E:5D:30:53:0F:48:7E:88:FE:51:B7:7F:14:C2:B1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #8236: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #8237: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155853 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8238: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #8239: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #8240: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155854 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8241: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #8242: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #8243: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8244: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 1021155855 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8245: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8246: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 1021155856 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8247: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8248: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #8249: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8250: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8251: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 1021155857   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-Bridge-1021155624.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #8252: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8253: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #8254: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8255: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021155858   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8256: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8257: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #8258: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8259: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 1021155859   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-BridgeNavy-1021155625.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #8260: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8261: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #8262: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8263: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 1021155860   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8264: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8265: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #8266: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #8267: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155854 (0x3cdd9a0e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 16:24:40 2017
            Not After : Fri Oct 21 16:24:40 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:22:ec:7c:21:d6:e2:35:d9:0d:c0:c7:ec:bd:76:44:
                    97:ed:76:fc:5b:04:13:6a:e0:bb:60:00:7d:f2:06:94:
                    e9:0c:ec:40:df:a3:2f:a7:13:79:4d:52:08:36:61:ed:
                    45:08:4b:30:a4:c4:19:1c:b6:b5:56:1a:5f:bc:0c:52:
                    4f:f6:d7:29:e6:67:3d:ad:f0:0c:07:92:fc:4c:1b:ec:
                    fe:0b:c5:e7:13:34:06:fc:b4:70:ff:28:f5:97:88:90:
                    a6:ad:c7:60:97:c7:27:2a:e9:b5:be:fa:16:28:d4:70:
                    40:93:f5:21:90:4c:19:40:26:43:99:0b:1f:a2:40:6f:
                    26:8a:7a:07:11:cd:db:60:3d:c5:07:2c:b3:7a:85:01:
                    80:c3:00:9c:27:1e:ae:02:bc:24:03:63:e1:ab:52:39:
                    c1:e6:32:8f:6a:19:df:ac:59:d9:05:b3:a9:04:b1:42:
                    08:3d:42:31:b0:7e:c1:bb:bc:5d:d4:c2:84:08:f4:87:
                    ac:44:a2:0a:53:b3:1d:a9:b0:cf:55:e4:00:d6:45:3c:
                    10:27:b3:dd:42:3b:91:8e:a9:3b:98:55:ac:25:af:85:
                    82:c8:bb:f8:aa:b5:c2:0c:ec:3b:83:84:c0:cb:f6:63:
                    27:41:01:14:64:a7:7e:52:d4:cd:03:76:be:46:39:95
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:03:fe:e5:43:2f:2a:43:34:f1:7c:07:90:76:40:3b:
        0a:93:a5:91:58:fe:2f:ca:2b:71:61:5d:6f:d4:38:76:
        f6:fa:fc:08:aa:4d:f9:83:bf:1d:b3:5b:43:f3:02:d9:
        cc:cd:94:ab:7b:36:fe:24:c0:c3:b6:65:89:d4:dc:05:
        3f:08:f8:64:63:02:f9:a4:a8:4e:a6:2b:cb:3c:0e:ba:
        b3:db:96:43:b5:ea:8f:a7:a8:cc:c1:06:1e:2e:50:47:
        f6:d3:13:96:8e:6b:0e:16:dd:f9:0b:94:53:b9:6e:31:
        6c:48:91:7f:c4:8e:5b:2f:f7:2d:66:4e:be:7a:14:bd:
        04:66:48:53:1e:31:ab:1c:12:cd:79:d7:40:9b:a3:22:
        f1:05:5a:af:55:75:b3:aa:d2:fc:6c:e6:03:ec:fd:e6:
        54:83:9b:4d:fb:91:cc:ff:39:54:36:ef:47:49:82:34:
        ef:75:14:bd:02:aa:84:57:68:85:d2:db:e9:a0:3d:86:
        41:28:09:b4:fd:dd:48:dc:f2:0d:41:90:54:f1:d9:c5:
        3f:b1:22:08:fd:59:e4:17:9f:b9:18:d2:6b:1c:db:0e:
        b8:e2:5e:46:bf:10:b4:e7:1c:a9:59:1f:1f:d7:24:28:
        e1:11:a0:71:c4:28:a2:a3:80:90:28:81:09:25:b2:de
    Fingerprint (SHA-256):
        69:1B:85:D3:9C:EC:8E:AA:DE:2A:AE:82:11:35:9E:15:4D:FC:9C:15:D6:0C:89:03:87:E3:EB:77:8C:F4:C1:2D
    Fingerprint (SHA1):
        EB:5B:7A:C2:79:2F:E8:A1:82:CB:E7:F1:02:C8:B4:FE:3C:3D:25:E3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #8268: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155854 (0x3cdd9a0e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 16:24:40 2017
            Not After : Fri Oct 21 16:24:40 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:22:ec:7c:21:d6:e2:35:d9:0d:c0:c7:ec:bd:76:44:
                    97:ed:76:fc:5b:04:13:6a:e0:bb:60:00:7d:f2:06:94:
                    e9:0c:ec:40:df:a3:2f:a7:13:79:4d:52:08:36:61:ed:
                    45:08:4b:30:a4:c4:19:1c:b6:b5:56:1a:5f:bc:0c:52:
                    4f:f6:d7:29:e6:67:3d:ad:f0:0c:07:92:fc:4c:1b:ec:
                    fe:0b:c5:e7:13:34:06:fc:b4:70:ff:28:f5:97:88:90:
                    a6:ad:c7:60:97:c7:27:2a:e9:b5:be:fa:16:28:d4:70:
                    40:93:f5:21:90:4c:19:40:26:43:99:0b:1f:a2:40:6f:
                    26:8a:7a:07:11:cd:db:60:3d:c5:07:2c:b3:7a:85:01:
                    80:c3:00:9c:27:1e:ae:02:bc:24:03:63:e1:ab:52:39:
                    c1:e6:32:8f:6a:19:df:ac:59:d9:05:b3:a9:04:b1:42:
                    08:3d:42:31:b0:7e:c1:bb:bc:5d:d4:c2:84:08:f4:87:
                    ac:44:a2:0a:53:b3:1d:a9:b0:cf:55:e4:00:d6:45:3c:
                    10:27:b3:dd:42:3b:91:8e:a9:3b:98:55:ac:25:af:85:
                    82:c8:bb:f8:aa:b5:c2:0c:ec:3b:83:84:c0:cb:f6:63:
                    27:41:01:14:64:a7:7e:52:d4:cd:03:76:be:46:39:95
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:03:fe:e5:43:2f:2a:43:34:f1:7c:07:90:76:40:3b:
        0a:93:a5:91:58:fe:2f:ca:2b:71:61:5d:6f:d4:38:76:
        f6:fa:fc:08:aa:4d:f9:83:bf:1d:b3:5b:43:f3:02:d9:
        cc:cd:94:ab:7b:36:fe:24:c0:c3:b6:65:89:d4:dc:05:
        3f:08:f8:64:63:02:f9:a4:a8:4e:a6:2b:cb:3c:0e:ba:
        b3:db:96:43:b5:ea:8f:a7:a8:cc:c1:06:1e:2e:50:47:
        f6:d3:13:96:8e:6b:0e:16:dd:f9:0b:94:53:b9:6e:31:
        6c:48:91:7f:c4:8e:5b:2f:f7:2d:66:4e:be:7a:14:bd:
        04:66:48:53:1e:31:ab:1c:12:cd:79:d7:40:9b:a3:22:
        f1:05:5a:af:55:75:b3:aa:d2:fc:6c:e6:03:ec:fd:e6:
        54:83:9b:4d:fb:91:cc:ff:39:54:36:ef:47:49:82:34:
        ef:75:14:bd:02:aa:84:57:68:85:d2:db:e9:a0:3d:86:
        41:28:09:b4:fd:dd:48:dc:f2:0d:41:90:54:f1:d9:c5:
        3f:b1:22:08:fd:59:e4:17:9f:b9:18:d2:6b:1c:db:0e:
        b8:e2:5e:46:bf:10:b4:e7:1c:a9:59:1f:1f:d7:24:28:
        e1:11:a0:71:c4:28:a2:a3:80:90:28:81:09:25:b2:de
    Fingerprint (SHA-256):
        69:1B:85:D3:9C:EC:8E:AA:DE:2A:AE:82:11:35:9E:15:4D:FC:9C:15:D6:0C:89:03:87:E3:EB:77:8C:F4:C1:2D
    Fingerprint (SHA1):
        EB:5B:7A:C2:79:2F:E8:A1:82:CB:E7:F1:02:C8:B4:FE:3C:3D:25:E3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #8269: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #8270: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155853 (0x3cdd9a0d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 16:24:35 2017
            Not After : Fri Oct 21 16:24:35 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:de:9d:5e:fb:da:4d:37:19:58:98:fc:f9:93:f2:a4:
                    3e:e9:f1:ff:c3:95:1b:2b:36:bb:90:98:7e:ae:3f:89:
                    15:2e:e4:31:10:e9:59:a9:ce:34:49:af:c8:2b:a2:d6:
                    05:ea:11:9a:07:96:95:06:42:22:64:34:4a:fa:ec:56:
                    45:f0:cb:c3:6c:d8:24:49:8c:a6:79:b6:14:ee:95:0d:
                    e3:dc:35:3a:2f:29:42:25:a9:f3:a3:a9:3c:cc:18:27:
                    5b:b8:16:51:63:80:4a:f6:96:ee:6f:f3:a3:52:0a:0f:
                    20:5a:0a:b3:09:bd:87:3d:59:10:5e:da:01:64:67:a3:
                    e9:75:c2:e0:23:c4:30:e8:c6:d7:06:e0:71:0e:d7:4f:
                    0a:7e:66:d7:c3:32:0d:e4:69:81:47:be:e0:eb:e0:3b:
                    57:25:2e:06:b7:be:4f:73:2b:5f:12:a2:9c:dd:b2:81:
                    f0:a1:20:5e:6d:1d:a2:52:8b:62:c7:1e:66:dc:9d:9f:
                    dd:2f:13:87:76:7a:43:e2:3f:1d:22:dd:07:93:34:2b:
                    1c:c1:97:ab:db:d5:48:81:55:df:c3:b1:79:77:a1:22:
                    48:d7:d8:a6:04:31:8f:1b:19:92:e4:c5:a3:02:cd:fd:
                    66:c8:5b:ac:01:3b:e5:35:c4:87:82:5c:a8:d8:6f:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        61:25:b7:f5:9c:66:e2:be:47:08:5f:cc:bd:a9:84:13:
        52:c0:e9:96:42:21:f1:56:77:2b:0f:f9:f3:26:88:21:
        58:16:69:7c:d1:00:79:d7:f4:ca:ae:ed:f6:3c:47:48:
        39:0c:f4:91:e3:08:52:d8:0b:bc:33:bd:4f:5e:80:fb:
        a6:d6:3a:bd:16:d1:47:00:fc:27:4e:0a:bb:50:15:bc:
        47:e4:83:20:55:83:0d:c1:a8:80:86:18:74:d5:ca:51:
        7e:0c:4d:4f:f6:8d:82:e7:ba:47:0d:5a:de:84:9c:0b:
        78:2d:b6:ad:67:a9:15:c2:2b:ee:3e:d1:f6:90:ea:1a:
        f5:78:09:0b:41:c1:c3:45:74:89:8e:c6:b9:85:f8:f0:
        5f:26:f2:2b:9e:04:36:74:99:d9:ae:c6:bf:71:b7:4c:
        52:d2:f4:2a:93:81:a4:26:c9:8c:c3:32:3e:72:03:8a:
        23:1b:7e:67:17:6c:da:ca:00:3e:ad:73:7d:60:f2:ab:
        01:b0:b0:4e:6e:ff:f3:9b:eb:7e:df:77:c6:9e:40:1f:
        50:d0:3d:3f:ca:ca:8d:47:20:df:93:2c:5b:29:8c:05:
        1a:dd:f6:08:aa:ef:6b:03:07:57:f4:57:ee:35:4c:89:
        d9:23:10:21:bb:c2:34:2c:56:89:7f:d8:10:26:f0:7a
    Fingerprint (SHA-256):
        26:23:2D:E0:97:53:EF:48:28:29:23:E7:73:4E:36:75:E4:C9:6B:BA:AA:CB:9C:A6:91:59:AE:28:14:DE:CF:2F
    Fingerprint (SHA1):
        79:66:0F:18:25:1F:C6:52:58:16:F9:3C:52:72:48:57:4A:A3:5D:1D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #8271: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155854 (0x3cdd9a0e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 16:24:40 2017
            Not After : Fri Oct 21 16:24:40 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:22:ec:7c:21:d6:e2:35:d9:0d:c0:c7:ec:bd:76:44:
                    97:ed:76:fc:5b:04:13:6a:e0:bb:60:00:7d:f2:06:94:
                    e9:0c:ec:40:df:a3:2f:a7:13:79:4d:52:08:36:61:ed:
                    45:08:4b:30:a4:c4:19:1c:b6:b5:56:1a:5f:bc:0c:52:
                    4f:f6:d7:29:e6:67:3d:ad:f0:0c:07:92:fc:4c:1b:ec:
                    fe:0b:c5:e7:13:34:06:fc:b4:70:ff:28:f5:97:88:90:
                    a6:ad:c7:60:97:c7:27:2a:e9:b5:be:fa:16:28:d4:70:
                    40:93:f5:21:90:4c:19:40:26:43:99:0b:1f:a2:40:6f:
                    26:8a:7a:07:11:cd:db:60:3d:c5:07:2c:b3:7a:85:01:
                    80:c3:00:9c:27:1e:ae:02:bc:24:03:63:e1:ab:52:39:
                    c1:e6:32:8f:6a:19:df:ac:59:d9:05:b3:a9:04:b1:42:
                    08:3d:42:31:b0:7e:c1:bb:bc:5d:d4:c2:84:08:f4:87:
                    ac:44:a2:0a:53:b3:1d:a9:b0:cf:55:e4:00:d6:45:3c:
                    10:27:b3:dd:42:3b:91:8e:a9:3b:98:55:ac:25:af:85:
                    82:c8:bb:f8:aa:b5:c2:0c:ec:3b:83:84:c0:cb:f6:63:
                    27:41:01:14:64:a7:7e:52:d4:cd:03:76:be:46:39:95
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:03:fe:e5:43:2f:2a:43:34:f1:7c:07:90:76:40:3b:
        0a:93:a5:91:58:fe:2f:ca:2b:71:61:5d:6f:d4:38:76:
        f6:fa:fc:08:aa:4d:f9:83:bf:1d:b3:5b:43:f3:02:d9:
        cc:cd:94:ab:7b:36:fe:24:c0:c3:b6:65:89:d4:dc:05:
        3f:08:f8:64:63:02:f9:a4:a8:4e:a6:2b:cb:3c:0e:ba:
        b3:db:96:43:b5:ea:8f:a7:a8:cc:c1:06:1e:2e:50:47:
        f6:d3:13:96:8e:6b:0e:16:dd:f9:0b:94:53:b9:6e:31:
        6c:48:91:7f:c4:8e:5b:2f:f7:2d:66:4e:be:7a:14:bd:
        04:66:48:53:1e:31:ab:1c:12:cd:79:d7:40:9b:a3:22:
        f1:05:5a:af:55:75:b3:aa:d2:fc:6c:e6:03:ec:fd:e6:
        54:83:9b:4d:fb:91:cc:ff:39:54:36:ef:47:49:82:34:
        ef:75:14:bd:02:aa:84:57:68:85:d2:db:e9:a0:3d:86:
        41:28:09:b4:fd:dd:48:dc:f2:0d:41:90:54:f1:d9:c5:
        3f:b1:22:08:fd:59:e4:17:9f:b9:18:d2:6b:1c:db:0e:
        b8:e2:5e:46:bf:10:b4:e7:1c:a9:59:1f:1f:d7:24:28:
        e1:11:a0:71:c4:28:a2:a3:80:90:28:81:09:25:b2:de
    Fingerprint (SHA-256):
        69:1B:85:D3:9C:EC:8E:AA:DE:2A:AE:82:11:35:9E:15:4D:FC:9C:15:D6:0C:89:03:87:E3:EB:77:8C:F4:C1:2D
    Fingerprint (SHA1):
        EB:5B:7A:C2:79:2F:E8:A1:82:CB:E7:F1:02:C8:B4:FE:3C:3D:25:E3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #8272: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155854 (0x3cdd9a0e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 16:24:40 2017
            Not After : Fri Oct 21 16:24:40 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:22:ec:7c:21:d6:e2:35:d9:0d:c0:c7:ec:bd:76:44:
                    97:ed:76:fc:5b:04:13:6a:e0:bb:60:00:7d:f2:06:94:
                    e9:0c:ec:40:df:a3:2f:a7:13:79:4d:52:08:36:61:ed:
                    45:08:4b:30:a4:c4:19:1c:b6:b5:56:1a:5f:bc:0c:52:
                    4f:f6:d7:29:e6:67:3d:ad:f0:0c:07:92:fc:4c:1b:ec:
                    fe:0b:c5:e7:13:34:06:fc:b4:70:ff:28:f5:97:88:90:
                    a6:ad:c7:60:97:c7:27:2a:e9:b5:be:fa:16:28:d4:70:
                    40:93:f5:21:90:4c:19:40:26:43:99:0b:1f:a2:40:6f:
                    26:8a:7a:07:11:cd:db:60:3d:c5:07:2c:b3:7a:85:01:
                    80:c3:00:9c:27:1e:ae:02:bc:24:03:63:e1:ab:52:39:
                    c1:e6:32:8f:6a:19:df:ac:59:d9:05:b3:a9:04:b1:42:
                    08:3d:42:31:b0:7e:c1:bb:bc:5d:d4:c2:84:08:f4:87:
                    ac:44:a2:0a:53:b3:1d:a9:b0:cf:55:e4:00:d6:45:3c:
                    10:27:b3:dd:42:3b:91:8e:a9:3b:98:55:ac:25:af:85:
                    82:c8:bb:f8:aa:b5:c2:0c:ec:3b:83:84:c0:cb:f6:63:
                    27:41:01:14:64:a7:7e:52:d4:cd:03:76:be:46:39:95
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:03:fe:e5:43:2f:2a:43:34:f1:7c:07:90:76:40:3b:
        0a:93:a5:91:58:fe:2f:ca:2b:71:61:5d:6f:d4:38:76:
        f6:fa:fc:08:aa:4d:f9:83:bf:1d:b3:5b:43:f3:02:d9:
        cc:cd:94:ab:7b:36:fe:24:c0:c3:b6:65:89:d4:dc:05:
        3f:08:f8:64:63:02:f9:a4:a8:4e:a6:2b:cb:3c:0e:ba:
        b3:db:96:43:b5:ea:8f:a7:a8:cc:c1:06:1e:2e:50:47:
        f6:d3:13:96:8e:6b:0e:16:dd:f9:0b:94:53:b9:6e:31:
        6c:48:91:7f:c4:8e:5b:2f:f7:2d:66:4e:be:7a:14:bd:
        04:66:48:53:1e:31:ab:1c:12:cd:79:d7:40:9b:a3:22:
        f1:05:5a:af:55:75:b3:aa:d2:fc:6c:e6:03:ec:fd:e6:
        54:83:9b:4d:fb:91:cc:ff:39:54:36:ef:47:49:82:34:
        ef:75:14:bd:02:aa:84:57:68:85:d2:db:e9:a0:3d:86:
        41:28:09:b4:fd:dd:48:dc:f2:0d:41:90:54:f1:d9:c5:
        3f:b1:22:08:fd:59:e4:17:9f:b9:18:d2:6b:1c:db:0e:
        b8:e2:5e:46:bf:10:b4:e7:1c:a9:59:1f:1f:d7:24:28:
        e1:11:a0:71:c4:28:a2:a3:80:90:28:81:09:25:b2:de
    Fingerprint (SHA-256):
        69:1B:85:D3:9C:EC:8E:AA:DE:2A:AE:82:11:35:9E:15:4D:FC:9C:15:D6:0C:89:03:87:E3:EB:77:8C:F4:C1:2D
    Fingerprint (SHA1):
        EB:5B:7A:C2:79:2F:E8:A1:82:CB:E7:F1:02:C8:B4:FE:3C:3D:25:E3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #8273: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #8274: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155861 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8275: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #8276: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #8277: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155862 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8278: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #8279: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #8280: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8281: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 1021155863   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8282: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8283: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #8284: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8285: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 1021155864   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8286: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8287: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #8288: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8289: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 1021155865 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #8290: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8291: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 1021155866 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #8292: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8293: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #8294: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8295: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8296: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 1021155867   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8297: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8298: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #8299: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8300: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 1021155868   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8301: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8302: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #8303: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8304: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021155869   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8305: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8306: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #8307: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8308: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 1021155870   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8309: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8310: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8311: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155861 (0x3cdd9a15)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 16:25:18 2017
            Not After : Fri Oct 21 16:25:18 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:d5:e1:da:75:99:93:a5:e8:58:b3:d6:de:19:91:31:
                    73:dd:5a:50:be:84:eb:58:4c:fa:a8:e5:bd:54:c4:b8:
                    21:49:96:a8:0e:d9:96:ec:a6:e6:5f:32:e6:f8:51:13:
                    4e:90:42:cc:24:92:eb:bb:99:05:06:87:1d:47:a8:83:
                    2d:06:ee:35:78:7b:6a:73:0e:1a:34:2c:e2:78:0e:77:
                    2a:f0:e2:8f:25:be:ee:4b:49:83:a2:ba:c6:b8:a1:99:
                    9b:ae:cd:89:3c:54:d3:26:b7:67:01:4e:7e:d9:5a:7a:
                    b0:12:a3:e2:be:9e:d1:55:bc:68:a4:f1:74:2c:32:4a:
                    55:31:2f:42:d5:3f:5d:4e:b4:32:3e:5c:41:46:99:14:
                    e9:7b:31:94:8a:58:13:78:88:01:b2:61:92:f3:99:48:
                    c5:40:b1:f6:ea:fc:60:ba:96:e6:23:b2:28:21:3e:c4:
                    d5:63:8c:48:85:ce:f7:12:9f:ac:15:80:6b:2e:e6:6a:
                    96:c6:6a:3c:ba:e7:a7:a6:d6:63:8a:17:fd:a6:be:7e:
                    51:e4:4c:5c:09:a1:ee:2f:3d:1f:55:df:d1:ad:13:11:
                    00:e2:31:50:b0:e0:57:df:59:a6:f8:48:f5:ad:7b:4c:
                    1d:fd:02:51:c2:a8:61:87:f3:96:4d:f0:32:46:f3:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:b9:c2:b6:b5:2f:71:3a:96:c4:d7:3c:19:81:fc:e9:
        f8:ac:6e:5d:00:35:de:a2:3c:56:ad:7b:7e:d0:1e:97:
        f6:7e:c9:63:23:ee:ca:f3:10:5d:a6:73:9f:6e:ae:b2:
        80:19:31:1c:86:3e:cd:94:72:aa:70:98:76:2d:15:78:
        d6:4f:ed:ec:3a:91:27:15:0b:61:e0:cd:77:4d:e3:a7:
        4a:02:94:ed:db:fa:9a:c4:d5:9d:98:95:f4:28:6a:8b:
        c1:af:89:98:10:34:bd:dd:a0:a9:57:0e:d5:d1:7b:0c:
        07:9b:86:52:3b:6b:66:07:0f:2a:af:3f:2a:8a:0a:2e:
        5c:30:b2:4d:29:b3:74:34:ce:bb:75:7c:67:e8:5c:74:
        49:2c:61:6f:94:7b:a0:05:7d:ad:59:df:6b:c8:e4:ec:
        88:b2:81:09:f2:0f:38:56:36:63:e2:c8:c4:c1:97:fe:
        b2:ef:d3:ff:da:88:ff:28:d8:2b:0a:65:14:e1:e5:c1:
        3f:29:4a:27:1a:fe:1d:ee:fa:20:7e:b9:15:be:50:a3:
        7f:5f:94:88:30:19:6c:38:3f:56:d8:85:76:86:35:18:
        b8:a9:13:52:cc:73:df:3e:d1:a0:4d:92:77:22:d6:97:
        d9:0e:53:9b:a8:04:4a:96:68:94:86:d6:fd:ee:6b:87
    Fingerprint (SHA-256):
        FF:E6:FB:9F:DE:F5:13:5E:C7:8E:85:30:58:DB:3B:EA:B3:61:1F:46:DF:C1:1D:1E:AF:FA:26:CF:05:1E:45:5E
    Fingerprint (SHA1):
        34:50:31:C8:5C:A9:A3:C1:66:ED:61:0C:86:98:E2:F5:BA:5B:61:E4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #8312: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8313: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8314: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8315: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8316: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8317: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8318: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8319: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8320: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155862 (0x3cdd9a16)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 16:25:23 2017
            Not After : Fri Oct 21 16:25:23 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:e5:8c:6f:1a:ee:43:6e:9e:c0:78:9c:53:70:85:49:
                    60:45:c5:ec:2f:89:48:90:ff:3b:29:eb:d9:1a:c4:ad:
                    3b:bf:f0:91:cd:74:12:0f:bf:f7:2d:95:47:d2:d7:ba:
                    bc:94:af:75:b5:4b:8e:58:9f:69:d6:87:48:d8:6f:6d:
                    93:1d:31:ae:95:6b:41:ec:db:80:0d:44:21:7b:69:23:
                    cf:b6:d5:aa:b2:db:22:6a:fb:c1:bd:e1:66:62:12:07:
                    8e:36:02:ad:45:c8:2c:09:67:41:5a:9c:50:d0:c1:86:
                    9f:b3:34:f7:52:9f:9b:dc:07:74:c1:0d:3d:34:c7:56:
                    ac:3d:ed:6d:13:e5:05:74:84:95:01:e2:9d:a6:fa:6f:
                    2f:fe:ca:61:ae:c4:61:e5:63:80:9a:0b:ec:5e:b8:fa:
                    63:5c:51:ac:f2:ce:0c:29:2b:a5:fd:78:3f:7f:50:1d:
                    06:c7:95:d1:f3:55:30:6f:cc:21:d8:e5:62:9c:5a:73:
                    8d:66:95:da:cc:ca:1c:64:62:80:3f:18:9d:4d:51:d1:
                    48:2c:6f:9c:bd:21:b5:04:0e:bd:3a:6b:08:4f:3f:6e:
                    01:66:f8:c7:cc:5c:50:4b:87:aa:c1:2a:e0:e8:45:48:
                    8f:6a:e4:a9:a8:13:85:20:e3:72:8b:b7:bb:63:7f:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9f:2b:1c:70:5d:f2:91:8b:aa:40:f5:72:c8:11:c5:b7:
        1b:1d:5d:23:84:70:a1:89:dc:a5:66:ab:c5:74:a4:c4:
        f3:6f:d3:42:1b:e4:7e:88:2f:27:0e:81:40:d7:f1:b4:
        6b:a9:bd:3b:d9:48:cb:b4:d6:45:7b:54:e5:d3:66:96:
        21:88:bc:c3:5e:a1:77:ac:33:c0:4a:84:51:83:76:18:
        4c:88:5e:ee:14:8b:bc:00:a9:78:e6:53:85:b1:73:2a:
        80:07:68:49:9e:33:00:2a:0e:3e:ff:97:a8:e0:e9:b4:
        e1:92:43:6f:e8:0f:ac:c0:86:15:81:b6:47:8f:00:b1:
        94:b4:60:71:70:9f:69:66:6e:8f:99:f7:10:94:b1:43:
        0e:08:1b:fc:2a:fb:12:99:e5:4a:02:0b:4f:f7:f2:70:
        c8:7b:f2:a3:6b:0b:dc:58:9b:79:d3:cb:49:52:b9:36:
        27:d9:0e:00:a9:fc:1f:8d:61:92:1b:ef:c4:ba:81:47:
        ff:76:b4:75:f2:f4:f6:da:60:3a:b6:51:17:e3:9b:07:
        28:da:c6:fb:52:fb:ed:44:b8:1e:d7:d2:be:44:a8:67:
        0b:65:70:cd:4d:de:6d:70:05:37:99:4e:0d:2e:e9:b8:
        4f:5a:2e:55:e4:89:40:a7:e3:be:2f:a6:0a:41:6a:83
    Fingerprint (SHA-256):
        89:27:79:C5:DF:BD:95:97:4B:14:73:D2:98:16:6F:BC:C4:C7:0E:91:D4:35:1C:6C:E7:1B:FE:D8:44:05:C8:87
    Fingerprint (SHA1):
        1E:C5:3E:7E:78:2B:CA:7D:BD:49:05:E4:5C:22:5F:5A:EF:1B:8A:82
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #8321: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8322: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8323: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8324: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8325: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #8326: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #8327: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #8328: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #8329: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #8330: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #8331: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #8332: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #8333: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #8334: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #8335: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #8336: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #8337: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #8338: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #8339: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155871 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8340: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #8341: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8342: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8343: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021155872   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8344: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8345: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #8346: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8347: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021155873   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8348: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8349: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #8350: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8351: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 1021155874   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8352: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8353: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #8354: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8355: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 1021155875   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8356: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8357: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #8358: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8359: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 1021155876   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8360: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8361: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #8362: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8363: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 1021155877   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8364: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8365: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #8366: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8367: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 1021155878   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8368: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8369: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #8370: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8371: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 1021155879   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8372: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8373: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #8374: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155871 (0x3cdd9a1f)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:26:25 2017
            Not After : Fri Oct 21 16:26:25 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    21:aa:37:8a:a6:0f:bb:c2:e6:68:83:ea:62:70:8c:72:
                    60:8f:dd:e0:fc:94:68:4b:68:9a:42:15:8f:e7:03:ed:
                    39:35:19:db:97:c8:b5:da:e7:d5:01:75:9f:36:85:06:
                    aa:a9:d6:6c:87:10:d3:01:cc:14:a7:3b:f2:d2:aa:8a:
                    f8:45:88:d7:46:69:29:4b:f2:e6:c3:78:c7:0e:db:46:
                    fa:2f:d2:b2:2e:b1:38:ac:85:6c:a0:25:69:fc:c6:81:
                    ff:48:86:2b:9e:7a:e3:ce:74:64:1d:43:79:ee:40:3d:
                    78:aa:38:1a:c8:27:66:c8:7d:6c:97:6e:c1:13:75:56:
                    8e:62:99:6d:f6:ce:d6:0f:a6:1b:b3:f2:c2:37:0a:ac:
                    d9:53:33:97:f1:0e:75:9b:76:eb:7a:27:4c:43:3a:9c:
                    a6:4f:ba:6d:a3:f4:56:7c:37:d0:cb:40:19:cd:cd:6c:
                    8a:de:ec:5e:52:3c:0d:f1:aa:17:fa:37:a2:a0:74:ec:
                    51:04:73:7f:1a:2b:14:8b:9c:15:c0:ac:2a:29:0d:db:
                    d9:0e:d6:a3:9a:06:c8:92:0e:fd:89:04:85:1f:f4:bd:
                    6e:d0:12:0b:1c:72:30:0c:24:13:d0:fc:20:08:2c:f8:
                    d1:61:53:a4:4b:c3:e2:ba:f1:10:76:7f:25:0d:c9:08
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3c:02:1c:79:00:fe:e6:ea:44:56:0a:4b:4e:9f:c8:
        49:04:5b:bd:a0:44:e6:d5:3d:bf:3e:e2:4a:cb:55:fa:
        02:1c:02:43:f1:e5:ea:99:fd:47:9d:dc:e6:25:96:cc:
        50:c7:4a:cb:59:df:fe:44:18:c6:a4:80:ba:f9
    Fingerprint (SHA-256):
        3A:4E:1C:80:40:64:87:B2:28:85:65:F8:FB:F3:D9:64:68:28:83:2D:0A:22:25:C4:52:FA:E0:48:ED:CB:FD:E9
    Fingerprint (SHA1):
        98:57:37:79:9E:2D:4F:D9:C8:F8:CA:07:77:37:CD:8C:7D:89:EB:AB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8375: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155871 (0x3cdd9a1f)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:26:25 2017
            Not After : Fri Oct 21 16:26:25 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    21:aa:37:8a:a6:0f:bb:c2:e6:68:83:ea:62:70:8c:72:
                    60:8f:dd:e0:fc:94:68:4b:68:9a:42:15:8f:e7:03:ed:
                    39:35:19:db:97:c8:b5:da:e7:d5:01:75:9f:36:85:06:
                    aa:a9:d6:6c:87:10:d3:01:cc:14:a7:3b:f2:d2:aa:8a:
                    f8:45:88:d7:46:69:29:4b:f2:e6:c3:78:c7:0e:db:46:
                    fa:2f:d2:b2:2e:b1:38:ac:85:6c:a0:25:69:fc:c6:81:
                    ff:48:86:2b:9e:7a:e3:ce:74:64:1d:43:79:ee:40:3d:
                    78:aa:38:1a:c8:27:66:c8:7d:6c:97:6e:c1:13:75:56:
                    8e:62:99:6d:f6:ce:d6:0f:a6:1b:b3:f2:c2:37:0a:ac:
                    d9:53:33:97:f1:0e:75:9b:76:eb:7a:27:4c:43:3a:9c:
                    a6:4f:ba:6d:a3:f4:56:7c:37:d0:cb:40:19:cd:cd:6c:
                    8a:de:ec:5e:52:3c:0d:f1:aa:17:fa:37:a2:a0:74:ec:
                    51:04:73:7f:1a:2b:14:8b:9c:15:c0:ac:2a:29:0d:db:
                    d9:0e:d6:a3:9a:06:c8:92:0e:fd:89:04:85:1f:f4:bd:
                    6e:d0:12:0b:1c:72:30:0c:24:13:d0:fc:20:08:2c:f8:
                    d1:61:53:a4:4b:c3:e2:ba:f1:10:76:7f:25:0d:c9:08
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3c:02:1c:79:00:fe:e6:ea:44:56:0a:4b:4e:9f:c8:
        49:04:5b:bd:a0:44:e6:d5:3d:bf:3e:e2:4a:cb:55:fa:
        02:1c:02:43:f1:e5:ea:99:fd:47:9d:dc:e6:25:96:cc:
        50:c7:4a:cb:59:df:fe:44:18:c6:a4:80:ba:f9
    Fingerprint (SHA-256):
        3A:4E:1C:80:40:64:87:B2:28:85:65:F8:FB:F3:D9:64:68:28:83:2D:0A:22:25:C4:52:FA:E0:48:ED:CB:FD:E9
    Fingerprint (SHA1):
        98:57:37:79:9E:2D:4F:D9:C8:F8:CA:07:77:37:CD:8C:7D:89:EB:AB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #8376: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155871 (0x3cdd9a1f)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:26:25 2017
            Not After : Fri Oct 21 16:26:25 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    21:aa:37:8a:a6:0f:bb:c2:e6:68:83:ea:62:70:8c:72:
                    60:8f:dd:e0:fc:94:68:4b:68:9a:42:15:8f:e7:03:ed:
                    39:35:19:db:97:c8:b5:da:e7:d5:01:75:9f:36:85:06:
                    aa:a9:d6:6c:87:10:d3:01:cc:14:a7:3b:f2:d2:aa:8a:
                    f8:45:88:d7:46:69:29:4b:f2:e6:c3:78:c7:0e:db:46:
                    fa:2f:d2:b2:2e:b1:38:ac:85:6c:a0:25:69:fc:c6:81:
                    ff:48:86:2b:9e:7a:e3:ce:74:64:1d:43:79:ee:40:3d:
                    78:aa:38:1a:c8:27:66:c8:7d:6c:97:6e:c1:13:75:56:
                    8e:62:99:6d:f6:ce:d6:0f:a6:1b:b3:f2:c2:37:0a:ac:
                    d9:53:33:97:f1:0e:75:9b:76:eb:7a:27:4c:43:3a:9c:
                    a6:4f:ba:6d:a3:f4:56:7c:37:d0:cb:40:19:cd:cd:6c:
                    8a:de:ec:5e:52:3c:0d:f1:aa:17:fa:37:a2:a0:74:ec:
                    51:04:73:7f:1a:2b:14:8b:9c:15:c0:ac:2a:29:0d:db:
                    d9:0e:d6:a3:9a:06:c8:92:0e:fd:89:04:85:1f:f4:bd:
                    6e:d0:12:0b:1c:72:30:0c:24:13:d0:fc:20:08:2c:f8:
                    d1:61:53:a4:4b:c3:e2:ba:f1:10:76:7f:25:0d:c9:08
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3c:02:1c:79:00:fe:e6:ea:44:56:0a:4b:4e:9f:c8:
        49:04:5b:bd:a0:44:e6:d5:3d:bf:3e:e2:4a:cb:55:fa:
        02:1c:02:43:f1:e5:ea:99:fd:47:9d:dc:e6:25:96:cc:
        50:c7:4a:cb:59:df:fe:44:18:c6:a4:80:ba:f9
    Fingerprint (SHA-256):
        3A:4E:1C:80:40:64:87:B2:28:85:65:F8:FB:F3:D9:64:68:28:83:2D:0A:22:25:C4:52:FA:E0:48:ED:CB:FD:E9
    Fingerprint (SHA1):
        98:57:37:79:9E:2D:4F:D9:C8:F8:CA:07:77:37:CD:8C:7D:89:EB:AB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #8377: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155871 (0x3cdd9a1f)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:26:25 2017
            Not After : Fri Oct 21 16:26:25 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    21:aa:37:8a:a6:0f:bb:c2:e6:68:83:ea:62:70:8c:72:
                    60:8f:dd:e0:fc:94:68:4b:68:9a:42:15:8f:e7:03:ed:
                    39:35:19:db:97:c8:b5:da:e7:d5:01:75:9f:36:85:06:
                    aa:a9:d6:6c:87:10:d3:01:cc:14:a7:3b:f2:d2:aa:8a:
                    f8:45:88:d7:46:69:29:4b:f2:e6:c3:78:c7:0e:db:46:
                    fa:2f:d2:b2:2e:b1:38:ac:85:6c:a0:25:69:fc:c6:81:
                    ff:48:86:2b:9e:7a:e3:ce:74:64:1d:43:79:ee:40:3d:
                    78:aa:38:1a:c8:27:66:c8:7d:6c:97:6e:c1:13:75:56:
                    8e:62:99:6d:f6:ce:d6:0f:a6:1b:b3:f2:c2:37:0a:ac:
                    d9:53:33:97:f1:0e:75:9b:76:eb:7a:27:4c:43:3a:9c:
                    a6:4f:ba:6d:a3:f4:56:7c:37:d0:cb:40:19:cd:cd:6c:
                    8a:de:ec:5e:52:3c:0d:f1:aa:17:fa:37:a2:a0:74:ec:
                    51:04:73:7f:1a:2b:14:8b:9c:15:c0:ac:2a:29:0d:db:
                    d9:0e:d6:a3:9a:06:c8:92:0e:fd:89:04:85:1f:f4:bd:
                    6e:d0:12:0b:1c:72:30:0c:24:13:d0:fc:20:08:2c:f8:
                    d1:61:53:a4:4b:c3:e2:ba:f1:10:76:7f:25:0d:c9:08
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3c:02:1c:79:00:fe:e6:ea:44:56:0a:4b:4e:9f:c8:
        49:04:5b:bd:a0:44:e6:d5:3d:bf:3e:e2:4a:cb:55:fa:
        02:1c:02:43:f1:e5:ea:99:fd:47:9d:dc:e6:25:96:cc:
        50:c7:4a:cb:59:df:fe:44:18:c6:a4:80:ba:f9
    Fingerprint (SHA-256):
        3A:4E:1C:80:40:64:87:B2:28:85:65:F8:FB:F3:D9:64:68:28:83:2D:0A:22:25:C4:52:FA:E0:48:ED:CB:FD:E9
    Fingerprint (SHA1):
        98:57:37:79:9E:2D:4F:D9:C8:F8:CA:07:77:37:CD:8C:7D:89:EB:AB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #8378: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #8379: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 10 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8380: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #8381: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #8382: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8383: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8384: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8385: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8386: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8387: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8388: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8389: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #8390: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8391: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8392: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8393: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #8394: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8395: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8396: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8397: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #8398: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8399: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8400: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8401: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #8402: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8403: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8404: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8405: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20171021162742Z
nextupdate=20181021162742Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Sat Oct 21 16:27:42 2017
    Next Update: Sun Oct 21 16:27:42 2018
    CRL Extensions:
chains.sh: #8406: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021162743Z
nextupdate=20181021162743Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 16:27:43 2017
    Next Update: Sun Oct 21 16:27:43 2018
    CRL Extensions:
chains.sh: #8407: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20171021162744Z
nextupdate=20181021162744Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Sat Oct 21 16:27:44 2017
    Next Update: Sun Oct 21 16:27:44 2018
    CRL Extensions:
chains.sh: #8408: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20171021162745Z
nextupdate=20181021162745Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Sat Oct 21 16:27:45 2017
    Next Update: Sun Oct 21 16:27:45 2018
    CRL Extensions:
chains.sh: #8409: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20171021162746Z
addcert 14 20171021162746Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Sat Oct 21 16:27:46 2017
    Next Update: Sun Oct 21 16:27:44 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Sat Oct 21 16:27:46 2017
    CRL Extensions:
chains.sh: #8410: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021162747Z
addcert 15 20171021162747Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 16:27:47 2017
    Next Update: Sun Oct 21 16:27:43 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Sat Oct 21 16:27:47 2017
    CRL Extensions:
chains.sh: #8411: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #8412: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8413: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #8414: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #8415: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #8416: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #8417: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #8418: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #8419: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #8420: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:27:08 2017
            Not After : Fri Oct 21 16:27:08 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:e7:0b:30:90:ec:04:e9:d5:f0:05:ce:d2:85:c0:45:
                    8e:71:a6:2a:4a:4b:11:6b:2c:e2:44:7f:e0:e3:ee:fd:
                    83:6e:90:61:b1:15:8e:72:37:76:4c:a5:8a:e7:6c:ab:
                    fd:91:d7:d6:cc:76:d5:26:3c:bf:b5:38:8c:e1:4c:7c:
                    a8:70:36:33:c9:a5:cf:d9:ac:f2:8f:06:d6:db:de:75:
                    55:3b:af:1e:a0:e8:94:98:c2:97:11:b3:ae:d1:6d:e8:
                    b2:97:13:ba:2f:80:7e:48:1f:90:8f:dc:82:6b:c8:bf:
                    37:54:52:ad:60:c7:f0:f2:4c:d2:cb:1c:87:12:72:37:
                    37:e0:44:58:65:fc:6a:89:43:75:99:9e:07:d5:dd:7f:
                    d1:9b:1c:1b:3c:61:0c:46:22:19:e2:85:16:ae:a1:d6:
                    6f:9f:08:39:21:17:b9:00:a1:6b:b9:64:73:09:89:94:
                    ed:ee:97:95:b5:30:32:b0:0b:d9:1e:1d:e2:06:44:c4:
                    d8:ae:25:38:20:98:60:c9:1f:da:e9:14:87:d2:f7:0f:
                    18:6f:62:d0:21:1f:1a:25:6f:e6:41:6d:62:7d:8d:b9:
                    39:03:89:6f:68:41:45:b9:e6:21:93:69:82:a6:2b:c8:
                    82:a2:9a:41:7b:a1:9b:7a:06:28:24:68:db:87:1d:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        24:a4:30:da:66:4b:41:6f:95:ff:bf:f9:57:86:2a:48:
        39:61:d4:d5:7c:fa:d9:ed:dd:18:87:ed:92:8b:98:86:
        f1:e4:20:82:b8:43:7e:27:f7:e3:ea:24:f4:83:e9:bc:
        0b:ea:29:0b:96:a0:f2:2b:dd:0b:b2:47:c3:8e:0f:20:
        97:8a:57:ff:87:4e:c5:66:d3:0c:a1:ac:dc:a0:66:15:
        78:5f:f2:ae:9f:54:b1:70:91:09:03:09:28:58:52:f8:
        2c:b8:09:fd:74:c2:73:de:0e:3c:92:01:c0:eb:75:a9:
        2b:60:e6:88:e2:d0:f3:cd:12:93:62:a5:78:dd:57:b2:
        ab:0f:7b:38:be:44:64:be:0f:6f:d3:73:80:d6:6e:6e:
        11:b9:7f:82:61:ab:05:c3:21:05:e9:ad:07:73:db:5c:
        3e:f0:ad:9d:69:3a:52:8a:49:91:7f:61:f1:67:c0:48:
        22:d9:c9:a8:02:b4:80:b8:28:5b:91:02:d8:1d:8c:f6:
        b5:c4:a4:d9:af:51:b8:73:a8:8f:72:cb:10:c4:4d:eb:
        10:b4:2b:ea:04:e0:a1:26:df:05:28:df:39:bd:da:e6:
        bf:f9:e5:ba:7e:bb:bf:18:44:f7:59:01:63:e7:28:05:
        a3:19:2e:7d:7d:09:48:63:33:d2:63:55:e7:25:6a:e5
    Fingerprint (SHA-256):
        B1:E8:82:20:B6:48:14:19:63:49:00:BA:4D:20:34:B2:43:99:43:CC:8C:C3:8A:D3:47:91:67:98:A3:DF:02:7C
    Fingerprint (SHA1):
        8A:F3:34:64:18:03:01:BF:36:73:A1:96:9E:BD:20:BD:24:BD:AD:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #8421: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #8422: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:27:08 2017
            Not After : Fri Oct 21 16:27:08 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:e7:0b:30:90:ec:04:e9:d5:f0:05:ce:d2:85:c0:45:
                    8e:71:a6:2a:4a:4b:11:6b:2c:e2:44:7f:e0:e3:ee:fd:
                    83:6e:90:61:b1:15:8e:72:37:76:4c:a5:8a:e7:6c:ab:
                    fd:91:d7:d6:cc:76:d5:26:3c:bf:b5:38:8c:e1:4c:7c:
                    a8:70:36:33:c9:a5:cf:d9:ac:f2:8f:06:d6:db:de:75:
                    55:3b:af:1e:a0:e8:94:98:c2:97:11:b3:ae:d1:6d:e8:
                    b2:97:13:ba:2f:80:7e:48:1f:90:8f:dc:82:6b:c8:bf:
                    37:54:52:ad:60:c7:f0:f2:4c:d2:cb:1c:87:12:72:37:
                    37:e0:44:58:65:fc:6a:89:43:75:99:9e:07:d5:dd:7f:
                    d1:9b:1c:1b:3c:61:0c:46:22:19:e2:85:16:ae:a1:d6:
                    6f:9f:08:39:21:17:b9:00:a1:6b:b9:64:73:09:89:94:
                    ed:ee:97:95:b5:30:32:b0:0b:d9:1e:1d:e2:06:44:c4:
                    d8:ae:25:38:20:98:60:c9:1f:da:e9:14:87:d2:f7:0f:
                    18:6f:62:d0:21:1f:1a:25:6f:e6:41:6d:62:7d:8d:b9:
                    39:03:89:6f:68:41:45:b9:e6:21:93:69:82:a6:2b:c8:
                    82:a2:9a:41:7b:a1:9b:7a:06:28:24:68:db:87:1d:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        24:a4:30:da:66:4b:41:6f:95:ff:bf:f9:57:86:2a:48:
        39:61:d4:d5:7c:fa:d9:ed:dd:18:87:ed:92:8b:98:86:
        f1:e4:20:82:b8:43:7e:27:f7:e3:ea:24:f4:83:e9:bc:
        0b:ea:29:0b:96:a0:f2:2b:dd:0b:b2:47:c3:8e:0f:20:
        97:8a:57:ff:87:4e:c5:66:d3:0c:a1:ac:dc:a0:66:15:
        78:5f:f2:ae:9f:54:b1:70:91:09:03:09:28:58:52:f8:
        2c:b8:09:fd:74:c2:73:de:0e:3c:92:01:c0:eb:75:a9:
        2b:60:e6:88:e2:d0:f3:cd:12:93:62:a5:78:dd:57:b2:
        ab:0f:7b:38:be:44:64:be:0f:6f:d3:73:80:d6:6e:6e:
        11:b9:7f:82:61:ab:05:c3:21:05:e9:ad:07:73:db:5c:
        3e:f0:ad:9d:69:3a:52:8a:49:91:7f:61:f1:67:c0:48:
        22:d9:c9:a8:02:b4:80:b8:28:5b:91:02:d8:1d:8c:f6:
        b5:c4:a4:d9:af:51:b8:73:a8:8f:72:cb:10:c4:4d:eb:
        10:b4:2b:ea:04:e0:a1:26:df:05:28:df:39:bd:da:e6:
        bf:f9:e5:ba:7e:bb:bf:18:44:f7:59:01:63:e7:28:05:
        a3:19:2e:7d:7d:09:48:63:33:d2:63:55:e7:25:6a:e5
    Fingerprint (SHA-256):
        B1:E8:82:20:B6:48:14:19:63:49:00:BA:4D:20:34:B2:43:99:43:CC:8C:C3:8A:D3:47:91:67:98:A3:DF:02:7C
    Fingerprint (SHA1):
        8A:F3:34:64:18:03:01:BF:36:73:A1:96:9E:BD:20:BD:24:BD:AD:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #8423: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #8424: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #8425: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155880 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8426: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #8427: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #8428: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8429: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 1021155881   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8430: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8431: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8432: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021155652.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8433: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0Root-1021155626.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #8434: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8435: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #8436: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021155652.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8437: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 1021155882   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8438: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8439: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #8440: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021155652.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8441: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0Root-1021155627.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #8442: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8443: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #8444: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8445: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 1021155883   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8446: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8447: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #8448: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021155652.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8449: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0Root-1021155628.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #8450: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8451: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #8452: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021155652.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #8453: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0Root-1021155629.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #8454: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8455: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20171021162843Z
nextupdate=20181021162843Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Sat Oct 21 16:28:43 2017
    Next Update: Sun Oct 21 16:28:43 2018
    CRL Extensions:
chains.sh: #8456: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021162844Z
nextupdate=20181021162844Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 16:28:44 2017
    Next Update: Sun Oct 21 16:28:44 2018
    CRL Extensions:
chains.sh: #8457: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20171021162845Z
nextupdate=20181021162845Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Sat Oct 21 16:28:45 2017
    Next Update: Sun Oct 21 16:28:45 2018
    CRL Extensions:
chains.sh: #8458: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20171021162845Z
nextupdate=20181021162845Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Sat Oct 21 16:28:45 2017
    Next Update: Sun Oct 21 16:28:45 2018
    CRL Extensions:
chains.sh: #8459: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021162846Z
addcert 20 20171021162846Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 16:28:46 2017
    Next Update: Sun Oct 21 16:28:44 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Sat Oct 21 16:28:46 2017
    CRL Extensions:
chains.sh: #8460: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021162847Z
addcert 40 20171021162847Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 16:28:47 2017
    Next Update: Sun Oct 21 16:28:44 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Sat Oct 21 16:28:46 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Sat Oct 21 16:28:47 2017
    CRL Extensions:
chains.sh: #8461: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #8462: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8463: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #8464: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155880 (0x3cdd9a28)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:28:01 2017
            Not After : Fri Oct 21 16:28:01 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:63:43:f3:db:1f:35:a3:80:8c:1d:33:b7:f5:93:a1:
                    ac:b4:a8:17:14:a7:d1:e2:cf:7d:ef:cd:96:b5:48:18:
                    b7:f3:b4:25:63:7c:80:9c:76:2c:60:ce:23:3d:cf:3a:
                    5b:76:eb:85:d1:66:42:76:87:0b:09:ef:7c:00:de:12:
                    f9:b2:e0:ee:49:30:2b:b5:cc:73:1b:53:30:a7:d8:02:
                    3f:f5:2b:f5:8b:85:cf:c5:04:d6:a8:75:49:60:f0:66:
                    4c:b0:d0:bb:f5:24:49:c7:e5:c8:9c:95:3a:b8:15:24:
                    26:33:8c:2b:dc:f3:a9:90:8a:7f:ae:e7:22:af:ef:e0:
                    4c:2f:35:16:6f:b0:4f:68:18:25:9c:da:bf:d8:c8:80:
                    6e:4b:ff:c6:35:05:9e:4f:62:9f:c5:40:b1:26:aa:b4:
                    d4:66:94:b1:d0:72:3f:d3:e2:75:49:c7:e9:d3:96:d5:
                    aa:95:4a:c8:c4:40:ff:e2:24:89:97:68:15:6b:43:e3:
                    dd:ee:66:d4:58:e0:7c:af:c0:8b:01:d4:92:09:96:a0:
                    15:ae:27:0f:77:5d:61:d6:a3:bc:42:42:bb:67:46:c4:
                    93:70:2d:aa:8e:0b:38:16:18:22:bc:fa:ce:34:05:4b:
                    1a:6e:c0:c0:2e:28:f6:e0:4a:e5:b1:fa:ce:d4:3d:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0a:17:a0:07:9e:84:d9:52:24:ab:89:14:f1:fe:04:45:
        12:70:d4:3f:08:47:7f:a6:97:55:46:5f:7a:3f:5d:50:
        b1:9d:5b:c1:9a:67:58:3e:9b:a6:aa:9b:a7:31:18:27:
        19:cb:34:73:4d:a5:39:6d:cc:ec:3f:d6:e8:68:1d:2d:
        55:f0:8f:d9:70:c4:b5:3d:33:94:d4:02:f1:80:a9:04:
        31:8f:06:98:6c:cb:32:e2:83:06:15:50:d1:33:9a:17:
        69:de:b7:a9:2c:45:94:50:b7:da:a6:83:d2:f5:6a:62:
        80:3a:b6:35:41:b1:b2:e6:4a:35:c9:ea:1d:ff:13:be:
        30:bd:e9:bd:8d:5c:13:6b:27:29:b6:a3:c3:b6:57:c1:
        ee:66:43:bf:07:b3:fc:ab:d1:05:ac:99:c5:0d:86:8a:
        4c:94:4f:00:60:5f:cd:18:c0:aa:95:0d:9c:05:a4:d5:
        37:ff:f2:31:6f:3c:dc:1d:b2:0b:8c:8d:ef:70:4c:2d:
        f1:3f:0e:02:8b:66:50:e9:cc:19:2a:3d:8c:f3:4a:71:
        99:b9:99:e8:24:c6:fb:ed:4d:8c:23:d8:1c:58:60:01:
        5d:34:a5:9f:64:96:90:0d:a7:f0:29:db:e1:4d:05:d1:
        99:af:a7:f0:68:e3:4a:10:42:6d:da:4c:e2:8e:1a:e8
    Fingerprint (SHA-256):
        B7:66:58:A0:CC:60:F2:1F:A3:56:B2:E7:87:96:F6:02:49:64:EF:8A:17:18:05:F8:2E:4C:7B:0E:8D:01:25:7D
    Fingerprint (SHA1):
        CF:F1:74:82:62:1D:14:C8:9F:99:54:50:71:23:74:FA:CB:60:08:9A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #8465: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #8466: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155880 (0x3cdd9a28)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 16:28:01 2017
            Not After : Fri Oct 21 16:28:01 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:63:43:f3:db:1f:35:a3:80:8c:1d:33:b7:f5:93:a1:
                    ac:b4:a8:17:14:a7:d1:e2:cf:7d:ef:cd:96:b5:48:18:
                    b7:f3:b4:25:63:7c:80:9c:76:2c:60:ce:23:3d:cf:3a:
                    5b:76:eb:85:d1:66:42:76:87:0b:09:ef:7c:00:de:12:
                    f9:b2:e0:ee:49:30:2b:b5:cc:73:1b:53:30:a7:d8:02:
                    3f:f5:2b:f5:8b:85:cf:c5:04:d6:a8:75:49:60:f0:66:
                    4c:b0:d0:bb:f5:24:49:c7:e5:c8:9c:95:3a:b8:15:24:
                    26:33:8c:2b:dc:f3:a9:90:8a:7f:ae:e7:22:af:ef:e0:
                    4c:2f:35:16:6f:b0:4f:68:18:25:9c:da:bf:d8:c8:80:
                    6e:4b:ff:c6:35:05:9e:4f:62:9f:c5:40:b1:26:aa:b4:
                    d4:66:94:b1:d0:72:3f:d3:e2:75:49:c7:e9:d3:96:d5:
                    aa:95:4a:c8:c4:40:ff:e2:24:89:97:68:15:6b:43:e3:
                    dd:ee:66:d4:58:e0:7c:af:c0:8b:01:d4:92:09:96:a0:
                    15:ae:27:0f:77:5d:61:d6:a3:bc:42:42:bb:67:46:c4:
                    93:70:2d:aa:8e:0b:38:16:18:22:bc:fa:ce:34:05:4b:
                    1a:6e:c0:c0:2e:28:f6:e0:4a:e5:b1:fa:ce:d4:3d:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0a:17:a0:07:9e:84:d9:52:24:ab:89:14:f1:fe:04:45:
        12:70:d4:3f:08:47:7f:a6:97:55:46:5f:7a:3f:5d:50:
        b1:9d:5b:c1:9a:67:58:3e:9b:a6:aa:9b:a7:31:18:27:
        19:cb:34:73:4d:a5:39:6d:cc:ec:3f:d6:e8:68:1d:2d:
        55:f0:8f:d9:70:c4:b5:3d:33:94:d4:02:f1:80:a9:04:
        31:8f:06:98:6c:cb:32:e2:83:06:15:50:d1:33:9a:17:
        69:de:b7:a9:2c:45:94:50:b7:da:a6:83:d2:f5:6a:62:
        80:3a:b6:35:41:b1:b2:e6:4a:35:c9:ea:1d:ff:13:be:
        30:bd:e9:bd:8d:5c:13:6b:27:29:b6:a3:c3:b6:57:c1:
        ee:66:43:bf:07:b3:fc:ab:d1:05:ac:99:c5:0d:86:8a:
        4c:94:4f:00:60:5f:cd:18:c0:aa:95:0d:9c:05:a4:d5:
        37:ff:f2:31:6f:3c:dc:1d:b2:0b:8c:8d:ef:70:4c:2d:
        f1:3f:0e:02:8b:66:50:e9:cc:19:2a:3d:8c:f3:4a:71:
        99:b9:99:e8:24:c6:fb:ed:4d:8c:23:d8:1c:58:60:01:
        5d:34:a5:9f:64:96:90:0d:a7:f0:29:db:e1:4d:05:d1:
        99:af:a7:f0:68:e3:4a:10:42:6d:da:4c:e2:8e:1a:e8
    Fingerprint (SHA-256):
        B7:66:58:A0:CC:60:F2:1F:A3:56:B2:E7:87:96:F6:02:49:64:EF:8A:17:18:05:F8:2E:4C:7B:0E:8D:01:25:7D
    Fingerprint (SHA1):
        CF:F1:74:82:62:1D:14:C8:9F:99:54:50:71:23:74:FA:CB:60:08:9A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #8467: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #8468: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #8469: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155884 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8470: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #8471: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #8472: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8473: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 1021155885   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8474: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8475: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #8476: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8477: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021155886   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8478: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8479: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #8480: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8481: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 1021155887   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8482: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8483: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #8484: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -m 1021155888 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #8485: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #8486: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #8487: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #8488: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 1021155889   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8489: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8490: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #8491: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #8492: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 1021155890   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #8493: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #8494: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #8495: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #8496: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #8497: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155884 (0x3cdd9a2c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:28:58 2017
            Not After : Fri Oct 21 16:28:58 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ef:ea:bc:1f:25:04:32:0e:bf:fc:a0:74:28:57:2d:29:
                    c8:4a:8e:04:5a:fe:fc:70:52:64:ff:eb:b8:21:dc:09:
                    33:8d:4d:39:20:22:1b:35:ac:f1:e1:d4:21:30:6a:c3:
                    e6:55:6f:a8:c0:23:96:91:0d:a0:51:1a:58:61:19:2e:
                    a5:3e:d2:86:e9:d7:15:f6:4f:8e:bf:8f:41:1a:af:dd:
                    07:0a:5a:9e:b5:2e:78:61:4f:5d:99:bb:74:02:5a:46:
                    b9:bd:dc:34:38:0a:14:d7:56:69:f9:e2:1e:24:90:bc:
                    cb:0d:74:fc:8c:fd:b2:00:e1:da:c2:f0:86:49:5b:5b:
                    0b:83:aa:b7:e2:c3:db:26:ec:ec:a1:35:a9:27:14:73:
                    ee:43:39:d9:82:a5:9c:dc:57:d1:f4:64:0f:f0:61:56:
                    f8:07:9c:fd:91:4f:f9:b0:e9:4c:aa:03:83:e4:91:47:
                    73:c8:b1:d1:6a:96:d1:1c:68:66:45:b0:7d:1b:3e:f3:
                    ec:86:02:3e:3b:61:f9:bc:46:08:34:ea:8e:9a:cb:47:
                    54:70:4b:a3:78:20:17:cd:e1:48:01:2b:41:cd:50:dd:
                    aa:94:62:cd:e5:2d:2f:38:29:eb:07:ed:fa:60:08:8f:
                    69:d2:33:bd:72:2b:aa:b4:23:98:ad:68:ad:a1:19:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a9:78:c6:a0:0f:e1:35:08:12:7f:cd:a3:9c:ef:21:7f:
        4c:ab:6a:90:e5:23:6e:19:04:15:55:ca:e2:4d:57:cb:
        b9:01:63:89:0b:fe:3f:07:d6:91:6f:8c:68:c2:f3:f6:
        ab:c2:99:82:3b:03:4e:02:3f:f1:4d:29:3c:c0:b7:b7:
        fa:b9:0d:1a:1c:a7:77:b0:55:13:de:1d:5f:2b:54:e6:
        46:04:19:59:89:6b:d0:71:ef:66:4e:b1:55:0e:48:67:
        20:e9:ea:13:b9:71:c7:89:f3:4b:52:ac:6d:1c:0d:21:
        3b:40:f4:2b:79:93:35:9c:5a:67:94:1f:67:fb:56:aa:
        6a:bc:69:3c:27:c7:dd:9b:90:f2:94:88:5d:24:ee:15:
        1b:23:83:48:73:45:14:51:d3:4a:2e:73:be:c4:3d:ef:
        b3:ab:bc:f6:d5:25:89:84:95:18:bc:52:18:fe:0d:f8:
        cb:03:39:06:f5:e4:69:6f:15:48:79:8d:3a:a7:92:e6:
        c7:c8:08:35:ad:c4:74:75:f0:90:8e:6a:e9:7a:18:d0:
        80:23:87:e6:38:23:2b:53:e1:11:8d:eb:53:58:71:69:
        69:b3:7c:b8:9f:f7:ac:64:1d:13:35:f0:9b:78:0c:b6:
        b3:06:7a:1d:fa:78:ec:bc:4b:b9:74:fb:66:be:cf:99
    Fingerprint (SHA-256):
        55:BE:23:E0:4D:47:29:BB:6F:0E:45:8A:5E:17:87:30:13:A4:C0:49:86:B5:48:8D:3F:E0:FF:50:5A:22:A6:60
    Fingerprint (SHA1):
        9D:43:2F:93:D4:C9:93:EB:7F:02:88:4D:5A:26:99:8E:7B:EB:A5:92
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8498: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155886 (0x3cdd9a2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 16:29:11 2017
            Not After : Fri Oct 21 16:29:11 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:95:6e:ac:e9:89:0b:0e:7e:ae:f9:ad:b5:69:1e:d7:
                    87:27:b0:a9:24:80:fe:b4:65:0e:4f:66:6f:9f:7a:62:
                    db:e2:b7:ea:59:4c:db:89:5d:9c:4b:d1:84:5f:51:12:
                    d0:61:17:c5:4b:53:14:22:7b:ec:bd:3d:36:d9:e7:64:
                    81:70:6c:25:fc:d2:93:2f:cf:ae:95:a9:b8:de:9f:0b:
                    cf:f3:6d:e6:e7:d8:a6:ba:eb:10:32:dd:10:64:40:d8:
                    f3:32:5d:11:34:9f:b8:19:61:fc:95:e7:36:67:03:57:
                    2c:3b:59:5e:74:e2:c1:08:2b:a2:f3:ba:86:7e:db:a9:
                    e4:29:56:6f:b0:e9:e0:42:50:62:f9:46:48:ba:8b:85:
                    b3:5c:d0:2d:a0:bb:c3:97:5c:22:06:ec:bf:09:5c:09:
                    a6:dc:b4:cb:f6:48:3a:7f:4c:a0:3e:5f:73:09:7f:b7:
                    6a:93:10:cf:1b:c9:67:86:e8:03:56:9e:71:c2:f8:13:
                    d2:b0:0b:b2:95:33:03:a5:f9:37:12:9f:27:e5:42:94:
                    8c:3c:fb:a8:cf:b3:a3:83:8d:01:4e:25:c8:62:1e:d7:
                    8c:e8:93:c9:57:22:59:01:5e:ba:8d:6d:63:fc:a8:2b:
                    6b:58:ad:23:1f:84:3b:e1:b6:0f:c6:16:27:52:a8:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:83:b7:8e:11:18:45:ff:fd:81:85:63:9a:ff:69:d1:
        70:e7:ff:22:4d:3a:d4:61:09:54:65:be:2f:90:2f:22:
        ac:4e:25:91:12:2f:f5:a0:ca:e2:7d:ce:91:d7:ad:9d:
        0a:34:29:79:95:ab:01:cf:96:1b:5f:17:c9:74:1e:d0:
        3e:be:fd:c3:80:e7:34:82:aa:c2:05:06:06:e0:df:20:
        d7:1e:ae:f4:aa:de:02:3d:b4:cc:fa:a6:8f:91:22:f6:
        47:ed:07:c1:9f:d8:00:a0:0e:cc:eb:cd:23:17:d5:ad:
        36:fd:b0:e5:2e:60:ca:10:29:1d:b2:16:e3:a1:99:eb:
        76:5b:37:d8:bd:34:b1:97:16:d1:de:a3:9e:2d:a5:29:
        52:d7:df:17:aa:d7:db:a5:41:db:86:bf:74:43:5d:20:
        b9:8c:78:1a:6f:7f:92:ed:97:9b:77:93:32:2d:1c:b3:
        84:e2:b1:23:c2:ba:51:cb:aa:9b:e9:f6:84:f1:17:24:
        e0:29:1f:b7:f8:ea:b3:78:86:c9:48:26:3c:22:3d:f1:
        45:51:d3:0b:a4:65:6a:bc:ec:04:41:cd:a7:16:a4:a5:
        52:90:b6:a1:7a:1b:d4:48:ff:77:32:86:64:ce:d8:7b:
        39:40:97:ab:02:62:fe:2e:8e:88:cf:0b:13:69:64:fb
    Fingerprint (SHA-256):
        1A:11:0D:CB:85:06:2D:90:FC:DA:66:B5:D2:E9:4A:D1:74:97:8D:BD:5D:08:16:C8:AE:59:87:CF:EE:36:44:1C
    Fingerprint (SHA1):
        E5:C3:28:A3:F3:1B:EB:CC:E1:F1:EA:21:10:54:CB:01:A0:10:46:C2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8499: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155884 (0x3cdd9a2c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:28:58 2017
            Not After : Fri Oct 21 16:28:58 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ef:ea:bc:1f:25:04:32:0e:bf:fc:a0:74:28:57:2d:29:
                    c8:4a:8e:04:5a:fe:fc:70:52:64:ff:eb:b8:21:dc:09:
                    33:8d:4d:39:20:22:1b:35:ac:f1:e1:d4:21:30:6a:c3:
                    e6:55:6f:a8:c0:23:96:91:0d:a0:51:1a:58:61:19:2e:
                    a5:3e:d2:86:e9:d7:15:f6:4f:8e:bf:8f:41:1a:af:dd:
                    07:0a:5a:9e:b5:2e:78:61:4f:5d:99:bb:74:02:5a:46:
                    b9:bd:dc:34:38:0a:14:d7:56:69:f9:e2:1e:24:90:bc:
                    cb:0d:74:fc:8c:fd:b2:00:e1:da:c2:f0:86:49:5b:5b:
                    0b:83:aa:b7:e2:c3:db:26:ec:ec:a1:35:a9:27:14:73:
                    ee:43:39:d9:82:a5:9c:dc:57:d1:f4:64:0f:f0:61:56:
                    f8:07:9c:fd:91:4f:f9:b0:e9:4c:aa:03:83:e4:91:47:
                    73:c8:b1:d1:6a:96:d1:1c:68:66:45:b0:7d:1b:3e:f3:
                    ec:86:02:3e:3b:61:f9:bc:46:08:34:ea:8e:9a:cb:47:
                    54:70:4b:a3:78:20:17:cd:e1:48:01:2b:41:cd:50:dd:
                    aa:94:62:cd:e5:2d:2f:38:29:eb:07:ed:fa:60:08:8f:
                    69:d2:33:bd:72:2b:aa:b4:23:98:ad:68:ad:a1:19:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a9:78:c6:a0:0f:e1:35:08:12:7f:cd:a3:9c:ef:21:7f:
        4c:ab:6a:90:e5:23:6e:19:04:15:55:ca:e2:4d:57:cb:
        b9:01:63:89:0b:fe:3f:07:d6:91:6f:8c:68:c2:f3:f6:
        ab:c2:99:82:3b:03:4e:02:3f:f1:4d:29:3c:c0:b7:b7:
        fa:b9:0d:1a:1c:a7:77:b0:55:13:de:1d:5f:2b:54:e6:
        46:04:19:59:89:6b:d0:71:ef:66:4e:b1:55:0e:48:67:
        20:e9:ea:13:b9:71:c7:89:f3:4b:52:ac:6d:1c:0d:21:
        3b:40:f4:2b:79:93:35:9c:5a:67:94:1f:67:fb:56:aa:
        6a:bc:69:3c:27:c7:dd:9b:90:f2:94:88:5d:24:ee:15:
        1b:23:83:48:73:45:14:51:d3:4a:2e:73:be:c4:3d:ef:
        b3:ab:bc:f6:d5:25:89:84:95:18:bc:52:18:fe:0d:f8:
        cb:03:39:06:f5:e4:69:6f:15:48:79:8d:3a:a7:92:e6:
        c7:c8:08:35:ad:c4:74:75:f0:90:8e:6a:e9:7a:18:d0:
        80:23:87:e6:38:23:2b:53:e1:11:8d:eb:53:58:71:69:
        69:b3:7c:b8:9f:f7:ac:64:1d:13:35:f0:9b:78:0c:b6:
        b3:06:7a:1d:fa:78:ec:bc:4b:b9:74:fb:66:be:cf:99
    Fingerprint (SHA-256):
        55:BE:23:E0:4D:47:29:BB:6F:0E:45:8A:5E:17:87:30:13:A4:C0:49:86:B5:48:8D:3F:E0:FF:50:5A:22:A6:60
    Fingerprint (SHA1):
        9D:43:2F:93:D4:C9:93:EB:7F:02:88:4D:5A:26:99:8E:7B:EB:A5:92
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8500: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #8501: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155884 (0x3cdd9a2c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:28:58 2017
            Not After : Fri Oct 21 16:28:58 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ef:ea:bc:1f:25:04:32:0e:bf:fc:a0:74:28:57:2d:29:
                    c8:4a:8e:04:5a:fe:fc:70:52:64:ff:eb:b8:21:dc:09:
                    33:8d:4d:39:20:22:1b:35:ac:f1:e1:d4:21:30:6a:c3:
                    e6:55:6f:a8:c0:23:96:91:0d:a0:51:1a:58:61:19:2e:
                    a5:3e:d2:86:e9:d7:15:f6:4f:8e:bf:8f:41:1a:af:dd:
                    07:0a:5a:9e:b5:2e:78:61:4f:5d:99:bb:74:02:5a:46:
                    b9:bd:dc:34:38:0a:14:d7:56:69:f9:e2:1e:24:90:bc:
                    cb:0d:74:fc:8c:fd:b2:00:e1:da:c2:f0:86:49:5b:5b:
                    0b:83:aa:b7:e2:c3:db:26:ec:ec:a1:35:a9:27:14:73:
                    ee:43:39:d9:82:a5:9c:dc:57:d1:f4:64:0f:f0:61:56:
                    f8:07:9c:fd:91:4f:f9:b0:e9:4c:aa:03:83:e4:91:47:
                    73:c8:b1:d1:6a:96:d1:1c:68:66:45:b0:7d:1b:3e:f3:
                    ec:86:02:3e:3b:61:f9:bc:46:08:34:ea:8e:9a:cb:47:
                    54:70:4b:a3:78:20:17:cd:e1:48:01:2b:41:cd:50:dd:
                    aa:94:62:cd:e5:2d:2f:38:29:eb:07:ed:fa:60:08:8f:
                    69:d2:33:bd:72:2b:aa:b4:23:98:ad:68:ad:a1:19:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a9:78:c6:a0:0f:e1:35:08:12:7f:cd:a3:9c:ef:21:7f:
        4c:ab:6a:90:e5:23:6e:19:04:15:55:ca:e2:4d:57:cb:
        b9:01:63:89:0b:fe:3f:07:d6:91:6f:8c:68:c2:f3:f6:
        ab:c2:99:82:3b:03:4e:02:3f:f1:4d:29:3c:c0:b7:b7:
        fa:b9:0d:1a:1c:a7:77:b0:55:13:de:1d:5f:2b:54:e6:
        46:04:19:59:89:6b:d0:71:ef:66:4e:b1:55:0e:48:67:
        20:e9:ea:13:b9:71:c7:89:f3:4b:52:ac:6d:1c:0d:21:
        3b:40:f4:2b:79:93:35:9c:5a:67:94:1f:67:fb:56:aa:
        6a:bc:69:3c:27:c7:dd:9b:90:f2:94:88:5d:24:ee:15:
        1b:23:83:48:73:45:14:51:d3:4a:2e:73:be:c4:3d:ef:
        b3:ab:bc:f6:d5:25:89:84:95:18:bc:52:18:fe:0d:f8:
        cb:03:39:06:f5:e4:69:6f:15:48:79:8d:3a:a7:92:e6:
        c7:c8:08:35:ad:c4:74:75:f0:90:8e:6a:e9:7a:18:d0:
        80:23:87:e6:38:23:2b:53:e1:11:8d:eb:53:58:71:69:
        69:b3:7c:b8:9f:f7:ac:64:1d:13:35:f0:9b:78:0c:b6:
        b3:06:7a:1d:fa:78:ec:bc:4b:b9:74:fb:66:be:cf:99
    Fingerprint (SHA-256):
        55:BE:23:E0:4D:47:29:BB:6F:0E:45:8A:5E:17:87:30:13:A4:C0:49:86:B5:48:8D:3F:E0:FF:50:5A:22:A6:60
    Fingerprint (SHA1):
        9D:43:2F:93:D4:C9:93:EB:7F:02:88:4D:5A:26:99:8E:7B:EB:A5:92
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8502: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155886 (0x3cdd9a2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 16:29:11 2017
            Not After : Fri Oct 21 16:29:11 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:95:6e:ac:e9:89:0b:0e:7e:ae:f9:ad:b5:69:1e:d7:
                    87:27:b0:a9:24:80:fe:b4:65:0e:4f:66:6f:9f:7a:62:
                    db:e2:b7:ea:59:4c:db:89:5d:9c:4b:d1:84:5f:51:12:
                    d0:61:17:c5:4b:53:14:22:7b:ec:bd:3d:36:d9:e7:64:
                    81:70:6c:25:fc:d2:93:2f:cf:ae:95:a9:b8:de:9f:0b:
                    cf:f3:6d:e6:e7:d8:a6:ba:eb:10:32:dd:10:64:40:d8:
                    f3:32:5d:11:34:9f:b8:19:61:fc:95:e7:36:67:03:57:
                    2c:3b:59:5e:74:e2:c1:08:2b:a2:f3:ba:86:7e:db:a9:
                    e4:29:56:6f:b0:e9:e0:42:50:62:f9:46:48:ba:8b:85:
                    b3:5c:d0:2d:a0:bb:c3:97:5c:22:06:ec:bf:09:5c:09:
                    a6:dc:b4:cb:f6:48:3a:7f:4c:a0:3e:5f:73:09:7f:b7:
                    6a:93:10:cf:1b:c9:67:86:e8:03:56:9e:71:c2:f8:13:
                    d2:b0:0b:b2:95:33:03:a5:f9:37:12:9f:27:e5:42:94:
                    8c:3c:fb:a8:cf:b3:a3:83:8d:01:4e:25:c8:62:1e:d7:
                    8c:e8:93:c9:57:22:59:01:5e:ba:8d:6d:63:fc:a8:2b:
                    6b:58:ad:23:1f:84:3b:e1:b6:0f:c6:16:27:52:a8:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:83:b7:8e:11:18:45:ff:fd:81:85:63:9a:ff:69:d1:
        70:e7:ff:22:4d:3a:d4:61:09:54:65:be:2f:90:2f:22:
        ac:4e:25:91:12:2f:f5:a0:ca:e2:7d:ce:91:d7:ad:9d:
        0a:34:29:79:95:ab:01:cf:96:1b:5f:17:c9:74:1e:d0:
        3e:be:fd:c3:80:e7:34:82:aa:c2:05:06:06:e0:df:20:
        d7:1e:ae:f4:aa:de:02:3d:b4:cc:fa:a6:8f:91:22:f6:
        47:ed:07:c1:9f:d8:00:a0:0e:cc:eb:cd:23:17:d5:ad:
        36:fd:b0:e5:2e:60:ca:10:29:1d:b2:16:e3:a1:99:eb:
        76:5b:37:d8:bd:34:b1:97:16:d1:de:a3:9e:2d:a5:29:
        52:d7:df:17:aa:d7:db:a5:41:db:86:bf:74:43:5d:20:
        b9:8c:78:1a:6f:7f:92:ed:97:9b:77:93:32:2d:1c:b3:
        84:e2:b1:23:c2:ba:51:cb:aa:9b:e9:f6:84:f1:17:24:
        e0:29:1f:b7:f8:ea:b3:78:86:c9:48:26:3c:22:3d:f1:
        45:51:d3:0b:a4:65:6a:bc:ec:04:41:cd:a7:16:a4:a5:
        52:90:b6:a1:7a:1b:d4:48:ff:77:32:86:64:ce:d8:7b:
        39:40:97:ab:02:62:fe:2e:8e:88:cf:0b:13:69:64:fb
    Fingerprint (SHA-256):
        1A:11:0D:CB:85:06:2D:90:FC:DA:66:B5:D2:E9:4A:D1:74:97:8D:BD:5D:08:16:C8:AE:59:87:CF:EE:36:44:1C
    Fingerprint (SHA1):
        E5:C3:28:A3:F3:1B:EB:CC:E1:F1:EA:21:10:54:CB:01:A0:10:46:C2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8503: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #8504: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #8505: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #8506: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155884 (0x3cdd9a2c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:28:58 2017
            Not After : Fri Oct 21 16:28:58 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ef:ea:bc:1f:25:04:32:0e:bf:fc:a0:74:28:57:2d:29:
                    c8:4a:8e:04:5a:fe:fc:70:52:64:ff:eb:b8:21:dc:09:
                    33:8d:4d:39:20:22:1b:35:ac:f1:e1:d4:21:30:6a:c3:
                    e6:55:6f:a8:c0:23:96:91:0d:a0:51:1a:58:61:19:2e:
                    a5:3e:d2:86:e9:d7:15:f6:4f:8e:bf:8f:41:1a:af:dd:
                    07:0a:5a:9e:b5:2e:78:61:4f:5d:99:bb:74:02:5a:46:
                    b9:bd:dc:34:38:0a:14:d7:56:69:f9:e2:1e:24:90:bc:
                    cb:0d:74:fc:8c:fd:b2:00:e1:da:c2:f0:86:49:5b:5b:
                    0b:83:aa:b7:e2:c3:db:26:ec:ec:a1:35:a9:27:14:73:
                    ee:43:39:d9:82:a5:9c:dc:57:d1:f4:64:0f:f0:61:56:
                    f8:07:9c:fd:91:4f:f9:b0:e9:4c:aa:03:83:e4:91:47:
                    73:c8:b1:d1:6a:96:d1:1c:68:66:45:b0:7d:1b:3e:f3:
                    ec:86:02:3e:3b:61:f9:bc:46:08:34:ea:8e:9a:cb:47:
                    54:70:4b:a3:78:20:17:cd:e1:48:01:2b:41:cd:50:dd:
                    aa:94:62:cd:e5:2d:2f:38:29:eb:07:ed:fa:60:08:8f:
                    69:d2:33:bd:72:2b:aa:b4:23:98:ad:68:ad:a1:19:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a9:78:c6:a0:0f:e1:35:08:12:7f:cd:a3:9c:ef:21:7f:
        4c:ab:6a:90:e5:23:6e:19:04:15:55:ca:e2:4d:57:cb:
        b9:01:63:89:0b:fe:3f:07:d6:91:6f:8c:68:c2:f3:f6:
        ab:c2:99:82:3b:03:4e:02:3f:f1:4d:29:3c:c0:b7:b7:
        fa:b9:0d:1a:1c:a7:77:b0:55:13:de:1d:5f:2b:54:e6:
        46:04:19:59:89:6b:d0:71:ef:66:4e:b1:55:0e:48:67:
        20:e9:ea:13:b9:71:c7:89:f3:4b:52:ac:6d:1c:0d:21:
        3b:40:f4:2b:79:93:35:9c:5a:67:94:1f:67:fb:56:aa:
        6a:bc:69:3c:27:c7:dd:9b:90:f2:94:88:5d:24:ee:15:
        1b:23:83:48:73:45:14:51:d3:4a:2e:73:be:c4:3d:ef:
        b3:ab:bc:f6:d5:25:89:84:95:18:bc:52:18:fe:0d:f8:
        cb:03:39:06:f5:e4:69:6f:15:48:79:8d:3a:a7:92:e6:
        c7:c8:08:35:ad:c4:74:75:f0:90:8e:6a:e9:7a:18:d0:
        80:23:87:e6:38:23:2b:53:e1:11:8d:eb:53:58:71:69:
        69:b3:7c:b8:9f:f7:ac:64:1d:13:35:f0:9b:78:0c:b6:
        b3:06:7a:1d:fa:78:ec:bc:4b:b9:74:fb:66:be:cf:99
    Fingerprint (SHA-256):
        55:BE:23:E0:4D:47:29:BB:6F:0E:45:8A:5E:17:87:30:13:A4:C0:49:86:B5:48:8D:3F:E0:FF:50:5A:22:A6:60
    Fingerprint (SHA1):
        9D:43:2F:93:D4:C9:93:EB:7F:02:88:4D:5A:26:99:8E:7B:EB:A5:92
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8507: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155888 (0x3cdd9a30)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Sat Oct 21 16:29:22 2017
            Not After : Fri Oct 21 16:29:22 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a1:b5:0c:78:42:b9:6c:07:1f:1b:24:4a:08:91:0e:b1:
                    8e:eb:55:b0:88:98:ca:3c:7a:c1:ab:55:97:bd:5e:05:
                    52:7e:f9:25:1d:2f:c7:de:3c:80:72:42:08:91:92:23:
                    c3:e0:fb:fe:8c:c0:47:af:d2:7f:de:bb:30:90:68:ce:
                    db:17:41:7f:79:3d:2b:19:33:97:c7:21:d8:a6:e5:84:
                    ca:a0:d9:29:de:c3:d5:be:27:8f:86:03:68:38:1c:32:
                    bd:25:94:b3:d7:e9:fc:2e:55:3d:8a:6a:a7:40:57:0b:
                    5d:ca:91:bb:33:55:3f:29:e8:1e:50:e7:cd:0c:40:8f:
                    c7:31:e3:3c:4c:d6:ff:1d:30:d2:95:57:02:13:65:38:
                    7b:7e:ab:41:d6:18:e5:f9:b3:ca:ae:7a:28:e8:0c:2b:
                    12:ed:ed:ec:3e:e3:6a:a6:b4:21:27:4c:f2:6b:b6:97:
                    d8:15:35:da:2f:29:53:2d:4b:c5:bb:23:08:56:cd:cc:
                    6f:c4:81:df:fb:78:95:e2:83:7d:91:13:22:59:52:db:
                    3c:4b:ed:4f:57:31:c5:91:10:4d:03:6d:5e:ab:63:15:
                    06:11:c0:3b:a0:f8:e0:9f:ac:b8:f8:be:b1:e4:3d:5c:
                    92:8a:0f:82:da:3f:5d:1c:7e:3f:cb:4d:d8:e0:b2:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:9e:f5:5a:23:46:96:5f:bb:a1:ee:d0:d4:32:05:f9:
        92:d5:4c:3e:71:60:93:c5:cc:e0:d4:30:53:15:a8:fb:
        96:b1:12:b7:29:8f:54:c2:1d:09:ca:3d:96:83:9a:0f:
        55:c1:40:a5:82:9e:61:10:83:a1:ef:65:18:13:40:8e:
        fd:a6:78:14:f4:fc:d4:c5:10:03:95:29:ed:dc:22:81:
        2d:58:22:76:82:f4:84:3a:93:15:a9:f2:2e:d9:ec:cf:
        51:42:fc:7c:24:3a:42:ba:25:9b:7b:54:74:09:e2:8b:
        18:83:f7:b5:ca:43:73:50:64:f2:d9:bd:b6:4d:4a:28:
        28:b0:de:1c:91:ab:13:e7:63:6d:04:2a:bf:b5:31:66:
        fe:84:db:ce:39:a3:78:65:00:db:29:b3:bb:4b:82:5d:
        1a:55:18:d7:50:82:17:5f:05:dc:04:c6:60:03:d7:71:
        f6:17:f2:7a:33:74:f7:31:46:80:d9:48:b4:30:af:b4:
        6e:af:51:e5:b2:8d:fa:69:d1:04:75:8d:12:b6:69:d7:
        b1:9d:a1:4c:b1:07:30:d8:2d:c5:16:35:39:a9:f6:f4:
        1a:1d:b1:6d:87:3f:3c:46:ba:b5:ab:88:cd:85:ca:91:
        39:e5:49:73:01:c2:73:29:ee:7a:33:d5:5b:d8:5f:6d
    Fingerprint (SHA-256):
        00:3F:89:E6:04:7B:7C:EA:43:04:5A:EB:C1:01:0C:93:8B:BC:C7:4F:02:2F:DE:F9:6D:0D:A7:45:0E:CD:1A:55
    Fingerprint (SHA1):
        94:BE:AC:E9:F6:CC:33:9C:7C:C3:A9:F3:7F:92:88:93:31:DB:04:CB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #8508: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155884 (0x3cdd9a2c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 16:28:58 2017
            Not After : Fri Oct 21 16:28:58 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ef:ea:bc:1f:25:04:32:0e:bf:fc:a0:74:28:57:2d:29:
                    c8:4a:8e:04:5a:fe:fc:70:52:64:ff:eb:b8:21:dc:09:
                    33:8d:4d:39:20:22:1b:35:ac:f1:e1:d4:21:30:6a:c3:
                    e6:55:6f:a8:c0:23:96:91:0d:a0:51:1a:58:61:19:2e:
                    a5:3e:d2:86:e9:d7:15:f6:4f:8e:bf:8f:41:1a:af:dd:
                    07:0a:5a:9e:b5:2e:78:61:4f:5d:99:bb:74:02:5a:46:
                    b9:bd:dc:34:38:0a:14:d7:56:69:f9:e2:1e:24:90:bc:
                    cb:0d:74:fc:8c:fd:b2:00:e1:da:c2:f0:86:49:5b:5b:
                    0b:83:aa:b7:e2:c3:db:26:ec:ec:a1:35:a9:27:14:73:
                    ee:43:39:d9:82:a5:9c:dc:57:d1:f4:64:0f:f0:61:56:
                    f8:07:9c:fd:91:4f:f9:b0:e9:4c:aa:03:83:e4:91:47:
                    73:c8:b1:d1:6a:96:d1:1c:68:66:45:b0:7d:1b:3e:f3:
                    ec:86:02:3e:3b:61:f9:bc:46:08:34:ea:8e:9a:cb:47:
                    54:70:4b:a3:78:20:17:cd:e1:48:01:2b:41:cd:50:dd:
                    aa:94:62:cd:e5:2d:2f:38:29:eb:07:ed:fa:60:08:8f:
                    69:d2:33:bd:72:2b:aa:b4:23:98:ad:68:ad:a1:19:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a9:78:c6:a0:0f:e1:35:08:12:7f:cd:a3:9c:ef:21:7f:
        4c:ab:6a:90:e5:23:6e:19:04:15:55:ca:e2:4d:57:cb:
        b9:01:63:89:0b:fe:3f:07:d6:91:6f:8c:68:c2:f3:f6:
        ab:c2:99:82:3b:03:4e:02:3f:f1:4d:29:3c:c0:b7:b7:
        fa:b9:0d:1a:1c:a7:77:b0:55:13:de:1d:5f:2b:54:e6:
        46:04:19:59:89:6b:d0:71:ef:66:4e:b1:55:0e:48:67:
        20:e9:ea:13:b9:71:c7:89:f3:4b:52:ac:6d:1c:0d:21:
        3b:40:f4:2b:79:93:35:9c:5a:67:94:1f:67:fb:56:aa:
        6a:bc:69:3c:27:c7:dd:9b:90:f2:94:88:5d:24:ee:15:
        1b:23:83:48:73:45:14:51:d3:4a:2e:73:be:c4:3d:ef:
        b3:ab:bc:f6:d5:25:89:84:95:18:bc:52:18:fe:0d:f8:
        cb:03:39:06:f5:e4:69:6f:15:48:79:8d:3a:a7:92:e6:
        c7:c8:08:35:ad:c4:74:75:f0:90:8e:6a:e9:7a:18:d0:
        80:23:87:e6:38:23:2b:53:e1:11:8d:eb:53:58:71:69:
        69:b3:7c:b8:9f:f7:ac:64:1d:13:35:f0:9b:78:0c:b6:
        b3:06:7a:1d:fa:78:ec:bc:4b:b9:74:fb:66:be:cf:99
    Fingerprint (SHA-256):
        55:BE:23:E0:4D:47:29:BB:6F:0E:45:8A:5E:17:87:30:13:A4:C0:49:86:B5:48:8D:3F:E0:FF:50:5A:22:A6:60
    Fingerprint (SHA1):
        9D:43:2F:93:D4:C9:93:EB:7F:02:88:4D:5A:26:99:8E:7B:EB:A5:92
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #8509: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #8510: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #8511: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #8512: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #8513: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #8514: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021155889 (0x3cdd9a31)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Sat Oct 21 16:29:26 2017
            Not After : Fri Oct 21 16:29:26 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fa:bc:d1:d9:61:de:85:28:52:db:69:5b:b9:9e:5b:c1:
                    40:07:c0:55:5f:fa:89:76:88:6d:49:95:06:43:7e:c9:
                    65:61:54:e9:8f:58:21:70:c2:29:a2:74:df:6c:9b:d6:
                    1e:17:89:64:ec:21:e9:11:39:e6:f1:ed:08:1e:2a:f9:
                    37:8d:ab:3e:3f:ad:d9:73:fd:b1:17:f4:19:32:a6:c5:
                    7d:a5:82:17:49:28:ef:48:b4:eb:71:7a:78:c6:c5:c7:
                    e8:6f:d9:6a:9b:51:69:76:79:92:7f:be:3e:01:08:69:
                    ff:aa:fb:fa:6d:6c:b0:80:f4:d7:4f:63:b2:36:5b:7d:
                    d1:ce:b5:56:f6:58:42:4f:2a:00:7a:f1:7c:9c:94:21:
                    53:1f:ef:4f:5c:7f:a6:98:44:01:00:81:b0:8e:99:f4:
                    40:e0:08:fc:69:af:c5:69:56:dc:04:fc:4d:7d:ef:b3:
                    40:11:1f:b6:67:0b:74:f9:3e:7b:9c:64:fe:7e:cf:74:
                    23:65:ce:4a:58:88:ff:f8:3b:1c:de:49:3a:8e:6c:d5:
                    d5:fc:1a:cf:d6:ff:37:b4:dd:16:1c:6f:80:33:78:5b:
                    bb:51:79:de:65:7a:31:a4:76:e4:66:62:23:59:3a:6b:
                    79:eb:2d:a5:bd:e6:85:be:c3:1b:98:d8:df:97:12:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9a:22:4b:3e:70:f8:36:e3:70:3d:89:50:27:11:9e:20:
        c9:38:6f:8f:04:a9:1e:dc:b7:ea:b5:8e:bf:e5:ea:dd:
        bb:5b:ca:ee:22:fd:b7:db:d5:ea:5b:98:b0:88:d4:1b:
        76:50:28:ee:2e:29:42:ce:3c:3d:7f:09:06:5a:99:91:
        51:70:d5:8a:0f:2e:a0:25:c9:35:92:2f:21:cb:a3:06:
        8d:9e:a5:4d:81:f2:87:6d:15:57:e2:f9:e4:02:24:41:
        50:18:80:30:18:73:f7:d7:24:2b:3e:f4:72:0c:6a:e2:
        70:8c:5d:eb:1c:d0:44:94:2b:0e:43:9a:cb:ee:49:fd:
        19:8a:e3:74:bc:92:03:83:3e:f5:bd:06:9d:07:9f:68:
        a6:08:de:39:18:71:d4:fc:e4:00:79:f6:6f:bf:ad:b6:
        a7:49:7b:03:bd:41:59:2a:bc:27:c0:ff:b8:f7:ce:46:
        1d:bf:18:be:4a:64:d8:01:0b:39:f4:f2:86:fc:e2:ad:
        ae:b5:18:9e:8a:84:a3:cb:af:f3:e9:d6:25:e8:ad:18:
        02:0b:95:88:ad:e1:05:04:6c:e3:31:85:c2:91:d5:e0:
        f4:cc:13:16:85:ed:2d:69:0c:5f:35:d7:19:1f:1f:c5:
        e8:06:f7:5d:ea:98:11:d6:f4:c4:c2:a1:1a:5e:a2:92
    Fingerprint (SHA-256):
        D6:94:9A:9D:4B:9D:0B:64:80:41:3E:8C:AF:50:34:1B:0A:CD:F5:38:8F:73:7D:32:6E:C4:FC:B3:48:81:B3:A8
    Fingerprint (SHA1):
        85:59:EA:03:9C:0B:7C:4E:BC:9F:03:0E:AA:4C:72:0E:AF:B3:DA:59
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #8515: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #8516: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #8517: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #8518: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #8519: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #8520: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #8521: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #8522: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #8523: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #8524: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #8525: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #8526: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #8527: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #8528: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #8529: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #8530: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #8531: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #8532: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #8533: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #8534: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #8535: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #8536: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #8537: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #8538: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 11462 at Sat Oct 21 16:30:05 UTC 2017
kill -USR1 11462
httpserv: normal termination
httpserv -b -p 9193 2>/dev/null;
httpserv with PID 11462 killed at Sat Oct 21 16:30:06 UTC 2017
TIMESTAMP chains END: Sat Oct 21 16:30:06 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Sat Oct 21 16:30:06 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Sat Oct 21 16:30:06 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #8539: ec(perf) test - PASSED
TIMESTAMP ecperf END: Sat Oct 21 16:30:06 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Sat Oct 21 16:30:06 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8540: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8541: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8542: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8543: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #8544: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #8545: pk11 ec tests - PASSED
TIMESTAMP ectest END: Sat Oct 21 16:30:11 UTC 2017
TIMESTAMP ec END: Sat Oct 21 16:30:11 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Sat Oct 21 16:30:11 UTC 2017
gtests: der_gtest pk11_gtest
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (1 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (4 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (1 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (2 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (7 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #8546: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #8547: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #8548: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #8549: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #8550: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #8551: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #8552: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #8553: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #8554: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #8555: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #8556: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #8557: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #8558: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #8559: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #8560: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #8561: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #8562: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: pk11_gtest ===============================
executing pk11_gtest
[==========] Running 21 tests from 7 test cases.
[----------] Global test environment set-up.
[----------] 6 tests from Pkcs11AESKeyWrapTest
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest1
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest1 (1 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest2
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest2 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest3
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest3 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest4
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest4 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest5
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest5 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest6
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest6 (1 ms)
[----------] 6 tests from Pkcs11AESKeyWrapTest (3 ms total)
[----------] 3 tests from Pkcs11ChaCha20Poly1305Test
[ RUN      ] Pkcs11ChaCha20Poly1305Test.GenerateEncryptDecrypt
[       OK ] Pkcs11ChaCha20Poly1305Test.GenerateEncryptDecrypt (0 ms)
[ RUN      ] Pkcs11ChaCha20Poly1305Test.CheckTestVector1
[       OK ] Pkcs11ChaCha20Poly1305Test.CheckTestVector1 (0 ms)
[ RUN      ] Pkcs11ChaCha20Poly1305Test.CheckTestVector2
[       OK ] Pkcs11ChaCha20Poly1305Test.CheckTestVector2 (0 ms)
[----------] 3 tests from Pkcs11ChaCha20Poly1305Test (1 ms total)
[----------] 2 tests from Pkcs11ExportTest
[ RUN      ] Pkcs11ExportTest.DeriveNonExport
[       OK ] Pkcs11ExportTest.DeriveNonExport (1 ms)
[ RUN      ] Pkcs11ExportTest.DeriveExport
[       OK ] Pkcs11ExportTest.DeriveExport (0 ms)
[----------] 2 tests from Pkcs11ExportTest (1 ms total)
[----------] 2 tests from Pkcs11Pbkdf2Test
[ RUN      ] Pkcs11Pbkdf2Test.DeriveKnown1
[       OK ] Pkcs11Pbkdf2Test.DeriveKnown1 (155 ms)
[ RUN      ] Pkcs11Pbkdf2Test.DeriveKnown2
[       OK ] Pkcs11Pbkdf2Test.DeriveKnown2 (334 ms)
[----------] 2 tests from Pkcs11Pbkdf2Test (489 ms total)
[----------] 5 tests from TlsPrfTest
[ RUN      ] TlsPrfTest.ExtendedMsParamErr
[       OK ] TlsPrfTest.ExtendedMsParamErr (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsDhTlsPrf
[       OK ] TlsPrfTest.ExtendedMsDhTlsPrf (1 ms)
[ RUN      ] TlsPrfTest.ExtendedMsRsaTlsPrf
[       OK ] TlsPrfTest.ExtendedMsRsaTlsPrf (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsDhSha256
[       OK ] TlsPrfTest.ExtendedMsDhSha256 (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsRsaSha256
[       OK ] TlsPrfTest.ExtendedMsRsaSha256 (0 ms)
[----------] 5 tests from TlsPrfTest (2 ms total)
[----------] 1 test from Pkcs11RsaPssTest
[ RUN      ] Pkcs11RsaPssTest.GenerateAndSignAndVerify
[       OK ] Pkcs11RsaPssTest.GenerateAndSignAndVerify (469 ms)
[----------] 1 test from Pkcs11RsaPssTest (469 ms total)
[----------] 2 tests from Pkcs11RsaPssVectorTest
[ RUN      ] Pkcs11RsaPssVectorTest.VerifyKnownSignature1
[       OK ] Pkcs11RsaPssVectorTest.VerifyKnownSignature1 (1 ms)
[ RUN      ] Pkcs11RsaPssVectorTest.VerifyKnownSignature2
[       OK ] Pkcs11RsaPssVectorTest.VerifyKnownSignature2 (2 ms)
[----------] 2 tests from Pkcs11RsaPssVectorTest (3 ms total)
[----------] Global test environment tear-down
[==========] 21 tests from 7 test cases ran. (968 ms total)
[  PASSED  ] 21 tests.
gtests.sh: #8563: pk11_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/pkix/pk11_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #8564: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest1' - PASSED
gtests.sh: #8565: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest2' - PASSED
gtests.sh: #8566: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest3' - PASSED
gtests.sh: #8567: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest4' - PASSED
gtests.sh: #8568: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest5' - PASSED
gtests.sh: #8569: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest6' - PASSED
gtests.sh: #8570: 'Pkcs11ChaCha20Poly1305Test: GenerateEncryptDecrypt' - PASSED
gtests.sh: #8571: 'Pkcs11ChaCha20Poly1305Test: CheckTestVector1' - PASSED
gtests.sh: #8572: 'Pkcs11ChaCha20Poly1305Test: CheckTestVector2' - PASSED
gtests.sh: #8573: 'Pkcs11ExportTest: DeriveNonExport' - PASSED
gtests.sh: #8574: 'Pkcs11ExportTest: DeriveExport' - PASSED
gtests.sh: #8575: 'Pkcs11Pbkdf2Test: DeriveKnown1' - PASSED
gtests.sh: #8576: 'Pkcs11Pbkdf2Test: DeriveKnown2' - PASSED
gtests.sh: #8577: 'TlsPrfTest: ExtendedMsParamErr' - PASSED
gtests.sh: #8578: 'TlsPrfTest: ExtendedMsDhTlsPrf' - PASSED
gtests.sh: #8579: 'TlsPrfTest: ExtendedMsRsaTlsPrf' - PASSED
gtests.sh: #8580: 'TlsPrfTest: ExtendedMsDhSha256' - PASSED
gtests.sh: #8581: 'TlsPrfTest: ExtendedMsRsaSha256' - PASSED
gtests.sh: #8582: 'Pkcs11RsaPssTest: GenerateAndSignAndVerify' - PASSED
gtests.sh: #8583: 'Pkcs11RsaPssVectorTest: VerifyKnownSignature1' - PASSED
gtests.sh: #8584: 'Pkcs11RsaPssVectorTest: VerifyKnownSignature2' - PASSED
TIMESTAMP gtests END: Sat Oct 21 16:30:14 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Sat Oct 21 16:30:14 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #8585: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8586: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8587: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8588: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8589: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8590: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8591: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8592: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8593: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8594: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8595: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8596: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8597: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8598: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8599: create certificate: sign  - PASSED
executing ssl_gtest
[==========] Running 816 tests from 15 test cases.
[----------] Global test environment set-up.
[----------] 60 tests from CipherSuiteRC4/TlsCipherSuiteTest
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/0 (71 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/1 (55 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/2 (103 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/3 (60 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/4 (87 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/5 (42 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/6 (55 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/7 (88 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/8 (60 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/9 (86 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/10 (41 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/11 (54 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/12 (88 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/13 (60 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/14 (85 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/0 (97 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/1 (104 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/2 (138 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/3 (112 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/4 (145 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/5 (97 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/6 (104 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/7 (137 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/8 (111 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/9 (144 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/10 (97 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/11 (104 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/12 (137 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/13 (111 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/14 (144 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/0 (44 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/1 (56 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/2 (90 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/3 (61 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/4 (87 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/5 (44 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/6 (57 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/7 (89 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/8 (61 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/9 (87 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/10 (43 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/11 (56 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/12 (90 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/13 (61 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/14 (86 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/0 (42 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/1 (55 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/2 (88 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/3 (60 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/4 (85 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/5 (42 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/6 (54 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/7 (88 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/8 (60 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/9 (85 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/10 (42 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/11 (54 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/12 (88 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/13 (61 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/14 (85 ms)
[----------] 60 tests from CipherSuiteRC4/TlsCipherSuiteTest (4839 ms total)
[----------] 48 tests from CipherSuiteAEAD12/TlsCipherSuiteTest
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/0 (42 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/1 (43 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/2 (210 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/3 (208 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/4 (91 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/5 (88 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/6 (43 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/7 (44 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/8 (208 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/9 (210 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/10 (91 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/11 (89 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/0 (97 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/1 (99 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/2 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/3 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/4 (142 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/5 (148 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/6 (98 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/7 (99 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/8 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/9 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/10 (137 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/11 (145 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/0 (44 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/1 (45 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/2 (208 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/3 (209 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/4 (91 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/5 (88 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/6 (44 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/7 (45 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/8 (210 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/9 (210 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/10 (92 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/11 (89 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/0 (42 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/1 (42 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/2 (207 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/3 (206 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/4 (89 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/5 (86 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/6 (42 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/7 (43 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/8 (209 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/9 (209 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/10 (93 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/11 (90 ms)
[----------] 48 tests from CipherSuiteAEAD12/TlsCipherSuiteTest (5101 ms total)
[----------] 72 tests from CipherSuiteAEAD/TlsCipherSuiteTest
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/0 (88 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/1 (89 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/2 (86 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/3 (86 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/4 (142 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/5 (144 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/6 (88 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/7 (86 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/8 (143 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/9 (89 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/10 (90 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/11 (87 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/12 (87 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/13 (143 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/14 (142 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/15 (89 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/16 (85 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/17 (142 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/0 (137 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/1 (139 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/2 (143 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/3 (144 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/4 (201 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/5 (202 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/6 (136 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/7 (143 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/8 (201 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/9 (139 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/10 (140 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/11 (146 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/12 (146 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/13 (203 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/14 (205 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/15 (138 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/16 (144 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/17 (201 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/0 (94 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/1 (90 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/2 (86 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/3 (87 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/4 (144 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/5 (145 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/6 (89 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/7 (86 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/8 (143 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/9 (90 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/10 (91 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/11 (86 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/12 (89 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/13 (146 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/14 (146 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/15 (90 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/16 (83 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/17 (145 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/0 (87 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/1 (88 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/2 (85 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/3 (85 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/4 (142 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/5 (143 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/6 (87 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/7 (84 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/8 (141 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/9 (89 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/10 (89 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/11 (86 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/12 (87 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/13 (144 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/14 (144 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/15 (88 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/16 (85 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/17 (143 ms)
[----------] 72 tests from CipherSuiteAEAD/TlsCipherSuiteTest (8670 ms total)
[----------] 64 tests from CipherSuiteCBC12/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/0 (144 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/1 (44 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/2 (89 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/3 (86 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/4 (143 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/5 (43 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/6 (208 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/7 (208 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/8 (145 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/9 (44 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/10 (90 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/11 (87 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/12 (143 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/13 (43 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/14 (210 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/15 (209 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/0 (202 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/1 (98 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/2 (138 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/3 (145 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/4 (203 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/5 (98 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/6 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/7 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/8 (201 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/9 (98 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/10 (139 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/11 (146 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/12 (204 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/13 (98 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/14 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/15 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/0 (144 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/1 (44 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/2 (90 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/3 (87 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/4 (145 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/5 (44 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/6 (209 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/7 (210 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/8 (146 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/9 (44 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/10 (90 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/11 (88 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/12 (146 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/13 (42 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/14 (210 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/15 (211 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/0 (143 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/1 (43 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/2 (88 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/3 (86 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/4 (143 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/5 (43 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/6 (210 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/7 (208 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/8 (145 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/9 (43 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/10 (89 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/11 (86 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/12 (144 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/13 (42 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/14 (227 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/15 (212 ms)
[----------] 64 tests from CipherSuiteCBC12/TlsCipherSuiteTest (7653 ms total)
[----------] 192 tests from CipherSuiteCBCStream/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/0 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/1 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/2 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/3 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/4 (91 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/5 (91 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/6 (90 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/7 (93 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/8 (60 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/9 (61 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/10 (61 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/11 (60 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/12 (85 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/13 (87 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/14 (87 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/15 (87 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/16 (55 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/17 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/18 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/19 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/20 (88 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/21 (89 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/22 (89 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/23 (90 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/24 (60 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/25 (61 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/26 (63 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/27 (60 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/28 (100 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/29 (80 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/30 (81 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/31 (80 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/32 (48 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/33 (50 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/34 (49 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/35 (50 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/36 (82 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/37 (83 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/38 (83 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/39 (83 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/40 (54 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/41 (55 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/42 (55 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/43 (55 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/44 (80 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/45 (86 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/46 (86 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/47 (97 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/0 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/1 (133 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/2 (95 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/3 (95 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/4 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/5 (129 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/6 (129 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/7 (129 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/8 (100 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/9 (103 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/10 (103 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/11 (103 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/12 (132 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/13 (135 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/14 (135 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/15 (135 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/16 (103 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/17 (95 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/18 (95 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/19 (95 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/20 (127 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/21 (136 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/22 (139 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/23 (139 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/24 (111 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/25 (113 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/26 (113 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/27 (114 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/28 (143 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/29 (145 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/30 (145 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/31 (145 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/32 (103 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/33 (105 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/34 (104 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/35 (105 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/36 (136 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/37 (139 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/38 (139 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/39 (138 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/40 (110 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/41 (113 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/42 (113 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/43 (114 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/44 (143 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/45 (144 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/46 (145 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/47 (145 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/0 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/1 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/2 (57 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/3 (57 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/4 (89 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/5 (90 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/6 (90 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/7 (90 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/8 (61 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/9 (61 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/10 (62 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/11 (61 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/12 (86 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/13 (87 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/14 (87 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/15 (87 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/16 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/17 (57 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/18 (57 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/19 (57 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/20 (90 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/21 (90 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/22 (90 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/23 (91 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/24 (61 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/25 (62 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/26 (62 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/27 (62 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/28 (87 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/29 (87 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/30 (87 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/31 (88 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/32 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/33 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/34 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/35 (57 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/36 (89 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/37 (90 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/38 (90 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/39 (90 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/40 (60 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/41 (62 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/42 (62 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/43 (61 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/44 (86 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/45 (88 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/46 (87 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/47 (86 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/0 (54 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/1 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/2 (55 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/3 (55 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/4 (88 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/5 (89 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/6 (89 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/7 (89 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/8 (59 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/9 (60 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/10 (60 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/11 (57 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/12 (85 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/13 (86 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/14 (86 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/15 (86 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/16 (54 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/17 (56 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/18 (55 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/19 (55 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/20 (88 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/21 (89 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/22 (89 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/23 (89 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/24 (59 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/25 (61 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/26 (60 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/27 (60 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/28 (85 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/29 (86 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/30 (86 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/31 (86 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/32 (54 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/33 (55 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/34 (54 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/35 (55 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/36 (87 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/37 (88 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/38 (88 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/39 (88 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/40 (59 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/41 (60 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/42 (60 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/43 (60 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/44 (85 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/45 (85 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/46 (85 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/47 (86 ms)
[----------] 192 tests from CipherSuiteCBCStream/TlsCipherSuiteTest (16343 ms total)
[----------] 96 tests from CipherSuiteCBCDatagram/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/0 (57 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/1 (56 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/2 (56 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/3 (90 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/4 (90 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/5 (90 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/6 (62 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/7 (61 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/8 (61 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/9 (87 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/10 (87 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/11 (87 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/12 (56 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/13 (56 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/14 (56 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/15 (90 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/16 (90 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/17 (90 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/18 (61 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/19 (61 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/20 (61 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/21 (87 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/22 (87 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/23 (87 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/0 (105 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/1 (106 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/2 (106 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/3 (140 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/4 (141 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/5 (140 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/6 (114 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/7 (113 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/8 (113 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/9 (146 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/10 (146 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/11 (146 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/12 (106 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/13 (105 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/14 (105 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/15 (139 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/16 (139 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/17 (139 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/18 (113 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/19 (113 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/20 (113 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/21 (147 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/22 (147 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/23 (146 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/0 (57 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/1 (57 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/2 (57 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/3 (92 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/4 (91 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/5 (91 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/6 (62 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/7 (63 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/8 (62 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/9 (89 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/10 (90 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/11 (89 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/12 (56 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/13 (56 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/14 (57 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/15 (91 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/16 (91 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/17 (90 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/18 (61 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/19 (61 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/20 (62 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/21 (88 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/22 (88 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/23 (88 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/0 (56 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/1 (56 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/2 (55 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/3 (89 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/4 (89 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/5 (89 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/6 (60 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/7 (60 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/8 (61 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/9 (87 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/10 (87 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/11 (87 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/12 (55 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/13 (55 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/14 (55 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/15 (89 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/16 (90 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/17 (89 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/18 (60 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/19 (60 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/20 (60 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/21 (87 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/22 (86 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/23 (87 ms)
[----------] 96 tests from CipherSuiteCBCDatagram/TlsCipherSuiteTest (8370 ms total)
[----------] 8 tests from TestSecurityStatus/SecurityStatusTest
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/0
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/0 (85 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/1
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/1 (44 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/2 (87 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/3
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/3 (44 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/4
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/4 (44 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/5 (43 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/6
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/6 (43 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/7 (85 ms)
[----------] 8 tests from TestSecurityStatus/SecurityStatusTest (478 ms total)
[----------] 72 tests from DamageYStream/TlsDamageDHYTest
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103016fd04d982f47deb40ef87e91de3ba6368f71530289c126566854...
record new: [1184] 0200005103016fd04d982f47deb40ef87e91de3ba6368f71530289c126566854...
server: Original packet: [1189] 16030104a00200005103016fd04d982f47deb40ef87e91de3ba6368f71530289...
server: Filtered packet: [1189] 16030104a00200005103016fd04d982f47deb40ef87e91de3ba6368f71530289...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/0 (75 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/1
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301d5b3418302031c87364b0041249f54e8b72fac702500b1acb8e2...
record new: [1184] 020000510301d5b3418302031c87364b0041249f54e8b72fac702500b1acb8e2...
server: Original packet: [1189] 16030104a0020000510301d5b3418302031c87364b0041249f54e8b72fac7025...
server: Filtered packet: [1189] 16030104a0020000510301d5b3418302031c87364b0041249f54e8b72fac7025...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/1 (60 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/2
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103016e91546ee8bea6df5c5f1323d37b02b21d5c773d7c6f5ff19bf9...
record new: [1184] 0200005103016e91546ee8bea6df5c5f1323d37b02b21d5c773d7c6f5ff19bf9...
server: Original packet: [1189] 16030104a00200005103016e91546ee8bea6df5c5f1323d37b02b21d5c773d7c...
server: Filtered packet: [1189] 16030104a00200005103016e91546ee8bea6df5c5f1323d37b02b21d5c773d7c...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/2 (60 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/3
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103012beb2f9adf5036e4177e7eae12c15156477553718434d5b7ee92...
record new: [1184] 0200005103012beb2f9adf5036e4177e7eae12c15156477553718434d5b7ee92...
server: Original packet: [1189] 16030104a00200005103012beb2f9adf5036e4177e7eae12c151564775537184...
server: Filtered packet: [1189] 16030104a00200005103012beb2f9adf5036e4177e7eae12c151564775537184...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/3 (60 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/4
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103011ae7c55bcf616e52c93224aaa6fdf6c072efab7a33082018c528...
record new: [1184] 0200005103011ae7c55bcf616e52c93224aaa6fdf6c072efab7a33082018c528...
server: Original packet: [1189] 16030104a00200005103011ae7c55bcf616e52c93224aaa6fdf6c072efab7a33...
server: Filtered packet: [1189] 16030104a00200005103011ae7c55bcf616e52c93224aaa6fdf6c072efab7a33...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/4 (64 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/5
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301a5d40ca05c39fdeb5ec675f7de86492e0a184f9762cdda661c22...
record new: [1184] 020000510301a5d40ca05c39fdeb5ec675f7de86492e0a184f9762cdda661c22...
server: Original packet: [1189] 16030104a0020000510301a5d40ca05c39fdeb5ec675f7de86492e0a184f9762...
server: Filtered packet: [1189] 16030104a0020000510301a5d40ca05c39fdeb5ec675f7de86492e0a184f9762...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/5 (74 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/6
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103010c09cd5aa4162c477414b88ac39a4b69b43273eaca27f8080295...
record new: [1184] 0200005103010c09cd5aa4162c477414b88ac39a4b69b43273eaca27f8080295...
server: Original packet: [1189] 16030104a00200005103010c09cd5aa4162c477414b88ac39a4b69b43273eaca...
server: Filtered packet: [1189] 16030104a00200005103010c09cd5aa4162c477414b88ac39a4b69b43273eaca...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/6 (74 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/7
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030116bcb3c344d5506fddfe668b5a9cd5a4a4d24eed3c80263e6e17...
record new: [1184] 02000051030116bcb3c344d5506fddfe668b5a9cd5a4a4d24eed3c80263e6e17...
server: Original packet: [1189] 16030104a002000051030116bcb3c344d5506fddfe668b5a9cd5a4a4d24eed3c...
server: Filtered packet: [1189] 16030104a002000051030116bcb3c344d5506fddfe668b5a9cd5a4a4d24eed3c...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/7 (64 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/8
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103010ab794b6af4f3e1dd6fe30c7027e91114c13f202263e6eaefc51...
record new: [1185] 0200005103010ab794b6af4f3e1dd6fe30c7027e91114c13f202263e6eaefc51...
server: Original packet: [1189] 16030104a00200005103010ab794b6af4f3e1dd6fe30c7027e91114c13f20226...
server: Filtered packet: [1190] 16030104a10200005103010ab794b6af4f3e1dd6fe30c7027e91114c13f20226...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/8 (74 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/9
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030156227d2f0928b2e9f54a72a106ae9136989bbe24afe82d537e8f...
record new: [1185] 02000051030156227d2f0928b2e9f54a72a106ae9136989bbe24afe82d537e8f...
server: Original packet: [1189] 16030104a002000051030156227d2f0928b2e9f54a72a106ae9136989bbe24af...
server: Filtered packet: [1190] 16030104a102000051030156227d2f0928b2e9f54a72a106ae9136989bbe24af...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/9 (73 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/10
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103018d47fae5539a1ed949c27657478a96ad134c5c5f7ab5cf6ce5a1...
record new: [1185] 0200005103018d47fae5539a1ed949c27657478a96ad134c5c5f7ab5cf6ce5a1...
server: Original packet: [1189] 16030104a00200005103018d47fae5539a1ed949c27657478a96ad134c5c5f7a...
server: Filtered packet: [1190] 16030104a10200005103018d47fae5539a1ed949c27657478a96ad134c5c5f7a...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/10 (75 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/11
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301311294ef3de7a06d76a556cb72fc90090f715c36d6f660229736...
record new: [1185] 020000510301311294ef3de7a06d76a556cb72fc90090f715c36d6f660229736...
server: Original packet: [1189] 16030104a0020000510301311294ef3de7a06d76a556cb72fc90090f715c36d6...
server: Filtered packet: [1190] 16030104a1020000510301311294ef3de7a06d76a556cb72fc90090f715c36d6...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/11 (75 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/12
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302521ae2d00b484a0761fc8d91eb04d7e8897d0821c686b5381813...
record new: [1184] 020000510302521ae2d00b484a0761fc8d91eb04d7e8897d0821c686b5381813...
server: Original packet: [1189] 16030204a0020000510302521ae2d00b484a0761fc8d91eb04d7e8897d0821c6...
server: Filtered packet: [1189] 16030204a0020000510302521ae2d00b484a0761fc8d91eb04d7e8897d0821c6...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/12 (74 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/13
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302025176bbd86211451461ac6f84c13875162a6f0940982877853b...
record new: [1184] 020000510302025176bbd86211451461ac6f84c13875162a6f0940982877853b...
server: Original packet: [1189] 16030204a0020000510302025176bbd86211451461ac6f84c13875162a6f0940...
server: Filtered packet: [1189] 16030204a0020000510302025176bbd86211451461ac6f84c13875162a6f0940...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/13 (74 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/14
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302d8565b0acff7bef3a0156a2b84a911bc139e39b9195a512f0c57...
record new: [1184] 020000510302d8565b0acff7bef3a0156a2b84a911bc139e39b9195a512f0c57...
server: Original packet: [1189] 16030204a0020000510302d8565b0acff7bef3a0156a2b84a911bc139e39b919...
server: Filtered packet: [1189] 16030204a0020000510302d8565b0acff7bef3a0156a2b84a911bc139e39b919...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/14 (63 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/15
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302b0c12a7ac5ff8e3abdbef383a70d6cd1002817d3721a04298179...
record new: [1184] 020000510302b0c12a7ac5ff8e3abdbef383a70d6cd1002817d3721a04298179...
server: Original packet: [1189] 16030204a0020000510302b0c12a7ac5ff8e3abdbef383a70d6cd1002817d372...
server: Filtered packet: [1189] 16030204a0020000510302b0c12a7ac5ff8e3abdbef383a70d6cd1002817d372...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/15 (73 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/16
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103021d1e0e46e1ce2f692297ae80136c0c35793ed40e5a81354b1215...
record new: [1184] 0200005103021d1e0e46e1ce2f692297ae80136c0c35793ed40e5a81354b1215...
server: Original packet: [1189] 16030204a00200005103021d1e0e46e1ce2f692297ae80136c0c35793ed40e5a...
server: Filtered packet: [1189] 16030204a00200005103021d1e0e46e1ce2f692297ae80136c0c35793ed40e5a...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/16 (73 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/17
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302a20e371757d181fd89ba4a8bbef22ad0cc146b006d69f65dee52...
record new: [1184] 020000510302a20e371757d181fd89ba4a8bbef22ad0cc146b006d69f65dee52...
server: Original packet: [1189] 16030204a0020000510302a20e371757d181fd89ba4a8bbef22ad0cc146b006d...
server: Filtered packet: [1189] 16030204a0020000510302a20e371757d181fd89ba4a8bbef22ad0cc146b006d...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/17 (74 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/18
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302c633ee3b73567900eca14e7a2892416791bbd1398ea77691bbd3...
record new: [1184] 020000510302c633ee3b73567900eca14e7a2892416791bbd1398ea77691bbd3...
server: Original packet: [1189] 16030204a0020000510302c633ee3b73567900eca14e7a2892416791bbd1398e...
server: Filtered packet: [1189] 16030204a0020000510302c633ee3b73567900eca14e7a2892416791bbd1398e...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/18 (73 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/19
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302e76c210174a1676c92a295d333aa462ef9e5435b549cb773e66c...
record new: [1184] 020000510302e76c210174a1676c92a295d333aa462ef9e5435b549cb773e66c...
server: Original packet: [1189] 16030204a0020000510302e76c210174a1676c92a295d333aa462ef9e5435b54...
server: Filtered packet: [1189] 16030204a0020000510302e76c210174a1676c92a295d333aa462ef9e5435b54...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/19 (73 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/20
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302540f7c3cad6cc7ea7b4f9fa62eecea1308b4163dc6786fd0560e...
record new: [1185] 020000510302540f7c3cad6cc7ea7b4f9fa62eecea1308b4163dc6786fd0560e...
server: Original packet: [1189] 16030204a0020000510302540f7c3cad6cc7ea7b4f9fa62eecea1308b4163dc6...
server: Filtered packet: [1190] 16030204a1020000510302540f7c3cad6cc7ea7b4f9fa62eecea1308b4163dc6...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/20 (64 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/21
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302faf29758ac36b89f1b4bbb28e9cc60104e03133517cc605de6aa...
record new: [1185] 020000510302faf29758ac36b89f1b4bbb28e9cc60104e03133517cc605de6aa...
server: Original packet: [1189] 16030204a0020000510302faf29758ac36b89f1b4bbb28e9cc60104e03133517...
server: Filtered packet: [1190] 16030204a1020000510302faf29758ac36b89f1b4bbb28e9cc60104e03133517...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/21 (74 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/22
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302967bf09dcfe56f90ef5aadb7809c559735dd3292f1d90b79df71...
record new: [1185] 020000510302967bf09dcfe56f90ef5aadb7809c559735dd3292f1d90b79df71...
server: Original packet: [1189] 16030204a0020000510302967bf09dcfe56f90ef5aadb7809c559735dd3292f1...
server: Filtered packet: [1190] 16030204a1020000510302967bf09dcfe56f90ef5aadb7809c559735dd3292f1...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/22 (75 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/23
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302b207d501c6241dd6fb379a50688330e2a224ea43b045aa5942a0...
record new: [1185] 020000510302b207d501c6241dd6fb379a50688330e2a224ea43b045aa5942a0...
server: Original packet: [1189] 16030204a0020000510302b207d501c6241dd6fb379a50688330e2a224ea43b0...
server: Filtered packet: [1190] 16030204a1020000510302b207d501c6241dd6fb379a50688330e2a224ea43b0...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/23 (74 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/24
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303167ad925d7f0cc9e22110cee4f1894a8aa890e557e103d2ab783...
record new: [1186] 020000510303167ad925d7f0cc9e22110cee4f1894a8aa890e557e103d2ab783...
server: Original packet: [1191] 16030304a2020000510303167ad925d7f0cc9e22110cee4f1894a8aa890e557e...
server: Filtered packet: [1191] 16030304a2020000510303167ad925d7f0cc9e22110cee4f1894a8aa890e557e...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/24 (73 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/25
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303dfdcab44054d4247ace6edbe931c9499829ed841295e9ca65b81...
record new: [1186] 020000510303dfdcab44054d4247ace6edbe931c9499829ed841295e9ca65b81...
server: Original packet: [1191] 16030304a2020000510303dfdcab44054d4247ace6edbe931c9499829ed84129...
server: Filtered packet: [1191] 16030304a2020000510303dfdcab44054d4247ace6edbe931c9499829ed84129...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/25 (73 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/26
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 02000051030377a162a568db59f239eff42cd1574e02783d38fef222ceb4ffe6...
record new: [1186] 02000051030377a162a568db59f239eff42cd1574e02783d38fef222ceb4ffe6...
server: Original packet: [1191] 16030304a202000051030377a162a568db59f239eff42cd1574e02783d38fef2...
server: Filtered packet: [1191] 16030304a202000051030377a162a568db59f239eff42cd1574e02783d38fef2...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/26 (73 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/27
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303ea777c2c6385226edd648f65ee53f7395970ddc14962b1ce6936...
record new: [1186] 020000510303ea777c2c6385226edd648f65ee53f7395970ddc14962b1ce6936...
server: Original packet: [1191] 16030304a2020000510303ea777c2c6385226edd648f65ee53f7395970ddc149...
server: Filtered packet: [1191] 16030304a2020000510303ea777c2c6385226edd648f65ee53f7395970ddc149...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/27 (73 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/28
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103038533a4276d665c78f8180e94331c112d2c6bef556c3860c6661c...
record new: [1186] 0200005103038533a4276d665c78f8180e94331c112d2c6bef556c3860c6661c...
server: Original packet: [1191] 16030304a20200005103038533a4276d665c78f8180e94331c112d2c6bef556c...
server: Filtered packet: [1191] 16030304a20200005103038533a4276d665c78f8180e94331c112d2c6bef556c...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/28 (74 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/29
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 02000051030331b22a451d559b7320bd4cb1f7d89aa39d6a6a8be43faa8666af...
record new: [1186] 02000051030331b22a451d559b7320bd4cb1f7d89aa39d6a6a8be43faa8666af...
server: Original packet: [1191] 16030304a202000051030331b22a451d559b7320bd4cb1f7d89aa39d6a6a8be4...
server: Filtered packet: [1191] 16030304a202000051030331b22a451d559b7320bd4cb1f7d89aa39d6a6a8be4...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/29 (73 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/30
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103031d697ae4f9b01526da83f99653827e9a5f5a92e18e943166bf1a...
record new: [1186] 0200005103031d697ae4f9b01526da83f99653827e9a5f5a92e18e943166bf1a...
server: Original packet: [1191] 16030304a20200005103031d697ae4f9b01526da83f99653827e9a5f5a92e18e...
server: Filtered packet: [1191] 16030304a20200005103031d697ae4f9b01526da83f99653827e9a5f5a92e18e...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/30 (73 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/31
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 02000051030393aae2c446a99811823a0b3110a783430c8ec3de8491b51141dd...
record new: [1186] 02000051030393aae2c446a99811823a0b3110a783430c8ec3de8491b51141dd...
server: Original packet: [1191] 16030304a202000051030393aae2c446a99811823a0b3110a783430c8ec3de84...
server: Filtered packet: [1191] 16030304a202000051030393aae2c446a99811823a0b3110a783430c8ec3de84...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/31 (64 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/32
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 02000051030319c3e57e67768970a5383cdd492b150bfe00acc2d5fea82cc259...
record new: [1187] 02000051030319c3e57e67768970a5383cdd492b150bfe00acc2d5fea82cc259...
server: Original packet: [1191] 16030304a202000051030319c3e57e67768970a5383cdd492b150bfe00acc2d5...
server: Filtered packet: [1192] 16030304a302000051030319c3e57e67768970a5383cdd492b150bfe00acc2d5...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/32 (74 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/33
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 02000051030382094036f290b01eb1eb3b26163c111a2f7a86819c74b5fcac0e...
record new: [1187] 02000051030382094036f290b01eb1eb3b26163c111a2f7a86819c74b5fcac0e...
server: Original packet: [1191] 16030304a202000051030382094036f290b01eb1eb3b26163c111a2f7a86819c...
server: Filtered packet: [1192] 16030304a302000051030382094036f290b01eb1eb3b26163c111a2f7a86819c...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/33 (74 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/34
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303061ef1a3489cdd92f3b922ee4bdfc2407cbb321fa8fd990077ad...
record new: [1187] 020000510303061ef1a3489cdd92f3b922ee4bdfc2407cbb321fa8fd990077ad...
server: Original packet: [1191] 16030304a2020000510303061ef1a3489cdd92f3b922ee4bdfc2407cbb321fa8...
server: Filtered packet: [1192] 16030304a3020000510303061ef1a3489cdd92f3b922ee4bdfc2407cbb321fa8...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/34 (74 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/35
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103036e0a5cc3a7c82ac8574eab7cde5296612209890bbcb2136de566...
record new: [1187] 0200005103036e0a5cc3a7c82ac8574eab7cde5296612209890bbcb2136de566...
server: Original packet: [1191] 16030304a20200005103036e0a5cc3a7c82ac8574eab7cde5296612209890bbc...
server: Filtered packet: [1192] 16030304a30200005103036e0a5cc3a7c82ac8574eab7cde5296612209890bbc...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/35 (74 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01005bc69a527876905d6c87e14937aa0f2e821c1ab73254cf6c2e3ae8f062bd...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201005bc69a527876905d6c87e14937aa0f2e821c1ab73254cf6c2e3a...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 16030101061000010201005bc69a527876905d6c87e14937aa0f2e821c1ab732...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/0 (111 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/1
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100f5ffb9ae227a702e51bb9c56948837a53b7a856b20e86ecac399ac549a6e...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100f5ffb9ae227a702e51bb9c56948837a53b7a856b20e86ecac399...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 1603010106100001020100f5ffb9ae227a702e51bb9c56948837a53b7a856b20...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/1 (112 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/2
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010077ca6a01799138a83a6413cf4ab5f002c6a6d790f344c05c14bcdec9f49f...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 10000102010077ca6a01799138a83a6413cf4ab5f002c6a6d790f344c05c14bc...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 160301010610000102010077ca6a01799138a83a6413cf4ab5f002c6a6d790f3...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/2 (112 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/3
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e72bd3f33bfb83c39c39125b80d3515794f2a41868735ad5f3361c875a30...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100e72bd3f33bfb83c39c39125b80d3515794f2a41868735ad5f336...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 1603010106100001020100e72bd3f33bfb83c39c39125b80d3515794f2a41868...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/3 (112 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/4
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01009acdc4349e7a5f81d18db7149174529eca4bcd434acd23528fea31c65b46...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 1000010201009acdc4349e7a5f81d18db7149174529eca4bcd434acd23528fea...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [326] 16030101061000010201009acdc4349e7a5f81d18db7149174529eca4bcd434a...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/4 (112 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/5
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100650a0df92e67ae68fcd445600cc357d20e81617766e841ab5c718cf582c2...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100650a0df92e67ae68fcd445600cc357d20e81617766e841ab5c71...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [326] 1603010106100001020100650a0df92e67ae68fcd445600cc357d20e81617766...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/5 (112 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/6
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ae4d9eb28890214fabb45f8d36c7be49ac40c54b2f926c3204f53f83c33f...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100ae4d9eb28890214fabb45f8d36c7be49ac40c54b2f926c3204f5...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [326] 1603010106100001020100ae4d9eb28890214fabb45f8d36c7be49ac40c54b2f...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/6 (111 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/7
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a6d018b11256fbcee47b57fe5e296ce6422b1c79289f5092698c43710c42...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100a6d018b11256fbcee47b57fe5e296ce6422b1c79289f5092698c...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [326] 1603010106100001020100a6d018b11256fbcee47b57fe5e296ce6422b1c7928...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/7 (111 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/8
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01009930356fb2bd25eaeac71aa816a7afae7df7e032f065d9298ec9557acf72...
handshake new: [259] 0101019930356fb2bd25eaeac71aa816a7afae7df7e032f065d9298ec9557acf...
record old: [262] 1000010201009930356fb2bd25eaeac71aa816a7afae7df7e032f065d9298ec9...
record new: [263] 100001030101019930356fb2bd25eaeac71aa816a7afae7df7e032f065d9298e...
client: Original packet: [326] 16030101061000010201009930356fb2bd25eaeac71aa816a7afae7df7e032f0...
client: Filtered packet: [327] 1603010107100001030101019930356fb2bd25eaeac71aa816a7afae7df7e032...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/8 (112 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/9
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010076a5761e6fd68cc2939e25be7dd40883b65d628be2f93a1845d1b7878f37...
handshake new: [259] 01010176a5761e6fd68cc2939e25be7dd40883b65d628be2f93a1845d1b7878f...
record old: [262] 10000102010076a5761e6fd68cc2939e25be7dd40883b65d628be2f93a1845d1...
record new: [263] 1000010301010176a5761e6fd68cc2939e25be7dd40883b65d628be2f93a1845...
client: Original packet: [326] 160301010610000102010076a5761e6fd68cc2939e25be7dd40883b65d628be2...
client: Filtered packet: [327] 16030101071000010301010176a5761e6fd68cc2939e25be7dd40883b65d628b...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/9 (112 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/10
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010036632e53703152e7d3d749365c4f4d139fb8aa1d0f762feb6071b6dd1fc9...
handshake new: [259] 01010036632e53703152e7d3d749365c4f4d139fb8aa1d0f762feb6071b6dd1f...
record old: [262] 10000102010036632e53703152e7d3d749365c4f4d139fb8aa1d0f762feb6071...
record new: [263] 1000010301010036632e53703152e7d3d749365c4f4d139fb8aa1d0f762feb60...
client: Original packet: [326] 160301010610000102010036632e53703152e7d3d749365c4f4d139fb8aa1d0f...
client: Filtered packet: [327] 16030101071000010301010036632e53703152e7d3d749365c4f4d139fb8aa1d...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/10 (137 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/11
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100f8fc3641f6a81a3236f9c2cba94324fabfe1012d1d00c89ce178a97a61de...
handshake new: [259] 010100f8fc3641f6a81a3236f9c2cba94324fabfe1012d1d00c89ce178a97a61...
record old: [262] 100001020100f8fc3641f6a81a3236f9c2cba94324fabfe1012d1d00c89ce178...
record new: [263] 10000103010100f8fc3641f6a81a3236f9c2cba94324fabfe1012d1d00c89ce1...
client: Original packet: [326] 1603010106100001020100f8fc3641f6a81a3236f9c2cba94324fabfe1012d1d...
client: Filtered packet: [327] 160301010710000103010100f8fc3641f6a81a3236f9c2cba94324fabfe1012d...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/11 (138 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/12
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010029ecd321d002773ba0df1a687a61dd894518a44bc6334c562c7d5c9daf1a...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 10000102010029ecd321d002773ba0df1a687a61dd894518a44bc6334c562c7d...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 160302010610000102010029ecd321d002773ba0df1a687a61dd894518a44bc6...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/12 (111 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/13
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01006bc6b41af3338f9cb62ce7dd826329ad6da38b945bc6130bca458fb0a482...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201006bc6b41af3338f9cb62ce7dd826329ad6da38b945bc6130bca45...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 16030201061000010201006bc6b41af3338f9cb62ce7dd826329ad6da38b945b...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/13 (112 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/14
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100f00ecfeb5c3ed271a6fbc522b05eb60b8e2ede52d58f4dd24b4e513c716a...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100f00ecfeb5c3ed271a6fbc522b05eb60b8e2ede52d58f4dd24b4e...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 1603020106100001020100f00ecfeb5c3ed271a6fbc522b05eb60b8e2ede52d5...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/14 (112 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/15
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010058a8d486cffb9f8c342c3c0ca642df8e5b82ac0d9986ebdb03c0470bbddd...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 10000102010058a8d486cffb9f8c342c3c0ca642df8e5b82ac0d9986ebdb03c0...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 160302010610000102010058a8d486cffb9f8c342c3c0ca642df8e5b82ac0d99...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/15 (113 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/16
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010050733868d2a3dcb72194cdea480fb3898ca2e4035bb6db6491957bfcc2c5...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 10000102010050733868d2a3dcb72194cdea480fb3898ca2e4035bb6db649195...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [342] 160302010610000102010050733868d2a3dcb72194cdea480fb3898ca2e4035b...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/16 (113 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/17
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100bc9fade06d0303884ee956dd6045fa55f902aed2d920b177e79c76b51562...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100bc9fade06d0303884ee956dd6045fa55f902aed2d920b177e79c...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [342] 1603020106100001020100bc9fade06d0303884ee956dd6045fa55f902aed2d9...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/17 (112 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/18
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100efe7c42114e37adad3ab8fa25765d7db3f74cb5457adb38dc2d87047b5c1...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100efe7c42114e37adad3ab8fa25765d7db3f74cb5457adb38dc2d8...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [342] 1603020106100001020100efe7c42114e37adad3ab8fa25765d7db3f74cb5457...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/18 (112 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/19
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01005c526911b3f44007907456f6bd9c47de07a58b97652a2a2167c7cc4ba0b8...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 1000010201005c526911b3f44007907456f6bd9c47de07a58b97652a2a2167c7...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [342] 16030201061000010201005c526911b3f44007907456f6bd9c47de07a58b9765...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/19 (113 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/20
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01006a7f360e534738fe58a165f175af3c9f5835d2f2b4850bdc49d5353285c8...
handshake new: [259] 0101016a7f360e534738fe58a165f175af3c9f5835d2f2b4850bdc49d5353285...
record old: [262] 1000010201006a7f360e534738fe58a165f175af3c9f5835d2f2b4850bdc49d5...
record new: [263] 100001030101016a7f360e534738fe58a165f175af3c9f5835d2f2b4850bdc49...
client: Original packet: [342] 16030201061000010201006a7f360e534738fe58a165f175af3c9f5835d2f2b4...
client: Filtered packet: [343] 1603020107100001030101016a7f360e534738fe58a165f175af3c9f5835d2f2...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/20 (112 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/21
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010003e3a9cd03bb7ff33ccb768c58ded5942adaf6906ea61b1f7dea5b9079fd...
handshake new: [259] 01010103e3a9cd03bb7ff33ccb768c58ded5942adaf6906ea61b1f7dea5b9079...
record old: [262] 10000102010003e3a9cd03bb7ff33ccb768c58ded5942adaf6906ea61b1f7dea...
record new: [263] 1000010301010103e3a9cd03bb7ff33ccb768c58ded5942adaf6906ea61b1f7d...
client: Original packet: [342] 160302010610000102010003e3a9cd03bb7ff33ccb768c58ded5942adaf6906e...
client: Filtered packet: [343] 16030201071000010301010103e3a9cd03bb7ff33ccb768c58ded5942adaf690...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/21 (112 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/22
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01002c22f1b98d4418b593ec6a371f743c7123a9532aa24522c560b91e33fe7d...
handshake new: [259] 0101002c22f1b98d4418b593ec6a371f743c7123a9532aa24522c560b91e33fe...
record old: [262] 1000010201002c22f1b98d4418b593ec6a371f743c7123a9532aa24522c560b9...
record new: [263] 100001030101002c22f1b98d4418b593ec6a371f743c7123a9532aa24522c560...
client: Original packet: [342] 16030201061000010201002c22f1b98d4418b593ec6a371f743c7123a9532aa2...
client: Filtered packet: [343] 1603020107100001030101002c22f1b98d4418b593ec6a371f743c7123a9532a...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/22 (137 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/23
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100398681d2921e0583e2a4ee1f6b5a3d200100b550409bd27a4309130747f1...
handshake new: [259] 010100398681d2921e0583e2a4ee1f6b5a3d200100b550409bd27a4309130747...
record old: [262] 100001020100398681d2921e0583e2a4ee1f6b5a3d200100b550409bd27a4309...
record new: [263] 10000103010100398681d2921e0583e2a4ee1f6b5a3d200100b550409bd27a43...
client: Original packet: [342] 1603020106100001020100398681d2921e0583e2a4ee1f6b5a3d200100b55040...
client: Filtered packet: [343] 160302010710000103010100398681d2921e0583e2a4ee1f6b5a3d200100b550...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/23 (137 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/24
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100bf8000c758b2e6e4a268dd3e1754cc7e045bd31d97c4705355f2aafba234...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100bf8000c758b2e6e4a268dd3e1754cc7e045bd31d97c4705355f2...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 1603030106100001020100bf8000c758b2e6e4a268dd3e1754cc7e045bd31d97...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/24 (116 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/25
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100983320fb173bb2b61d2dd4fae7dedb1ec79dd282eca9281c2444f6acb687...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100983320fb173bb2b61d2dd4fae7dedb1ec79dd282eca9281c2444...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 1603030106100001020100983320fb173bb2b61d2dd4fae7dedb1ec79dd282ec...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/25 (126 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/26
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010097215c772ab8f7bdf8b3ea6fc74a5d397c73630700ee4b8eb3565a6353e8...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 10000102010097215c772ab8f7bdf8b3ea6fc74a5d397c73630700ee4b8eb356...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 160303010610000102010097215c772ab8f7bdf8b3ea6fc74a5d397c73630700...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/26 (125 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/27
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01006dca1444099d9bb0a7793c8b618f50d2e17265b314f5bbb88c1d6ddec098...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201006dca1444099d9bb0a7793c8b618f50d2e17265b314f5bbb88c1d...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 16030301061000010201006dca1444099d9bb0a7793c8b618f50d2e17265b314...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/27 (126 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/28
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100bc7f4faafbe582469230f01b79749da5e2de75e2493b573423d2a73ee295...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100bc7f4faafbe582469230f01b79749da5e2de75e2493b573423d2...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [318] 1603030106100001020100bc7f4faafbe582469230f01b79749da5e2de75e249...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/28 (125 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/29
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01004be51bd8f2f0f2ca10e15084fe13b4c8f13cf37596dc6b65e1569354b9b3...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 1000010201004be51bd8f2f0f2ca10e15084fe13b4c8f13cf37596dc6b65e156...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [318] 16030301061000010201004be51bd8f2f0f2ca10e15084fe13b4c8f13cf37596...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/29 (124 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/30
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01005ad7a51c9a3c51500760dfbc8229372c7cbada5e9a75f158b266b37cdabf...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 1000010201005ad7a51c9a3c51500760dfbc8229372c7cbada5e9a75f158b266...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [318] 16030301061000010201005ad7a51c9a3c51500760dfbc8229372c7cbada5e9a...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/30 (125 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/31
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c8645d85448b640dd454f979f10961d192b3d3bfd3b668517e93cc544596...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100c8645d85448b640dd454f979f10961d192b3d3bfd3b668517e93...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [318] 1603030106100001020100c8645d85448b640dd454f979f10961d192b3d3bfd3...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/31 (124 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/32
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e120e13e00ba369f7d92384a88cbcf630856879870b2a122561103271042...
handshake new: [259] 010101e120e13e00ba369f7d92384a88cbcf630856879870b2a1225611032710...
record old: [262] 100001020100e120e13e00ba369f7d92384a88cbcf630856879870b2a1225611...
record new: [263] 10000103010101e120e13e00ba369f7d92384a88cbcf630856879870b2a12256...
client: Original packet: [318] 1603030106100001020100e120e13e00ba369f7d92384a88cbcf630856879870...
client: Filtered packet: [319] 160303010710000103010101e120e13e00ba369f7d92384a88cbcf6308568798...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/32 (126 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/33
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01001f4c7e8d295908c0ac5e6b97301f5a05fffac6d74aeb4f6fcf3e1e99615e...
handshake new: [259] 0101011f4c7e8d295908c0ac5e6b97301f5a05fffac6d74aeb4f6fcf3e1e9961...
record old: [262] 1000010201001f4c7e8d295908c0ac5e6b97301f5a05fffac6d74aeb4f6fcf3e...
record new: [263] 100001030101011f4c7e8d295908c0ac5e6b97301f5a05fffac6d74aeb4f6fcf...
client: Original packet: [318] 16030301061000010201001f4c7e8d295908c0ac5e6b97301f5a05fffac6d74a...
client: Filtered packet: [319] 1603030107100001030101011f4c7e8d295908c0ac5e6b97301f5a05fffac6d7...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/33 (126 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/34
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100cbb68d22cff3f7979643fb4c1b5eb6c3b61e46b8ac72560bb7b1a3d4f9b5...
handshake new: [259] 010100cbb68d22cff3f7979643fb4c1b5eb6c3b61e46b8ac72560bb7b1a3d4f9...
record old: [262] 100001020100cbb68d22cff3f7979643fb4c1b5eb6c3b61e46b8ac72560bb7b1...
record new: [263] 10000103010100cbb68d22cff3f7979643fb4c1b5eb6c3b61e46b8ac72560bb7...
client: Original packet: [318] 1603030106100001020100cbb68d22cff3f7979643fb4c1b5eb6c3b61e46b8ac...
client: Filtered packet: [319] 160303010710000103010100cbb68d22cff3f7979643fb4c1b5eb6c3b61e46b8...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/34 (154 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/35
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01001790f440f7a670ed64f463e50d42ca6246b537f9a3f088581847d802ceca...
handshake new: [259] 0101001790f440f7a670ed64f463e50d42ca6246b537f9a3f088581847d802ce...
record old: [262] 1000010201001790f440f7a670ed64f463e50d42ca6246b537f9a3f088581847...
record new: [263] 100001030101001790f440f7a670ed64f463e50d42ca6246b537f9a3f0885818...
client: Original packet: [318] 16030301061000010201001790f440f7a670ed64f463e50d42ca6246b537f9a3...
client: Filtered packet: [319] 1603030107100001030101001790f440f7a670ed64f463e50d42ca6246b537f9...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/35 (156 ms)
[----------] 72 tests from DamageYStream/TlsDamageDHYTest (6917 ms total)
[----------] 48 tests from DamageYDatagram/TlsDamageDHYTest
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/0
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffbd287a6fc4...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feffbd287a6fc4...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/0 (75 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/1
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff8befaa603b...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff8befaa603b...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/1 (74 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff172d575f42...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff172d575f42...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/2 (64 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff63662bff85...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff63662bff85...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/3 (75 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/4
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051fefff60504ae5b...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051fefff60504ae5b...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/4 (74 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/5
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff0d024a5a36...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff0d024a5a36...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/5 (64 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/6
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff438866bf49...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff438866bf49...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/6 (74 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/7
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff1d57d41e06...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff1d57d41e06...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/7 (73 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/8
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff4304ee6aa2...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff4304ee6aa2...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/8 (75 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/9
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff64fee9bfea...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff64fee9bfea...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/9 (74 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/10
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffb7f1b5ad7c...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feffb7f1b5ad7c...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/10 (75 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/11
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff335a428dda...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff335a428dda...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/11 (75 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/12
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd9149b9f8ca...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd9149b9f8ca...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/12 (72 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/13
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd7be1a0ca7d...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd7be1a0ca7d...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/13 (74 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/14
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd2a6fc1d2ef...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd2a6fc1d2ef...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/14 (63 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/15
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdf3cf3627a0...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdf3cf3627a0...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/15 (74 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/16
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd17fa831030...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd17fa831030...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/16 (74 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/17
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd56925f1346...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd56925f1346...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/17 (74 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/18
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd772c8bca97...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd772c8bca97...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/18 (74 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/19
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd1b3de1a0be...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd1b3de1a0be...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/19 (72 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/20
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd31e4240c12...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefd31e4240c12...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/20 (63 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/21
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdf533227165...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefdf533227165...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/21 (74 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/22
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd1d42578025...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefd1d42578025...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/22 (71 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/23
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd9459bbedb7...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefd9459bbedb7...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/23 (75 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/0
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100b4fc3a2406bb2a2405504c74cd7d04459c9a1e5d53f3a73a946623ddc139...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100b4fc3a2406bb2a2405504c74cd7d04459c9a...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100b4fc3a2406...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/0 (126 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/1
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e572cface7866584743c6f5869bac81ec4da6884232c529348ab03622ff4...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100e572cface7866584743c6f5869bac81ec4da...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100e572cface7...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/1 (113 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100cebb6f8ca760dcb671e30434c6811a7b7bc6ddef13724405f663b780680a...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100cebb6f8ca760dcb671e30434c6811a7b7bc6...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100cebb6f8ca7...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/2 (112 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010059bd0f33db949dcc4256e32ad828dd4190a80a3f485682415efb0cc005b4...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 100001020001000000000102010059bd0f33db949dcc4256e32ad828dd4190a8...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e100001020001000000000102010059bd0f33db...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/3 (112 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/4
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100d6e04b1ca669d7b5757d9cee3317dc8fb4820c8212661b8400e08e4e8f68...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 1000010200010000000001020100d6e04b1ca669d7b5757d9cee3317dc8fb482...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100d6e04b1ca6...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/4 (112 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/5
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100d1f7240d54302d99af74bc40999780fa6319c2ec14d9c3d1c583216c07f9...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 1000010200010000000001020100d1f7240d54302d99af74bc40999780fa6319...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100d1f7240d54...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/5 (112 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/6
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01005dd799c523c18cdca806399469cfbe73fc14150a5a0443a18fd773a11b93...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 10000102000100000000010201005dd799c523c18cdca806399469cfbe73fc14...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201005dd799c523...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/6 (113 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/7
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100825283e115f6fa7dee931df26fce9cf5d60af0ded399e2b6d887e0de3b0f...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 1000010200010000000001020100825283e115f6fa7dee931df26fce9cf5d60a...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100825283e115...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/7 (113 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/8
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01006ae9041a845d69a24943de2afc49d3fa0a59de68c7d6661f54a9306ec7da...
handshake new: [259] 0101016ae9041a845d69a24943de2afc49d3fa0a59de68c7d6661f54a9306ec7...
record old: [270] 10000102000100000000010201006ae9041a845d69a24943de2afc49d3fa0a59...
record new: [271] 1000010300010000000001030101016ae9041a845d69a24943de2afc49d3fa0a...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201006ae9041a84...
client: Filtered packet: [375] 16feff0000000000000001010f1000010300010000000001030101016ae9041a...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/8 (112 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/9
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100101cfd0d8e1f7df7d86313ace0fbf21cf26bb21e08edb0606ddeb145d300...
handshake new: [259] 010101101cfd0d8e1f7df7d86313ace0fbf21cf26bb21e08edb0606ddeb145d3...
record old: [270] 1000010200010000000001020100101cfd0d8e1f7df7d86313ace0fbf21cf26b...
record new: [271] 100001030001000000000103010101101cfd0d8e1f7df7d86313ace0fbf21cf2...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100101cfd0d8e...
client: Filtered packet: [375] 16feff0000000000000001010f100001030001000000000103010101101cfd0d...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/9 (112 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/10
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c3397d80fb903fd93cd8c1ba8a4eaffc1f5d56245557274f6fa91565df43...
handshake new: [259] 010100c3397d80fb903fd93cd8c1ba8a4eaffc1f5d56245557274f6fa91565df...
record old: [270] 1000010200010000000001020100c3397d80fb903fd93cd8c1ba8a4eaffc1f5d...
record new: [271] 100001030001000000000103010100c3397d80fb903fd93cd8c1ba8a4eaffc1f...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100c3397d80fb...
client: Filtered packet: [375] 16feff0000000000000001010f100001030001000000000103010100c3397d80...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/10 (138 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/11
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ec564e05a03fe9ec5338b2cc83d1baf01195a4562dd89d38bbd2500f8a72...
handshake new: [259] 010100ec564e05a03fe9ec5338b2cc83d1baf01195a4562dd89d38bbd2500f8a...
record old: [270] 1000010200010000000001020100ec564e05a03fe9ec5338b2cc83d1baf01195...
record new: [271] 100001030001000000000103010100ec564e05a03fe9ec5338b2cc83d1baf011...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100ec564e05a0...
client: Filtered packet: [375] 16feff0000000000000001010f100001030001000000000103010100ec564e05...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/11 (138 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/12
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e9426c4f4ee3d65022a6d05b9aaec53746b641013abbe453d1903ddd7d61...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100e9426c4f4ee3d65022a6d05b9aaec53746b6...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100e9426c4f4e...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/12 (112 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/13
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a6ab5321e524b26fb6f339f3b73457a6af6cd44c3ad3398c2ca90e5356ff...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100a6ab5321e524b26fb6f339f3b73457a6af6c...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100a6ab5321e5...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/13 (112 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/14
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01007427962e0edac88184effe39b4039441e8dda97b61ad2d2961aea27a280d...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 10000102000100000000010201007427962e0edac88184effe39b4039441e8dd...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201007427962e0e...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/14 (112 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/15
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010011b2ab233720d49057f59050a1e8beb177a90c96ac8dfb7ee431cd6b6b96...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 100001020001000000000102010011b2ab233720d49057f59050a1e8beb177a9...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010011b2ab2337...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/15 (112 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/16
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e2691fcd3381aba6dc13bbef331458209aea1270a7099caf81b8b8865748...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 1000010200010000000001020100e2691fcd3381aba6dc13bbef331458209aea...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100e2691fcd33...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/16 (112 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/17
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01003108d55e4c9ca30dac87cd1a00a0e4f41ffe1823574ca590d015d1255834...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 10000102000100000000010201003108d55e4c9ca30dac87cd1a00a0e4f41ffe...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201003108d55e4c...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/17 (112 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/18
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100776ebb2d08458224f28c1bc370a9de9b7ecf0ef15d13a8727dc52e821e89...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 1000010200010000000001020100776ebb2d08458224f28c1bc370a9de9b7ecf...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100776ebb2d08...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/18 (112 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/19
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100313cffb143de9fb2ac06e3f706d14e853d03d0055d186383acb93f7f597b...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 1000010200010000000001020100313cffb143de9fb2ac06e3f706d14e853d03...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100313cffb143...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/19 (112 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/20
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01004a594a7d1ed1ce1ea0ebe9c449e4709f70a0039eb408a77d7a2b37d5b2ff...
handshake new: [259] 0101014a594a7d1ed1ce1ea0ebe9c449e4709f70a0039eb408a77d7a2b37d5b2...
record old: [270] 10000102000100000000010201004a594a7d1ed1ce1ea0ebe9c449e4709f70a0...
record new: [271] 1000010300010000000001030101014a594a7d1ed1ce1ea0ebe9c449e4709f70...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201004a594a7d1e...
client: Filtered packet: [359] 16fefd0000000000000001010f1000010300010000000001030101014a594a7d...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/20 (112 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/21
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010072a3100270190e734402144d1dee74f29fa2c686b70c239fa8a90947cc08...
handshake new: [259] 01010172a3100270190e734402144d1dee74f29fa2c686b70c239fa8a90947cc...
record old: [270] 100001020001000000000102010072a3100270190e734402144d1dee74f29fa2...
record new: [271] 10000103000100000000010301010172a3100270190e734402144d1dee74f29f...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010072a3100270...
client: Filtered packet: [359] 16fefd0000000000000001010f10000103000100000000010301010172a31002...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/21 (112 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/22
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010044cfe6f2a7879c59e3bb60664e555cab2072dd2d7706ed4000e2c9905dac...
handshake new: [259] 01010044cfe6f2a7879c59e3bb60664e555cab2072dd2d7706ed4000e2c9905d...
record old: [270] 100001020001000000000102010044cfe6f2a7879c59e3bb60664e555cab2072...
record new: [271] 10000103000100000000010301010044cfe6f2a7879c59e3bb60664e555cab20...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010044cfe6f2a7...
client: Filtered packet: [359] 16fefd0000000000000001010f10000103000100000000010301010044cfe6f2...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/22 (138 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/23
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01004a2b2222724ee508ba19307f5078f81d117b418da345e34c3c6e79ff9857...
handshake new: [259] 0101004a2b2222724ee508ba19307f5078f81d117b418da345e34c3c6e79ff98...
record old: [270] 10000102000100000000010201004a2b2222724ee508ba19307f5078f81d117b...
record new: [271] 1000010300010000000001030101004a2b2222724ee508ba19307f5078f81d11...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201004a2b222272...
client: Filtered packet: [359] 16fefd0000000000000001010f1000010300010000000001030101004a2b2222...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/23 (137 ms)
[----------] 48 tests from DamageYDatagram/TlsDamageDHYTest (4547 ms total)
[----------] 2 tests from Datagram12Plus/TlsConnectDatagram12Plus
[ RUN      ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindow/0
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindow/0 (80 ms)
[ RUN      ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindowAndOne/0
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindowAndOne/0 (80 ms)
[----------] 2 tests from Datagram12Plus/TlsConnectDatagram12Plus (160 ms total)
[----------] 16 tests from KeyExchangeTest/TlsKeyExchangeTest
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/0 (221 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/1 (181 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
client: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/2 (182 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
client: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/3 (183 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/0 (181 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/1 (181 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
client: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/2 (182 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
client: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/3 (182 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/0 (180 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/1 (181 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/2 (178 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
client: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/3 (183 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/0 (88 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/1 (89 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/2 (83 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/3 (84 ms)
[----------] 16 tests from KeyExchangeTest/TlsKeyExchangeTest (2563 ms total)
[----------] 88 tests from TlsPadding/TlsPaddingTest
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fefefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.Correct/0 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0e0e
[       OK ] TlsPadding/TlsPaddingTest.Correct/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fcfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.Correct/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0c0c
[       OK ] TlsPadding/TlsPaddingTest.Correct/3 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fbfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.Correct/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0b0b
[       OK ] TlsPadding/TlsPaddingTest.Correct/5 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f1f1...
[       OK ] TlsPadding/TlsPaddingTest.Correct/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410101
[       OK ] TlsPadding/TlsPaddingTest.Correct/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f0...
[       OK ] TlsPadding/TlsPaddingTest.Correct/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/9
Content length=31 padding length=0 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141414100
[       OK ] TlsPadding/TlsPaddingTest.Correct/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/10 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/12 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/17 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/19
Content length=287 padding length=0 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/0
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0e10
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/2
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0c20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/4
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0b20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/5 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/6
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410120
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/8
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/9
Content length=31 padding length=0 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141414120
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/9 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/10
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/12
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/14
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/15
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/16
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/17
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/18
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/19
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/21
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fffefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410f0e0e0e0e0e0e0e0e0e0e0e0e0e0e
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fdfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410d0c0c0c0c0c0c0c0c0c0c0c0c
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fcfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/4 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410c0b0b0b0b0b0b0b0b0b0b0b
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f2f1...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/6 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410201
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f1...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/9
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/12 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/14 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/19
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fefefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/0 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0f0e
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fcfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0d0c
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fbfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0c0b
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/5 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f1f1...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410201
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/7 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f0...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/9
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/10 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/13 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/15 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/19
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/21 (1 ms)
[----------] 88 tests from TlsPadding/TlsPaddingTest (31 ms total)
[----------] 8 tests from SkipTls10/TlsSkipTest
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateRsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 0200005103019977a93be91ea73463e68c02291c612c70e31939985fc43e5f39...
record new: [89] 0200005103019977a93be91ea73463e68c02291c612c70e31939985fc43e5f39...
server: Original packet: [536] 16030102130200005103019977a93be91ea73463e68c02291c612c70e3193998...
server: Filtered packet: [94] 16030100590200005103019977a93be91ea73463e68c02291c612c70e3193998...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateRsa/0 (25 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateDhe/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570301cd096912f42dc02bfaa3b3592bfbb529eff4cf71bc8a7d538000...
record new: [265] 020000570301cd096912f42dc02bfaa3b3592bfbb529eff4cf71bc8a7d538000...
server: Original packet: [712] 16030102c3020000570301cd096912f42dc02bfaa3b3592bfbb529eff4cf71bc...
server: Filtered packet: [270] 1603010109020000570301cd096912f42dc02bfaa3b3592bfbb529eff4cf71bc...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateDhe/0 (35 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateEcdhe/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570301e9a485e27f265c517bd85bf59ea6834289466357a41be0f1effa...
record new: [265] 020000570301e9a485e27f265c517bd85bf59ea6834289466357a41be0f1effa...
server: Original packet: [712] 16030102c3020000570301e9a485e27f265c517bd85bf59ea6834289466357a4...
server: Filtered packet: [270] 1603010109020000570301e9a485e27f265c517bd85bf59ea6834289466357a4...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateEcdhe/0 (35 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [525] 020000570301bc5d57233520c39b399685e42da4b20d806b578f44bcf36cfb96...
record new: [209] 020000570301bc5d57233520c39b399685e42da4b20d806b578f44bcf36cfb96...
server: Original packet: [530] 160301020d020000570301bc5d57233520c39b399685e42da4b20d806b578f44...
server: Filtered packet: [214] 16030100d1020000570301bc5d57233520c39b399685e42da4b20d806b578f44...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateEcdsa/0 (17 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipServerKeyExchange/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [707] 020000570301f916be073280e4f084aafe0be4e75a8f36b746c12b2b16d4b0d2...
record new: [537] 020000570301f916be073280e4f084aafe0be4e75a8f36b746c12b2b16d4b0d2...
server: Original packet: [712] 16030102c3020000570301f916be073280e4f084aafe0be4e75a8f36b746c12b...
server: Filtered packet: [542] 1603010219020000570301f916be073280e4f084aafe0be4e75a8f36b746c12b...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipServerKeyExchange/0 (35 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipServerKeyExchangeEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [525] 020000570301810ffb66f08714c421a027ed7a2364bbac0aba26a0027d7158ea...
record new: [411] 020000570301810ffb66f08714c421a027ed7a2364bbac0aba26a0027d7158ea...
server: Original packet: [530] 160301020d020000570301810ffb66f08714c421a027ed7a2364bbac0aba26a0...
server: Filtered packet: [416] 160301019b020000570301810ffb66f08714c421a027ed7a2364bbac0aba26a0...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipServerKeyExchangeEcdsa/0 (17 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertAndKeyExch/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570301eada6275969ff760118c1a23c8c96de230d27e35e2a6a8b8c13a...
record new: [265] 020000570301eada6275969ff760118c1a23c8c96de230d27e35e2a6a8b8c13a...
Dropping handshake: 12
record old: [265] 020000570301eada6275969ff760118c1a23c8c96de230d27e35e2a6a8b8c13a...
record new: [95] 020000570301eada6275969ff760118c1a23c8c96de230d27e35e2a6a8b8c13a...
server: Original packet: [712] 16030102c3020000570301eada6275969ff760118c1a23c8c96de230d27e35e2...
server: Filtered packet: [100] 160301005f020000570301eada6275969ff760118c1a23c8c96de230d27e35e2...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertAndKeyExch/0 (36 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertAndKeyExchEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [524] 020000570301f4d3fbf2a3a4158ccb0b0dda9c72d97cc4902d43433f76470e08...
record new: [208] 020000570301f4d3fbf2a3a4158ccb0b0dda9c72d97cc4902d43433f76470e08...
Dropping handshake: 12
record old: [208] 020000570301f4d3fbf2a3a4158ccb0b0dda9c72d97cc4902d43433f76470e08...
record new: [95] 020000570301f4d3fbf2a3a4158ccb0b0dda9c72d97cc4902d43433f76470e08...
server: Original packet: [529] 160301020c020000570301f4d3fbf2a3a4158ccb0b0dda9c72d97cc4902d4343...
server: Filtered packet: [100] 160301005f020000570301f4d3fbf2a3a4158ccb0b0dda9c72d97cc4902d4343...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertAndKeyExchEcdsa/0 (18 ms)
[----------] 8 tests from SkipTls10/TlsSkipTest (220 ms total)
[----------] 32 tests from SkipVariants/TlsSkipTest
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 02000051030226ea936bc22f955680ff4c5089dfac866a4c4a8ad641233585a7...
record new: [89] 02000051030226ea936bc22f955680ff4c5089dfac866a4c4a8ad641233585a7...
server: Original packet: [536] 160302021302000051030226ea936bc22f955680ff4c5089dfac866a4c4a8ad6...
server: Filtered packet: [94] 160302005902000051030226ea936bc22f955680ff4c5089dfac866a4c4a8ad6...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/0 (25 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 020000510303f603490114342bd28fa15cef6c8de1a019e67ece16d6c2946211...
record new: [89] 020000510303f603490114342bd28fa15cef6c8de1a019e67ece16d6c2946211...
server: Original packet: [536] 1603030213020000510303f603490114342bd28fa15cef6c8de1a019e67ece16...
server: Filtered packet: [94] 1603030059020000510303f603490114342bd28fa15cef6c8de1a019e67ece16...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/1 (24 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [594] 16feff0000000000000000005d020000510000000000000051feff05e313b381...
server: Filtered packet: [144] 16feff0000000000000000005d020000510000000000000051feff05e313b381...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/2 (26 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [594] 16fefd0000000000000000005d020000510000000000000051fefdb8f6f8a84f...
server: Filtered packet: [144] 16fefd0000000000000000005d020000510000000000000051fefdb8f6f8a84f...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/3 (25 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570302a1a6f6734186796e7f4e05d72d9ce18f5e16dc05990fa4fefe95...
record new: [265] 020000570302a1a6f6734186796e7f4e05d72d9ce18f5e16dc05990fa4fefe95...
server: Original packet: [712] 16030202c3020000570302a1a6f6734186796e7f4e05d72d9ce18f5e16dc0599...
server: Filtered packet: [270] 1603020109020000570302a1a6f6734186796e7f4e05d72d9ce18f5e16dc0599...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/0 (35 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 020000570303017e5dfcc2b6713d3691dd694c877ba4bde1b2b932a70f2d6371...
record new: [267] 020000570303017e5dfcc2b6713d3691dd694c877ba4bde1b2b932a70f2d6371...
server: Original packet: [714] 16030302c5020000570303017e5dfcc2b6713d3691dd694c877ba4bde1b2b932...
server: Filtered packet: [272] 160303010b020000570303017e5dfcc2b6713d3691dd694c877ba4bde1b2b932...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/1 (35 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20538e66cd8b318c6567d352193c04f892...
record new: [178] 0c0000a600010000000000a603001d20538e66cd8b318c6567d352193c04f892...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff2b725c9eb2...
server: Filtered packet: [341] 16feff00000000000000000063020000570000000000000057feff2b725c9eb2...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/2 (36 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20538e66cd8b318c6567d352193c04f892...
record new: [180] 0c0000a800010000000000a803001d20538e66cd8b318c6567d352193c04f892...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefd075587f141...
server: Filtered packet: [343] 16fefd00000000000000000063020000570000000000000057fefd075587f141...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/3 (35 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 0200005703022911161cd1e9d8813c02fa017e4f0de1c1d800017a0431736bb7...
record new: [265] 0200005703022911161cd1e9d8813c02fa017e4f0de1c1d800017a0431736bb7...
server: Original packet: [712] 16030202c30200005703022911161cd1e9d8813c02fa017e4f0de1c1d800017a...
server: Filtered packet: [270] 16030201090200005703022911161cd1e9d8813c02fa017e4f0de1c1d800017a...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/0 (35 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 020000570303a09cbf33c8bd4000f40ce494d6dd3be11a385d8fa376dcbc64a3...
record new: [267] 020000570303a09cbf33c8bd4000f40ce494d6dd3be11a385d8fa376dcbc64a3...
server: Original packet: [714] 16030302c5020000570303a09cbf33c8bd4000f40ce494d6dd3be11a385d8fa3...
server: Filtered packet: [272] 160303010b020000570303a09cbf33c8bd4000f40ce494d6dd3be11a385d8fa3...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/1 (34 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20538e66cd8b318c6567d352193c04f892...
record new: [178] 0c0000a600010000000000a603001d20538e66cd8b318c6567d352193c04f892...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff199591e076...
server: Filtered packet: [341] 16feff00000000000000000063020000570000000000000057feff199591e076...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/2 (36 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20538e66cd8b318c6567d352193c04f892...
record new: [180] 0c0000a800010000000000a803001d20538e66cd8b318c6567d352193c04f892...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefddd967f3a8e...
server: Filtered packet: [343] 16fefd00000000000000000063020000570000000000000057fefddd967f3a8e...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/3 (36 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [524] 0200005703023683adc031da8cb6aa8ff6bfc52b85444c8acc90a02f0f1d46dc...
record new: [208] 0200005703023683adc031da8cb6aa8ff6bfc52b85444c8acc90a02f0f1d46dc...
server: Original packet: [529] 160302020c0200005703023683adc031da8cb6aa8ff6bfc52b85444c8acc90a0...
server: Filtered packet: [213] 16030200d00200005703023683adc031da8cb6aa8ff6bfc52b85444c8acc90a0...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/0 (17 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [526] 02000057030348cbbfe5b128a8e2876f1a70d57c2d4256c987d6fccb02187ffb...
record new: [210] 02000057030348cbbfe5b128a8e2876f1a70d57c2d4256c987d6fccb02187ffb...
server: Original packet: [531] 160303020e02000057030348cbbfe5b128a8e2876f1a70d57c2d4256c987d6fc...
server: Filtered packet: [215] 16030300d202000057030348cbbfe5b128a8e2876f1a70d57c2d4256c987d6fc...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/1 (17 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [324] 0b00013800010000000001380001350001323082012e3081d5a0030201020201...
record new: [0] 
record old: [122] 0c00006e000200000000006e03001d20538e66cd8b318c6567d352193c04f892...
record new: [122] 0c00006e000100000000006e03001d20538e66cd8b318c6567d352193c04f892...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [609] 16feff00000000000000000063020000570000000000000057feff5ab82d31c0...
server: Filtered packet: [285] 16feff00000000000000000063020000570000000000000057feff5ab82d31c0...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/2 (18 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [324] 0b00013800010000000001380001350001323082012e3081d5a0030201020201...
record new: [0] 
record old: [123] 0c00006f000200000000006f03001d20538e66cd8b318c6567d352193c04f892...
record new: [123] 0c00006f000100000000006f03001d20538e66cd8b318c6567d352193c04f892...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [610] 16fefd00000000000000000063020000570000000000000057fefdc324d5e73b...
server: Filtered packet: [286] 16fefd00000000000000000063020000570000000000000057fefdc324d5e73b...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/3 (17 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [707] 020000570302e8b8f8f02bfec12440bf17beab8dbface72452def674646e26f7...
record new: [537] 020000570302e8b8f8f02bfec12440bf17beab8dbface72452def674646e26f7...
server: Original packet: [712] 16030202c3020000570302e8b8f8f02bfec12440bf17beab8dbface72452def6...
server: Filtered packet: [542] 1603020219020000570302e8b8f8f02bfec12440bf17beab8dbface72452def6...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/0 (35 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [709] 0200005703033f9ecb1297e16cc5c8d745c72e0d6b0517745e2b68c41cc19d0f...
record new: [537] 0200005703033f9ecb1297e16cc5c8d745c72e0d6b0517745e2b68c41cc19d0f...
server: Original packet: [714] 16030302c50200005703033f9ecb1297e16cc5c8d745c72e0d6b0517745e2b68...
server: Filtered packet: [542] 16030302190200005703033f9ecb1297e16cc5c8d745c72e0d6b0517745e2b68...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/1 (35 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [178] 0c0000a600020000000000a603001d20538e66cd8b318c6567d352193c04f892...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feffa3652e573d...
server: Filtered packet: [613] 16feff00000000000000000063020000570000000000000057feffa3652e573d...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/2 (35 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [180] 0c0000a800020000000000a803001d20538e66cd8b318c6567d352193c04f892...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefd41bc31f6d0...
server: Filtered packet: [613] 16fefd00000000000000000063020000570000000000000057fefd41bc31f6d0...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/3 (35 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [524] 020000570302b1b95c4cd5435f90b832efa5aa93a905338b89b409110f40e344...
record new: [411] 020000570302b1b95c4cd5435f90b832efa5aa93a905338b89b409110f40e344...
server: Original packet: [529] 160302020c020000570302b1b95c4cd5435f90b832efa5aa93a905338b89b409...
server: Filtered packet: [416] 160302019b020000570302b1b95c4cd5435f90b832efa5aa93a905338b89b409...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/0 (17 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [526] 020000570303f04cc2f188179b444b4208115b4a39e4dfce7826b9a770356eca...
record new: [411] 020000570303f04cc2f188179b444b4208115b4a39e4dfce7826b9a770356eca...
server: Original packet: [531] 160303020e020000570303f04cc2f188179b444b4208115b4a39e4dfce7826b9...
server: Filtered packet: [416] 160303019b020000570303f04cc2f188179b444b4208115b4a39e4dfce7826b9...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/1 (17 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [121] 0c00006d000200000000006d03001d20538e66cd8b318c6567d352193c04f892...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [608] 16feff00000000000000000063020000570000000000000057feff5521fac413...
server: Filtered packet: [487] 16feff00000000000000000063020000570000000000000057feff5521fac413...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/2 (17 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [122] 0c00006e000200000000006e03001d20538e66cd8b318c6567d352193c04f892...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [609] 16fefd00000000000000000063020000570000000000000057fefd1ff9e0f933...
server: Filtered packet: [487] 16fefd00000000000000000063020000570000000000000057fefd1ff9e0f933...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/3 (18 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 0200005703021e060fbc9923b3029fa9e612b41ea18db9bc52d9845c68a78108...
record new: [265] 0200005703021e060fbc9923b3029fa9e612b41ea18db9bc52d9845c68a78108...
Dropping handshake: 12
record old: [265] 0200005703021e060fbc9923b3029fa9e612b41ea18db9bc52d9845c68a78108...
record new: [95] 0200005703021e060fbc9923b3029fa9e612b41ea18db9bc52d9845c68a78108...
server: Original packet: [712] 16030202c30200005703021e060fbc9923b3029fa9e612b41ea18db9bc52d984...
server: Filtered packet: [100] 160302005f0200005703021e060fbc9923b3029fa9e612b41ea18db9bc52d984...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/0 (35 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 0200005703032dbc7637f72b59831b17ffa7e3cb17130e608ff8ee150f8b2ddc...
record new: [267] 0200005703032dbc7637f72b59831b17ffa7e3cb17130e608ff8ee150f8b2ddc...
Dropping handshake: 12
record old: [267] 0200005703032dbc7637f72b59831b17ffa7e3cb17130e608ff8ee150f8b2ddc...
record new: [95] 0200005703032dbc7637f72b59831b17ffa7e3cb17130e608ff8ee150f8b2ddc...
server: Original packet: [714] 16030302c50200005703032dbc7637f72b59831b17ffa7e3cb17130e608ff8ee...
server: Filtered packet: [100] 160303005f0200005703032dbc7637f72b59831b17ffa7e3cb17130e608ff8ee...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/1 (35 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20538e66cd8b318c6567d352193c04f892...
record new: [178] 0c0000a600010000000000a603001d20538e66cd8b318c6567d352193c04f892...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [178] 0c0000a600010000000000a603001d20538e66cd8b318c6567d352193c04f892...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff5604412fce...
server: Filtered packet: [163] 16feff00000000000000000063020000570000000000000057feff5604412fce...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/2 (36 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20538e66cd8b318c6567d352193c04f892...
record new: [180] 0c0000a800010000000000a803001d20538e66cd8b318c6567d352193c04f892...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [180] 0c0000a800010000000000a803001d20538e66cd8b318c6567d352193c04f892...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefdced5e1e85e...
server: Filtered packet: [163] 16fefd00000000000000000063020000570000000000000057fefdced5e1e85e...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/3 (37 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [525] 020000570302bb014b9ce628524e5c753c286342ddd110fc8e7fbbfd031f3ae3...
record new: [209] 020000570302bb014b9ce628524e5c753c286342ddd110fc8e7fbbfd031f3ae3...
Dropping handshake: 12
record old: [209] 020000570302bb014b9ce628524e5c753c286342ddd110fc8e7fbbfd031f3ae3...
record new: [95] 020000570302bb014b9ce628524e5c753c286342ddd110fc8e7fbbfd031f3ae3...
server: Original packet: [530] 160302020d020000570302bb014b9ce628524e5c753c286342ddd110fc8e7fbb...
server: Filtered packet: [100] 160302005f020000570302bb014b9ce628524e5c753c286342ddd110fc8e7fbb...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/0 (18 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [526] 02000057030308515b65a6cfdc03aafe2e45c8af5cfef85d2bb68b74544d5bc7...
record new: [210] 02000057030308515b65a6cfdc03aafe2e45c8af5cfef85d2bb68b74544d5bc7...
Dropping handshake: 12
record old: [210] 02000057030308515b65a6cfdc03aafe2e45c8af5cfef85d2bb68b74544d5bc7...
record new: [95] 02000057030308515b65a6cfdc03aafe2e45c8af5cfef85d2bb68b74544d5bc7...
server: Original packet: [531] 160303020e02000057030308515b65a6cfdc03aafe2e45c8af5cfef85d2bb68b...
server: Filtered packet: [100] 160303005f02000057030308515b65a6cfdc03aafe2e45c8af5cfef85d2bb68b...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/1 (18 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [324] 0b00013800010000000001380001350001323082012e3081d5a0030201020201...
record new: [0] 
record old: [121] 0c00006d000200000000006d03001d20538e66cd8b318c6567d352193c04f892...
record new: [121] 0c00006d000100000000006d03001d20538e66cd8b318c6567d352193c04f892...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [121] 0c00006d000100000000006d03001d20538e66cd8b318c6567d352193c04f892...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [608] 16feff00000000000000000063020000570000000000000057feffc68f6b0d91...
server: Filtered packet: [163] 16feff00000000000000000063020000570000000000000057feffc68f6b0d91...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/2 (19 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [324] 0b00013800010000000001380001350001323082012e3081d5a0030201020201...
record new: [0] 
record old: [122] 0c00006e000200000000006e03001d20538e66cd8b318c6567d352193c04f892...
record new: [122] 0c00006e000100000000006e03001d20538e66cd8b318c6567d352193c04f892...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [122] 0c00006e000100000000006e03001d20538e66cd8b318c6567d352193c04f892...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [609] 16fefd00000000000000000063020000570000000000000057fefdd4820e1fcd...
server: Filtered packet: [163] 16fefd00000000000000000063020000570000000000000057fefdd4820e1fcd...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/3 (18 ms)
[----------] 32 tests from SkipVariants/TlsSkipTest (884 ms total)
[----------] 10 tests from AllHashFuncs/TlsHkdfTest
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/0
Hash = SHA-256
Output: [32] 33ad0a1c607ec03b09e6cd9893680ce210adf300aa1f2660e1b22e10f170f92a
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/1
Hash = SHA-384
Output: [48] 7ee8206f5570023e6dc7519eb1073bc4e791ad37b5c382aa10ba18e2357e7169...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/1 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/0
Hash = SHA-256
Output: [32] 11873828a9197811339124b58a1bb09f7f0d8dbb10f49c54bd1fd885cd153033
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/0 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/1
Hash = SHA-384
Output: [48] 51b1d5b4597979084a15b2db84d3d6bcfc9345d9dc74da1a57c2769f3f83452f...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/1 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/0
Hash = SHA-256
Output: [32] 2f5f78d0a4c436ee6c8a4ef9d043810213fd4783633ad2e1406d2d9800fdc187
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/0 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/1
Hash = SHA-384
Output: [48] 7b40f9ef91ffc9d129245cbff8827668ae4b63e803dd39a8d46af6e5eceaf87d...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/0
Hash = SHA-256
Output: [32] 7953b8dd6b98ce00b7dce803708ce3ac068b22fd0e3448e6e5e08ad61618e548
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/0 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/1
Hash = SHA-384
Output: [48] 0193c0073f6a830e2e4fb258e400085c689c37320037ffc31c5b980b02923ffd...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/1 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/0
Hash = SHA-256
Output: [32] 347c6780ff0bbad71c283b16eb2f9cf62d24e6cdb613d51776548cb07dcde74c
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/0 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/1
Hash = SHA-384
Output: [48] 4b1e5ec1493078ea35bd3f0104e61aea14cc182ad1c47621c464c04e4b361605...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/1 (0 ms)
[----------] 10 tests from AllHashFuncs/TlsHkdfTest (8 ms total)
[----------] Global test environment tear-down
[==========] 816 tests from 15 test cases ran. (66790 ms total)
[  PASSED  ] 816 tests.
ssl_gtest.sh: #8600: ssl_gtest run successfully  - PASSED
executing sed to parse the xml report
processing the parsed report
ssl_gtest.sh: #8601: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8602: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8603: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8604: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8605: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8606: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8607: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8608: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8609: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8610: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8611: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8612: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8613: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8614: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8615: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8616: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8617: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8618: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8619: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8620: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8621: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8622: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8623: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8624: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8625: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8626: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8627: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8628: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8629: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8630: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8631: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8632: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8633: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8634: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8635: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8636: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8637: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8638: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8639: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8640: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8641: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8642: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8643: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8644: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8645: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8646: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8647: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8648: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8649: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8650: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8651: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8652: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8653: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8654: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8655: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8656: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #8657: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #8658: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #8659: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #8660: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #8661: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #8662: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #8663: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #8664: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #8665: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #8666: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #8667: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #8668: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #8669: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #8670: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #8671: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #8672: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #8673: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #8674: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #8675: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #8676: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #8677: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #8678: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #8679: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #8680: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #8681: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #8682: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #8683: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #8684: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #8685: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #8686: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #8687: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #8688: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #8689: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #8690: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #8691: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #8692: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #8693: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #8694: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #8695: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #8696: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #8697: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #8698: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #8699: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #8700: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #8701: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #8702: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #8703: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #8704: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #8705: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #8706: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #8707: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #8708: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #8709: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #8710: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #8711: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #8712: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #8713: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #8714: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #8715: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #8716: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #8717: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #8718: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #8719: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #8720: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #8721: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #8722: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #8723: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #8724: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #8725: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #8726: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #8727: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #8728: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #8729: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #8730: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #8731: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #8732: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #8733: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #8734: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #8735: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #8736: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #8737: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #8738: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #8739: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #8740: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #8741: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #8742: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #8743: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #8744: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #8745: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #8746: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #8747: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #8748: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #8749: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #8750: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #8751: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #8752: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #8753: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #8754: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #8755: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #8756: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #8757: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #8758: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #8759: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #8760: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #8761: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #8762: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #8763: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #8764: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #8765: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #8766: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #8767: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #8768: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #8769: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #8770: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #8771: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #8772: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #8773: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #8774: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #8775: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #8776: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #8777: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #8778: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #8779: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #8780: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #8781: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #8782: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #8783: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #8784: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #8785: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #8786: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #8787: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #8788: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #8789: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #8790: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #8791: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #8792: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #8793: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #8794: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #8795: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #8796: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #8797: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #8798: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #8799: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #8800: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #8801: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #8802: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #8803: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #8804: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #8805: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #8806: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #8807: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #8808: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #8809: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #8810: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #8811: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #8812: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #8813: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #8814: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #8815: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #8816: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #8817: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #8818: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #8819: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #8820: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #8821: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #8822: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #8823: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #8824: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #8825: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #8826: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #8827: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #8828: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #8829: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #8830: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #8831: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #8832: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #8833: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #8834: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #8835: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #8836: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #8837: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #8838: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #8839: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #8840: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #8841: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #8842: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #8843: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #8844: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #8845: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8846: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8847: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8848: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8849: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8850: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8851: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8852: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8853: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8854: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8855: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #8856: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #8857: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #8858: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #8859: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #8860: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #8861: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8862: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8863: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8864: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8865: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8866: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8867: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8868: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8869: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8870: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8871: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #8872: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #8873: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #8874: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #8875: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #8876: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #8877: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8878: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8879: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8880: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8881: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8882: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8883: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8884: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8885: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8886: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8887: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #8888: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #8889: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #8890: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #8891: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #8892: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #8893: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8894: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8895: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8896: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8897: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8898: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8899: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8900: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8901: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8902: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8903: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #8904: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #8905: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #8906: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #8907: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #8908: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #8909: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8910: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8911: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8912: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8913: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8914: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8915: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8916: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8917: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8918: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8919: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #8920: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #8921: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #8922: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #8923: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #8924: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #8925: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8926: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8927: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8928: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8929: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8930: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8931: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8932: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8933: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8934: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8935: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #8936: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #8937: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #8938: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #8939: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #8940: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #8941: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8942: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8943: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8944: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8945: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8946: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8947: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8948: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8949: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8950: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8951: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #8952: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #8953: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #8954: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #8955: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #8956: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #8957: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8958: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8959: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8960: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8961: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8962: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8963: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8964: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8965: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8966: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8967: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #8968: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #8969: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #8970: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #8971: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #8972: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #8973: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8974: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8975: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8976: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8977: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8978: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8979: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8980: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8981: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8982: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8983: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #8984: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #8985: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #8986: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #8987: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #8988: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #8989: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #8990: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #8991: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #8992: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #8993: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #8994: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #8995: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #8996: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #8997: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #8998: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #8999: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9000: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9001: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #9002: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9003: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9004: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9005: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #9006: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9007: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9008: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9009: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #9010: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9011: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9012: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9013: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #9014: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9015: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9016: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9017: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #9018: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9019: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9020: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9021: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #9022: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9023: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9024: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9025: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #9026: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9027: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9028: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9029: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #9030: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9031: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9032: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9033: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #9034: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9035: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9036: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9037: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9038: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9039: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9040: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9041: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9042: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9043: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9044: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9045: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9046: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9047: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9048: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9049: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9050: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9051: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9052: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9053: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9054: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9055: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9056: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9057: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9058: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9059: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9060: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9061: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9062: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9063: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9064: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9065: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9066: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9067: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9068: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9069: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9070: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9071: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9072: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9073: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9074: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9075: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9076: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9077: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9078: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9079: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9080: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9081: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9082: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9083: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9084: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9085: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9086: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9087: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9088: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9089: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9090: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9091: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9092: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9093: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9094: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9095: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9096: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9097: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9098: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9099: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9100: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9101: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9102: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9103: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9104: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9105: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9106: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9107: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9108: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9109: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9110: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9111: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9112: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9113: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9114: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9115: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9116: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9117: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9118: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9119: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9120: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9121: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #9122: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #9123: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #9124: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #9125: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #9126: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #9127: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #9128: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #9129: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #9130: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #9131: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #9132: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #9133: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/0 TLS 1.0, TLS_ECDHE_RSA_WITH_NULL_SHA, name = &quot;NULL&quot;, key size = 0' - PASSED
ssl_gtest.sh: #9134: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/1 TLS 1.0, TLS_RSA_WITH_RC4_128_SHA, name = &quot;RC4&quot;, key size = 128' - PASSED
ssl_gtest.sh: #9135: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/2 TLS 1.0, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, name = &quot;3DES-EDE-CBC&quot;, key size = 168' - PASSED
ssl_gtest.sh: #9136: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/3 TLS 1.0, TLS_RSA_WITH_AES_128_CBC_SHA, name = &quot;AES-128&quot;, key size = 128' - PASSED
ssl_gtest.sh: #9137: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/4 TLS 1.2, TLS_RSA_WITH_AES_256_CBC_SHA256, name = &quot;AES-256&quot;, key size = 256' - PASSED
ssl_gtest.sh: #9138: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/5 TLS 1.2, TLS_RSA_WITH_AES_128_GCM_SHA256, name = &quot;AES-128-GCM&quot;, key size = 128' - PASSED
ssl_gtest.sh: #9139: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/6 TLS 1.2, TLS_RSA_WITH_AES_256_GCM_SHA384, name = &quot;AES-256-GCM&quot;, key size = 256' - PASSED
ssl_gtest.sh: #9140: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/7 TLS 1.2, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256, name = &quot;ChaCha20-Poly1305&quot;, key size = 256' - PASSED
ssl_gtest.sh: #9141: 'DamageYStream/TlsDamageDHYTest: DamageServerY/0 (&quot;TLS&quot;, 769, 0, true)' - PASSED
ssl_gtest.sh: #9142: 'DamageYStream/TlsDamageDHYTest: DamageServerY/1 (&quot;TLS&quot;, 769, 0, false)' - PASSED
ssl_gtest.sh: #9143: 'DamageYStream/TlsDamageDHYTest: DamageServerY/2 (&quot;TLS&quot;, 769, 1, true)' - PASSED
ssl_gtest.sh: #9144: 'DamageYStream/TlsDamageDHYTest: DamageServerY/3 (&quot;TLS&quot;, 769, 1, false)' - PASSED
ssl_gtest.sh: #9145: 'DamageYStream/TlsDamageDHYTest: DamageServerY/4 (&quot;TLS&quot;, 769, 2, true)' - PASSED
ssl_gtest.sh: #9146: 'DamageYStream/TlsDamageDHYTest: DamageServerY/5 (&quot;TLS&quot;, 769, 2, false)' - PASSED
ssl_gtest.sh: #9147: 'DamageYStream/TlsDamageDHYTest: DamageServerY/6 (&quot;TLS&quot;, 769, 3, true)' - PASSED
ssl_gtest.sh: #9148: 'DamageYStream/TlsDamageDHYTest: DamageServerY/7 (&quot;TLS&quot;, 769, 3, false)' - PASSED
ssl_gtest.sh: #9149: 'DamageYStream/TlsDamageDHYTest: DamageServerY/8 (&quot;TLS&quot;, 769, 4, true)' - PASSED
ssl_gtest.sh: #9150: 'DamageYStream/TlsDamageDHYTest: DamageServerY/9 (&quot;TLS&quot;, 769, 4, false)' - PASSED
ssl_gtest.sh: #9151: 'DamageYStream/TlsDamageDHYTest: DamageServerY/10 (&quot;TLS&quot;, 769, 5, true)' - PASSED
ssl_gtest.sh: #9152: 'DamageYStream/TlsDamageDHYTest: DamageServerY/11 (&quot;TLS&quot;, 769, 5, false)' - PASSED
ssl_gtest.sh: #9153: 'DamageYStream/TlsDamageDHYTest: DamageServerY/12 (&quot;TLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #9154: 'DamageYStream/TlsDamageDHYTest: DamageServerY/13 (&quot;TLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #9155: 'DamageYStream/TlsDamageDHYTest: DamageServerY/14 (&quot;TLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #9156: 'DamageYStream/TlsDamageDHYTest: DamageServerY/15 (&quot;TLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #9157: 'DamageYStream/TlsDamageDHYTest: DamageServerY/16 (&quot;TLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #9158: 'DamageYStream/TlsDamageDHYTest: DamageServerY/17 (&quot;TLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #9159: 'DamageYStream/TlsDamageDHYTest: DamageServerY/18 (&quot;TLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #9160: 'DamageYStream/TlsDamageDHYTest: DamageServerY/19 (&quot;TLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #9161: 'DamageYStream/TlsDamageDHYTest: DamageServerY/20 (&quot;TLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #9162: 'DamageYStream/TlsDamageDHYTest: DamageServerY/21 (&quot;TLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #9163: 'DamageYStream/TlsDamageDHYTest: DamageServerY/22 (&quot;TLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #9164: 'DamageYStream/TlsDamageDHYTest: DamageServerY/23 (&quot;TLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #9165: 'DamageYStream/TlsDamageDHYTest: DamageServerY/24 (&quot;TLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #9166: 'DamageYStream/TlsDamageDHYTest: DamageServerY/25 (&quot;TLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #9167: 'DamageYStream/TlsDamageDHYTest: DamageServerY/26 (&quot;TLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #9168: 'DamageYStream/TlsDamageDHYTest: DamageServerY/27 (&quot;TLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #9169: 'DamageYStream/TlsDamageDHYTest: DamageServerY/28 (&quot;TLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #9170: 'DamageYStream/TlsDamageDHYTest: DamageServerY/29 (&quot;TLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #9171: 'DamageYStream/TlsDamageDHYTest: DamageServerY/30 (&quot;TLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #9172: 'DamageYStream/TlsDamageDHYTest: DamageServerY/31 (&quot;TLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #9173: 'DamageYStream/TlsDamageDHYTest: DamageServerY/32 (&quot;TLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #9174: 'DamageYStream/TlsDamageDHYTest: DamageServerY/33 (&quot;TLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #9175: 'DamageYStream/TlsDamageDHYTest: DamageServerY/34 (&quot;TLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #9176: 'DamageYStream/TlsDamageDHYTest: DamageServerY/35 (&quot;TLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #9177: 'DamageYStream/TlsDamageDHYTest: DamageClientY/0 (&quot;TLS&quot;, 769, 0, true)' - PASSED
ssl_gtest.sh: #9178: 'DamageYStream/TlsDamageDHYTest: DamageClientY/1 (&quot;TLS&quot;, 769, 0, false)' - PASSED
ssl_gtest.sh: #9179: 'DamageYStream/TlsDamageDHYTest: DamageClientY/2 (&quot;TLS&quot;, 769, 1, true)' - PASSED
ssl_gtest.sh: #9180: 'DamageYStream/TlsDamageDHYTest: DamageClientY/3 (&quot;TLS&quot;, 769, 1, false)' - PASSED
ssl_gtest.sh: #9181: 'DamageYStream/TlsDamageDHYTest: DamageClientY/4 (&quot;TLS&quot;, 769, 2, true)' - PASSED
ssl_gtest.sh: #9182: 'DamageYStream/TlsDamageDHYTest: DamageClientY/5 (&quot;TLS&quot;, 769, 2, false)' - PASSED
ssl_gtest.sh: #9183: 'DamageYStream/TlsDamageDHYTest: DamageClientY/6 (&quot;TLS&quot;, 769, 3, true)' - PASSED
ssl_gtest.sh: #9184: 'DamageYStream/TlsDamageDHYTest: DamageClientY/7 (&quot;TLS&quot;, 769, 3, false)' - PASSED
ssl_gtest.sh: #9185: 'DamageYStream/TlsDamageDHYTest: DamageClientY/8 (&quot;TLS&quot;, 769, 4, true)' - PASSED
ssl_gtest.sh: #9186: 'DamageYStream/TlsDamageDHYTest: DamageClientY/9 (&quot;TLS&quot;, 769, 4, false)' - PASSED
ssl_gtest.sh: #9187: 'DamageYStream/TlsDamageDHYTest: DamageClientY/10 (&quot;TLS&quot;, 769, 5, true)' - PASSED
ssl_gtest.sh: #9188: 'DamageYStream/TlsDamageDHYTest: DamageClientY/11 (&quot;TLS&quot;, 769, 5, false)' - PASSED
ssl_gtest.sh: #9189: 'DamageYStream/TlsDamageDHYTest: DamageClientY/12 (&quot;TLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #9190: 'DamageYStream/TlsDamageDHYTest: DamageClientY/13 (&quot;TLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #9191: 'DamageYStream/TlsDamageDHYTest: DamageClientY/14 (&quot;TLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #9192: 'DamageYStream/TlsDamageDHYTest: DamageClientY/15 (&quot;TLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #9193: 'DamageYStream/TlsDamageDHYTest: DamageClientY/16 (&quot;TLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #9194: 'DamageYStream/TlsDamageDHYTest: DamageClientY/17 (&quot;TLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #9195: 'DamageYStream/TlsDamageDHYTest: DamageClientY/18 (&quot;TLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #9196: 'DamageYStream/TlsDamageDHYTest: DamageClientY/19 (&quot;TLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #9197: 'DamageYStream/TlsDamageDHYTest: DamageClientY/20 (&quot;TLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #9198: 'DamageYStream/TlsDamageDHYTest: DamageClientY/21 (&quot;TLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #9199: 'DamageYStream/TlsDamageDHYTest: DamageClientY/22 (&quot;TLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #9200: 'DamageYStream/TlsDamageDHYTest: DamageClientY/23 (&quot;TLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #9201: 'DamageYStream/TlsDamageDHYTest: DamageClientY/24 (&quot;TLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #9202: 'DamageYStream/TlsDamageDHYTest: DamageClientY/25 (&quot;TLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #9203: 'DamageYStream/TlsDamageDHYTest: DamageClientY/26 (&quot;TLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #9204: 'DamageYStream/TlsDamageDHYTest: DamageClientY/27 (&quot;TLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #9205: 'DamageYStream/TlsDamageDHYTest: DamageClientY/28 (&quot;TLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #9206: 'DamageYStream/TlsDamageDHYTest: DamageClientY/29 (&quot;TLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #9207: 'DamageYStream/TlsDamageDHYTest: DamageClientY/30 (&quot;TLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #9208: 'DamageYStream/TlsDamageDHYTest: DamageClientY/31 (&quot;TLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #9209: 'DamageYStream/TlsDamageDHYTest: DamageClientY/32 (&quot;TLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #9210: 'DamageYStream/TlsDamageDHYTest: DamageClientY/33 (&quot;TLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #9211: 'DamageYStream/TlsDamageDHYTest: DamageClientY/34 (&quot;TLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #9212: 'DamageYStream/TlsDamageDHYTest: DamageClientY/35 (&quot;TLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #9213: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/0 (&quot;DTLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #9214: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/1 (&quot;DTLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #9215: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/2 (&quot;DTLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #9216: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/3 (&quot;DTLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #9217: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/4 (&quot;DTLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #9218: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/5 (&quot;DTLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #9219: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/6 (&quot;DTLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #9220: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/7 (&quot;DTLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #9221: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/8 (&quot;DTLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #9222: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/9 (&quot;DTLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #9223: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/10 (&quot;DTLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #9224: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/11 (&quot;DTLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #9225: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/12 (&quot;DTLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #9226: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/13 (&quot;DTLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #9227: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/14 (&quot;DTLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #9228: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/15 (&quot;DTLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #9229: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/16 (&quot;DTLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #9230: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/17 (&quot;DTLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #9231: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/18 (&quot;DTLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #9232: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/19 (&quot;DTLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #9233: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/20 (&quot;DTLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #9234: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/21 (&quot;DTLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #9235: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/22 (&quot;DTLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #9236: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/23 (&quot;DTLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #9237: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/0 (&quot;DTLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #9238: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/1 (&quot;DTLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #9239: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/2 (&quot;DTLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #9240: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/3 (&quot;DTLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #9241: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/4 (&quot;DTLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #9242: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/5 (&quot;DTLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #9243: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/6 (&quot;DTLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #9244: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/7 (&quot;DTLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #9245: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/8 (&quot;DTLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #9246: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/9 (&quot;DTLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #9247: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/10 (&quot;DTLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #9248: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/11 (&quot;DTLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #9249: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/12 (&quot;DTLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #9250: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/13 (&quot;DTLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #9251: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/14 (&quot;DTLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #9252: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/15 (&quot;DTLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #9253: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/16 (&quot;DTLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #9254: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/17 (&quot;DTLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #9255: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/18 (&quot;DTLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #9256: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/19 (&quot;DTLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #9257: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/20 (&quot;DTLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #9258: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/21 (&quot;DTLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #9259: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/22 (&quot;DTLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #9260: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/23 (&quot;DTLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #9261: 'Datagram12Plus/TlsConnectDatagram12Plus: MissAWindow/0 771' - PASSED
ssl_gtest.sh: #9262: 'Datagram12Plus/TlsConnectDatagram12Plus: MissAWindowAndOne/0 771' - PASSED
ssl_gtest.sh: #9263: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9264: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9265: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9266: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9267: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9268: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9269: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9270: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9271: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9272: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9273: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9274: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9275: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9276: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9277: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9278: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9279: 'TlsPadding/TlsPaddingTest: Correct/0 (1, true)' - PASSED
ssl_gtest.sh: #9280: 'TlsPadding/TlsPaddingTest: Correct/1 (1, false)' - PASSED
ssl_gtest.sh: #9281: 'TlsPadding/TlsPaddingTest: Correct/2 (19, true)' - PASSED
ssl_gtest.sh: #9282: 'TlsPadding/TlsPaddingTest: Correct/3 (19, false)' - PASSED
ssl_gtest.sh: #9283: 'TlsPadding/TlsPaddingTest: Correct/4 (20, true)' - PASSED
ssl_gtest.sh: #9284: 'TlsPadding/TlsPaddingTest: Correct/5 (20, false)' - PASSED
ssl_gtest.sh: #9285: 'TlsPadding/TlsPaddingTest: Correct/6 (30, true)' - PASSED
ssl_gtest.sh: #9286: 'TlsPadding/TlsPaddingTest: Correct/7 (30, false)' - PASSED
ssl_gtest.sh: #9287: 'TlsPadding/TlsPaddingTest: Correct/8 (31, true)' - PASSED
ssl_gtest.sh: #9288: 'TlsPadding/TlsPaddingTest: Correct/9 (31, false)' - PASSED
ssl_gtest.sh: #9289: 'TlsPadding/TlsPaddingTest: Correct/10 (32, true)' - PASSED
ssl_gtest.sh: #9290: 'TlsPadding/TlsPaddingTest: Correct/11 (32, false)' - PASSED
ssl_gtest.sh: #9291: 'TlsPadding/TlsPaddingTest: Correct/12 (36, true)' - PASSED
ssl_gtest.sh: #9292: 'TlsPadding/TlsPaddingTest: Correct/13 (36, false)' - PASSED
ssl_gtest.sh: #9293: 'TlsPadding/TlsPaddingTest: Correct/14 (256, true)' - PASSED
ssl_gtest.sh: #9294: 'TlsPadding/TlsPaddingTest: Correct/15 (256, false)' - PASSED
ssl_gtest.sh: #9295: 'TlsPadding/TlsPaddingTest: Correct/16 (257, true)' - PASSED
ssl_gtest.sh: #9296: 'TlsPadding/TlsPaddingTest: Correct/17 (257, false)' - PASSED
ssl_gtest.sh: #9297: 'TlsPadding/TlsPaddingTest: Correct/18 (287, true)' - PASSED
ssl_gtest.sh: #9298: 'TlsPadding/TlsPaddingTest: Correct/19 (287, false)' - PASSED
ssl_gtest.sh: #9299: 'TlsPadding/TlsPaddingTest: Correct/20 (288, true)' - PASSED
ssl_gtest.sh: #9300: 'TlsPadding/TlsPaddingTest: Correct/21 (288, false)' - PASSED
ssl_gtest.sh: #9301: 'TlsPadding/TlsPaddingTest: PadTooLong/0 (1, true)' - PASSED
ssl_gtest.sh: #9302: 'TlsPadding/TlsPaddingTest: PadTooLong/1 (1, false)' - PASSED
ssl_gtest.sh: #9303: 'TlsPadding/TlsPaddingTest: PadTooLong/2 (19, true)' - PASSED
ssl_gtest.sh: #9304: 'TlsPadding/TlsPaddingTest: PadTooLong/3 (19, false)' - PASSED
ssl_gtest.sh: #9305: 'TlsPadding/TlsPaddingTest: PadTooLong/4 (20, true)' - PASSED
ssl_gtest.sh: #9306: 'TlsPadding/TlsPaddingTest: PadTooLong/5 (20, false)' - PASSED
ssl_gtest.sh: #9307: 'TlsPadding/TlsPaddingTest: PadTooLong/6 (30, true)' - PASSED
ssl_gtest.sh: #9308: 'TlsPadding/TlsPaddingTest: PadTooLong/7 (30, false)' - PASSED
ssl_gtest.sh: #9309: 'TlsPadding/TlsPaddingTest: PadTooLong/8 (31, true)' - PASSED
ssl_gtest.sh: #9310: 'TlsPadding/TlsPaddingTest: PadTooLong/9 (31, false)' - PASSED
ssl_gtest.sh: #9311: 'TlsPadding/TlsPaddingTest: PadTooLong/10 (32, true)' - PASSED
ssl_gtest.sh: #9312: 'TlsPadding/TlsPaddingTest: PadTooLong/11 (32, false)' - PASSED
ssl_gtest.sh: #9313: 'TlsPadding/TlsPaddingTest: PadTooLong/12 (36, true)' - PASSED
ssl_gtest.sh: #9314: 'TlsPadding/TlsPaddingTest: PadTooLong/13 (36, false)' - PASSED
ssl_gtest.sh: #9315: 'TlsPadding/TlsPaddingTest: PadTooLong/14 (256, true)' - PASSED
ssl_gtest.sh: #9316: 'TlsPadding/TlsPaddingTest: PadTooLong/15 (256, false)' - PASSED
ssl_gtest.sh: #9317: 'TlsPadding/TlsPaddingTest: PadTooLong/16 (257, true)' - PASSED
ssl_gtest.sh: #9318: 'TlsPadding/TlsPaddingTest: PadTooLong/17 (257, false)' - PASSED
ssl_gtest.sh: #9319: 'TlsPadding/TlsPaddingTest: PadTooLong/18 (287, true)' - PASSED
ssl_gtest.sh: #9320: 'TlsPadding/TlsPaddingTest: PadTooLong/19 (287, false)' - PASSED
ssl_gtest.sh: #9321: 'TlsPadding/TlsPaddingTest: PadTooLong/20 (288, true)' - PASSED
ssl_gtest.sh: #9322: 'TlsPadding/TlsPaddingTest: PadTooLong/21 (288, false)' - PASSED
ssl_gtest.sh: #9323: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/0 (1, true)' - PASSED
ssl_gtest.sh: #9324: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/1 (1, false)' - PASSED
ssl_gtest.sh: #9325: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/2 (19, true)' - PASSED
ssl_gtest.sh: #9326: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/3 (19, false)' - PASSED
ssl_gtest.sh: #9327: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/4 (20, true)' - PASSED
ssl_gtest.sh: #9328: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/5 (20, false)' - PASSED
ssl_gtest.sh: #9329: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/6 (30, true)' - PASSED
ssl_gtest.sh: #9330: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/7 (30, false)' - PASSED
ssl_gtest.sh: #9331: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/8 (31, true)' - PASSED
ssl_gtest.sh: #9332: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/9 (31, false)' - PASSED
ssl_gtest.sh: #9333: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/10 (32, true)' - PASSED
ssl_gtest.sh: #9334: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/11 (32, false)' - PASSED
ssl_gtest.sh: #9335: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/12 (36, true)' - PASSED
ssl_gtest.sh: #9336: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/13 (36, false)' - PASSED
ssl_gtest.sh: #9337: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/14 (256, true)' - PASSED
ssl_gtest.sh: #9338: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/15 (256, false)' - PASSED
ssl_gtest.sh: #9339: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/16 (257, true)' - PASSED
ssl_gtest.sh: #9340: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/17 (257, false)' - PASSED
ssl_gtest.sh: #9341: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/18 (287, true)' - PASSED
ssl_gtest.sh: #9342: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/19 (287, false)' - PASSED
ssl_gtest.sh: #9343: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/20 (288, true)' - PASSED
ssl_gtest.sh: #9344: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/21 (288, false)' - PASSED
ssl_gtest.sh: #9345: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/0 (1, true)' - PASSED
ssl_gtest.sh: #9346: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/1 (1, false)' - PASSED
ssl_gtest.sh: #9347: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/2 (19, true)' - PASSED
ssl_gtest.sh: #9348: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/3 (19, false)' - PASSED
ssl_gtest.sh: #9349: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/4 (20, true)' - PASSED
ssl_gtest.sh: #9350: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/5 (20, false)' - PASSED
ssl_gtest.sh: #9351: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/6 (30, true)' - PASSED
ssl_gtest.sh: #9352: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/7 (30, false)' - PASSED
ssl_gtest.sh: #9353: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/8 (31, true)' - PASSED
ssl_gtest.sh: #9354: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/9 (31, false)' - PASSED
ssl_gtest.sh: #9355: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/10 (32, true)' - PASSED
ssl_gtest.sh: #9356: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/11 (32, false)' - PASSED
ssl_gtest.sh: #9357: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/12 (36, true)' - PASSED
ssl_gtest.sh: #9358: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/13 (36, false)' - PASSED
ssl_gtest.sh: #9359: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/14 (256, true)' - PASSED
ssl_gtest.sh: #9360: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/15 (256, false)' - PASSED
ssl_gtest.sh: #9361: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/16 (257, true)' - PASSED
ssl_gtest.sh: #9362: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/17 (257, false)' - PASSED
ssl_gtest.sh: #9363: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/18 (287, true)' - PASSED
ssl_gtest.sh: #9364: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/19 (287, false)' - PASSED
ssl_gtest.sh: #9365: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/20 (288, true)' - PASSED
ssl_gtest.sh: #9366: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/21 (288, false)' - PASSED
ssl_gtest.sh: #9367: 'SkipTls10/TlsSkipTest: SkipCertificateRsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #9368: 'SkipTls10/TlsSkipTest: SkipCertificateDhe/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #9369: 'SkipTls10/TlsSkipTest: SkipCertificateEcdhe/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #9370: 'SkipTls10/TlsSkipTest: SkipCertificateEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #9371: 'SkipTls10/TlsSkipTest: SkipServerKeyExchange/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #9372: 'SkipTls10/TlsSkipTest: SkipServerKeyExchangeEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #9373: 'SkipTls10/TlsSkipTest: SkipCertAndKeyExch/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #9374: 'SkipTls10/TlsSkipTest: SkipCertAndKeyExchEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #9375: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9376: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9377: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9378: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9379: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9380: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9381: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9382: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9383: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9384: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9385: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9386: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9387: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9388: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9389: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9390: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9391: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9392: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9393: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9394: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9395: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9396: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9397: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9398: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9399: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9400: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9401: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9402: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9403: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9404: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9405: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #9406: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #9407: 'AllHashFuncs/TlsHkdfTest: HkdfNullNull/0 4' - PASSED
ssl_gtest.sh: #9408: 'AllHashFuncs/TlsHkdfTest: HkdfNullNull/1 5' - PASSED
ssl_gtest.sh: #9409: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Only/0 4' - PASSED
ssl_gtest.sh: #9410: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Only/1 5' - PASSED
ssl_gtest.sh: #9411: 'AllHashFuncs/TlsHkdfTest: HkdfKey2Only/0 4' - PASSED
ssl_gtest.sh: #9412: 'AllHashFuncs/TlsHkdfTest: HkdfKey2Only/1 5' - PASSED
ssl_gtest.sh: #9413: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Key2/0 4' - PASSED
ssl_gtest.sh: #9414: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Key2/1 5' - PASSED
ssl_gtest.sh: #9415: 'AllHashFuncs/TlsHkdfTest: HkdfExpandLabel/0 4' - PASSED
ssl_gtest.sh: #9416: 'AllHashFuncs/TlsHkdfTest: HkdfExpandLabel/1 5' - PASSED
TIMESTAMP ssl_gtests END: Sat Oct 21 16:32:01 UTC 2017
ssl_gtests.sh: Testing with upgraded library ===============================
cp: cannot stat '/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/cert.done': No such file or directory
Running tests for dbupgrade
TIMESTAMP dbupgrade BEGIN: Sat Oct 21 16:32:02 UTC 2017
dbupgrade.sh: DB upgrade tests ===============================
Reset databases to their initial values:
certutil: could not find certificate named "objsigner": SEC_ERROR_BAD_DATABASE: security library: bad database.
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
dbupgrade.sh: Legacy to shared Library update ===============================
alicedir
upgrading db alicedir
Generating key.  This may take a few moments...
dbupgrade.sh: #9417: Upgrading alicedir  - PASSED
bobdir
upgrading db bobdir
Generating key.  This may take a few moments...
dbupgrade.sh: #9418: Upgrading bobdir  - PASSED
CA
upgrading db CA
Generating key.  This may take a few moments...
dbupgrade.sh: #9419: Upgrading CA  - PASSED
cert_extensions
upgrading db cert_extensions
Generating key.  This may take a few moments...
dbupgrade.sh: #9420: Upgrading cert_extensions  - PASSED
client
upgrading db client
Generating key.  This may take a few moments...
dbupgrade.sh: #9421: Upgrading client  - PASSED
clientCA
upgrading db clientCA
Generating key.  This may take a few moments...
dbupgrade.sh: #9422: Upgrading clientCA  - PASSED
dave
upgrading db dave
Generating key.  This may take a few moments...
dbupgrade.sh: #9423: Upgrading dave  - PASSED
eccurves
upgrading db eccurves
Generating key.  This may take a few moments...
dbupgrade.sh: #9424: Upgrading eccurves  - PASSED
eve
upgrading db eve
Generating key.  This may take a few moments...
dbupgrade.sh: #9425: Upgrading eve  - PASSED
ext_client
upgrading db ext_client
Generating key.  This may take a few moments...
dbupgrade.sh: #9426: Upgrading ext_client  - PASSED
ext_server
upgrading db ext_server
Generating key.  This may take a few moments...
dbupgrade.sh: #9427: Upgrading ext_server  - PASSED
SDR
upgrading db SDR
Generating key.  This may take a few moments...
dbupgrade.sh: #9428: Upgrading SDR  - PASSED
server
upgrading db server
Generating key.  This may take a few moments...
dbupgrade.sh: #9429: Upgrading server  - PASSED
serverCA
upgrading db serverCA
Generating key.  This may take a few moments...
dbupgrade.sh: #9430: Upgrading serverCA  - PASSED
ssl_gtests
skipping db ssl_gtests
dbupgrade.sh: #9431: No directory ssl_gtests  - PASSED
stapling
upgrading db stapling
Generating key.  This may take a few moments...
dbupgrade.sh: #9432: Upgrading stapling  - PASSED
tools/copydir
skipping db tools/copydir
dbupgrade.sh: #9433: No directory tools/copydir  - PASSED
upgrading db fips
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
dbupgrade.sh: #9434: Upgrading fips  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
TIMESTAMP dbupgrade END: Sat Oct 21 16:32:51 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Sat Oct 21 16:32:51 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9435: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                6b:5b:40:28:05:93:e2:3b:56:07:d0:e1:4a:eb:4c:64
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9436: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9437: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9438: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9439: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                59:be:de:5f:1f:b8:6c:b3:ba:06:3a:66:c3:5f:96:d6
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA256
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Sat Oct 21 13:22:07 2017
            Not After : Fri Oct 21 13:22:07 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:01:ec:93:71:03:83:c8:a5:c4:09:04:43:7f:0a:42:
                    1b:97:2d:b5:36:7e:8a:87:bd:30:eb:2e:9b:19:24:ae:
                    30:f2:d4:21:06:e9:fe:05:dd:70:3b:46:23:d0:e5:36:
                    aa:99:28:93:43:92:3f:17:81:22:57:3e:ab:67:a9:c9:
                    99:4b:0a:00:aa:24:b6:07:3c:de:53:3a:26:af:ec:82:
                    1d:dc:5e:9e:44:53:93:b6:a3:e0:3b:a4:b7:28:04:d7:
                    d1:89:4e:06:2d:fe:e4:b5:c4:40:b1:d4:91:56:b7:83:
                    bd:e8:aa:bd:a6:8a:72:7e:98:38:6e:42:bb:66:84:cc:
                    cc:b5:1a:f9:32
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA256
    Signature:
        30:81:88:02:42:01:a1:0f:b4:b2:f0:29:68:18:8d:52:
        e5:8a:47:31:f2:1d:45:2b:39:b0:25:32:08:c0:1f:27:
        2b:61:20:67:93:fd:ee:2f:dc:a1:62:45:6c:31:1d:91:
        b9:23:4e:5e:7e:f2:88:d6:c2:da:63:7a:e7:90:f6:8f:
        25:a7:20:67:5f:5c:57:02:42:00:e7:be:73:60:5b:d2:
        8a:de:7f:8d:cd:ac:34:54:23:4c:8d:a8:4b:bd:98:d4:
        cf:1c:15:52:ff:f4:83:2a:7b:80:5d:2c:97:28:c8:4c:
        58:c7:eb:10:7e:f7:7a:95:2b:c0:46:6b:d5:07:05:8d:
        96:a7:aa:5f:ca:0e:60:93:3a:ac:2c
    Fingerprint (SHA-256):
        E4:D7:77:17:90:B5:03:49:12:EF:C1:56:DF:F4:07:15:F8:1E:6F:12:5D:64:B2:E4:76:E6:AB:79:64:7F:90:37
    Fingerprint (SHA1):
        1B:FF:87:AB:DD:20:33:F6:F6:C9:67:5C:F5:EF:B4:28:FB:FC:69:3E
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA256
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Sat Oct 21 13:24:01 2017
            Not After : Fri Oct 21 13:24:01 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:3f:ed:5f:e0:fc:3d:b9:1f:70:a6:bb:04:c5:ab:58:
                    83:93:25:00:b3:29:79:46:df:24:47:81:0d:46:53:2b:
                    5d:47:52:b6:82:56:31:41:34:0a:6d:51:7a:96:3d:46:
                    04:72:a5:42:a8:8c:a0:02:79:d2:a5:17:e0:59:0d:89:
                    26:77:34:8b:fc:aa:e0:81:6e:c7:69:27:80:92:02:c5:
                    e2:aa:03:4b:be:a9:09:63:49:1a:4b:79:c1:c1:6f:73:
                    eb
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA256
    Signature:
        30:81:88:02:42:00:dd:cf:d5:fb:ff:f8:2c:04:c2:a1:
        f4:fc:11:d9:8b:bf:1f:d8:8a:db:dc:7e:98:9a:64:01:
        ac:81:d5:22:dc:9f:1a:cf:9b:62:e9:39:5c:e2:75:7e:
        0a:51:09:20:11:97:ee:43:af:91:cf:18:41:0d:aa:15:
        b6:10:c9:46:06:50:e4:02:42:00:ab:56:e8:9c:30:b9:
        6c:45:8c:15:53:0c:68:56:d9:a4:16:fb:f6:14:e1:91:
        6d:c0:a0:9f:d5:23:b5:65:e2:38:80:e5:06:83:fd:de:
        4a:34:53:5f:ee:4f:5b:03:80:d7:bf:5d:9a:4b:76:03:
        41:04:99:b7:a6:df:bb:f1:e9:d9:da
    Fingerprint (SHA-256):
        69:07:E6:98:D2:A9:32:33:5F:56:67:B4:C2:B1:C0:5A:75:3A:11:D6:E5:72:7F:01:D8:55:E3:EC:68:7B:04:2C
    Fingerprint (SHA1):
        26:B5:45:D4:1A:D8:49:46:1F:B2:56:83:BF:B6:9A:65:06:3F:06:5C
    Friendly Name: Alice-ec
tools.sh: #9440: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9441: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                e6:8a:29:b3:41:ce:a2:da:74:e3:21:58:d5:08:65:fe
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9442: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9443: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9444: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                0f:9d:34:ef:da:78:c9:77:03:e8:3d:d1:7a:19:2a:90
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9445: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9446: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9447: Exporting with [RC2-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                1e:3b:76:43:fd:44:9a:68:f1:f6:13:4b:b3:73:47:b6
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9448: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9449: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9450: Exporting with [RC2-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                01:41:b1:dc:50:6f:b1:d5:1c:db:68:79:41:be:55:84
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9451: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9452: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9453: Exporting with [RC2-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                0f:42:69:d3:3f:ab:a0:4f:04:b9:64:2e:35:bf:d7:77
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9454: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9455: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9456: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                a8:bb:16:ab:86:2e:90:66:c8:e8:59:35:4d:db:6a:83
            Iteration Count: 2000 (0x7d0)
tools.sh: #9457: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9458: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9459: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                5e:4b:8f:ce:a7:a1:cf:0b:cd:cd:a1:67:e3:35:d6:dd
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9460: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9461: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9462: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                f5:de:1f:f1:6b:67:5c:09:58:6b:39:3b:68:5f:52:52
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9463: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9464: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9465: Exporting with [DES-EDE3-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                af:44:be:c7:41:1a:f3:65:0c:d3:4c:a2:c3:65:3a:65
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9466: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9467: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9468: Exporting with [DES-EDE3-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                b8:6f:e2:f3:64:e8:28:5c:3e:51:03:4c:aa:9c:80:52
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9469: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9470: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9471: Exporting with [DES-EDE3-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                24:e1:d8:69:dc:71:91:ed:b9:54:c9:cd:c8:79:97:99
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9472: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9473: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9474: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                12:b6:b6:cd:ce:1a:4c:b4:65:18:6b:5c:dd:13:2a:ba
            Iteration Count: 2000 (0x7d0)
tools.sh: #9475: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9476: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9477: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b0:3a:e1:b2:c7:e1:b8:27:fa:e6:96:45:9a:a7:e0:9e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:12:f9:0e:ef:a9:b1:21:9d:7b:31:55:b8:a4:2e:
                    d6:25
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9478: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9479: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9480: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        40:44:af:26:0b:fc:e3:cc:a7:f8:41:3b:3d:aa:07:db
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:86:1f:d5:85:db:f6:a3:a6:43:06:d0:d4:d3:14:
                    2c:6b
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9481: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9482: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9483: Exporting with [AES-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        18:44:32:7b:1e:1b:25:cb:a9:53:dd:7f:e6:30:e7:de
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:78:19:53:d6:a8:c8:21:75:5a:ec:7a:e7:4b:88:
                    68:68
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9484: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9485: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9486: Exporting with [AES-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        46:1a:ed:10:04:2f:17:6b:05:d1:15:02:64:08:47:4e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:70:df:b1:b9:2f:20:9e:4b:4d:3b:0b:d5:db:ba:
                    ad:c3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9487: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9488: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9489: Exporting with [AES-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a2:3d:86:94:bc:ad:5b:ca:8c:5a:17:d8:d6:37:98:cb
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:cd:cc:77:d0:19:06:c1:8b:9b:65:cb:9e:40:95:
                    09:74
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9490: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9491: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9492: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        30:43:d2:21:da:0f:c8:23:72:5e:ad:05:48:a9:86:e5
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:61:85:ec:5f:59:3f:a0:27:9e:83:cf:a6:75:24:
                    26:9e
tools.sh: #9493: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9494: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9495: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ee:0a:af:26:6b:e5:11:e6:b4:61:c3:2f:da:7b:b8:3d
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:2b:4c:ac:db:63:4b:b0:99:78:6e:45:67:51:67:
                    16:7a
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9496: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9497: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9498: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        5a:bf:62:06:ac:64:6e:c4:9a:2f:ee:84:4d:19:21:44
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:55:5b:e6:54:c6:06:1d:19:bf:71:7d:93:d5:55:
                    5f:75
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9499: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9500: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9501: Exporting with [AES-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        03:45:d0:42:04:e3:ed:c7:60:ed:63:fc:ec:0b:41:03
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:31:21:1c:25:d9:8d:5f:7c:58:58:b6:6d:cb:1b:
                    fb:b7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9502: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9503: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9504: Exporting with [AES-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        92:80:65:77:61:7e:ff:c3:39:21:43:08:ad:65:57:e3
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:fa:f1:a2:40:ed:0d:03:c7:21:99:48:61:05:f0:
                    ef:4e
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9505: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9506: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9507: Exporting with [AES-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c2:c9:9a:13:40:06:af:f5:a2:cc:61:6b:9e:52:85:86
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:bf:0c:56:71:e3:f0:1a:b4:87:89:d1:bf:f1:8e:
                    20:5d
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9508: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9509: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9510: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ad:96:d5:be:69:6b:98:c0:67:94:f5:70:94:16:08:ca
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:4c:c4:70:a0:e8:3a:83:44:b1:45:4e:10:69:5d:
                    b0:e3
tools.sh: #9511: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9512: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9513: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        44:ab:18:cf:d5:54:8c:45:4e:a7:7d:73:c2:bd:c4:0c
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:7b:08:e6:46:15:73:e6:0f:ca:81:0e:3b:b1:53:
                    df:e9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9514: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9515: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9516: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f0:f1:dc:05:af:c6:44:78:a0:2a:00:59:76:6f:ce:18
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:f5:b4:0f:f9:0b:0a:b2:ea:de:13:91:1f:6a:52:
                    43:10
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9517: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9518: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9519: Exporting with [AES-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        20:93:51:9e:7f:b2:1b:d4:dc:34:d3:ae:82:94:24:13
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:53:5e:50:1c:0c:42:48:08:76:be:f7:b0:38:22:
                    e0:34
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9520: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9521: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9522: Exporting with [AES-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        0a:f1:d2:4d:6e:1d:f2:b9:0c:7f:49:05:12:1e:d8:95
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:00:29:ed:5d:6c:10:02:16:29:eb:15:fb:92:99:
                    48:fe
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9523: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9524: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9525: Exporting with [AES-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        01:85:83:e4:66:80:df:10:04:66:f0:f3:d2:b9:d1:de
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:e4:f1:88:b0:f6:f5:17:61:3d:04:06:40:59:2d:
                    11:b2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9526: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9527: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9528: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b3:7b:7d:d7:ac:51:31:a5:41:61:2f:48:6a:c8:0f:3f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:3b:7e:4b:b4:aa:b9:ba:54:1c:55:46:36:8f:c1:
                    de:63
tools.sh: #9529: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9530: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9531: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f9:d3:5d:40:db:a8:83:fb:6e:8b:32:ec:90:92:07:50
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:ce:a8:a9:e9:b0:e3:7b:5f:08:d4:c1:74:7c:a8:
                    b7:11
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9532: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9533: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9534: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        72:b3:36:ba:73:f3:65:3b:53:e7:d4:0f:12:6e:f8:27
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:32:d1:33:21:53:28:d1:cd:37:62:c4:b9:67:5b:
                    6d:ee
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9535: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9536: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9537: Exporting with [CAMELLIA-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f7:a5:75:8e:4d:79:95:4d:50:55:cd:84:22:40:d4:32
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:12:1c:12:34:38:3a:6a:f9:f9:1b:b3:ba:7f:78:
                    c2:29
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9538: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9539: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9540: Exporting with [CAMELLIA-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        fc:b4:4c:59:80:4a:e6:96:ba:37:73:0b:b9:4a:09:40
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:21:70:22:48:d4:cc:4e:0c:24:a6:a2:06:af:7f:
                    6f:fc
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9541: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9542: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9543: Exporting with [CAMELLIA-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b2:98:b1:d0:d3:eb:46:f7:d5:47:bc:f1:0e:e1:c4:2e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:e8:1e:7e:18:e6:f1:d6:53:5b:ce:50:85:4a:af:
                    08:84
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9544: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9545: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9546: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        8a:c1:3a:22:c8:36:ee:95:b1:0d:7f:9e:ba:e1:c9:8b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:00:f0:b3:33:24:e3:1b:bd:97:07:f7:04:ea:23:
                    96:84
tools.sh: #9547: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9548: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9549: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d6:91:4f:8e:1f:33:e1:c9:3e:fd:a5:fc:d8:03:58:c3
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:e1:45:17:ff:cf:df:34:32:72:f9:98:79:a6:dc:
                    2a:72
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9550: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9551: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9552: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a1:76:93:cc:5b:b5:1d:82:74:43:cc:42:e9:25:01:56
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:c3:11:39:81:d7:6f:9b:58:05:72:35:88:0d:13:
                    65:8f
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9553: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9554: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9555: Exporting with [CAMELLIA-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        de:16:8f:f9:78:aa:af:f4:af:b1:c5:a1:0c:c7:9c:8d
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:0a:e5:c9:5d:88:72:1d:47:a2:7c:a4:08:32:60:
                    ef:a3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9556: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9557: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9558: Exporting with [CAMELLIA-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        8f:35:99:eb:8e:67:9b:28:99:fb:1e:4a:f2:40:e9:c1
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:ba:19:a5:a3:a9:4c:5f:2f:0e:fc:be:06:99:fa:
                    84:a5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9559: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9560: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9561: Exporting with [CAMELLIA-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        57:8d:05:bf:25:93:46:7d:47:b0:eb:b8:0e:22:c6:c4
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:1a:91:53:ec:a1:5a:ed:5d:5e:42:1a:b8:ca:c7:
                    ba:2b
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9562: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9563: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9564: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a9:76:b7:61:6f:5f:e1:64:1f:ba:f8:4e:81:19:18:47
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:df:c1:e6:8a:0e:e7:e9:74:6b:92:d3:93:e2:02:
                    2f:b0
tools.sh: #9565: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9566: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9567: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        7f:4c:eb:44:a4:d6:73:7a:58:30:fd:9d:0d:49:96:01
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:1f:60:99:97:51:8a:c8:fb:22:92:30:11:67:e2:
                    e4:e0
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9568: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9569: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9570: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c7:35:f6:1f:ff:a8:e1:dc:39:fa:50:0c:34:20:a4:bf
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:a6:72:8c:36:de:00:c7:a4:c7:a8:9c:f1:0e:77:
                    01:4e
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9571: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9572: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9573: Exporting with [CAMELLIA-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        73:a3:ac:e3:0f:c7:0d:ed:b7:3d:1b:5d:83:0f:a0:94
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:0b:5b:b1:83:7e:d4:92:ce:1c:d5:09:ce:de:ed:
                    6b:6b
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9574: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9575: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9576: Exporting with [CAMELLIA-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a4:19:b9:f7:09:f9:87:7c:ac:24:4b:b8:65:bd:90:00
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:c3:7a:68:29:be:ed:37:5f:4f:d7:f0:35:8f:9b:
                    39:1f
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9577: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9578: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9579: Exporting with [CAMELLIA-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        08:97:13:ea:5c:a5:47:bd:fb:32:4a:d3:4f:64:28:1e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:e5:24:36:ce:3a:bb:9f:aa:65:34:9e:97:03:66:
                    10:59
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9580: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9581: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9582: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        5b:d0:43:37:e1:c4:e1:a0:7f:78:96:ca:c0:c3:05:7f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:d4:66:5a:70:ca:be:bb:ba:e7:7b:a8:14:45:97:
                    46:66
tools.sh: #9583: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9584: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9585: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                77:5f:da:6b:9a:e1:f5:d0:1f:cb:ca:5c:02:9a:21:e2
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9586: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9587: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9588: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                9d:0f:72:72:29:a7:c0:77:c5:c7:9c:80:c7:f7:00:2f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9589: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9590: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9591: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                92:1f:b8:6d:39:1e:41:94:dc:e6:42:39:e9:a7:23:56
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9592: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9593: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9594: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                59:b3:11:24:51:e0:e8:07:d2:95:0f:18:9e:8c:63:ea
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9595: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9596: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9597: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                8c:07:b0:aa:98:79:c8:2b:91:79:80:86:8d:cc:67:ff
            Iteration Count: 2000 (0x7d0)
tools.sh: #9598: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9599: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9600: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                84:f7:8e:d4:a3:54:7d:b8:d3:f5:d1:cc:b3:8d:69:8e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9601: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9602: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9603: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                25:31:9e:f0:20:f5:61:2f:9b:ed:af:cb:1f:dc:42:f3
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9604: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9605: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9606: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                b0:0f:1c:5b:3e:dc:ef:de:59:62:c2:7a:23:22:07:66
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9607: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9608: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9609: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                a9:a5:cd:bd:ca:02:3d:d5:e6:10:9d:cd:81:5c:b0:23
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9610: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9611: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9612: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                89:92:33:08:65:8f:de:b0:55:fe:cc:c0:b5:5c:be:0d
            Iteration Count: 2000 (0x7d0)
tools.sh: #9613: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9614: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9615: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                e2:17:94:46:a2:eb:8c:a0:85:4a:21:30:e0:a7:21:85
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9616: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9617: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9618: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                cc:32:25:0a:fe:ab:e9:49:3e:12:b1:82:b6:4f:7e:ea
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9619: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9620: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9621: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                08:85:50:71:c9:f4:3d:2e:78:8b:53:04:02:65:b7:d4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9622: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9623: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9624: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                2e:33:8b:3a:d9:a1:cf:43:9e:08:3f:99:34:7c:05:8c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9625: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9626: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9627: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                cc:67:c3:06:1e:f8:63:06:94:c4:f9:5a:0d:ad:f7:0b
            Iteration Count: 2000 (0x7d0)
tools.sh: #9628: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9629: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9630: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                21:db:c3:e5:f9:e3:56:4e:6c:e2:78:a6:f5:be:13:49
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9631: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9632: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9633: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                65:ce:6d:80:4b:fc:74:a9:47:6f:51:61:c9:61:a9:1f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9634: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9635: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9636: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                10:66:fb:80:22:da:f1:a0:c5:80:e1:7b:86:8a:44:21
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9637: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9638: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9639: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                79:a5:84:80:a6:df:66:0c:8f:6a:59:a7:d1:67:d6:d9
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9640: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9641: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9642: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                b6:c0:fb:28:76:34:c8:c3:0d:cb:c2:8a:1d:cb:02:32
            Iteration Count: 2000 (0x7d0)
tools.sh: #9643: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9644: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9645: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                4c:2c:66:7b:ec:d8:8b:86:e4:c3:e0:2d:9a:1c:71:52
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9646: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9647: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9648: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a8:46:50:93:08:2e:c2:e9:f8:22:a2:03:de:ed:4c:33
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9649: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9650: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9651: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                46:86:f8:50:a2:12:d2:65:f3:d8:29:28:95:dd:09:72
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9652: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9653: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9654: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                fb:48:a3:d7:e3:18:1b:32:49:26:08:9f:9e:8a:78:d4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9655: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9656: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9657: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                c6:b2:78:3a:54:00:e2:b5:22:35:da:bc:9b:cb:df:f0
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9658: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9659: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9660: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                6e:5a:19:c4:ba:0c:3a:a9:54:36:0b:38:2c:36:14:a2
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9661: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9662: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9663: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                4f:90:8b:4d:a1:d0:26:c9:bc:bf:58:c6:58:bd:95:bc
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9664: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9665: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9666: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                fa:14:8b:99:50:3c:e2:80:05:9b:66:ed:e9:6e:e8:6d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9667: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9668: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9669: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                7c:64:17:95:e4:bd:80:e1:c8:55:92:52:b0:58:d7:6a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9670: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9671: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9672: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                f4:52:d0:4f:c9:5c:13:03:c0:6b:78:7d:a6:f9:ec:aa
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:21:28 2017
            Not After : Fri Oct 21 13:21:28 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:61:4c:1c:26:4d:fc:c2:14:0f:15:ea:e5:50:6a:33:
                    3b:7e:43:c6:75:1a:28:5f:c6:c4:83:b8:b6:c0:51:8e:
                    4f:4d:ec:ae:a7:0c:fb:35:70:ae:4a:e5:94:94:42:47:
                    03:88:00:60:89:27:f6:45:a2:e5:aa:bd:44:52:a2:92:
                    d2:1e:60:ef:07:e5:32:60:0c:4c:c7:17:67:b5:8e:22:
                    e5:3b:af:d5:f5:91:0f:f2:26:ee:71:90:a5:9e:b3:8b:
                    40:bb:ea:c3:07:eb:c2:a2:5d:63:ca:d1:c4:95:b7:ab:
                    8f:16:58:d9:f2:70:92:28:89:3c:5b:75:cc:a2:bc:0a:
                    5b:5d:32:a0:39:27:cd:2e:c0:64:5c:1d:23:b9:45:18:
                    b5:59:68:c2:09:0f:49:e0:7b:92:78:37:f4:1c:6d:65:
                    22:ec:dd:c9:36:4b:22:cd:b7:ae:43:43:59:02:4f:37:
                    ed:47:df:a8:01:32:ee:49:9a:8d:34:bb:af:7d:4c:61:
                    fa:fc:16:89:7e:b5:c1:65:8e:46:42:ce:bc:15:3d:21:
                    26:75:86:19:64:d8:ff:a9:77:12:6a:dd:5f:63:a1:3b:
                    93:23:1b:67:6a:b7:16:8c:4b:f6:b2:b1:20:34:41:6b:
                    e4:ab:ab:4e:f7:7f:aa:3d:cc:e7:2d:94:69:3a:88:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:ea:9b:9f:65:f8:96:f7:3d:0e:18:e7:c2:64:e5:e9:
        1c:c2:a2:e0:45:44:e9:02:fe:97:d6:aa:1b:0e:4b:96:
        33:03:35:17:78:23:68:4e:9c:2a:53:5b:eb:04:37:23:
        ee:41:b3:a6:1a:ac:6a:6b:5f:6c:b3:3b:d2:65:f7:93:
        89:f9:27:fd:8a:ed:07:1f:4d:51:ab:3a:9e:36:4f:6d:
        5d:9f:ba:27:b1:f6:80:c6:55:27:d7:96:31:39:55:61:
        d2:d0:b6:d1:3c:2a:5f:c9:be:9a:0a:5c:56:d7:28:f3:
        32:5f:53:56:d4:a8:38:0c:ec:db:5a:b5:11:9f:d3:8c:
        7f:7e:fb:fe:cc:1a:2a:bd:55:2b:0c:e9:d5:89:07:28:
        96:72:59:b6:ca:a8:5b:b8:0f:61:90:34:7e:37:c9:7e:
        f2:47:35:f7:56:b8:0b:b2:3a:be:16:56:9f:6d:c8:4a:
        85:b7:fc:de:09:ad:47:54:2e:81:ed:87:82:95:fa:59:
        f3:ed:47:49:8c:fe:6f:36:74:ed:1b:ee:6a:c9:6b:82:
        c2:e1:f6:8d:11:18:27:12:96:c5:30:0e:e6:c3:68:80:
        36:26:eb:6b:a4:fb:10:4d:e1:29:cc:bc:06:fc:b5:72:
        f3:eb:3b:27:be:da:fc:cd:3b:51:39:7a:d9:78:a7:c1
    Fingerprint (SHA-256):
        72:C6:35:03:55:9B:A0:1E:85:56:B2:ED:F9:AE:D5:25:B4:D0:11:94:B4:C3:4F:21:BB:CF:E6:E4:C4:A2:5F:82
    Fingerprint (SHA1):
        71:82:99:17:D4:15:C7:7A:7E:55:8A:14:D7:E7:59:0F:2C:1A:AC:BF
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:23:55 2017
            Not After : Fri Oct 21 13:23:55 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:2e:a4:fb:f7:d2:26:dd:e2:6c:21:f2:dd:f1:a0:a4:
                    a0:cb:35:3a:b2:ce:64:23:95:c2:09:51:96:75:6b:36:
                    a0:56:74:ae:68:7a:8f:6a:99:be:bc:23:f9:ee:a6:9a:
                    8d:1b:67:ea:59:e6:b8:01:a7:d8:37:ce:4f:4f:13:b5:
                    40:70:bc:86:32:4c:a1:b1:bc:c5:f8:db:9a:4c:33:db:
                    0b:80:82:9c:ff:4a:4d:54:45:43:90:da:81:6b:96:dc:
                    35:13:28:35:3b:52:70:2f:a8:b3:fe:3c:e6:72:97:da:
                    94:91:06:a2:05:fc:4c:49:f5:92:a3:57:9b:ca:e3:a5:
                    ef:de:d1:3f:f5:2e:33:de:05:5d:c4:d7:de:55:01:76:
                    70:af:c8:57:4a:4d:f3:7f:2a:fe:36:cf:9d:65:e6:14:
                    3e:69:2e:f4:86:9a:88:39:c8:70:b0:e5:fa:dd:9c:aa:
                    53:0e:46:ec:08:66:d2:53:cc:b6:9b:2b:53:3c:45:c8:
                    54:6f:be:f3:67:72:57:20:2d:3b:8d:2b:cb:44:c2:ab:
                    de:0f:80:6d:ba:7d:17:4d:4c:c3:5b:1a:40:71:71:c1:
                    73:c1:55:7f:d0:f7:c3:7e:30:e0:af:3f:2f:27:a4:3e:
                    ea:4d:c7:65:e2:a3:c3:dd:be:6c:1f:5e:6e:16:6c:a7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:e8:bd:fc:38:2e:35:6c:0f:c3:22:ee:c0:10:32:a3:
        29:fa:f8:91:8f:4a:e2:ed:91:c3:63:ec:1a:42:9c:ab:
        91:6e:2b:20:ea:c4:09:28:08:23:a2:db:85:99:fa:9f:
        86:cf:18:09:6d:f6:87:a5:a0:74:f7:aa:64:a4:cf:ad:
        42:02:d4:0e:68:af:78:e9:ae:d3:5c:76:15:b0:c3:78:
        1a:26:b6:c4:4f:64:fc:03:a3:f4:b0:83:a4:5d:36:a2:
        01:03:ca:d8:00:5e:25:74:6f:dd:2a:3a:b9:7b:dd:03:
        98:02:65:d3:ec:71:dc:1b:bc:e9:cf:86:a0:24:d3:f0:
        96:b8:fc:6e:c7:4e:d4:80:99:ce:fc:3a:37:7f:1c:29:
        25:c8:c1:26:ef:4b:50:a0:ef:6a:e2:57:73:82:61:40:
        80:52:c5:33:e0:61:95:e9:d0:14:43:bf:81:b9:da:b3:
        a3:cd:c5:17:a2:e8:e1:06:8d:93:c2:17:c9:b7:ac:57:
        1e:a0:64:b9:30:23:3a:3c:4a:e6:4e:d7:8c:31:68:f7:
        58:b4:c1:8e:de:6e:86:d8:0c:f4:f2:2c:14:cb:de:99:
        42:1d:4e:c0:6b:a0:12:40:1c:bd:24:8a:54:b2:95:36:
        e2:81:8e:8e:e9:b7:27:d7:9e:55:f2:00:8e:fd:cb:f0
    Fingerprint (SHA-256):
        8F:CA:60:93:9E:30:22:B0:05:EB:9D:33:2A:4E:7F:EE:52:86:F3:B8:59:9B:90:76:D7:C3:43:33:C2:74:75:83
    Fingerprint (SHA1):
        1C:37:0E:D5:44:14:A1:06:A3:0B:F2:E0:3A:6D:44:27:EB:67:A7:D6
    Friendly Name: Alice
tools.sh: #9673: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9674: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #9675: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9676: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Importing CA cert & key created with NSS 3.21 --------------
pk12util -i TestOldCA.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9677: Importing CA cert & key created with NSS 3.21  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #9678: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 36%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 32%)
tree "../tools/html" signed successfully
tools.sh: #9679: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   signjs.html
        verified   sign.html
tools.sh: #9680: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #9681: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> signjs.html
--> sign.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 32%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 36%)
tree "../tools/html" signed successfully
tools.sh: #9682: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   signjs.html
        verified   sign.html
tools.sh: #9683: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #9684: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Sat Oct 21 16:36:10 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Sat Oct 21 16:36:10 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #9685: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #9686: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      4e51e9c6fcf645bb5ccd3faaa4706f9a676d9ddc   FIPS_PUB_140_Test_Certificate
fips.sh: #9687: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #9688: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #9689: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #9690: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #9691: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #9692: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #9693: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #9694: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #9695: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #9696: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #9697: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      4e51e9c6fcf645bb5ccd3faaa4706f9a676d9ddc   FIPS_PUB_140_Test_Certificate
fips.sh: #9698: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #9699: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #9700: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #9701: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #9702: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      4e51e9c6fcf645bb5ccd3faaa4706f9a676d9ddc   FIPS_PUB_140_Test_Certificate
fips.sh: #9703: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #9704: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #9705: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
mkdir: cannot create directory '/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle': File exists
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle/libsoftokn3.so -o -8 -b 5
Changing byte 0x00033998 (211352): from 21 (33) to 01 (1)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/fips/mangle dbtest -r -d ../fips
fips.sh: #9706: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Sat Oct 21 16:37:31 UTC 2017
Running tests for crmf
TIMESTAMP crmf BEGIN: Sat Oct 21 16:37:31 UTC 2017
crmf.sh: CRMF/CMMF Tests ===============================
crmf.sh: CRMF/CMMF Tests ------------------------------
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss crmf decode
crmftest v1.0
Generating CRMF request
Decoding CRMF request
crmftest: Processing cert request 0
crmftest: Processing cert request 1
Exiting successfully!!!
crmf.sh: #9707: CRMF test . - PASSED
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss cmmf
crmftest v1.0
Doing CMMF Stuff
Exiting successfully!!!
crmf.sh: #9708: CMMF test . - PASSED
TIMESTAMP crmf END: Sat Oct 21 16:37:33 UTC 2017
Running tests for smime
TIMESTAMP smime BEGIN: Sat Oct 21 16:37:33 UTC 2017
smime.sh: S/MIME Tests with ECC ===============================
smime.sh: Signing Detached Message {SHA1} ------------------
cmsutil -S -T -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA1
smime.sh: #9709: Create Detached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9710: Verifying Alice's Detached Signature (SHA1) . - PASSED
smime.sh: Signing Attached Message (SHA1) ------------------
cmsutil -S -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA1
smime.sh: #9711: Create Attached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.sig.SHA1 -d ../bobdir -o alice.data.SHA1
smime.sh: #9712: Decode Alice's Attached Signature (SHA1) . - PASSED
diff alice.txt alice.data.SHA1
smime.sh: #9713: Compare Attached Signed Data and Original (SHA1) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA1} ------------------
cmsutil -S -T -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA1
smime.sh: #9714: Create Detached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9715: Verifying Alice's Detached Signature (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA1) ------------------
cmsutil -S -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA1
smime.sh: #9716: Create Attached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.sig.SHA1 -d ../bobdir -o alice-ec.data.SHA1
smime.sh: #9717: Decode Alice's Attached Signature (ECDSA w/ SHA1) . - PASSED
diff alice.txt alice-ec.data.SHA1
smime.sh: #9718: Compare Attached Signed Data and Original (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Detached Message {SHA256} ------------------
cmsutil -S -T -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA256
smime.sh: #9719: Create Detached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9720: Verifying Alice's Detached Signature (SHA256) . - PASSED
smime.sh: Signing Attached Message (SHA256) ------------------
cmsutil -S -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA256
smime.sh: #9721: Create Attached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.sig.SHA256 -d ../bobdir -o alice.data.SHA256
smime.sh: #9722: Decode Alice's Attached Signature (SHA256) . - PASSED
diff alice.txt alice.data.SHA256
smime.sh: #9723: Compare Attached Signed Data and Original (SHA256) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA256} ------------------
cmsutil -S -T -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA256
smime.sh: #9724: Create Detached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9725: Verifying Alice's Detached Signature (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA256) ------------------
cmsutil -S -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA256
smime.sh: #9726: Create Attached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.sig.SHA256 -d ../bobdir -o alice-ec.data.SHA256
smime.sh: #9727: Decode Alice's Attached Signature (ECDSA w/ SHA256) . - PASSED
diff alice.txt alice-ec.data.SHA256
smime.sh: #9728: Compare Attached Signed Data and Original (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Detached Message {SHA384} ------------------
cmsutil -S -T -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA384
smime.sh: #9729: Create Detached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9730: Verifying Alice's Detached Signature (SHA384) . - PASSED
smime.sh: Signing Attached Message (SHA384) ------------------
cmsutil -S -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA384
smime.sh: #9731: Create Attached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.sig.SHA384 -d ../bobdir -o alice.data.SHA384
smime.sh: #9732: Decode Alice's Attached Signature (SHA384) . - PASSED
diff alice.txt alice.data.SHA384
smime.sh: #9733: Compare Attached Signed Data and Original (SHA384) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA384} ------------------
cmsutil -S -T -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA384
smime.sh: #9734: Create Detached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9735: Verifying Alice's Detached Signature (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA384) ------------------
cmsutil -S -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA384
smime.sh: #9736: Create Attached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.sig.SHA384 -d ../bobdir -o alice-ec.data.SHA384
smime.sh: #9737: Decode Alice's Attached Signature (ECDSA w/ SHA384) . - PASSED
diff alice.txt alice-ec.data.SHA384
smime.sh: #9738: Compare Attached Signed Data and Original (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Detached Message {SHA512} ------------------
cmsutil -S -T -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA512
smime.sh: #9739: Create Detached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9740: Verifying Alice's Detached Signature (SHA512) . - PASSED
smime.sh: Signing Attached Message (SHA512) ------------------
cmsutil -S -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA512
smime.sh: #9741: Create Attached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.sig.SHA512 -d ../bobdir -o alice.data.SHA512
smime.sh: #9742: Decode Alice's Attached Signature (SHA512) . - PASSED
diff alice.txt alice.data.SHA512
smime.sh: #9743: Compare Attached Signed Data and Original (SHA512) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA512} ------------------
cmsutil -S -T -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA512
smime.sh: #9744: Create Detached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9745: Verifying Alice's Detached Signature (ECDSA w/ SHA512) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA512) ------------------
cmsutil -S -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA512
smime.sh: #9746: Create Attached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.sig.SHA512 -d ../bobdir -o alice-ec.data.SHA512
smime.sh: #9747: Decode Alice's Attached Signature (ECDSA w/ SHA512) . - PASSED
diff alice.txt alice-ec.data.SHA512
smime.sh: #9748: Compare Attached Signed Data and Original (ECDSA w/ SHA512) . - PASSED
smime.sh: Enveloped Data Tests ------------------------------
cmsutil -E -r bob@bogus.com -i alice.txt -d ../alicedir -p nss \
        -o alice.env
smime.sh: #9749: Create Enveloped Data Alice . - PASSED
cmsutil -D -i alice.env -d ../bobdir -p nss -o alice.data1
smime.sh: #9750: Decode Enveloped Data Alice . - PASSED
diff alice.txt alice.data1
smime.sh: #9751: Compare Decoded Enveloped Data and Original . - PASSED
smime.sh: Testing multiple recipients ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o alicecc.env \
        -r bob@bogus.com,dave@bogus.com
smime.sh: #9752: Create Multiple Recipients Enveloped Data Alice . - PASSED
smime.sh: Testing multiple email addrs ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o aliceve.env \
        -r eve@bogus.net
smime.sh: #9753: Encrypt to a Multiple Email cert . - PASSED
cmsutil -D -i alicecc.env -d ../bobdir -p nss -o alice.data2
smime.sh: #9754: Decode Multiple Recipients Enveloped Data Alice by Bob . - PASSED
cmsutil -D -i alicecc.env -d ../dave -p nss -o alice.data3
smime.sh: #9755: Decode Multiple Recipients Enveloped Data Alice by Dave . - PASSED
cmsutil -D -i aliceve.env -d ../eve -p nss -o alice.data4
smime.sh: #9756: Decrypt with a Multiple Email cert . - PASSED
smime.sh: #9757: Compare Decoded Mult. Recipients Enveloped Data Alice/Bob . - PASSED
smime.sh: #9758: Compare Decoded Mult. Recipients Enveloped Data Alice/Dave . - PASSED
smime.sh: #9759: Compare Decoded with Multiple Email cert . - PASSED
smime.sh: Sending CERTS-ONLY Message ------------------------------
cmsutil -O -r "Alice,bob@bogus.com,dave@bogus.com" \
        -d ../alicedir > co.der
smime.sh: #9760: Create Certs-Only Alice . - PASSED
cmsutil -D -i co.der -d ../bobdir
smime.sh: #9761: Verify Certs-Only by CA . - PASSED
smime.sh: Encrypted-Data Message ---------------------------------
cmsutil -C -i alice.txt -e alicehello.env -d ../alicedir \
        -r "bob@bogus.com" > alice.enc
smime.sh: #9762: Create Encrypted-Data . - PASSED
cmsutil -D -i alice.enc -d ../bobdir -e alicehello.env -p nss \
        -o alice.data2
smime.sh: #9763: Decode Encrypted-Data . - PASSED
smime.sh: #9764: Compare Decoded and Original Data . - PASSED
smime.sh: p7 util Data Tests ------------------------------
p7env -d ../alicedir -r Alice -i alice.txt -o alice_p7.env
smime.sh: #9765: Creating envelope for user Alice . - PASSED
p7content -d ../alicedir -i alice.env -o alice_p7.data
smime.sh: #9766: Verifying file delivered to user Alice . - PASSED
diff alice.txt alice_p7.data.sed
smime.sh: #9767: Compare Decoded Enveloped Data and Original . - PASSED
p7sign -d ../alicedir -k Alice -i alice.txt -o alice.sig -p nss -e
smime.sh: #9768: Signing file for user Alice . - PASSED
p7verify -d ../alicedir -c alice.txt -s alice.sig
Signature is valid.
smime.sh: #9769: Verifying file delivered to user Alice . - PASSED
TIMESTAMP smime END: Sat Oct 21 16:38:11 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Sat Oct 21 16:38:11 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:38:12 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:38:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2095 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2095 found at Sat Oct 21 16:38:12 UTC 2017
selfserv_9183 with PID 2095 started at Sat Oct 21 16:38:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9770: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 2095 at Sat Oct 21 16:38:14 UTC 2017
kill -USR1 2095
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2095 killed at Sat Oct 21 16:38:15 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:38:15 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:38:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2151 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2151 found at Sat Oct 21 16:38:15 UTC 2017
selfserv_9183 with PID 2151 started at Sat Oct 21 16:38:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9771: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 2151 at Sat Oct 21 16:38:17 UTC 2017
kill -USR1 2151
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2151 killed at Sat Oct 21 16:38:18 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:38:18 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:38:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2207 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2207 found at Sat Oct 21 16:38:18 UTC 2017
selfserv_9183 with PID 2207 started at Sat Oct 21 16:38:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9772: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 2207 at Sat Oct 21 16:38:20 UTC 2017
kill -USR1 2207
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2207 killed at Sat Oct 21 16:38:20 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:38:21 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:38:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2276 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2276 found at Sat Oct 21 16:38:21 UTC 2017
selfserv_9183 with PID 2276 started at Sat Oct 21 16:38:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9773: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 2276 at Sat Oct 21 16:38:23 UTC 2017
kill -USR1 2276
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2276 killed at Sat Oct 21 16:38:24 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:38:24 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:38:24 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2332 found at Sat Oct 21 16:38:24 UTC 2017
selfserv_9183 with PID 2332 started at Sat Oct 21 16:38:24 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9774: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 2332 at Sat Oct 21 16:38:26 UTC 2017
kill -USR1 2332
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2332 killed at Sat Oct 21 16:38:27 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:38:27 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:38:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2390 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2390 found at Sat Oct 21 16:38:27 UTC 2017
selfserv_9183 with PID 2390 started at Sat Oct 21 16:38:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9775: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 2390 at Sat Oct 21 16:38:29 UTC 2017
kill -USR1 2390
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2390 killed at Sat Oct 21 16:38:29 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:38:30 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:38:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2461 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2461 found at Sat Oct 21 16:38:30 UTC 2017
selfserv_9183 with PID 2461 started at Sat Oct 21 16:38:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9776: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 2461 at Sat Oct 21 16:38:32 UTC 2017
kill -USR1 2461
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2461 killed at Sat Oct 21 16:38:33 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:38:33 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:38:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2517 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2517 found at Sat Oct 21 16:38:33 UTC 2017
selfserv_9183 with PID 2517 started at Sat Oct 21 16:38:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9777: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 2517 at Sat Oct 21 16:38:35 UTC 2017
kill -USR1 2517
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2517 killed at Sat Oct 21 16:38:36 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:38:36 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:38:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2574 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2574 found at Sat Oct 21 16:38:36 UTC 2017
selfserv_9183 with PID 2574 started at Sat Oct 21 16:38:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9778: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 2574 at Sat Oct 21 16:38:38 UTC 2017
kill -USR1 2574
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2574 killed at Sat Oct 21 16:38:39 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:38:39 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:38:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2642 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2642 found at Sat Oct 21 16:38:39 UTC 2017
selfserv_9183 with PID 2642 started at Sat Oct 21 16:38:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9779: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 2642 at Sat Oct 21 16:38:41 UTC 2017
kill -USR1 2642
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2642 killed at Sat Oct 21 16:38:42 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:38:42 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:38:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2699 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2699 found at Sat Oct 21 16:38:42 UTC 2017
selfserv_9183 with PID 2699 started at Sat Oct 21 16:38:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9780: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 2699 at Sat Oct 21 16:38:44 UTC 2017
kill -USR1 2699
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2699 killed at Sat Oct 21 16:38:44 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:38:44 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:38:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2755 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2755 found at Sat Oct 21 16:38:45 UTC 2017
selfserv_9183 with PID 2755 started at Sat Oct 21 16:38:45 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9781: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 2755 at Sat Oct 21 16:38:47 UTC 2017
kill -USR1 2755
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2755 killed at Sat Oct 21 16:38:47 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:38:47 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:38:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2823 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2823 found at Sat Oct 21 16:38:48 UTC 2017
selfserv_9183 with PID 2823 started at Sat Oct 21 16:38:48 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9782: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 2823 at Sat Oct 21 16:38:50 UTC 2017
kill -USR1 2823
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2823 killed at Sat Oct 21 16:38:50 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:38:50 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:38:50 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2879 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2879 found at Sat Oct 21 16:38:51 UTC 2017
selfserv_9183 with PID 2879 started at Sat Oct 21 16:38:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9783: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 2879 at Sat Oct 21 16:38:52 UTC 2017
kill -USR1 2879
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2879 killed at Sat Oct 21 16:38:53 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:38:53 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:38:53 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2935 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2935 found at Sat Oct 21 16:38:53 UTC 2017
selfserv_9183 with PID 2935 started at Sat Oct 21 16:38:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9784: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 2935 at Sat Oct 21 16:38:55 UTC 2017
kill -USR1 2935
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2935 killed at Sat Oct 21 16:38:56 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:38:56 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:38:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3003 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3003 found at Sat Oct 21 16:38:56 UTC 2017
selfserv_9183 with PID 3003 started at Sat Oct 21 16:38:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9785: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 3003 at Sat Oct 21 16:38:58 UTC 2017
kill -USR1 3003
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3003 killed at Sat Oct 21 16:38:59 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:38:59 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:38:59 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3059 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3059 found at Sat Oct 21 16:38:59 UTC 2017
selfserv_9183 with PID 3059 started at Sat Oct 21 16:38:59 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9786: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 3059 at Sat Oct 21 16:39:02 UTC 2017
kill -USR1 3059
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3059 killed at Sat Oct 21 16:39:02 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:39:02 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:39:02 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3129 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3129 found at Sat Oct 21 16:39:03 UTC 2017
selfserv_9183 with PID 3129 started at Sat Oct 21 16:39:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9787: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 3129 at Sat Oct 21 16:39:05 UTC 2017
kill -USR1 3129
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3129 killed at Sat Oct 21 16:39:05 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:39:05 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:39:05 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3200 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3200 found at Sat Oct 21 16:39:06 UTC 2017
selfserv_9183 with PID 3200 started at Sat Oct 21 16:39:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9788: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 3200 at Sat Oct 21 16:39:07 UTC 2017
kill -USR1 3200
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3200 killed at Sat Oct 21 16:39:08 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:39:08 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:39:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3256 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3256 found at Sat Oct 21 16:39:08 UTC 2017
selfserv_9183 with PID 3256 started at Sat Oct 21 16:39:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9789: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 3256 at Sat Oct 21 16:39:10 UTC 2017
kill -USR1 3256
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3256 killed at Sat Oct 21 16:39:10 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:39:11 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:39:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3314 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3314 found at Sat Oct 21 16:39:11 UTC 2017
selfserv_9183 with PID 3314 started at Sat Oct 21 16:39:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9790: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 3314 at Sat Oct 21 16:39:13 UTC 2017
kill -USR1 3314
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3314 killed at Sat Oct 21 16:39:13 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:39:13 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:39:13 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3400 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3400 found at Sat Oct 21 16:39:14 UTC 2017
selfserv_9183 with PID 3400 started at Sat Oct 21 16:39:14 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9791: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 3400 at Sat Oct 21 16:39:16 UTC 2017
kill -USR1 3400
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3400 killed at Sat Oct 21 16:39:16 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:39:16 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:39:16 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3467 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3467 found at Sat Oct 21 16:39:17 UTC 2017
selfserv_9183 with PID 3467 started at Sat Oct 21 16:39:17 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9792: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 3467 at Sat Oct 21 16:39:18 UTC 2017
kill -USR1 3467
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3467 killed at Sat Oct 21 16:39:19 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:39:19 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:39:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3526 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3526 found at Sat Oct 21 16:39:19 UTC 2017
selfserv_9183 with PID 3526 started at Sat Oct 21 16:39:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9793: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 3526 at Sat Oct 21 16:39:21 UTC 2017
kill -USR1 3526
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3526 killed at Sat Oct 21 16:39:21 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:39:22 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:39:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3608 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3608 found at Sat Oct 21 16:39:22 UTC 2017
selfserv_9183 with PID 3608 started at Sat Oct 21 16:39:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9794: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 3608 at Sat Oct 21 16:39:24 UTC 2017
kill -USR1 3608
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3608 killed at Sat Oct 21 16:39:24 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:39:24 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:39:24 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3668 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3668 found at Sat Oct 21 16:39:25 UTC 2017
selfserv_9183 with PID 3668 started at Sat Oct 21 16:39:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9795: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 3668 at Sat Oct 21 16:39:27 UTC 2017
kill -USR1 3668
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3668 killed at Sat Oct 21 16:39:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:39:27 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:39:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3724 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3724 found at Sat Oct 21 16:39:28 UTC 2017
selfserv_9183 with PID 3724 started at Sat Oct 21 16:39:28 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9796: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 3724 at Sat Oct 21 16:39:30 UTC 2017
kill -USR1 3724
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3724 killed at Sat Oct 21 16:39:30 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:39:30 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:39:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3792 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3792 found at Sat Oct 21 16:39:31 UTC 2017
selfserv_9183 with PID 3792 started at Sat Oct 21 16:39:31 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9797: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 3792 at Sat Oct 21 16:39:32 UTC 2017
kill -USR1 3792
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3792 killed at Sat Oct 21 16:39:33 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:39:33 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:39:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3849 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3849 found at Sat Oct 21 16:39:33 UTC 2017
selfserv_9183 with PID 3849 started at Sat Oct 21 16:39:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9798: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 3849 at Sat Oct 21 16:39:35 UTC 2017
kill -USR1 3849
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3849 killed at Sat Oct 21 16:39:35 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:39:36 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:39:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3906 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3906 found at Sat Oct 21 16:39:36 UTC 2017
selfserv_9183 with PID 3906 started at Sat Oct 21 16:39:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9799: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 3906 at Sat Oct 21 16:39:38 UTC 2017
kill -USR1 3906
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3906 killed at Sat Oct 21 16:39:38 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:39:38 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:39:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3974 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3974 found at Sat Oct 21 16:39:39 UTC 2017
selfserv_9183 with PID 3974 started at Sat Oct 21 16:39:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9800: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 3974 at Sat Oct 21 16:39:40 UTC 2017
kill -USR1 3974
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3974 killed at Sat Oct 21 16:39:41 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:39:41 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:39:41 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4032 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4032 found at Sat Oct 21 16:39:41 UTC 2017
selfserv_9183 with PID 4032 started at Sat Oct 21 16:39:41 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9801: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 4032 at Sat Oct 21 16:39:43 UTC 2017
kill -USR1 4032
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4032 killed at Sat Oct 21 16:39:44 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:39:44 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:39:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4089 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4089 found at Sat Oct 21 16:39:44 UTC 2017
selfserv_9183 with PID 4089 started at Sat Oct 21 16:39:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9802: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 4089 at Sat Oct 21 16:39:46 UTC 2017
kill -USR1 4089
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4089 killed at Sat Oct 21 16:39:46 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:39:46 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:39:46 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4158 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4158 found at Sat Oct 21 16:39:47 UTC 2017
selfserv_9183 with PID 4158 started at Sat Oct 21 16:39:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9803: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 4158 at Sat Oct 21 16:39:49 UTC 2017
kill -USR1 4158
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4158 killed at Sat Oct 21 16:39:49 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:39:49 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:39:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4214 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4214 found at Sat Oct 21 16:39:50 UTC 2017
selfserv_9183 with PID 4214 started at Sat Oct 21 16:39:50 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9804: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 4214 at Sat Oct 21 16:39:51 UTC 2017
kill -USR1 4214
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4214 killed at Sat Oct 21 16:39:52 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:39:52 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:39:52 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4270 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4270 found at Sat Oct 21 16:39:53 UTC 2017
selfserv_9183 with PID 4270 started at Sat Oct 21 16:39:53 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9805: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 4270 at Sat Oct 21 16:39:54 UTC 2017
kill -USR1 4270
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4270 killed at Sat Oct 21 16:39:55 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:39:55 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:39:55 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4338 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4338 found at Sat Oct 21 16:39:55 UTC 2017
selfserv_9183 with PID 4338 started at Sat Oct 21 16:39:55 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9806: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 4338 at Sat Oct 21 16:39:58 UTC 2017
kill -USR1 4338
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4338 killed at Sat Oct 21 16:39:58 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:39:58 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:39:58 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4394 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4394 found at Sat Oct 21 16:39:59 UTC 2017
selfserv_9183 with PID 4394 started at Sat Oct 21 16:39:59 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9807: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 4394 at Sat Oct 21 16:40:01 UTC 2017
kill -USR1 4394
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4394 killed at Sat Oct 21 16:40:01 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:40:01 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:40:01 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4454 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4454 found at Sat Oct 21 16:40:02 UTC 2017
selfserv_9183 with PID 4454 started at Sat Oct 21 16:40:02 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9808: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 4454 at Sat Oct 21 16:40:04 UTC 2017
kill -USR1 4454
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4454 killed at Sat Oct 21 16:40:05 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:40:05 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:40:05 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4541 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4541 found at Sat Oct 21 16:40:05 UTC 2017
selfserv_9183 with PID 4541 started at Sat Oct 21 16:40:05 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9809: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 4541 at Sat Oct 21 16:40:08 UTC 2017
kill -USR1 4541
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4541 killed at Sat Oct 21 16:40:08 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:40:08 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:40:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4597 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4597 found at Sat Oct 21 16:40:09 UTC 2017
selfserv_9183 with PID 4597 started at Sat Oct 21 16:40:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9810: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 4597 at Sat Oct 21 16:40:11 UTC 2017
kill -USR1 4597
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4597 killed at Sat Oct 21 16:40:11 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:40:11 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:40:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4653 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4653 found at Sat Oct 21 16:40:12 UTC 2017
selfserv_9183 with PID 4653 started at Sat Oct 21 16:40:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9811: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 4653 at Sat Oct 21 16:40:14 UTC 2017
kill -USR1 4653
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4653 killed at Sat Oct 21 16:40:14 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:40:15 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:40:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4721 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4721 found at Sat Oct 21 16:40:15 UTC 2017
selfserv_9183 with PID 4721 started at Sat Oct 21 16:40:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9812: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 4721 at Sat Oct 21 16:40:17 UTC 2017
kill -USR1 4721
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4721 killed at Sat Oct 21 16:40:18 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:40:18 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:40:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4777 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4777 found at Sat Oct 21 16:40:19 UTC 2017
selfserv_9183 with PID 4777 started at Sat Oct 21 16:40:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9813: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 4777 at Sat Oct 21 16:40:21 UTC 2017
kill -USR1 4777
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4777 killed at Sat Oct 21 16:40:21 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:40:21 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:40:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4833 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4833 found at Sat Oct 21 16:40:22 UTC 2017
selfserv_9183 with PID 4833 started at Sat Oct 21 16:40:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9814: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 4833 at Sat Oct 21 16:40:24 UTC 2017
kill -USR1 4833
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4833 killed at Sat Oct 21 16:40:25 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:40:25 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:40:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4902 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4902 found at Sat Oct 21 16:40:25 UTC 2017
selfserv_9183 with PID 4902 started at Sat Oct 21 16:40:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9815: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 4902 at Sat Oct 21 16:40:27 UTC 2017
kill -USR1 4902
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4902 killed at Sat Oct 21 16:40:28 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:40:28 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:40:28 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 4958 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 4958 found at Sat Oct 21 16:40:28 UTC 2017
selfserv_9183 with PID 4958 started at Sat Oct 21 16:40:29 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9816: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 4958 at Sat Oct 21 16:40:31 UTC 2017
kill -USR1 4958
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 4958 killed at Sat Oct 21 16:40:31 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:40:31 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:40:31 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5014 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5014 found at Sat Oct 21 16:40:32 UTC 2017
selfserv_9183 with PID 5014 started at Sat Oct 21 16:40:32 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9817: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 5014 at Sat Oct 21 16:40:34 UTC 2017
kill -USR1 5014
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5014 killed at Sat Oct 21 16:40:34 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:40:34 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:40:34 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5082 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5082 found at Sat Oct 21 16:40:35 UTC 2017
selfserv_9183 with PID 5082 started at Sat Oct 21 16:40:35 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9818: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 5082 at Sat Oct 21 16:40:37 UTC 2017
kill -USR1 5082
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5082 killed at Sat Oct 21 16:40:37 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:40:38 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:40:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5138 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5138 found at Sat Oct 21 16:40:38 UTC 2017
selfserv_9183 with PID 5138 started at Sat Oct 21 16:40:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9819: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 5138 at Sat Oct 21 16:40:40 UTC 2017
kill -USR1 5138
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5138 killed at Sat Oct 21 16:40:41 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:40:41 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:40:41 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5194 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5194 found at Sat Oct 21 16:40:41 UTC 2017
selfserv_9183 with PID 5194 started at Sat Oct 21 16:40:41 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9820: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 5194 at Sat Oct 21 16:40:43 UTC 2017
kill -USR1 5194
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5194 killed at Sat Oct 21 16:40:44 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:40:44 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:40:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5262 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5262 found at Sat Oct 21 16:40:45 UTC 2017
selfserv_9183 with PID 5262 started at Sat Oct 21 16:40:45 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9821: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 5262 at Sat Oct 21 16:40:47 UTC 2017
kill -USR1 5262
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5262 killed at Sat Oct 21 16:40:47 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:40:47 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:40:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5319 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5319 found at Sat Oct 21 16:40:48 UTC 2017
selfserv_9183 with PID 5319 started at Sat Oct 21 16:40:48 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9822: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 5319 at Sat Oct 21 16:40:50 UTC 2017
kill -USR1 5319
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5319 killed at Sat Oct 21 16:40:51 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:40:51 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:40:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5375 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5375 found at Sat Oct 21 16:40:51 UTC 2017
selfserv_9183 with PID 5375 started at Sat Oct 21 16:40:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9823: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 5375 at Sat Oct 21 16:40:54 UTC 2017
kill -USR1 5375
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5375 killed at Sat Oct 21 16:40:54 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:40:54 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:40:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5443 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5443 found at Sat Oct 21 16:40:55 UTC 2017
selfserv_9183 with PID 5443 started at Sat Oct 21 16:40:55 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9824: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 5443 at Sat Oct 21 16:40:57 UTC 2017
kill -USR1 5443
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5443 killed at Sat Oct 21 16:40:57 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:40:57 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:40:57 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5499 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5499 found at Sat Oct 21 16:40:58 UTC 2017
selfserv_9183 with PID 5499 started at Sat Oct 21 16:40:58 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9825: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 5499 at Sat Oct 21 16:41:00 UTC 2017
kill -USR1 5499
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5499 killed at Sat Oct 21 16:41:01 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:41:01 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:41:01 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5555 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5555 found at Sat Oct 21 16:41:01 UTC 2017
selfserv_9183 with PID 5555 started at Sat Oct 21 16:41:01 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9826: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 5555 at Sat Oct 21 16:41:03 UTC 2017
kill -USR1 5555
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5555 killed at Sat Oct 21 16:41:04 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:41:04 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:41:04 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5638 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5638 found at Sat Oct 21 16:41:05 UTC 2017
selfserv_9183 with PID 5638 started at Sat Oct 21 16:41:05 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9827: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 5638 at Sat Oct 21 16:41:07 UTC 2017
kill -USR1 5638
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5638 killed at Sat Oct 21 16:41:07 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:41:07 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:41:07 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5695 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5695 found at Sat Oct 21 16:41:08 UTC 2017
selfserv_9183 with PID 5695 started at Sat Oct 21 16:41:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9828: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 5695 at Sat Oct 21 16:41:10 UTC 2017
kill -USR1 5695
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5695 killed at Sat Oct 21 16:41:10 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:41:11 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:41:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5751 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5751 found at Sat Oct 21 16:41:11 UTC 2017
selfserv_9183 with PID 5751 started at Sat Oct 21 16:41:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9829: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 5751 at Sat Oct 21 16:41:13 UTC 2017
kill -USR1 5751
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5751 killed at Sat Oct 21 16:41:14 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:41:14 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:41:14 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5819 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5819 found at Sat Oct 21 16:41:14 UTC 2017
selfserv_9183 with PID 5819 started at Sat Oct 21 16:41:14 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9830: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 5819 at Sat Oct 21 16:41:17 UTC 2017
kill -USR1 5819
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5819 killed at Sat Oct 21 16:41:17 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:41:17 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:41:17 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5875 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5875 found at Sat Oct 21 16:41:18 UTC 2017
selfserv_9183 with PID 5875 started at Sat Oct 21 16:41:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9831: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 5875 at Sat Oct 21 16:41:20 UTC 2017
kill -USR1 5875
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5875 killed at Sat Oct 21 16:41:21 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:41:21 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:41:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5931 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5931 found at Sat Oct 21 16:41:21 UTC 2017
selfserv_9183 with PID 5931 started at Sat Oct 21 16:41:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9832: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 5931 at Sat Oct 21 16:41:23 UTC 2017
kill -USR1 5931
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5931 killed at Sat Oct 21 16:41:24 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:41:24 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:41:24 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5999 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5999 found at Sat Oct 21 16:41:25 UTC 2017
selfserv_9183 with PID 5999 started at Sat Oct 21 16:41:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9833: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 5999 at Sat Oct 21 16:41:27 UTC 2017
kill -USR1 5999
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5999 killed at Sat Oct 21 16:41:27 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:41:27 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:41:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6055 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6055 found at Sat Oct 21 16:41:28 UTC 2017
selfserv_9183 with PID 6055 started at Sat Oct 21 16:41:28 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9834: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 6055 at Sat Oct 21 16:41:30 UTC 2017
kill -USR1 6055
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 6055 killed at Sat Oct 21 16:41:30 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:41:30 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:41:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6112 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6112 found at Sat Oct 21 16:41:31 UTC 2017
selfserv_9183 with PID 6112 started at Sat Oct 21 16:41:31 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9835: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 6112 at Sat Oct 21 16:41:33 UTC 2017
kill -USR1 6112
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 6112 killed at Sat Oct 21 16:41:33 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:41:34 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:41:34 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6180 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6180 found at Sat Oct 21 16:41:34 UTC 2017
selfserv_9183 with PID 6180 started at Sat Oct 21 16:41:34 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9836: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 6180 at Sat Oct 21 16:41:36 UTC 2017
kill -USR1 6180
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 6180 killed at Sat Oct 21 16:41:37 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:41:37 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:41:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6236 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6236 found at Sat Oct 21 16:41:37 UTC 2017
selfserv_9183 with PID 6236 started at Sat Oct 21 16:41:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9837: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 6236 at Sat Oct 21 16:41:39 UTC 2017
kill -USR1 6236
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 6236 killed at Sat Oct 21 16:41:40 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:41:40 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:41:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6292 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6292 found at Sat Oct 21 16:41:41 UTC 2017
selfserv_9183 with PID 6292 started at Sat Oct 21 16:41:41 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9838: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 6292 at Sat Oct 21 16:41:43 UTC 2017
kill -USR1 6292
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 6292 killed at Sat Oct 21 16:41:43 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:41:43 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:41:43 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6360 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6360 found at Sat Oct 21 16:41:44 UTC 2017
selfserv_9183 with PID 6360 started at Sat Oct 21 16:41:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9839: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 6360 at Sat Oct 21 16:41:46 UTC 2017
kill -USR1 6360
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 6360 killed at Sat Oct 21 16:41:47 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:41:47 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:41:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6416 found at Sat Oct 21 16:41:47 UTC 2017
selfserv_9183 with PID 6416 started at Sat Oct 21 16:41:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9840: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 6416 at Sat Oct 21 16:41:50 UTC 2017
kill -USR1 6416
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 6416 killed at Sat Oct 21 16:41:50 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:41:50 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:41:50 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6473 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6473 found at Sat Oct 21 16:41:51 UTC 2017
selfserv_9183 with PID 6473 started at Sat Oct 21 16:41:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9841: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 6473 at Sat Oct 21 16:41:53 UTC 2017
kill -USR1 6473
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 6473 killed at Sat Oct 21 16:41:53 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:41:54 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:41:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6541 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6541 found at Sat Oct 21 16:41:54 UTC 2017
selfserv_9183 with PID 6541 started at Sat Oct 21 16:41:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9842: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 6541 at Sat Oct 21 16:41:56 UTC 2017
kill -USR1 6541
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 6541 killed at Sat Oct 21 16:41:56 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:41:56 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:41:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6597 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6597 found at Sat Oct 21 16:41:57 UTC 2017
selfserv_9183 with PID 6597 started at Sat Oct 21 16:41:57 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9843: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 6597 at Sat Oct 21 16:41:59 UTC 2017
kill -USR1 6597
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 6597 killed at Sat Oct 21 16:41:59 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:41:59 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:41:59 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6653 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6653 found at Sat Oct 21 16:42:00 UTC 2017
selfserv_9183 with PID 6653 started at Sat Oct 21 16:42:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9844: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 6653 at Sat Oct 21 16:42:02 UTC 2017
kill -USR1 6653
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 6653 killed at Sat Oct 21 16:42:02 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:42:02 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:42:02 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6733 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6733 found at Sat Oct 21 16:42:03 UTC 2017
selfserv_9183 with PID 6733 started at Sat Oct 21 16:42:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9845: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 6733 at Sat Oct 21 16:42:05 UTC 2017
kill -USR1 6733
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 6733 killed at Sat Oct 21 16:42:05 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:42:05 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:42:05 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6792 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6792 found at Sat Oct 21 16:42:06 UTC 2017
selfserv_9183 with PID 6792 started at Sat Oct 21 16:42:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9846: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 6792 at Sat Oct 21 16:42:08 UTC 2017
kill -USR1 6792
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 6792 killed at Sat Oct 21 16:42:08 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:42:08 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:42:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6848 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6848 found at Sat Oct 21 16:42:09 UTC 2017
selfserv_9183 with PID 6848 started at Sat Oct 21 16:42:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9847: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 6848 at Sat Oct 21 16:42:11 UTC 2017
kill -USR1 6848
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 6848 killed at Sat Oct 21 16:42:11 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:42:11 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:42:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6917 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6917 found at Sat Oct 21 16:42:12 UTC 2017
selfserv_9183 with PID 6917 started at Sat Oct 21 16:42:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9848: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 6917 at Sat Oct 21 16:42:14 UTC 2017
kill -USR1 6917
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 6917 killed at Sat Oct 21 16:42:14 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:42:14 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:42:14 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6973 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6973 found at Sat Oct 21 16:42:15 UTC 2017
selfserv_9183 with PID 6973 started at Sat Oct 21 16:42:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9849: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 6973 at Sat Oct 21 16:42:17 UTC 2017
kill -USR1 6973
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 6973 killed at Sat Oct 21 16:42:17 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:42:17 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:42:17 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7029 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7029 found at Sat Oct 21 16:42:18 UTC 2017
selfserv_9183 with PID 7029 started at Sat Oct 21 16:42:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9850: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 7029 at Sat Oct 21 16:42:20 UTC 2017
kill -USR1 7029
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 7029 killed at Sat Oct 21 16:42:20 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:42:21 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:42:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7097 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7097 found at Sat Oct 21 16:42:21 UTC 2017
selfserv_9183 with PID 7097 started at Sat Oct 21 16:42:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9851: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 7097 at Sat Oct 21 16:42:23 UTC 2017
kill -USR1 7097
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 7097 killed at Sat Oct 21 16:42:23 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:42:23 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:42:23 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7153 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7153 found at Sat Oct 21 16:42:24 UTC 2017
selfserv_9183 with PID 7153 started at Sat Oct 21 16:42:24 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9852: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 7153 at Sat Oct 21 16:42:26 UTC 2017
kill -USR1 7153
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 7153 killed at Sat Oct 21 16:42:26 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 16:42:26 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:42:26 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7209 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7209 found at Sat Oct 21 16:42:27 UTC 2017
selfserv_9183 with PID 7209 started at Sat Oct 21 16:42:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9853: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 7209 at Sat Oct 21 16:42:29 UTC 2017
kill -USR1 7209
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 7209 killed at Sat Oct 21 16:42:29 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:42:29 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:42:29 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7277 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7277 found at Sat Oct 21 16:42:30 UTC 2017
selfserv_9183 with PID 7277 started at Sat Oct 21 16:42:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9854: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 7277 at Sat Oct 21 16:42:32 UTC 2017
kill -USR1 7277
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 7277 killed at Sat Oct 21 16:42:32 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:42:32 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:42:32 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7334 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7334 found at Sat Oct 21 16:42:33 UTC 2017
selfserv_9183 with PID 7334 started at Sat Oct 21 16:42:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9855: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 7334 at Sat Oct 21 16:42:35 UTC 2017
kill -USR1 7334
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 7334 killed at Sat Oct 21 16:42:35 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:42:35 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:42:35 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7390 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7390 found at Sat Oct 21 16:42:36 UTC 2017
selfserv_9183 with PID 7390 started at Sat Oct 21 16:42:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9856: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 7390 at Sat Oct 21 16:42:37 UTC 2017
kill -USR1 7390
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 7390 killed at Sat Oct 21 16:42:38 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:42:38 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:42:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7458 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7458 found at Sat Oct 21 16:42:39 UTC 2017
selfserv_9183 with PID 7458 started at Sat Oct 21 16:42:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9857: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 7458 at Sat Oct 21 16:42:41 UTC 2017
kill -USR1 7458
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 7458 killed at Sat Oct 21 16:42:41 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:42:41 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:42:41 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7514 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7514 found at Sat Oct 21 16:42:42 UTC 2017
selfserv_9183 with PID 7514 started at Sat Oct 21 16:42:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9858: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 7514 at Sat Oct 21 16:42:44 UTC 2017
kill -USR1 7514
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 7514 killed at Sat Oct 21 16:42:44 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:42:44 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:42:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7570 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7570 found at Sat Oct 21 16:42:45 UTC 2017
selfserv_9183 with PID 7570 started at Sat Oct 21 16:42:45 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9859: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 7570 at Sat Oct 21 16:42:47 UTC 2017
kill -USR1 7570
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 7570 killed at Sat Oct 21 16:42:47 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:42:47 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:42:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7647 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7647 found at Sat Oct 21 16:42:48 UTC 2017
selfserv_9183 with PID 7647 started at Sat Oct 21 16:42:48 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9860: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 7647 at Sat Oct 21 16:42:50 UTC 2017
kill -USR1 7647
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 7647 killed at Sat Oct 21 16:42:50 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:42:50 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:42:50 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7703 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7703 found at Sat Oct 21 16:42:51 UTC 2017
selfserv_9183 with PID 7703 started at Sat Oct 21 16:42:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9861: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 7703 at Sat Oct 21 16:42:53 UTC 2017
kill -USR1 7703
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 7703 killed at Sat Oct 21 16:42:53 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:42:53 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:42:53 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7760 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7760 found at Sat Oct 21 16:42:54 UTC 2017
selfserv_9183 with PID 7760 started at Sat Oct 21 16:42:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9862: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 7760 at Sat Oct 21 16:42:56 UTC 2017
kill -USR1 7760
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 7760 killed at Sat Oct 21 16:42:56 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:42:56 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:42:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7828 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7828 found at Sat Oct 21 16:42:57 UTC 2017
selfserv_9183 with PID 7828 started at Sat Oct 21 16:42:57 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9863: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 7828 at Sat Oct 21 16:42:59 UTC 2017
kill -USR1 7828
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 7828 killed at Sat Oct 21 16:42:59 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:43:00 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:43:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7884 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7884 found at Sat Oct 21 16:43:00 UTC 2017
selfserv_9183 with PID 7884 started at Sat Oct 21 16:43:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9864: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 7884 at Sat Oct 21 16:43:02 UTC 2017
kill -USR1 7884
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 7884 killed at Sat Oct 21 16:43:03 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:43:03 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:43:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7957 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7957 found at Sat Oct 21 16:43:03 UTC 2017
selfserv_9183 with PID 7957 started at Sat Oct 21 16:43:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9865: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 7957 at Sat Oct 21 16:43:05 UTC 2017
kill -USR1 7957
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 7957 killed at Sat Oct 21 16:43:06 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:43:06 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:43:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8025 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8025 found at Sat Oct 21 16:43:07 UTC 2017
selfserv_9183 with PID 8025 started at Sat Oct 21 16:43:07 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9866: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 8025 at Sat Oct 21 16:43:08 UTC 2017
kill -USR1 8025
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 8025 killed at Sat Oct 21 16:43:09 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:43:09 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:43:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8081 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8081 found at Sat Oct 21 16:43:09 UTC 2017
selfserv_9183 with PID 8081 started at Sat Oct 21 16:43:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9867: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 8081 at Sat Oct 21 16:43:11 UTC 2017
kill -USR1 8081
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 8081 killed at Sat Oct 21 16:43:12 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:43:12 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:43:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8137 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8137 found at Sat Oct 21 16:43:12 UTC 2017
selfserv_9183 with PID 8137 started at Sat Oct 21 16:43:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9868: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 8137 at Sat Oct 21 16:43:14 UTC 2017
kill -USR1 8137
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 8137 killed at Sat Oct 21 16:43:15 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:43:15 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:43:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8206 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8206 found at Sat Oct 21 16:43:15 UTC 2017
selfserv_9183 with PID 8206 started at Sat Oct 21 16:43:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9869: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 8206 at Sat Oct 21 16:43:17 UTC 2017
kill -USR1 8206
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 8206 killed at Sat Oct 21 16:43:18 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:43:18 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:43:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8262 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8262 found at Sat Oct 21 16:43:18 UTC 2017
selfserv_9183 with PID 8262 started at Sat Oct 21 16:43:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9870: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 8262 at Sat Oct 21 16:43:21 UTC 2017
kill -USR1 8262
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 8262 killed at Sat Oct 21 16:43:21 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:43:21 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:43:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8318 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8318 found at Sat Oct 21 16:43:22 UTC 2017
selfserv_9183 with PID 8318 started at Sat Oct 21 16:43:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9871: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 8318 at Sat Oct 21 16:43:24 UTC 2017
kill -USR1 8318
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 8318 killed at Sat Oct 21 16:43:24 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:43:24 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:43:24 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8386 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8386 found at Sat Oct 21 16:43:25 UTC 2017
selfserv_9183 with PID 8386 started at Sat Oct 21 16:43:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9872: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 8386 at Sat Oct 21 16:43:26 UTC 2017
kill -USR1 8386
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 8386 killed at Sat Oct 21 16:43:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:43:27 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:43:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8442 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8442 found at Sat Oct 21 16:43:28 UTC 2017
selfserv_9183 with PID 8442 started at Sat Oct 21 16:43:28 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9873: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 8442 at Sat Oct 21 16:43:29 UTC 2017
kill -USR1 8442
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 8442 killed at Sat Oct 21 16:43:30 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:43:30 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:43:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8498 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8498 found at Sat Oct 21 16:43:30 UTC 2017
selfserv_9183 with PID 8498 started at Sat Oct 21 16:43:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9874: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 8498 at Sat Oct 21 16:43:32 UTC 2017
kill -USR1 8498
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 8498 killed at Sat Oct 21 16:43:32 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:43:33 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:43:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8566 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8566 found at Sat Oct 21 16:43:33 UTC 2017
selfserv_9183 with PID 8566 started at Sat Oct 21 16:43:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9875: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 8566 at Sat Oct 21 16:43:35 UTC 2017
kill -USR1 8566
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 8566 killed at Sat Oct 21 16:43:35 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:43:36 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:43:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8623 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8623 found at Sat Oct 21 16:43:36 UTC 2017
selfserv_9183 with PID 8623 started at Sat Oct 21 16:43:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9876: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 8623 at Sat Oct 21 16:43:38 UTC 2017
kill -USR1 8623
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 8623 killed at Sat Oct 21 16:43:38 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:43:39 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:43:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8679 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8679 found at Sat Oct 21 16:43:39 UTC 2017
selfserv_9183 with PID 8679 started at Sat Oct 21 16:43:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9877: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 8679 at Sat Oct 21 16:43:41 UTC 2017
kill -USR1 8679
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 8679 killed at Sat Oct 21 16:43:41 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:43:42 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:43:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8747 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8747 found at Sat Oct 21 16:43:42 UTC 2017
selfserv_9183 with PID 8747 started at Sat Oct 21 16:43:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9878: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 8747 at Sat Oct 21 16:43:44 UTC 2017
kill -USR1 8747
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 8747 killed at Sat Oct 21 16:43:44 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:43:44 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:43:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8803 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8803 found at Sat Oct 21 16:43:45 UTC 2017
selfserv_9183 with PID 8803 started at Sat Oct 21 16:43:45 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9879: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 8803 at Sat Oct 21 16:43:46 UTC 2017
kill -USR1 8803
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 8803 killed at Sat Oct 21 16:43:47 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:43:47 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:43:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8859 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8859 found at Sat Oct 21 16:43:48 UTC 2017
selfserv_9183 with PID 8859 started at Sat Oct 21 16:43:48 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9880: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 8859 at Sat Oct 21 16:43:49 UTC 2017
kill -USR1 8859
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 8859 killed at Sat Oct 21 16:43:50 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:43:50 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:43:50 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8927 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8927 found at Sat Oct 21 16:43:50 UTC 2017
selfserv_9183 with PID 8927 started at Sat Oct 21 16:43:50 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9881: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 8927 at Sat Oct 21 16:43:52 UTC 2017
kill -USR1 8927
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 8927 killed at Sat Oct 21 16:43:53 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:43:53 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:43:53 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 8983 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 8983 found at Sat Oct 21 16:43:53 UTC 2017
selfserv_9183 with PID 8983 started at Sat Oct 21 16:43:53 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9882: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 8983 at Sat Oct 21 16:43:55 UTC 2017
kill -USR1 8983
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 8983 killed at Sat Oct 21 16:43:56 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:43:56 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:43:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9041 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9041 found at Sat Oct 21 16:43:56 UTC 2017
selfserv_9183 with PID 9041 started at Sat Oct 21 16:43:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9883: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 9041 at Sat Oct 21 16:43:58 UTC 2017
kill -USR1 9041
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9041 killed at Sat Oct 21 16:43:59 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:43:59 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:43:59 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9109 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9109 found at Sat Oct 21 16:43:59 UTC 2017
selfserv_9183 with PID 9109 started at Sat Oct 21 16:43:59 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9884: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 9109 at Sat Oct 21 16:44:02 UTC 2017
kill -USR1 9109
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9109 killed at Sat Oct 21 16:44:02 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:44:02 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:44:02 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9177 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9177 found at Sat Oct 21 16:44:03 UTC 2017
selfserv_9183 with PID 9177 started at Sat Oct 21 16:44:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9885: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 9177 at Sat Oct 21 16:44:05 UTC 2017
kill -USR1 9177
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9177 killed at Sat Oct 21 16:44:05 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:44:05 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:44:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9236 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9236 found at Sat Oct 21 16:44:06 UTC 2017
selfserv_9183 with PID 9236 started at Sat Oct 21 16:44:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9886: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 9236 at Sat Oct 21 16:44:08 UTC 2017
kill -USR1 9236
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9236 killed at Sat Oct 21 16:44:09 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:44:09 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:44:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9304 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9304 found at Sat Oct 21 16:44:09 UTC 2017
selfserv_9183 with PID 9304 started at Sat Oct 21 16:44:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9887: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 9304 at Sat Oct 21 16:44:12 UTC 2017
kill -USR1 9304
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9304 killed at Sat Oct 21 16:44:12 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:44:12 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:44:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9360 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9360 found at Sat Oct 21 16:44:13 UTC 2017
selfserv_9183 with PID 9360 started at Sat Oct 21 16:44:13 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9888: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 9360 at Sat Oct 21 16:44:15 UTC 2017
kill -USR1 9360
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9360 killed at Sat Oct 21 16:44:16 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:44:16 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:44:16 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9416 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9416 found at Sat Oct 21 16:44:16 UTC 2017
selfserv_9183 with PID 9416 started at Sat Oct 21 16:44:16 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9889: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 9416 at Sat Oct 21 16:44:19 UTC 2017
kill -USR1 9416
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9416 killed at Sat Oct 21 16:44:19 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:44:19 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:44:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9485 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9485 found at Sat Oct 21 16:44:20 UTC 2017
selfserv_9183 with PID 9485 started at Sat Oct 21 16:44:20 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9890: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 9485 at Sat Oct 21 16:44:22 UTC 2017
kill -USR1 9485
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9485 killed at Sat Oct 21 16:44:22 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:44:23 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:44:23 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9541 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9541 found at Sat Oct 21 16:44:23 UTC 2017
selfserv_9183 with PID 9541 started at Sat Oct 21 16:44:23 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9891: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 9541 at Sat Oct 21 16:44:25 UTC 2017
kill -USR1 9541
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9541 killed at Sat Oct 21 16:44:26 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:44:26 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:44:26 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9597 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9597 found at Sat Oct 21 16:44:26 UTC 2017
selfserv_9183 with PID 9597 started at Sat Oct 21 16:44:26 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9892: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 9597 at Sat Oct 21 16:44:28 UTC 2017
kill -USR1 9597
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9597 killed at Sat Oct 21 16:44:29 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:44:29 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:44:29 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9665 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9665 found at Sat Oct 21 16:44:30 UTC 2017
selfserv_9183 with PID 9665 started at Sat Oct 21 16:44:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9893: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 9665 at Sat Oct 21 16:44:32 UTC 2017
kill -USR1 9665
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9665 killed at Sat Oct 21 16:44:32 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:44:32 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:44:32 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9721 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9721 found at Sat Oct 21 16:44:33 UTC 2017
selfserv_9183 with PID 9721 started at Sat Oct 21 16:44:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9894: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 9721 at Sat Oct 21 16:44:35 UTC 2017
kill -USR1 9721
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9721 killed at Sat Oct 21 16:44:36 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:44:36 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:44:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9777 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9777 found at Sat Oct 21 16:44:37 UTC 2017
selfserv_9183 with PID 9777 started at Sat Oct 21 16:44:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9895: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 9777 at Sat Oct 21 16:44:39 UTC 2017
kill -USR1 9777
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9777 killed at Sat Oct 21 16:44:39 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:44:40 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:44:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9846 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9846 found at Sat Oct 21 16:44:40 UTC 2017
selfserv_9183 with PID 9846 started at Sat Oct 21 16:44:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9896: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 9846 at Sat Oct 21 16:44:42 UTC 2017
kill -USR1 9846
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9846 killed at Sat Oct 21 16:44:43 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:44:43 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:44:43 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9902 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9902 found at Sat Oct 21 16:44:43 UTC 2017
selfserv_9183 with PID 9902 started at Sat Oct 21 16:44:43 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9897: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 9902 at Sat Oct 21 16:44:45 UTC 2017
kill -USR1 9902
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9902 killed at Sat Oct 21 16:44:46 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:44:46 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:44:46 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9958 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9958 found at Sat Oct 21 16:44:47 UTC 2017
selfserv_9183 with PID 9958 started at Sat Oct 21 16:44:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9898: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 9958 at Sat Oct 21 16:44:49 UTC 2017
kill -USR1 9958
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9958 killed at Sat Oct 21 16:44:49 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:44:49 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:44:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10026 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10026 found at Sat Oct 21 16:44:50 UTC 2017
selfserv_9183 with PID 10026 started at Sat Oct 21 16:44:50 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9899: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 10026 at Sat Oct 21 16:44:52 UTC 2017
kill -USR1 10026
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10026 killed at Sat Oct 21 16:44:53 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:44:53 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:44:53 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10082 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10082 found at Sat Oct 21 16:44:53 UTC 2017
selfserv_9183 with PID 10082 started at Sat Oct 21 16:44:53 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9900: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 10082 at Sat Oct 21 16:44:56 UTC 2017
kill -USR1 10082
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10082 killed at Sat Oct 21 16:44:56 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:44:56 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:44:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10138 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10138 found at Sat Oct 21 16:44:57 UTC 2017
selfserv_9183 with PID 10138 started at Sat Oct 21 16:44:57 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9901: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 10138 at Sat Oct 21 16:44:59 UTC 2017
kill -USR1 10138
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10138 killed at Sat Oct 21 16:45:00 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:45:00 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:45:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10207 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10207 found at Sat Oct 21 16:45:00 UTC 2017
selfserv_9183 with PID 10207 started at Sat Oct 21 16:45:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9902: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 10207 at Sat Oct 21 16:45:03 UTC 2017
kill -USR1 10207
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10207 killed at Sat Oct 21 16:45:03 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:45:03 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:45:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10275 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10275 found at Sat Oct 21 16:45:04 UTC 2017
selfserv_9183 with PID 10275 started at Sat Oct 21 16:45:04 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9903: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 10275 at Sat Oct 21 16:45:06 UTC 2017
kill -USR1 10275
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10275 killed at Sat Oct 21 16:45:06 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:45:06 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:45:07 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10334 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10334 found at Sat Oct 21 16:45:07 UTC 2017
selfserv_9183 with PID 10334 started at Sat Oct 21 16:45:07 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9904: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 10334 at Sat Oct 21 16:45:09 UTC 2017
kill -USR1 10334
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10334 killed at Sat Oct 21 16:45:10 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:45:10 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:45:10 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10402 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10402 found at Sat Oct 21 16:45:10 UTC 2017
selfserv_9183 with PID 10402 started at Sat Oct 21 16:45:10 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9905: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 10402 at Sat Oct 21 16:45:13 UTC 2017
kill -USR1 10402
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10402 killed at Sat Oct 21 16:45:13 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:45:13 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:45:13 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10458 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10458 found at Sat Oct 21 16:45:14 UTC 2017
selfserv_9183 with PID 10458 started at Sat Oct 21 16:45:14 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9906: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 10458 at Sat Oct 21 16:45:16 UTC 2017
kill -USR1 10458
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10458 killed at Sat Oct 21 16:45:17 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:45:17 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:45:17 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10514 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10514 found at Sat Oct 21 16:45:17 UTC 2017
selfserv_9183 with PID 10514 started at Sat Oct 21 16:45:17 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9907: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 10514 at Sat Oct 21 16:45:20 UTC 2017
kill -USR1 10514
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10514 killed at Sat Oct 21 16:45:20 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:45:20 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:45:20 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10583 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10583 found at Sat Oct 21 16:45:21 UTC 2017
selfserv_9183 with PID 10583 started at Sat Oct 21 16:45:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9908: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 10583 at Sat Oct 21 16:45:23 UTC 2017
kill -USR1 10583
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10583 killed at Sat Oct 21 16:45:23 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:45:23 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:45:23 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10639 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10639 found at Sat Oct 21 16:45:24 UTC 2017
selfserv_9183 with PID 10639 started at Sat Oct 21 16:45:24 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9909: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 10639 at Sat Oct 21 16:45:26 UTC 2017
kill -USR1 10639
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10639 killed at Sat Oct 21 16:45:26 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:45:26 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:45:26 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10695 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10695 found at Sat Oct 21 16:45:27 UTC 2017
selfserv_9183 with PID 10695 started at Sat Oct 21 16:45:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9910: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 10695 at Sat Oct 21 16:45:29 UTC 2017
kill -USR1 10695
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10695 killed at Sat Oct 21 16:45:29 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:45:29 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:45:29 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10763 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10763 found at Sat Oct 21 16:45:30 UTC 2017
selfserv_9183 with PID 10763 started at Sat Oct 21 16:45:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9911: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 10763 at Sat Oct 21 16:45:32 UTC 2017
kill -USR1 10763
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10763 killed at Sat Oct 21 16:45:32 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:45:32 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:45:32 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10819 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10819 found at Sat Oct 21 16:45:33 UTC 2017
selfserv_9183 with PID 10819 started at Sat Oct 21 16:45:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9912: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 10819 at Sat Oct 21 16:45:35 UTC 2017
kill -USR1 10819
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10819 killed at Sat Oct 21 16:45:36 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:45:36 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:45:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10875 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10875 found at Sat Oct 21 16:45:36 UTC 2017
selfserv_9183 with PID 10875 started at Sat Oct 21 16:45:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9913: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 10875 at Sat Oct 21 16:45:38 UTC 2017
kill -USR1 10875
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10875 killed at Sat Oct 21 16:45:39 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:45:39 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:45:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10943 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10943 found at Sat Oct 21 16:45:39 UTC 2017
selfserv_9183 with PID 10943 started at Sat Oct 21 16:45:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9914: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 10943 at Sat Oct 21 16:45:41 UTC 2017
kill -USR1 10943
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10943 killed at Sat Oct 21 16:45:42 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:45:42 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:45:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11000 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11000 found at Sat Oct 21 16:45:42 UTC 2017
selfserv_9183 with PID 11000 started at Sat Oct 21 16:45:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9915: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 11000 at Sat Oct 21 16:45:44 UTC 2017
kill -USR1 11000
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 11000 killed at Sat Oct 21 16:45:45 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 16:45:45 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:45:45 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11056 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11056 found at Sat Oct 21 16:45:45 UTC 2017
selfserv_9183 with PID 11056 started at Sat Oct 21 16:45:45 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9916: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 11056 at Sat Oct 21 16:45:47 UTC 2017
kill -USR1 11056
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 11056 killed at Sat Oct 21 16:45:48 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:45:48 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:45:48 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11124 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11124 found at Sat Oct 21 16:45:48 UTC 2017
selfserv_9183 with PID 11124 started at Sat Oct 21 16:45:48 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9917: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 11124 at Sat Oct 21 16:45:50 UTC 2017
kill -USR1 11124
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 11124 killed at Sat Oct 21 16:45:51 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:45:51 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:45:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11180 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11180 found at Sat Oct 21 16:45:51 UTC 2017
selfserv_9183 with PID 11180 started at Sat Oct 21 16:45:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9918: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 11180 at Sat Oct 21 16:45:54 UTC 2017
kill -USR1 11180
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 11180 killed at Sat Oct 21 16:45:54 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:45:54 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:45:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11236 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11236 found at Sat Oct 21 16:45:55 UTC 2017
selfserv_9183 with PID 11236 started at Sat Oct 21 16:45:55 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9919: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 11236 at Sat Oct 21 16:45:57 UTC 2017
kill -USR1 11236
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 11236 killed at Sat Oct 21 16:45:57 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/authin.tl.tmp
0
selfserv_9183 starting at Sat Oct 21 16:45:57 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:45:57 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:45:58 UTC 2017
selfserv_9183 with PID 11299 started at Sat Oct 21 16:45:58 UTC 2017
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:00 UTC 2017
ssl.sh: #9920: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:01 UTC 2017
ssl.sh: #9921: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:02 UTC 2017
ssl.sh: #9922: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:04 UTC 2017
ssl.sh: #9923: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:05 UTC 2017
ssl.sh: #9924: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:06 UTC 2017
ssl.sh: #9925: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:08 UTC 2017
ssl.sh: #9926: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:09 UTC 2017
ssl.sh: #9927: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:10 UTC 2017
ssl.sh: #9928: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:12 UTC 2017
ssl.sh: #9929: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:13 UTC 2017
ssl.sh: #9930: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:14 UTC 2017
ssl.sh: #9931: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:16 UTC 2017
ssl.sh: #9932: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:17 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9933: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:18 UTC 2017
ssl.sh: #9934: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:19 UTC 2017
ssl.sh: #9935: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:21 UTC 2017
ssl.sh: #9936: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:22 UTC 2017
ssl.sh: #9937: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:23 UTC 2017
ssl.sh: #9938: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:24 UTC 2017
ssl.sh: #9939: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:26 UTC 2017
ssl.sh: #9940: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:27 UTC 2017
ssl.sh: #9941: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:28 UTC 2017
ssl.sh: #9942: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:30 UTC 2017
ssl.sh: #9943: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:31 UTC 2017
ssl.sh: #9944: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:32 UTC 2017
ssl.sh: #9945: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:34 UTC 2017
ssl.sh: #9946: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:35 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9947: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:36 UTC 2017
ssl.sh: #9948: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:37 UTC 2017
ssl.sh: #9949: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:39 UTC 2017
ssl.sh: #9950: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:40 UTC 2017
ssl.sh: #9951: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:41 UTC 2017
ssl.sh: #9952: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:42 UTC 2017
ssl.sh: #9953: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:44 UTC 2017
ssl.sh: #9954: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:45 UTC 2017
ssl.sh: #9955: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:46 UTC 2017
ssl.sh: #9956: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:48 UTC 2017
ssl.sh: #9957: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:49 UTC 2017
ssl.sh: #9958: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:50 UTC 2017
ssl.sh: #9959: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11299 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 11299 found at Sat Oct 21 16:46:52 UTC 2017
ssl.sh: #9960: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 11299 at Sat Oct 21 16:46:52 UTC 2017
kill -USR1 11299
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 11299 killed at Sat Oct 21 16:46:52 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:46:52 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:46:52 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:46:53 UTC 2017
selfserv_9183 with PID 12739 started at Sat Oct 21 16:46:53 UTC 2017
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:46:54 UTC 2017
ssl.sh: #9961: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:46:56 UTC 2017
ssl.sh: #9962: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:46:57 UTC 2017
ssl.sh: #9963: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:46:58 UTC 2017
ssl.sh: #9964: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:46:59 UTC 2017
ssl.sh: #9965: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:00 UTC 2017
ssl.sh: #9966: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:01 UTC 2017
ssl.sh: #9967: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:03 UTC 2017
ssl.sh: #9968: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:04 UTC 2017
ssl.sh: #9969: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:05 UTC 2017
ssl.sh: #9970: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:06 UTC 2017
ssl.sh: #9971: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:07 UTC 2017
ssl.sh: #9972: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:09 UTC 2017
ssl.sh: #9973: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:10 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9974: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:11 UTC 2017
ssl.sh: #9975: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:12 UTC 2017
ssl.sh: #9976: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:13 UTC 2017
ssl.sh: #9977: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:14 UTC 2017
ssl.sh: #9978: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:16 UTC 2017
ssl.sh: #9979: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:17 UTC 2017
ssl.sh: #9980: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:18 UTC 2017
ssl.sh: #9981: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:19 UTC 2017
ssl.sh: #9982: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:20 UTC 2017
ssl.sh: #9983: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:21 UTC 2017
ssl.sh: #9984: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:22 UTC 2017
ssl.sh: #9985: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:24 UTC 2017
ssl.sh: #9986: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:25 UTC 2017
ssl.sh: #9987: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:26 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9988: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:27 UTC 2017
ssl.sh: #9989: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:28 UTC 2017
ssl.sh: #9990: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:29 UTC 2017
ssl.sh: #9991: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:31 UTC 2017
ssl.sh: #9992: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:32 UTC 2017
ssl.sh: #9993: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:33 UTC 2017
ssl.sh: #9994: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:34 UTC 2017
ssl.sh: #9995: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:35 UTC 2017
ssl.sh: #9996: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:36 UTC 2017
ssl.sh: #9997: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:37 UTC 2017
ssl.sh: #9998: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:39 UTC 2017
ssl.sh: #9999: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:40 UTC 2017
ssl.sh: #10000: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12739 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12739 found at Sat Oct 21 16:47:41 UTC 2017
ssl.sh: #10001: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 12739 at Sat Oct 21 16:47:41 UTC 2017
kill -USR1 12739
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 12739 killed at Sat Oct 21 16:47:42 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:47:42 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:47:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:47:42 UTC 2017
selfserv_9183 with PID 14185 started at Sat Oct 21 16:47:42 UTC 2017
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:47:44 UTC 2017
ssl.sh: #10002: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:47:46 UTC 2017
ssl.sh: #10003: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:47:47 UTC 2017
ssl.sh: #10004: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:47:48 UTC 2017
ssl.sh: #10005: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:47:50 UTC 2017
ssl.sh: #10006: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:47:51 UTC 2017
ssl.sh: #10007: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:47:52 UTC 2017
ssl.sh: #10008: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:47:54 UTC 2017
ssl.sh: #10009: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:47:55 UTC 2017
ssl.sh: #10010: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:47:57 UTC 2017
ssl.sh: #10011: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:47:58 UTC 2017
ssl.sh: #10012: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:47:59 UTC 2017
ssl.sh: #10013: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:48:01 UTC 2017
ssl.sh: #10014: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:48:02 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10015: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:48:03 UTC 2017
ssl.sh: #10016: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:48:05 UTC 2017
ssl.sh: #10017: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:48:06 UTC 2017
ssl.sh: #10018: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:48:07 UTC 2017
ssl.sh: #10019: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:48:09 UTC 2017
ssl.sh: #10020: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:48:10 UTC 2017
ssl.sh: #10021: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:48:11 UTC 2017
ssl.sh: #10022: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:48:12 UTC 2017
ssl.sh: #10023: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:48:14 UTC 2017
ssl.sh: #10024: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:48:15 UTC 2017
ssl.sh: #10025: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:48:17 UTC 2017
ssl.sh: #10026: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:48:18 UTC 2017
ssl.sh: #10027: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:48:19 UTC 2017
ssl.sh: #10028: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:48:21 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10029: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:48:22 UTC 2017
ssl.sh: #10030: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:48:23 UTC 2017
ssl.sh: #10031: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:48:25 UTC 2017
ssl.sh: #10032: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:48:26 UTC 2017
ssl.sh: #10033: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:48:27 UTC 2017
ssl.sh: #10034: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:48:28 UTC 2017
ssl.sh: #10035: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:48:30 UTC 2017
ssl.sh: #10036: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:48:31 UTC 2017
ssl.sh: #10037: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:48:32 UTC 2017
ssl.sh: #10038: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:48:34 UTC 2017
ssl.sh: #10039: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:48:35 UTC 2017
ssl.sh: #10040: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:48:36 UTC 2017
ssl.sh: #10041: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14185 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 14185 found at Sat Oct 21 16:48:38 UTC 2017
ssl.sh: #10042: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 14185 at Sat Oct 21 16:48:38 UTC 2017
kill -USR1 14185
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 14185 killed at Sat Oct 21 16:48:38 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:48:38 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:48:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:48:39 UTC 2017
selfserv_9183 with PID 15629 started at Sat Oct 21 16:48:39 UTC 2017
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:48:41 UTC 2017
ssl.sh: #10043: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:48:42 UTC 2017
ssl.sh: #10044: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:48:43 UTC 2017
ssl.sh: #10045: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:48:44 UTC 2017
ssl.sh: #10046: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:48:46 UTC 2017
ssl.sh: #10047: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:48:47 UTC 2017
ssl.sh: #10048: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:48:48 UTC 2017
ssl.sh: #10049: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:48:49 UTC 2017
ssl.sh: #10050: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:48:51 UTC 2017
ssl.sh: #10051: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:48:52 UTC 2017
ssl.sh: #10052: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:48:53 UTC 2017
ssl.sh: #10053: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:48:55 UTC 2017
ssl.sh: #10054: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:48:56 UTC 2017
ssl.sh: #10055: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:48:57 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10056: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:48:59 UTC 2017
ssl.sh: #10057: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:49:00 UTC 2017
ssl.sh: #10058: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:49:01 UTC 2017
ssl.sh: #10059: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:49:02 UTC 2017
ssl.sh: #10060: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:49:03 UTC 2017
ssl.sh: #10061: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:49:05 UTC 2017
ssl.sh: #10062: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:49:06 UTC 2017
ssl.sh: #10063: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:49:07 UTC 2017
ssl.sh: #10064: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:49:08 UTC 2017
ssl.sh: #10065: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:49:09 UTC 2017
ssl.sh: #10066: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:49:11 UTC 2017
ssl.sh: #10067: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:49:12 UTC 2017
ssl.sh: #10068: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:49:13 UTC 2017
ssl.sh: #10069: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:49:15 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10070: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:49:16 UTC 2017
ssl.sh: #10071: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:49:17 UTC 2017
ssl.sh: #10072: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:49:18 UTC 2017
ssl.sh: #10073: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:49:19 UTC 2017
ssl.sh: #10074: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:49:21 UTC 2017
ssl.sh: #10075: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:49:22 UTC 2017
ssl.sh: #10076: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:49:23 UTC 2017
ssl.sh: #10077: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:49:24 UTC 2017
ssl.sh: #10078: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:49:25 UTC 2017
ssl.sh: #10079: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:49:27 UTC 2017
ssl.sh: #10080: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:49:28 UTC 2017
ssl.sh: #10081: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:49:29 UTC 2017
ssl.sh: #10082: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15629 found at Sat Oct 21 16:49:30 UTC 2017
ssl.sh: #10083: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 15629 at Sat Oct 21 16:49:31 UTC 2017
kill -USR1 15629
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 15629 killed at Sat Oct 21 16:49:31 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:49:31 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:49:31 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17073 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17073 found at Sat Oct 21 16:49:32 UTC 2017
selfserv_9183 with PID 17073 started at Sat Oct 21 16:49:32 UTC 2017
trying to kill selfserv_9183 with PID 17073 at Sat Oct 21 16:49:32 UTC 2017
kill -USR1 17073
./ssl.sh: line 197: 17073 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9183 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17073 killed at Sat Oct 21 16:49:32 UTC 2017
selfserv_9183 starting at Sat Oct 21 16:49:32 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:49:32 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:49:33 UTC 2017
selfserv_9183 with PID 17108 started at Sat Oct 21 16:49:33 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:49:35 UTC 2017
ssl.sh: #10084: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:49:37 UTC 2017
ssl.sh: #10085: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:49:38 UTC 2017
ssl.sh: #10086: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:49:40 UTC 2017
ssl.sh: #10087: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:49:41 UTC 2017
ssl.sh: #10088: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:49:43 UTC 2017
ssl.sh: #10089: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:49:45 UTC 2017
ssl.sh: #10090: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:49:46 UTC 2017
ssl.sh: #10091: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:49:48 UTC 2017
ssl.sh: #10092: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:49:49 UTC 2017
ssl.sh: #10093: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:49:51 UTC 2017
ssl.sh: #10094: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:49:53 UTC 2017
ssl.sh: #10095: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:49:54 UTC 2017
ssl.sh: #10096: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:49:56 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10097: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:49:57 UTC 2017
ssl.sh: #10098: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:49:59 UTC 2017
ssl.sh: #10099: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:50:00 UTC 2017
ssl.sh: #10100: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:50:02 UTC 2017
ssl.sh: #10101: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:50:04 UTC 2017
ssl.sh: #10102: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:50:05 UTC 2017
ssl.sh: #10103: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:50:07 UTC 2017
ssl.sh: #10104: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:50:08 UTC 2017
ssl.sh: #10105: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:50:10 UTC 2017
ssl.sh: #10106: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:50:12 UTC 2017
ssl.sh: #10107: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:50:13 UTC 2017
ssl.sh: #10108: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:50:15 UTC 2017
ssl.sh: #10109: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:50:17 UTC 2017
ssl.sh: #10110: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:50:18 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10111: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:50:20 UTC 2017
ssl.sh: #10112: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:50:21 UTC 2017
ssl.sh: #10113: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:50:23 UTC 2017
ssl.sh: #10114: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:50:24 UTC 2017
ssl.sh: #10115: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:50:26 UTC 2017
ssl.sh: #10116: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:50:27 UTC 2017
ssl.sh: #10117: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:50:29 UTC 2017
ssl.sh: #10118: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:50:30 UTC 2017
ssl.sh: #10119: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:50:32 UTC 2017
ssl.sh: #10120: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:50:34 UTC 2017
ssl.sh: #10121: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:50:35 UTC 2017
ssl.sh: #10122: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:50:37 UTC 2017
ssl.sh: #10123: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17108 found at Sat Oct 21 16:50:38 UTC 2017
ssl.sh: #10124: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 17108 at Sat Oct 21 16:50:39 UTC 2017
kill -USR1 17108
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17108 killed at Sat Oct 21 16:50:39 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:50:39 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:50:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:50:40 UTC 2017
selfserv_9183 with PID 18554 started at Sat Oct 21 16:50:40 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:50:42 UTC 2017
ssl.sh: #10125: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:50:43 UTC 2017
ssl.sh: #10126: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:50:45 UTC 2017
ssl.sh: #10127: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:50:47 UTC 2017
ssl.sh: #10128: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:50:48 UTC 2017
ssl.sh: #10129: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:50:50 UTC 2017
ssl.sh: #10130: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:50:51 UTC 2017
ssl.sh: #10131: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:50:53 UTC 2017
ssl.sh: #10132: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:50:55 UTC 2017
ssl.sh: #10133: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:50:56 UTC 2017
ssl.sh: #10134: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:50:58 UTC 2017
ssl.sh: #10135: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:00 UTC 2017
ssl.sh: #10136: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:01 UTC 2017
ssl.sh: #10137: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:03 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10138: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:04 UTC 2017
ssl.sh: #10139: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:06 UTC 2017
ssl.sh: #10140: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:08 UTC 2017
ssl.sh: #10141: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:09 UTC 2017
ssl.sh: #10142: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:11 UTC 2017
ssl.sh: #10143: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:12 UTC 2017
ssl.sh: #10144: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:14 UTC 2017
ssl.sh: #10145: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:15 UTC 2017
ssl.sh: #10146: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:17 UTC 2017
ssl.sh: #10147: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:19 UTC 2017
ssl.sh: #10148: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:20 UTC 2017
ssl.sh: #10149: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:22 UTC 2017
ssl.sh: #10150: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:24 UTC 2017
ssl.sh: #10151: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:25 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10152: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:27 UTC 2017
ssl.sh: #10153: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:28 UTC 2017
ssl.sh: #10154: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:30 UTC 2017
ssl.sh: #10155: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:31 UTC 2017
ssl.sh: #10156: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:33 UTC 2017
ssl.sh: #10157: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:34 UTC 2017
ssl.sh: #10158: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:36 UTC 2017
ssl.sh: #10159: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:38 UTC 2017
ssl.sh: #10160: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:39 UTC 2017
ssl.sh: #10161: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:41 UTC 2017
ssl.sh: #10162: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:42 UTC 2017
ssl.sh: #10163: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:44 UTC 2017
ssl.sh: #10164: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18554 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18554 found at Sat Oct 21 16:51:45 UTC 2017
ssl.sh: #10165: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 18554 at Sat Oct 21 16:51:46 UTC 2017
kill -USR1 18554
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18554 killed at Sat Oct 21 16:51:46 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:51:46 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:51:46 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:51:47 UTC 2017
selfserv_9183 with PID 19996 started at Sat Oct 21 16:51:47 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:51:49 UTC 2017
ssl.sh: #10166: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:51:50 UTC 2017
ssl.sh: #10167: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:51:51 UTC 2017
ssl.sh: #10168: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:51:53 UTC 2017
ssl.sh: #10169: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:51:54 UTC 2017
ssl.sh: #10170: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:51:55 UTC 2017
ssl.sh: #10171: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:51:57 UTC 2017
ssl.sh: #10172: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:51:58 UTC 2017
ssl.sh: #10173: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:00 UTC 2017
ssl.sh: #10174: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:01 UTC 2017
ssl.sh: #10175: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:02 UTC 2017
ssl.sh: #10176: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:04 UTC 2017
ssl.sh: #10177: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:05 UTC 2017
ssl.sh: #10178: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:07 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10179: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:08 UTC 2017
ssl.sh: #10180: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:10 UTC 2017
ssl.sh: #10181: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:11 UTC 2017
ssl.sh: #10182: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:12 UTC 2017
ssl.sh: #10183: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:14 UTC 2017
ssl.sh: #10184: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:15 UTC 2017
ssl.sh: #10185: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:16 UTC 2017
ssl.sh: #10186: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:18 UTC 2017
ssl.sh: #10187: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:19 UTC 2017
ssl.sh: #10188: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:20 UTC 2017
ssl.sh: #10189: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:22 UTC 2017
ssl.sh: #10190: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:23 UTC 2017
ssl.sh: #10191: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:25 UTC 2017
ssl.sh: #10192: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:26 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10193: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:27 UTC 2017
ssl.sh: #10194: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:29 UTC 2017
ssl.sh: #10195: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:30 UTC 2017
ssl.sh: #10196: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:31 UTC 2017
ssl.sh: #10197: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:33 UTC 2017
ssl.sh: #10198: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:34 UTC 2017
ssl.sh: #10199: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:36 UTC 2017
ssl.sh: #10200: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:37 UTC 2017
ssl.sh: #10201: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:38 UTC 2017
ssl.sh: #10202: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:40 UTC 2017
ssl.sh: #10203: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:41 UTC 2017
ssl.sh: #10204: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:42 UTC 2017
ssl.sh: #10205: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19996 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19996 found at Sat Oct 21 16:52:44 UTC 2017
ssl.sh: #10206: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 19996 at Sat Oct 21 16:52:44 UTC 2017
kill -USR1 19996
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19996 killed at Sat Oct 21 16:52:44 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:52:44 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:52:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:52:45 UTC 2017
selfserv_9183 with PID 21437 started at Sat Oct 21 16:52:45 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:52:47 UTC 2017
ssl.sh: #10207: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:52:49 UTC 2017
ssl.sh: #10208: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:52:51 UTC 2017
ssl.sh: #10209: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:52:52 UTC 2017
ssl.sh: #10210: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:52:54 UTC 2017
ssl.sh: #10211: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:52:56 UTC 2017
ssl.sh: #10212: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:52:57 UTC 2017
ssl.sh: #10213: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:52:59 UTC 2017
ssl.sh: #10214: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:01 UTC 2017
ssl.sh: #10215: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:02 UTC 2017
ssl.sh: #10216: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:04 UTC 2017
ssl.sh: #10217: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:06 UTC 2017
ssl.sh: #10218: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:08 UTC 2017
ssl.sh: #10219: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:09 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10220: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:11 UTC 2017
ssl.sh: #10221: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:12 UTC 2017
ssl.sh: #10222: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:14 UTC 2017
ssl.sh: #10223: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:15 UTC 2017
ssl.sh: #10224: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:17 UTC 2017
ssl.sh: #10225: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:19 UTC 2017
ssl.sh: #10226: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:20 UTC 2017
ssl.sh: #10227: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:22 UTC 2017
ssl.sh: #10228: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:23 UTC 2017
ssl.sh: #10229: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:25 UTC 2017
ssl.sh: #10230: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:27 UTC 2017
ssl.sh: #10231: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:29 UTC 2017
ssl.sh: #10232: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:30 UTC 2017
ssl.sh: #10233: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:32 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10234: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:33 UTC 2017
ssl.sh: #10235: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:35 UTC 2017
ssl.sh: #10236: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:37 UTC 2017
ssl.sh: #10237: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:38 UTC 2017
ssl.sh: #10238: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:40 UTC 2017
ssl.sh: #10239: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:41 UTC 2017
ssl.sh: #10240: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:43 UTC 2017
ssl.sh: #10241: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:45 UTC 2017
ssl.sh: #10242: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:46 UTC 2017
ssl.sh: #10243: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:48 UTC 2017
ssl.sh: #10244: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:49 UTC 2017
ssl.sh: #10245: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:51 UTC 2017
ssl.sh: #10246: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21437 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21437 found at Sat Oct 21 16:53:53 UTC 2017
ssl.sh: #10247: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 21437 at Sat Oct 21 16:53:53 UTC 2017
kill -USR1 21437
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21437 killed at Sat Oct 21 16:53:53 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:53:53 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:53:53 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:53:54 UTC 2017
selfserv_9183 with PID 22878 started at Sat Oct 21 16:53:54 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:53:56 UTC 2017
ssl.sh: #10248: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:53:58 UTC 2017
ssl.sh: #10249: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:53:59 UTC 2017
ssl.sh: #10250: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:01 UTC 2017
ssl.sh: #10251: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:03 UTC 2017
ssl.sh: #10252: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:04 UTC 2017
ssl.sh: #10253: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:06 UTC 2017
ssl.sh: #10254: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:08 UTC 2017
ssl.sh: #10255: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:09 UTC 2017
ssl.sh: #10256: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:11 UTC 2017
ssl.sh: #10257: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:13 UTC 2017
ssl.sh: #10258: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:15 UTC 2017
ssl.sh: #10259: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:16 UTC 2017
ssl.sh: #10260: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:18 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10261: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:20 UTC 2017
ssl.sh: #10262: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:21 UTC 2017
ssl.sh: #10263: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:23 UTC 2017
ssl.sh: #10264: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:24 UTC 2017
ssl.sh: #10265: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:26 UTC 2017
ssl.sh: #10266: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:27 UTC 2017
ssl.sh: #10267: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:29 UTC 2017
ssl.sh: #10268: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:31 UTC 2017
ssl.sh: #10269: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:32 UTC 2017
ssl.sh: #10270: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:34 UTC 2017
ssl.sh: #10271: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:36 UTC 2017
ssl.sh: #10272: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:37 UTC 2017
ssl.sh: #10273: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:39 UTC 2017
ssl.sh: #10274: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:41 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10275: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:42 UTC 2017
ssl.sh: #10276: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:44 UTC 2017
ssl.sh: #10277: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:45 UTC 2017
ssl.sh: #10278: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:47 UTC 2017
ssl.sh: #10279: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:49 UTC 2017
ssl.sh: #10280: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:50 UTC 2017
ssl.sh: #10281: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:52 UTC 2017
ssl.sh: #10282: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:53 UTC 2017
ssl.sh: #10283: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:55 UTC 2017
ssl.sh: #10284: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:57 UTC 2017
ssl.sh: #10285: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:54:58 UTC 2017
ssl.sh: #10286: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:55:00 UTC 2017
ssl.sh: #10287: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22878 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22878 found at Sat Oct 21 16:55:02 UTC 2017
ssl.sh: #10288: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 22878 at Sat Oct 21 16:55:02 UTC 2017
kill -USR1 22878
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22878 killed at Sat Oct 21 16:55:02 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:55:02 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:55:02 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:03 UTC 2017
selfserv_9183 with PID 24332 started at Sat Oct 21 16:55:03 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:05 UTC 2017
ssl.sh: #10289: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:06 UTC 2017
ssl.sh: #10290: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:08 UTC 2017
ssl.sh: #10291: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:09 UTC 2017
ssl.sh: #10292: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:11 UTC 2017
ssl.sh: #10293: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:12 UTC 2017
ssl.sh: #10294: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:14 UTC 2017
ssl.sh: #10295: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:15 UTC 2017
ssl.sh: #10296: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:17 UTC 2017
ssl.sh: #10297: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:18 UTC 2017
ssl.sh: #10298: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:20 UTC 2017
ssl.sh: #10299: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:21 UTC 2017
ssl.sh: #10300: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:23 UTC 2017
ssl.sh: #10301: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:24 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10302: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:26 UTC 2017
ssl.sh: #10303: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:27 UTC 2017
ssl.sh: #10304: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:29 UTC 2017
ssl.sh: #10305: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:30 UTC 2017
ssl.sh: #10306: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:31 UTC 2017
ssl.sh: #10307: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:33 UTC 2017
ssl.sh: #10308: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:34 UTC 2017
ssl.sh: #10309: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:36 UTC 2017
ssl.sh: #10310: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:37 UTC 2017
ssl.sh: #10311: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:39 UTC 2017
ssl.sh: #10312: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:40 UTC 2017
ssl.sh: #10313: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:42 UTC 2017
ssl.sh: #10314: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:43 UTC 2017
ssl.sh: #10315: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:45 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10316: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:46 UTC 2017
ssl.sh: #10317: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:48 UTC 2017
ssl.sh: #10318: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:49 UTC 2017
ssl.sh: #10319: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:50 UTC 2017
ssl.sh: #10320: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:52 UTC 2017
ssl.sh: #10321: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:53 UTC 2017
ssl.sh: #10322: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:55 UTC 2017
ssl.sh: #10323: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:56 UTC 2017
ssl.sh: #10324: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:57 UTC 2017
ssl.sh: #10325: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:55:59 UTC 2017
ssl.sh: #10326: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:56:00 UTC 2017
ssl.sh: #10327: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:56:02 UTC 2017
ssl.sh: #10328: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24332 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24332 found at Sat Oct 21 16:56:03 UTC 2017
ssl.sh: #10329: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 24332 at Sat Oct 21 16:56:04 UTC 2017
kill -USR1 24332
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 24332 killed at Sat Oct 21 16:56:04 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:56:04 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:56:04 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25772 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25772 found at Sat Oct 21 16:56:05 UTC 2017
selfserv_9183 with PID 25772 started at Sat Oct 21 16:56:05 UTC 2017
trying to kill selfserv_9183 with PID 25772 at Sat Oct 21 16:56:05 UTC 2017
kill -USR1 25772
./ssl.sh: line 197: 25772 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9183 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 25772 killed at Sat Oct 21 16:56:05 UTC 2017
selfserv_9183 starting at Sat Oct 21 16:56:05 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:56:05 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:06 UTC 2017
selfserv_9183 with PID 25806 started at Sat Oct 21 16:56:06 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:08 UTC 2017
ssl.sh: #10330: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:10 UTC 2017
ssl.sh: #10331: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:11 UTC 2017
ssl.sh: #10332: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:13 UTC 2017
ssl.sh: #10333: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:14 UTC 2017
ssl.sh: #10334: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:16 UTC 2017
ssl.sh: #10335: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:18 UTC 2017
ssl.sh: #10336: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:19 UTC 2017
ssl.sh: #10337: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:21 UTC 2017
ssl.sh: #10338: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:23 UTC 2017
ssl.sh: #10339: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:24 UTC 2017
ssl.sh: #10340: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:26 UTC 2017
ssl.sh: #10341: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:27 UTC 2017
ssl.sh: #10342: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:29 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10343: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:31 UTC 2017
ssl.sh: #10344: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:32 UTC 2017
ssl.sh: #10345: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:34 UTC 2017
ssl.sh: #10346: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:35 UTC 2017
ssl.sh: #10347: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:37 UTC 2017
ssl.sh: #10348: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:38 UTC 2017
ssl.sh: #10349: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:40 UTC 2017
ssl.sh: #10350: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:42 UTC 2017
ssl.sh: #10351: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:43 UTC 2017
ssl.sh: #10352: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:45 UTC 2017
ssl.sh: #10353: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:46 UTC 2017
ssl.sh: #10354: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:48 UTC 2017
ssl.sh: #10355: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:50 UTC 2017
ssl.sh: #10356: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:51 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10357: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:53 UTC 2017
ssl.sh: #10358: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:54 UTC 2017
ssl.sh: #10359: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:56 UTC 2017
ssl.sh: #10360: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:58 UTC 2017
ssl.sh: #10361: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:56:59 UTC 2017
ssl.sh: #10362: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:57:01 UTC 2017
ssl.sh: #10363: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:57:02 UTC 2017
ssl.sh: #10364: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:57:04 UTC 2017
ssl.sh: #10365: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:57:06 UTC 2017
ssl.sh: #10366: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:57:07 UTC 2017
ssl.sh: #10367: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:57:09 UTC 2017
ssl.sh: #10368: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:57:10 UTC 2017
ssl.sh: #10369: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25806 found at Sat Oct 21 16:57:12 UTC 2017
ssl.sh: #10370: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 25806 at Sat Oct 21 16:57:12 UTC 2017
kill -USR1 25806
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 25806 killed at Sat Oct 21 16:57:13 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:57:13 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:57:13 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:57:13 UTC 2017
selfserv_9183 with PID 27251 started at Sat Oct 21 16:57:13 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:57:16 UTC 2017
ssl.sh: #10371: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:57:17 UTC 2017
ssl.sh: #10372: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:57:19 UTC 2017
ssl.sh: #10373: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:57:20 UTC 2017
ssl.sh: #10374: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:57:22 UTC 2017
ssl.sh: #10375: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:57:24 UTC 2017
ssl.sh: #10376: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:57:25 UTC 2017
ssl.sh: #10377: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:57:27 UTC 2017
ssl.sh: #10378: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:57:28 UTC 2017
ssl.sh: #10379: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:57:30 UTC 2017
ssl.sh: #10380: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:57:32 UTC 2017
ssl.sh: #10381: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:57:33 UTC 2017
ssl.sh: #10382: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:57:35 UTC 2017
ssl.sh: #10383: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:57:37 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10384: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:57:38 UTC 2017
ssl.sh: #10385: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:57:40 UTC 2017
ssl.sh: #10386: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:57:41 UTC 2017
ssl.sh: #10387: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:57:43 UTC 2017
ssl.sh: #10388: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:57:44 UTC 2017
ssl.sh: #10389: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:57:46 UTC 2017
ssl.sh: #10390: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:57:48 UTC 2017
ssl.sh: #10391: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:57:49 UTC 2017
ssl.sh: #10392: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:57:51 UTC 2017
ssl.sh: #10393: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:57:52 UTC 2017
ssl.sh: #10394: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:57:54 UTC 2017
ssl.sh: #10395: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:57:56 UTC 2017
ssl.sh: #10396: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:57:57 UTC 2017
ssl.sh: #10397: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:57:59 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10398: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:58:00 UTC 2017
ssl.sh: #10399: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:58:02 UTC 2017
ssl.sh: #10400: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:58:04 UTC 2017
ssl.sh: #10401: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:58:05 UTC 2017
ssl.sh: #10402: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:58:07 UTC 2017
ssl.sh: #10403: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:58:08 UTC 2017
ssl.sh: #10404: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:58:10 UTC 2017
ssl.sh: #10405: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:58:12 UTC 2017
ssl.sh: #10406: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:58:13 UTC 2017
ssl.sh: #10407: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:58:15 UTC 2017
ssl.sh: #10408: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:58:16 UTC 2017
ssl.sh: #10409: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:58:18 UTC 2017
ssl.sh: #10410: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27251 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27251 found at Sat Oct 21 16:58:20 UTC 2017
ssl.sh: #10411: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 27251 at Sat Oct 21 16:58:20 UTC 2017
kill -USR1 27251
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27251 killed at Sat Oct 21 16:58:20 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:58:20 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:58:20 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:58:21 UTC 2017
selfserv_9183 with PID 28696 started at Sat Oct 21 16:58:21 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:58:23 UTC 2017
ssl.sh: #10412: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:58:24 UTC 2017
ssl.sh: #10413: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:58:26 UTC 2017
ssl.sh: #10414: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:58:27 UTC 2017
ssl.sh: #10415: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:58:28 UTC 2017
ssl.sh: #10416: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:58:30 UTC 2017
ssl.sh: #10417: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:58:31 UTC 2017
ssl.sh: #10418: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:58:32 UTC 2017
ssl.sh: #10419: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:58:34 UTC 2017
ssl.sh: #10420: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:58:35 UTC 2017
ssl.sh: #10421: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:58:37 UTC 2017
ssl.sh: #10422: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:58:38 UTC 2017
ssl.sh: #10423: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:58:40 UTC 2017
ssl.sh: #10424: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:58:41 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10425: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:58:43 UTC 2017
ssl.sh: #10426: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:58:44 UTC 2017
ssl.sh: #10427: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:58:45 UTC 2017
ssl.sh: #10428: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:58:47 UTC 2017
ssl.sh: #10429: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:58:48 UTC 2017
ssl.sh: #10430: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:58:49 UTC 2017
ssl.sh: #10431: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:58:51 UTC 2017
ssl.sh: #10432: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:58:52 UTC 2017
ssl.sh: #10433: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:58:53 UTC 2017
ssl.sh: #10434: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:58:55 UTC 2017
ssl.sh: #10435: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:58:56 UTC 2017
ssl.sh: #10436: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:58:58 UTC 2017
ssl.sh: #10437: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:58:59 UTC 2017
ssl.sh: #10438: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:59:01 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10439: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:59:02 UTC 2017
ssl.sh: #10440: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:59:03 UTC 2017
ssl.sh: #10441: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:59:05 UTC 2017
ssl.sh: #10442: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:59:06 UTC 2017
ssl.sh: #10443: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:59:08 UTC 2017
ssl.sh: #10444: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:59:09 UTC 2017
ssl.sh: #10445: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:59:10 UTC 2017
ssl.sh: #10446: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:59:12 UTC 2017
ssl.sh: #10447: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:59:13 UTC 2017
ssl.sh: #10448: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:59:14 UTC 2017
ssl.sh: #10449: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:59:16 UTC 2017
ssl.sh: #10450: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:59:17 UTC 2017
ssl.sh: #10451: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28696 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28696 found at Sat Oct 21 16:59:19 UTC 2017
ssl.sh: #10452: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 28696 at Sat Oct 21 16:59:19 UTC 2017
kill -USR1 28696
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28696 killed at Sat Oct 21 16:59:19 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 16:59:19 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 16:59:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 16:59:20 UTC 2017
selfserv_9183 with PID 30135 started at Sat Oct 21 16:59:20 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 16:59:22 UTC 2017
ssl.sh: #10453: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 16:59:24 UTC 2017
ssl.sh: #10454: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 16:59:25 UTC 2017
ssl.sh: #10455: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 16:59:27 UTC 2017
ssl.sh: #10456: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 16:59:29 UTC 2017
ssl.sh: #10457: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 16:59:30 UTC 2017
ssl.sh: #10458: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 16:59:32 UTC 2017
ssl.sh: #10459: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 16:59:34 UTC 2017
ssl.sh: #10460: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 16:59:35 UTC 2017
ssl.sh: #10461: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 16:59:37 UTC 2017
ssl.sh: #10462: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 16:59:39 UTC 2017
ssl.sh: #10463: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 16:59:41 UTC 2017
ssl.sh: #10464: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 16:59:42 UTC 2017
ssl.sh: #10465: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 16:59:44 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10466: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 16:59:46 UTC 2017
ssl.sh: #10467: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 16:59:47 UTC 2017
ssl.sh: #10468: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 16:59:49 UTC 2017
ssl.sh: #10469: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 16:59:50 UTC 2017
ssl.sh: #10470: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 16:59:52 UTC 2017
ssl.sh: #10471: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 16:59:54 UTC 2017
ssl.sh: #10472: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 16:59:55 UTC 2017
ssl.sh: #10473: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 16:59:57 UTC 2017
ssl.sh: #10474: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 16:59:58 UTC 2017
ssl.sh: #10475: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 17:00:00 UTC 2017
ssl.sh: #10476: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 17:00:02 UTC 2017
ssl.sh: #10477: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 17:00:04 UTC 2017
ssl.sh: #10478: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 17:00:05 UTC 2017
ssl.sh: #10479: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 17:00:07 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10480: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 17:00:09 UTC 2017
ssl.sh: #10481: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 17:00:10 UTC 2017
ssl.sh: #10482: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 17:00:12 UTC 2017
ssl.sh: #10483: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 17:00:13 UTC 2017
ssl.sh: #10484: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 17:00:15 UTC 2017
ssl.sh: #10485: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 17:00:17 UTC 2017
ssl.sh: #10486: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 17:00:18 UTC 2017
ssl.sh: #10487: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 17:00:20 UTC 2017
ssl.sh: #10488: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 17:00:21 UTC 2017
ssl.sh: #10489: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 17:00:23 UTC 2017
ssl.sh: #10490: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 17:00:25 UTC 2017
ssl.sh: #10491: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 17:00:26 UTC 2017
ssl.sh: #10492: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30135 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30135 found at Sat Oct 21 17:00:28 UTC 2017
ssl.sh: #10493: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 30135 at Sat Oct 21 17:00:28 UTC 2017
kill -USR1 30135
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30135 killed at Sat Oct 21 17:00:29 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:00:29 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:00:29 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:00:29 UTC 2017
selfserv_9183 with PID 31581 started at Sat Oct 21 17:00:29 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:00:32 UTC 2017
ssl.sh: #10494: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:00:33 UTC 2017
ssl.sh: #10495: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:00:35 UTC 2017
ssl.sh: #10496: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:00:37 UTC 2017
ssl.sh: #10497: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:00:38 UTC 2017
ssl.sh: #10498: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:00:40 UTC 2017
ssl.sh: #10499: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:00:42 UTC 2017
ssl.sh: #10500: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:00:43 UTC 2017
ssl.sh: #10501: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:00:45 UTC 2017
ssl.sh: #10502: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:00:47 UTC 2017
ssl.sh: #10503: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:00:48 UTC 2017
ssl.sh: #10504: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:00:50 UTC 2017
ssl.sh: #10505: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:00:52 UTC 2017
ssl.sh: #10506: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:00:53 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10507: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:00:55 UTC 2017
ssl.sh: #10508: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:00:57 UTC 2017
ssl.sh: #10509: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:00:58 UTC 2017
ssl.sh: #10510: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:01:00 UTC 2017
ssl.sh: #10511: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:01:01 UTC 2017
ssl.sh: #10512: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:01:03 UTC 2017
ssl.sh: #10513: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:01:05 UTC 2017
ssl.sh: #10514: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:01:06 UTC 2017
ssl.sh: #10515: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:01:08 UTC 2017
ssl.sh: #10516: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:01:10 UTC 2017
ssl.sh: #10517: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:01:12 UTC 2017
ssl.sh: #10518: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:01:13 UTC 2017
ssl.sh: #10519: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:01:15 UTC 2017
ssl.sh: #10520: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:01:17 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10521: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:01:18 UTC 2017
ssl.sh: #10522: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:01:20 UTC 2017
ssl.sh: #10523: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:01:21 UTC 2017
ssl.sh: #10524: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:01:23 UTC 2017
ssl.sh: #10525: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:01:25 UTC 2017
ssl.sh: #10526: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:01:26 UTC 2017
ssl.sh: #10527: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:01:28 UTC 2017
ssl.sh: #10528: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:01:29 UTC 2017
ssl.sh: #10529: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:01:31 UTC 2017
ssl.sh: #10530: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:01:33 UTC 2017
ssl.sh: #10531: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:01:34 UTC 2017
ssl.sh: #10532: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:01:36 UTC 2017
ssl.sh: #10533: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31581 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31581 found at Sat Oct 21 17:01:38 UTC 2017
ssl.sh: #10534: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 31581 at Sat Oct 21 17:01:38 UTC 2017
kill -USR1 31581
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31581 killed at Sat Oct 21 17:01:38 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:01:38 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:01:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:01:39 UTC 2017
selfserv_9183 with PID 569 started at Sat Oct 21 17:01:39 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:01:41 UTC 2017
ssl.sh: #10535: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:01:42 UTC 2017
ssl.sh: #10536: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:01:44 UTC 2017
ssl.sh: #10537: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:01:45 UTC 2017
ssl.sh: #10538: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:01:47 UTC 2017
ssl.sh: #10539: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:01:48 UTC 2017
ssl.sh: #10540: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:01:50 UTC 2017
ssl.sh: #10541: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:01:51 UTC 2017
ssl.sh: #10542: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:01:53 UTC 2017
ssl.sh: #10543: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:01:54 UTC 2017
ssl.sh: #10544: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:01:56 UTC 2017
ssl.sh: #10545: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:01:57 UTC 2017
ssl.sh: #10546: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:01:59 UTC 2017
ssl.sh: #10547: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:02:01 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10548: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:02:02 UTC 2017
ssl.sh: #10549: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:02:04 UTC 2017
ssl.sh: #10550: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:02:05 UTC 2017
ssl.sh: #10551: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:02:06 UTC 2017
ssl.sh: #10552: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:02:08 UTC 2017
ssl.sh: #10553: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:02:09 UTC 2017
ssl.sh: #10554: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:02:11 UTC 2017
ssl.sh: #10555: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:02:12 UTC 2017
ssl.sh: #10556: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:02:13 UTC 2017
ssl.sh: #10557: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:02:15 UTC 2017
ssl.sh: #10558: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:02:17 UTC 2017
ssl.sh: #10559: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:02:18 UTC 2017
ssl.sh: #10560: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:02:20 UTC 2017
ssl.sh: #10561: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:02:21 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10562: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:02:23 UTC 2017
ssl.sh: #10563: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:02:24 UTC 2017
ssl.sh: #10564: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:02:26 UTC 2017
ssl.sh: #10565: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:02:27 UTC 2017
ssl.sh: #10566: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:02:28 UTC 2017
ssl.sh: #10567: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:02:30 UTC 2017
ssl.sh: #10568: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:02:31 UTC 2017
ssl.sh: #10569: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:02:33 UTC 2017
ssl.sh: #10570: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:02:34 UTC 2017
ssl.sh: #10571: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:02:36 UTC 2017
ssl.sh: #10572: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:02:37 UTC 2017
ssl.sh: #10573: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:02:39 UTC 2017
ssl.sh: #10574: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 569 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 569 found at Sat Oct 21 17:02:40 UTC 2017
ssl.sh: #10575: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 569 at Sat Oct 21 17:02:40 UTC 2017
kill -USR1 569
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 569 killed at Sat Oct 21 17:02:41 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:02:41 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:02:41 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2037 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2037 found at Sat Oct 21 17:02:41 UTC 2017
selfserv_9183 with PID 2037 started at Sat Oct 21 17:02:41 UTC 2017
trying to kill selfserv_9183 with PID 2037 at Sat Oct 21 17:02:41 UTC 2017
kill -USR1 2037
./ssl.sh: line 197:  2037 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9183 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2037 killed at Sat Oct 21 17:02:42 UTC 2017
TIMESTAMP ssl END: Sat Oct 21 17:02:42 UTC 2017
Running tests for merge
TIMESTAMP merge BEGIN: Sat Oct 21 17:02:42 UTC 2017
merge.sh: Merge Tests ===============================
merge.sh: Creating an SDR key & Encrypt
sdrtest -d . -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/tests.v3.3868 -t Test2 -f ../tests.pw
merge.sh: #10576: Creating SDR Key  - PASSED
merge.sh: Merging in Key for Existing user
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id dave --source-dir ../dave -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #10577: Merging Dave  - PASSED
merge.sh: Merging in new user 
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id server --source-dir ../server -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #10578: Merging server  - PASSED
merge.sh: Merging in new chain 
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id ext_client --source-dir ../ext_client -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #10579: Merging ext_client  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id conflict1 --source-dir conflict1 -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #10580: Merging conflicting nicknames 1  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id conflict2 --source-dir conflict2 -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #10581: Merging conflicting nicknames 2  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #4)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 45 (0x2d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:28:37 2017
            Not After : Fri Oct 21 13:28:37 2022
        Subject: "CN=TestUser45,E=TestUser45@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ee:a0:2f:81:79:76:05:ec:f4:d9:3a:be:ff:05:2e:f7:
                    e6:f5:de:87:8b:dc:33:bb:c0:a3:bf:2d:6d:b8:40:fb:
                    a9:63:c4:ef:c5:d2:b6:03:0a:c0:e0:cb:45:54:d1:b6:
                    e7:e8:bb:a1:62:ed:29:ad:b9:92:36:a9:da:34:a1:7b:
                    f5:ca:b6:b7:a9:85:ff:fc:83:f8:8d:68:8e:50:8e:d7:
                    b6:9a:be:26:8a:fe:f4:7c:3e:23:9b:a6:7e:dd:4a:93:
                    54:10:d5:31:7e:7d:d4:54:b2:9f:c3:ca:fb:6e:7b:dd:
                    3e:7b:78:f4:27:cd:ca:2f:ae:d2:ef:19:1f:6f:63:9f:
                    db:79:ca:43:ed:27:7b:d7:61:83:a2:8a:0c:b9:e7:89:
                    27:ad:76:d0:2e:5a:77:c0:0f:db:1f:63:f5:7b:e4:7a:
                    93:6d:73:79:87:93:f1:c1:b2:04:35:43:53:41:9e:c1:
                    47:89:8f:60:ae:c8:24:37:e5:43:67:4c:be:f1:45:6a:
                    f1:81:78:38:54:d0:ea:20:84:cb:39:50:24:5e:c2:57:
                    de:01:9a:d4:81:3c:ba:bc:ce:b9:f5:89:d3:7f:2c:96:
                    b3:22:d8:84:11:57:13:66:d7:54:59:2f:46:1b:80:b9:
                    63:1c:98:2b:ec:88:2d:cd:30:05:e4:e8:f2:7b:9a:83
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e5:f6:7b:f9:54:ce:c4:70:e5:34:15:6a:de:19:71:db:
        07:ef:a1:2d:47:2c:e8:ff:ef:58:97:65:9c:ba:a9:57:
        0c:be:22:fe:9f:6b:df:60:2e:f3:b3:c1:28:02:d4:58:
        3a:be:bd:b6:b6:75:91:ef:db:72:d3:f8:80:97:50:34:
        b7:73:25:03:db:be:33:86:21:45:e6:3f:1d:79:38:48:
        59:53:18:b8:27:a7:4d:9a:10:9c:93:64:25:bc:8d:3a:
        6a:37:f1:3f:e6:32:bc:79:b2:8c:26:90:d6:2c:34:4c:
        8f:bb:99:4d:ed:42:dd:0b:4b:bd:4d:35:41:4d:4c:e2:
        e7:58:d0:e2:c9:41:14:57:13:66:f0:b9:88:e8:56:4e:
        de:eb:72:a0:0b:a4:8b:53:8f:b2:91:74:9d:f2:d2:75:
        df:49:f0:25:e9:83:4e:3b:ad:02:bd:12:32:05:d3:a1:
        e6:32:84:05:19:44:72:88:f2:81:61:18:a9:11:a0:68:
        95:04:84:43:36:c3:d4:76:cf:66:22:77:ef:0b:60:c5:
        2d:9f:72:c8:cc:87:8a:67:c4:e6:54:6e:e4:2e:c1:dd:
        1a:7a:9d:71:89:18:a5:f5:1b:b4:93:b3:13:dc:ee:a3:
        5e:4e:da:03:78:c1:9a:2e:c9:17:0b:6a:0c:1b:38:2a
    Fingerprint (SHA-256):
        ED:A5:AD:55:B0:3D:61:6E:B1:00:D3:F1:D4:56:EA:B4:CE:6A:B1:E7:A2:85:29:BA:FE:54:7A:C6:CA:D9:3A:B0
    Fingerprint (SHA1):
        C5:64:01:AF:79:1B:86:7A:13:14:98:D6:93:06:3E:31:C0:FF:F0:4A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #10582: Verify nicknames were deconflicted (Alice #4)  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #100)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 46 (0x2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 13:28:48 2017
            Not After : Fri Oct 21 13:28:48 2022
        Subject: "CN=TestUser46,E=TestUser46@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:fc:51:5b:85:e7:b3:6d:53:ec:92:17:9d:e2:08:5d:
                    95:00:9d:ff:2f:cc:46:5b:fe:bb:46:cf:3f:d1:bf:66:
                    45:65:3e:2b:e2:88:63:84:f3:ff:f5:bc:5a:0e:19:05:
                    d5:96:77:d3:2c:1a:6e:e6:b2:88:e9:e5:5a:8a:0e:a5:
                    01:a0:ec:cb:69:dd:29:fb:1d:3b:b3:f0:f7:b8:e0:f5:
                    99:4e:d2:45:69:3d:72:e5:c1:7f:b8:16:6e:3c:f3:78:
                    8e:cb:a9:ce:a2:51:e6:8d:4a:26:ae:ca:b6:25:28:2d:
                    e6:cc:48:be:67:00:b9:b2:a5:59:b3:47:5e:61:c8:75:
                    62:7a:a9:44:1c:bd:1e:c2:21:82:4e:db:1b:a6:ac:da:
                    2d:9f:74:83:c5:41:d1:e0:ed:39:6e:c8:ce:ce:ea:3d:
                    2c:48:a6:f8:aa:87:a1:c9:1c:21:96:90:cd:7c:c3:9f:
                    f8:ef:66:86:64:08:81:7b:c0:36:d4:b4:23:46:de:b1:
                    ef:0a:7a:bb:12:2e:f0:a2:4c:e9:2e:15:43:eb:19:e9:
                    d9:58:c4:54:ad:c2:0a:56:1c:95:67:3a:73:67:3b:e9:
                    45:ab:65:97:d2:b5:76:1d:2d:f8:1b:29:a3:f0:67:a7:
                    b6:31:76:21:a9:3f:a0:14:c8:07:46:19:53:05:34:67
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c8:64:fa:1d:ab:81:f6:6b:13:93:36:ca:e8:42:ea:6e:
        f2:e5:48:51:00:d2:70:ae:26:0c:ed:2c:c8:e4:0f:28:
        9f:ed:f2:d3:04:57:91:aa:fe:ea:86:f4:84:89:fe:17:
        28:eb:69:3e:80:5c:45:e9:f4:62:5d:e4:5f:2f:8b:86:
        5e:0d:a9:46:8b:40:bb:6c:ae:20:6b:9b:94:24:d4:9a:
        72:6f:b7:f3:08:b5:f5:34:9c:ea:76:08:27:b8:07:c7:
        5d:6b:47:25:be:8a:cd:97:1b:99:68:62:96:e3:60:45:
        f5:62:01:ae:e9:7c:c1:2a:30:96:c7:f9:20:00:9e:e1:
        d0:07:de:53:ec:ff:5d:e7:50:ed:21:7d:c6:3a:9f:5f:
        31:aa:4f:5f:44:6c:9c:74:42:ff:a6:13:4a:4b:36:a9:
        19:c1:e5:94:b6:1a:05:2a:1f:69:0e:59:39:dd:63:04:
        41:1a:7e:14:b7:73:83:2b:86:fa:ed:61:49:92:ae:6f:
        97:6a:0f:71:9f:20:30:b0:64:74:dc:31:d8:25:18:c1:
        40:ac:4b:26:45:82:73:9e:23:d9:ce:c1:e6:c8:d1:00:
        b4:04:46:29:4e:5a:6c:22:69:1d:d7:53:48:cb:bc:5f:
        3a:04:5f:97:5e:23:cc:70:06:33:a7:29:21:b1:f7:88
    Fingerprint (SHA-256):
        5B:6B:E6:FB:CB:16:44:BC:CC:CC:B4:61:B0:47:70:55:DD:8B:BA:78:A4:6F:4A:D7:36:A5:C6:1D:9F:6B:04:EB
    Fingerprint (SHA1):
        7E:76:03:CD:4A:01:89:CB:25:48:D8:35:0C:4E:DD:16:0F:D4:0E:51
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #10583: Verify nicknames were deconflicted (Alice #100)  - PASSED
merge.sh: Merging in SDR 
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id sdr --source-dir ../SDR -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #10584: Merging SDR  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
TestCA-dsa                                                   CT,C,C
Alice                                                        u,u,u
Alice-dsamixed                                               u,u,u
Alice-ec                                                     u,u,u
bob@bogus.com                                                ,,   
Dave                                                         u,u,u
eve@bogus.com                                                ,,   
bob-ec@bogus.com                                             ,,   
Dave-ec                                                      u,u,u
TestCA                                                       CT,C,C
TestCA-ec                                                    CT,C,C
Alice-dsa                                                    u,u,u
Alice-ecmixed                                                u,u,u
Dave-dsamixed                                                u,u,u
Dave-dsa                                                     u,u,u
Dave-ecmixed                                                 u,u,u
localhost.localdomain                                        u,u,u
localhost.localdomain-dsamixed                               u,u,u
localhost.localdomain-ec                                     u,u,u
localhost-sni.localdomain-dsa                                u,u,u
localhost-sni.localdomain-ecmixed                            u,u,u
localhost.localdomain-dsa                                    u,u,u
localhost.localdomain-ecmixed                                u,u,u
localhost-sni.localdomain                                    u,u,u
localhost-sni.localdomain-dsamixed                           u,u,u
localhost-sni.localdomain-ec                                 u,u,u
ExtendedSSLUser-dsa                                          u,u,u
serverCA-dsa                                                 C,C,C
ExtendedSSLUser-ecmixed                                      u,u,u
clientCA-ec                                                  T,C,C
chain-2-clientCA-ec                                          ,,   
chain-1-clientCA-dsa                                         ,,   
chain-2-clientCA                                             ,,   
clientCA                                                     T,C,C
ExtendedSSLUser                                              u,u,u
serverCA                                                     C,C,C
ExtendedSSLUser-dsamixed                                     u,u,u
ExtendedSSLUser-ec                                           u,u,u
serverCA-ec                                                  C,C,C
chain-1-clientCA                                             ,,   
clientCA-dsa                                                 T,C,C
chain-2-clientCA-dsa                                         ,,   
chain-1-clientCA-ec                                          ,,   
Alice #1                                                     ,,   
Alice #2                                                     ,,   
Alice #99                                                    ,,   
Alice #3                                                     ,,   
Alice #100                                                   ,,   
Alice #4                                                     ,,   
CRL names                                CRL Type
TestCA                                   CRL  
TestCA-ec                                CRL  
merge.sh: Decrypt - With Original SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/tests.v3.3868 -t Test2 -f ../tests.pw
merge.sh: #10585: Decrypt - Value 3  - PASSED
merge.sh: Decrypt - With Merged SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/tests.v1.3868 -t Test1 -f ../tests.pw
merge.sh: #10586: Decrypt - Value 1  - PASSED
merge.sh: Signing with merged key  ------------------
cmsutil -S -T -N Dave -H SHA1 -i alice.txt -d . -p nss -o dave.dsig
merge.sh: #10587: Create Detached Signature Dave . - PASSED
cmsutil -D -i dave.dsig -c alice.txt -d . 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
merge.sh: #10588: Verifying Dave's Detached Signature  - PASSED
merge.sh: verifying  merged cert  ------------------
certutil -V -n ExtendedSSLUser -u C -d .
certutil: certificate is valid
merge.sh: #10589: Verifying ExtendedSSL User Cert  - PASSED
merge.sh: verifying  merged crl  ------------------
crlutil -L -n TestCA -d .
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US"
    This Update: Sat Oct 21 13:30:25 2017
    Entry 1 (0x1):
        Serial Number: 40 (0x28)
        Revocation Date: Sat Oct 21 13:21:23 2017
        Entry Extensions:
            Name: CRL reason code
    Entry 2 (0x2):
        Serial Number: 42 (0x2a)
        Revocation Date: Sat Oct 21 13:30:18 2017
    CRL Extensions:
        Name: Certificate Issuer Alt Name
        RFC822 Name: "caemail@ca.com"
        DNS name: "ca.com"
        Directory Name: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=Califo
            rnia,C=US"
        URI: "http://ca.com"
        IP Address:
            87:0b:31:39:32:2e:31:36:38:2e:30:2e:31
merge.sh: #10590: Verifying TestCA CRL  - PASSED
TEST_MODE=UPGRADE_DB
NSS_DEFAULT_DB_TYPE=sql
TIMESTAMP merge END: Sat Oct 21 17:03:03 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Sat Oct 21 17:03:03 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Sat Oct 21 17:03:03 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #10591: ec(perf) test - PASSED
TIMESTAMP ecperf END: Sat Oct 21 17:03:03 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Sat Oct 21 17:03:03 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #10592: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #10593: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #10594: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #10595: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #10596: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #10597: pk11 ec tests - PASSED
TIMESTAMP ectest END: Sat Oct 21 17:03:10 UTC 2017
TIMESTAMP ec END: Sat Oct 21 17:03:10 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Sat Oct 21 17:03:10 UTC 2017
gtests: der_gtest pk11_gtest
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (5 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (2 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (8 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #10598: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #10599: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #10600: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #10601: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #10602: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #10603: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #10604: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #10605: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #10606: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #10607: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #10608: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #10609: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #10610: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #10611: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #10612: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #10613: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #10614: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: pk11_gtest ===============================
executing pk11_gtest
[==========] Running 21 tests from 7 test cases.
[----------] Global test environment set-up.
[----------] 6 tests from Pkcs11AESKeyWrapTest
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest1
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest1 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest2
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest2 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest3
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest3 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest4
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest4 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest5
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest5 (1 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest6
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest6 (0 ms)
[----------] 6 tests from Pkcs11AESKeyWrapTest (3 ms total)
[----------] 3 tests from Pkcs11ChaCha20Poly1305Test
[ RUN      ] Pkcs11ChaCha20Poly1305Test.GenerateEncryptDecrypt
[       OK ] Pkcs11ChaCha20Poly1305Test.GenerateEncryptDecrypt (0 ms)
[ RUN      ] Pkcs11ChaCha20Poly1305Test.CheckTestVector1
[       OK ] Pkcs11ChaCha20Poly1305Test.CheckTestVector1 (0 ms)
[ RUN      ] Pkcs11ChaCha20Poly1305Test.CheckTestVector2
[       OK ] Pkcs11ChaCha20Poly1305Test.CheckTestVector2 (1 ms)
[----------] 3 tests from Pkcs11ChaCha20Poly1305Test (2 ms total)
[----------] 2 tests from Pkcs11ExportTest
[ RUN      ] Pkcs11ExportTest.DeriveNonExport
[       OK ] Pkcs11ExportTest.DeriveNonExport (1 ms)
[ RUN      ] Pkcs11ExportTest.DeriveExport
[       OK ] Pkcs11ExportTest.DeriveExport (0 ms)
[----------] 2 tests from Pkcs11ExportTest (2 ms total)
[----------] 2 tests from Pkcs11Pbkdf2Test
[ RUN      ] Pkcs11Pbkdf2Test.DeriveKnown1
[       OK ] Pkcs11Pbkdf2Test.DeriveKnown1 (155 ms)
[ RUN      ] Pkcs11Pbkdf2Test.DeriveKnown2
[       OK ] Pkcs11Pbkdf2Test.DeriveKnown2 (334 ms)
[----------] 2 tests from Pkcs11Pbkdf2Test (489 ms total)
[----------] 5 tests from TlsPrfTest
[ RUN      ] TlsPrfTest.ExtendedMsParamErr
[       OK ] TlsPrfTest.ExtendedMsParamErr (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsDhTlsPrf
[       OK ] TlsPrfTest.ExtendedMsDhTlsPrf (1 ms)
[ RUN      ] TlsPrfTest.ExtendedMsRsaTlsPrf
[       OK ] TlsPrfTest.ExtendedMsRsaTlsPrf (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsDhSha256
[       OK ] TlsPrfTest.ExtendedMsDhSha256 (1 ms)
[ RUN      ] TlsPrfTest.ExtendedMsRsaSha256
[       OK ] TlsPrfTest.ExtendedMsRsaSha256 (0 ms)
[----------] 5 tests from TlsPrfTest (4 ms total)
[----------] 1 test from Pkcs11RsaPssTest
[ RUN      ] Pkcs11RsaPssTest.GenerateAndSignAndVerify
[       OK ] Pkcs11RsaPssTest.GenerateAndSignAndVerify (784 ms)
[----------] 1 test from Pkcs11RsaPssTest (784 ms total)
[----------] 2 tests from Pkcs11RsaPssVectorTest
[ RUN      ] Pkcs11RsaPssVectorTest.VerifyKnownSignature1
[       OK ] Pkcs11RsaPssVectorTest.VerifyKnownSignature1 (1 ms)
[ RUN      ] Pkcs11RsaPssVectorTest.VerifyKnownSignature2
[       OK ] Pkcs11RsaPssVectorTest.VerifyKnownSignature2 (2 ms)
[----------] 2 tests from Pkcs11RsaPssVectorTest (3 ms total)
[----------] Global test environment tear-down
[==========] 21 tests from 7 test cases ran. (1291 ms total)
[  PASSED  ] 21 tests.
gtests.sh: #10615: pk11_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/upgradedb/pk11_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #10616: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest1' - PASSED
gtests.sh: #10617: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest2' - PASSED
gtests.sh: #10618: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest3' - PASSED
gtests.sh: #10619: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest4' - PASSED
gtests.sh: #10620: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest5' - PASSED
gtests.sh: #10621: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest6' - PASSED
gtests.sh: #10622: 'Pkcs11ChaCha20Poly1305Test: GenerateEncryptDecrypt' - PASSED
gtests.sh: #10623: 'Pkcs11ChaCha20Poly1305Test: CheckTestVector1' - PASSED
gtests.sh: #10624: 'Pkcs11ChaCha20Poly1305Test: CheckTestVector2' - PASSED
gtests.sh: #10625: 'Pkcs11ExportTest: DeriveNonExport' - PASSED
gtests.sh: #10626: 'Pkcs11ExportTest: DeriveExport' - PASSED
gtests.sh: #10627: 'Pkcs11Pbkdf2Test: DeriveKnown1' - PASSED
gtests.sh: #10628: 'Pkcs11Pbkdf2Test: DeriveKnown2' - PASSED
gtests.sh: #10629: 'TlsPrfTest: ExtendedMsParamErr' - PASSED
gtests.sh: #10630: 'TlsPrfTest: ExtendedMsDhTlsPrf' - PASSED
gtests.sh: #10631: 'TlsPrfTest: ExtendedMsRsaTlsPrf' - PASSED
gtests.sh: #10632: 'TlsPrfTest: ExtendedMsDhSha256' - PASSED
gtests.sh: #10633: 'TlsPrfTest: ExtendedMsRsaSha256' - PASSED
gtests.sh: #10634: 'Pkcs11RsaPssTest: GenerateAndSignAndVerify' - PASSED
gtests.sh: #10635: 'Pkcs11RsaPssVectorTest: VerifyKnownSignature1' - PASSED
gtests.sh: #10636: 'Pkcs11RsaPssVectorTest: VerifyKnownSignature2' - PASSED
TIMESTAMP gtests END: Sat Oct 21 17:03:13 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Sat Oct 21 17:03:13 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #10637: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10638: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10639: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10640: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10641: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10642: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10643: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10644: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10645: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10646: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10647: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10648: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10649: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10650: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #10651: create certificate: sign  - PASSED
executing ssl_gtest
[==========] Running 816 tests from 15 test cases.
[----------] Global test environment set-up.
[----------] 60 tests from CipherSuiteRC4/TlsCipherSuiteTest
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/0 (412 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/1 (95 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/2 (142 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/3 (149 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/4 (129 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/5 (84 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/6 (94 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/7 (128 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/8 (149 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/9 (128 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/10 (84 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/11 (94 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/12 (122 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/13 (143 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/14 (125 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/0 (194 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/1 (242 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/2 (275 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/3 (324 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/4 (287 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/5 (193 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/6 (243 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/7 (275 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/8 (321 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/9 (287 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/10 (193 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/11 (242 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/12 (275 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/13 (324 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/14 (286 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/0 (85 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/1 (95 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/2 (129 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/3 (150 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/4 (128 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/5 (86 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/6 (96 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/7 (129 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/8 (151 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/9 (130 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/10 (85 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/11 (95 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/12 (128 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/13 (150 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/14 (128 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/0 (84 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/1 (93 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/2 (127 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/3 (149 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/4 (127 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/5 (84 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/6 (94 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/7 (127 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/8 (148 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/9 (127 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/10 (84 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/11 (94 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/12 (127 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/13 (149 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/14 (127 ms)
[----------] 60 tests from CipherSuiteRC4/TlsCipherSuiteTest (9569 ms total)
[----------] 48 tests from CipherSuiteAEAD12/TlsCipherSuiteTest
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/0 (85 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/1 (85 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/2 (298 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/3 (297 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/4 (129 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/5 (129 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/6 (85 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/7 (85 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/8 (299 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/9 (299 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/10 (131 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/11 (130 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/0 (192 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/1 (195 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/2 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/3 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/4 (279 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/5 (290 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/6 (193 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/7 (195 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/8 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/9 (6 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/10 (281 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/11 (291 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/0 (86 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/1 (86 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/2 (298 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/3 (299 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/4 (130 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/5 (130 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/6 (85 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/7 (86 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/8 (298 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/9 (299 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/10 (131 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/11 (134 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/0 (84 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/1 (84 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/2 (295 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/3 (297 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/4 (137 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/5 (138 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/6 (119 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/7 (125 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/8 (309 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/9 (293 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/10 (124 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/11 (124 ms)
[----------] 48 tests from CipherSuiteAEAD12/TlsCipherSuiteTest (8206 ms total)
[----------] 72 tests from CipherSuiteAEAD/TlsCipherSuiteTest
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/0 (122 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/1 (123 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/2 (122 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/3 (123 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/4 (180 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/5 (181 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/6 (127 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/7 (127 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/8 (185 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/9 (129 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/10 (130 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/11 (129 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/12 (130 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/13 (187 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/14 (186 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/15 (128 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/16 (128 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/17 (185 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/0 (276 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/1 (276 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/2 (287 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/3 (288 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/4 (345 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/5 (347 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/6 (274 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/7 (301 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/8 (345 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/9 (277 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/10 (278 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/11 (288 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/12 (290 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/13 (345 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/14 (346 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/15 (276 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/16 (288 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/17 (344 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/0 (128 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/1 (129 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/2 (129 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/3 (129 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/4 (185 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/5 (187 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/6 (128 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/7 (128 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/8 (183 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/9 (122 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/10 (123 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/11 (123 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/12 (124 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/13 (179 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/14 (181 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/15 (122 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/16 (122 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/17 (180 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/0 (122 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/1 (123 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/2 (122 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/3 (122 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/4 (184 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/5 (185 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/6 (126 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/7 (127 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/8 (183 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/9 (128 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/10 (129 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/11 (129 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/12 (129 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/13 (185 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/14 (187 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/15 (127 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/16 (126 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/17 (183 ms)
[----------] 72 tests from CipherSuiteAEAD/TlsCipherSuiteTest (13332 ms total)
[----------] 64 tests from CipherSuiteCBC12/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/0 (186 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/1 (85 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/2 (129 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/3 (128 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/4 (185 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/5 (85 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/6 (298 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/7 (298 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/8 (187 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/9 (85 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/10 (129 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/11 (129 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/12 (187 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/13 (86 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/14 (298 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/15 (299 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/0 (345 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/1 (195 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/2 (276 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/3 (288 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/4 (346 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/5 (194 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/6 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/7 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/8 (347 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/9 (195 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/10 (278 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/11 (290 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/12 (347 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/13 (196 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/14 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/15 (6 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/0 (188 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/1 (86 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/2 (129 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/3 (129 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/4 (188 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/5 (86 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/6 (301 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/7 (301 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/8 (188 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/9 (86 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/10 (131 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/11 (130 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/12 (187 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/13 (84 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/14 (300 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/15 (300 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/0 (186 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/1 (84 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/2 (128 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/3 (127 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/4 (183 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/5 (84 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/6 (297 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/7 (298 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/8 (186 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/9 (85 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/10 (129 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/11 (129 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/12 (185 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/13 (84 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/14 (297 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/15 (298 ms)
[----------] 64 tests from CipherSuiteCBC12/TlsCipherSuiteTest (11725 ms total)
[----------] 192 tests from CipherSuiteCBCStream/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/0 (94 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/1 (96 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/2 (89 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/3 (90 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/4 (122 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/5 (123 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/6 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/7 (129 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/8 (148 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/9 (150 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/10 (150 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/11 (150 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/12 (128 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/13 (129 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/14 (129 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/15 (129 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/16 (94 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/17 (95 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/18 (95 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/19 (95 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/20 (127 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/21 (129 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/22 (129 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/23 (129 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/24 (149 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/25 (149 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/26 (150 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/27 (150 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/28 (127 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/29 (128 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/30 (129 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/31 (129 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/32 (93 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/33 (95 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/34 (95 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/35 (95 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/36 (128 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/37 (128 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/38 (128 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/39 (128 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/40 (148 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/41 (149 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/42 (149 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/43 (145 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/44 (121 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/45 (122 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/46 (124 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/47 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/0 (241 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/1 (244 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/2 (243 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/3 (245 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/4 (275 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/5 (278 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/6 (277 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/7 (277 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/8 (324 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/9 (327 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/10 (327 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/11 (327 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/12 (287 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/13 (289 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/14 (289 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/15 (289 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/16 (242 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/17 (245 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/18 (244 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/19 (244 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/20 (275 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/21 (278 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/22 (278 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/23 (277 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/24 (324 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/25 (326 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/26 (326 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/27 (327 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/28 (287 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/29 (287 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/30 (289 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/31 (289 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/32 (241 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/33 (243 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/34 (244 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/35 (244 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/36 (275 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/37 (277 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/38 (277 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/39 (277 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/40 (324 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/41 (326 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/42 (325 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/43 (325 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/44 (286 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/45 (288 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/46 (288 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/47 (285 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/0 (96 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/1 (96 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/2 (96 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/3 (95 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/4 (128 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/5 (129 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/6 (129 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/7 (129 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/8 (150 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/9 (150 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/10 (150 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/11 (150 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/12 (128 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/13 (128 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/14 (128 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/15 (129 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/16 (95 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/17 (96 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/18 (97 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/19 (96 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/20 (128 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/21 (130 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/22 (130 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/23 (129 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/24 (150 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/25 (151 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/26 (151 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/27 (151 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/28 (128 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/29 (129 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/30 (129 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/31 (129 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/32 (95 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/33 (96 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/34 (96 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/35 (96 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/36 (128 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/37 (129 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/38 (129 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/39 (125 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/40 (150 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/41 (151 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/42 (151 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/43 (151 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/44 (128 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/45 (129 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/46 (128 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/47 (129 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/0 (93 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/1 (95 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/2 (95 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/3 (94 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/4 (127 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/5 (128 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/6 (128 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/7 (128 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/8 (148 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/9 (149 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/10 (149 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/11 (149 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/12 (127 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/13 (128 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/14 (127 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/15 (127 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/16 (93 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/17 (95 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/18 (94 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/19 (95 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/20 (127 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/21 (128 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/22 (128 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/23 (128 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/24 (148 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/25 (149 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/26 (149 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/27 (149 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/28 (127 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/29 (128 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/30 (128 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/31 (129 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/32 (93 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/33 (95 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/34 (94 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/35 (94 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/36 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/37 (127 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/38 (127 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/39 (127 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/40 (148 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/41 (149 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/42 (148 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/43 (148 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/44 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/45 (127 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/46 (127 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/47 (127 ms)
[----------] 192 tests from CipherSuiteCBCStream/TlsCipherSuiteTest (31635 ms total)
[----------] 96 tests from CipherSuiteCBCDatagram/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/0 (96 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/1 (95 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/2 (95 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/3 (129 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/4 (130 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/5 (130 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/6 (151 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/7 (151 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/8 (151 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/9 (130 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/10 (130 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/11 (130 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/12 (95 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/13 (98 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/14 (95 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/15 (128 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/16 (129 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/17 (130 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/18 (151 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/19 (158 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/20 (159 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/21 (158 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/22 (174 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/23 (125 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/0 (236 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/1 (235 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/2 (239 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/3 (283 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/4 (273 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/5 (272 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/6 (329 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/7 (332 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/8 (330 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/9 (293 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/10 (291 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/11 (296 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/12 (245 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/13 (245 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/14 (245 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/15 (280 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/16 (283 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/17 (283 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/18 (343 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/19 (329 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/20 (334 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/21 (292 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/22 (291 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/23 (291 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/0 (97 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/1 (96 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/2 (96 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/3 (131 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/4 (131 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/5 (132 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/6 (153 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/7 (154 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/8 (153 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/9 (131 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/10 (133 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/11 (134 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/12 (97 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/13 (97 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/14 (97 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/15 (131 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/16 (131 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/17 (131 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/18 (154 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/19 (153 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/20 (154 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/21 (131 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/22 (128 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/23 (131 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/0 (98 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/1 (96 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/2 (96 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/3 (130 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/4 (130 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/5 (130 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/6 (152 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/7 (152 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/8 (151 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/9 (130 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/10 (130 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/11 (130 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/12 (95 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/13 (95 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/14 (95 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/15 (129 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/16 (129 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/17 (129 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/18 (152 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/19 (152 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/20 (152 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/21 (129 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/22 (129 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/23 (129 ms)
[----------] 96 tests from CipherSuiteCBCDatagram/TlsCipherSuiteTest (16141 ms total)
[----------] 8 tests from TestSecurityStatus/SecurityStatusTest
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/0
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/0 (129 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/1
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/1 (86 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/2 (124 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/3
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/3 (80 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/4
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/4 (80 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/5 (79 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/6
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/6 (80 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/7 (122 ms)
[----------] 8 tests from TestSecurityStatus/SecurityStatusTest (780 ms total)
[----------] 72 tests from DamageYStream/TlsDamageDHYTest
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301b15005346ad404b132ab8687f4190e4147da74bb61ce557287d0...
record new: [1184] 020000510301b15005346ad404b132ab8687f4190e4147da74bb61ce557287d0...
server: Original packet: [1189] 16030104a0020000510301b15005346ad404b132ab8687f4190e4147da74bb61...
server: Filtered packet: [1189] 16030104a0020000510301b15005346ad404b132ab8687f4190e4147da74bb61...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/0 (104 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/1
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103011c287b12e726b01b3f786e539064f6591189ff8456c8ab942c91...
record new: [1184] 0200005103011c287b12e726b01b3f786e539064f6591189ff8456c8ab942c91...
server: Original packet: [1189] 16030104a00200005103011c287b12e726b01b3f786e539064f6591189ff8456...
server: Filtered packet: [1189] 16030104a00200005103011c287b12e726b01b3f786e539064f6591189ff8456...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/1 (102 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/2
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301d019ec63b88409992f9d2525ed7c63f9df3766dc2ccd338985a0...
record new: [1184] 020000510301d019ec63b88409992f9d2525ed7c63f9df3766dc2ccd338985a0...
server: Original packet: [1189] 16030104a0020000510301d019ec63b88409992f9d2525ed7c63f9df3766dc2c...
server: Filtered packet: [1189] 16030104a0020000510301d019ec63b88409992f9d2525ed7c63f9df3766dc2c...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/2 (102 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/3
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301d68a6b0270c2984e14b31e3077992042c7ace407413a0c2f6107...
record new: [1184] 020000510301d68a6b0270c2984e14b31e3077992042c7ace407413a0c2f6107...
server: Original packet: [1189] 16030104a0020000510301d68a6b0270c2984e14b31e3077992042c7ace40741...
server: Filtered packet: [1189] 16030104a0020000510301d68a6b0270c2984e14b31e3077992042c7ace40741...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/3 (102 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/4
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103019c90afd2ae0313b26a6ca70bfc57e2959ba326f536d5fbfc8f97...
record new: [1184] 0200005103019c90afd2ae0313b26a6ca70bfc57e2959ba326f536d5fbfc8f97...
server: Original packet: [1189] 16030104a00200005103019c90afd2ae0313b26a6ca70bfc57e2959ba326f536...
server: Filtered packet: [1189] 16030104a00200005103019c90afd2ae0313b26a6ca70bfc57e2959ba326f536...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/4 (102 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/5
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301603426be6e3aa76f593b11fdc1f9c4b21cc2d0812cf1428d7929...
record new: [1184] 020000510301603426be6e3aa76f593b11fdc1f9c4b21cc2d0812cf1428d7929...
server: Original packet: [1189] 16030104a0020000510301603426be6e3aa76f593b11fdc1f9c4b21cc2d0812c...
server: Filtered packet: [1189] 16030104a0020000510301603426be6e3aa76f593b11fdc1f9c4b21cc2d0812c...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/5 (102 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/6
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301e98b7b4ddec7fe09f0d2877898fecb49ea077c87c06c3ac745ae...
record new: [1184] 020000510301e98b7b4ddec7fe09f0d2877898fecb49ea077c87c06c3ac745ae...
server: Original packet: [1189] 16030104a0020000510301e98b7b4ddec7fe09f0d2877898fecb49ea077c87c0...
server: Filtered packet: [1189] 16030104a0020000510301e98b7b4ddec7fe09f0d2877898fecb49ea077c87c0...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/6 (102 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/7
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301ddd4df6c4c20073713d723dfed013125b8e32d485998af7f5580...
record new: [1184] 020000510301ddd4df6c4c20073713d723dfed013125b8e32d485998af7f5580...
server: Original packet: [1189] 16030104a0020000510301ddd4df6c4c20073713d723dfed013125b8e32d4859...
server: Filtered packet: [1189] 16030104a0020000510301ddd4df6c4c20073713d723dfed013125b8e32d4859...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/7 (102 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/8
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103010716b198f6ba7780575c418e7abfa9686a65511d6c2bb860030c...
record new: [1185] 0200005103010716b198f6ba7780575c418e7abfa9686a65511d6c2bb860030c...
server: Original packet: [1189] 16030104a00200005103010716b198f6ba7780575c418e7abfa9686a65511d6c...
server: Filtered packet: [1190] 16030104a10200005103010716b198f6ba7780575c418e7abfa9686a65511d6c...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/8 (102 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/9
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301704825852591ef11b224177e541d7352b3de0b991039bc33ddb8...
record new: [1185] 020000510301704825852591ef11b224177e541d7352b3de0b991039bc33ddb8...
server: Original packet: [1189] 16030104a0020000510301704825852591ef11b224177e541d7352b3de0b9910...
server: Filtered packet: [1190] 16030104a1020000510301704825852591ef11b224177e541d7352b3de0b9910...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/9 (102 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/10
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030175a930c543c489201374e44a9095d55356bd1d010275ddac3ae9...
record new: [1185] 02000051030175a930c543c489201374e44a9095d55356bd1d010275ddac3ae9...
server: Original packet: [1189] 16030104a002000051030175a930c543c489201374e44a9095d55356bd1d0102...
server: Filtered packet: [1190] 16030104a102000051030175a930c543c489201374e44a9095d55356bd1d0102...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/10 (103 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/11
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030107c3a2a1e863e9b9517616a894ca0eec8d8231de7d3c55ff6a3f...
record new: [1185] 02000051030107c3a2a1e863e9b9517616a894ca0eec8d8231de7d3c55ff6a3f...
server: Original packet: [1189] 16030104a002000051030107c3a2a1e863e9b9517616a894ca0eec8d8231de7d...
server: Filtered packet: [1190] 16030104a102000051030107c3a2a1e863e9b9517616a894ca0eec8d8231de7d...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/11 (102 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/12
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302a13bc814c41ca58ec78562aaae3418c983979eeede0898454981...
record new: [1184] 020000510302a13bc814c41ca58ec78562aaae3418c983979eeede0898454981...
server: Original packet: [1189] 16030204a0020000510302a13bc814c41ca58ec78562aaae3418c983979eeede...
server: Filtered packet: [1189] 16030204a0020000510302a13bc814c41ca58ec78562aaae3418c983979eeede...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/12 (101 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/13
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302c7366b0feda110bccdc6fad5576e94f6dd15e6a13d0e82cf6b20...
record new: [1184] 020000510302c7366b0feda110bccdc6fad5576e94f6dd15e6a13d0e82cf6b20...
server: Original packet: [1189] 16030204a0020000510302c7366b0feda110bccdc6fad5576e94f6dd15e6a13d...
server: Filtered packet: [1189] 16030204a0020000510302c7366b0feda110bccdc6fad5576e94f6dd15e6a13d...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/13 (106 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/14
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302fd3a5418db72754ac555abfc5f5d8510e7d22abb2d906aa741d0...
record new: [1184] 020000510302fd3a5418db72754ac555abfc5f5d8510e7d22abb2d906aa741d0...
server: Original packet: [1189] 16030204a0020000510302fd3a5418db72754ac555abfc5f5d8510e7d22abb2d...
server: Filtered packet: [1189] 16030204a0020000510302fd3a5418db72754ac555abfc5f5d8510e7d22abb2d...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/14 (117 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/15
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103027f459d3b0066114032bb2705112f7833109bc346ebb91a277073...
record new: [1184] 0200005103027f459d3b0066114032bb2705112f7833109bc346ebb91a277073...
server: Original packet: [1189] 16030204a00200005103027f459d3b0066114032bb2705112f7833109bc346eb...
server: Filtered packet: [1189] 16030204a00200005103027f459d3b0066114032bb2705112f7833109bc346eb...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/15 (116 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/16
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103020e86785917018fad1982c382507b4ec2621b020245dca81f6d35...
record new: [1184] 0200005103020e86785917018fad1982c382507b4ec2621b020245dca81f6d35...
server: Original packet: [1189] 16030204a00200005103020e86785917018fad1982c382507b4ec2621b020245...
server: Filtered packet: [1189] 16030204a00200005103020e86785917018fad1982c382507b4ec2621b020245...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/16 (106 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/17
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103029a90559e0a0f59a8a1f4e126083a4f3150e6aab05d5d37138c52...
record new: [1184] 0200005103029a90559e0a0f59a8a1f4e126083a4f3150e6aab05d5d37138c52...
server: Original packet: [1189] 16030204a00200005103029a90559e0a0f59a8a1f4e126083a4f3150e6aab05d...
server: Filtered packet: [1189] 16030204a00200005103029a90559e0a0f59a8a1f4e126083a4f3150e6aab05d...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/17 (117 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/18
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103026cac6393d402d1f1be437e379954ee2f6fbc9a536cfa8ecb26a1...
record new: [1184] 0200005103026cac6393d402d1f1be437e379954ee2f6fbc9a536cfa8ecb26a1...
server: Original packet: [1189] 16030204a00200005103026cac6393d402d1f1be437e379954ee2f6fbc9a536c...
server: Filtered packet: [1189] 16030204a00200005103026cac6393d402d1f1be437e379954ee2f6fbc9a536c...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/18 (117 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/19
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302e0df3e7a73fb8ad5c053289aa382d7083c42bf3287a4761597b0...
record new: [1184] 020000510302e0df3e7a73fb8ad5c053289aa382d7083c42bf3287a4761597b0...
server: Original packet: [1189] 16030204a0020000510302e0df3e7a73fb8ad5c053289aa382d7083c42bf3287...
server: Filtered packet: [1189] 16030204a0020000510302e0df3e7a73fb8ad5c053289aa382d7083c42bf3287...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/19 (115 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/20
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103027cb6c1580b0dc0dfc2ad40a0c9ab43d417ee108ceba3769bdf5c...
record new: [1185] 0200005103027cb6c1580b0dc0dfc2ad40a0c9ab43d417ee108ceba3769bdf5c...
server: Original packet: [1189] 16030204a00200005103027cb6c1580b0dc0dfc2ad40a0c9ab43d417ee108ceb...
server: Filtered packet: [1190] 16030204a10200005103027cb6c1580b0dc0dfc2ad40a0c9ab43d417ee108ceb...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/20 (117 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/21
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302852ff826cd91d7b21a8d318b02c3494cf352341ae080634d53a0...
record new: [1185] 020000510302852ff826cd91d7b21a8d318b02c3494cf352341ae080634d53a0...
server: Original packet: [1189] 16030204a0020000510302852ff826cd91d7b21a8d318b02c3494cf352341ae0...
server: Filtered packet: [1190] 16030204a1020000510302852ff826cd91d7b21a8d318b02c3494cf352341ae0...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/21 (105 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/22
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302fdd9807e3a0a903ef431de0a32f65602e6a3eda2a65b7ba67378...
record new: [1185] 020000510302fdd9807e3a0a903ef431de0a32f65602e6a3eda2a65b7ba67378...
server: Original packet: [1189] 16030204a0020000510302fdd9807e3a0a903ef431de0a32f65602e6a3eda2a6...
server: Filtered packet: [1190] 16030204a1020000510302fdd9807e3a0a903ef431de0a32f65602e6a3eda2a6...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/22 (117 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/23
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030274434c4bf0ccb4db0b44dbfe5b2fcac99762c5b43663aae76891...
record new: [1185] 02000051030274434c4bf0ccb4db0b44dbfe5b2fcac99762c5b43663aae76891...
server: Original packet: [1189] 16030204a002000051030274434c4bf0ccb4db0b44dbfe5b2fcac99762c5b436...
server: Filtered packet: [1190] 16030204a102000051030274434c4bf0ccb4db0b44dbfe5b2fcac99762c5b436...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/23 (117 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/24
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103035404f929d6a09b61df7ff8d50b6ef3030d189e8535115ea46103...
record new: [1186] 0200005103035404f929d6a09b61df7ff8d50b6ef3030d189e8535115ea46103...
server: Original packet: [1191] 16030304a20200005103035404f929d6a09b61df7ff8d50b6ef3030d189e8535...
server: Filtered packet: [1191] 16030304a20200005103035404f929d6a09b61df7ff8d50b6ef3030d189e8535...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/24 (115 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/25
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 02000051030343cd9c3f5bf79d8d42e4411f2f80848e306beec13afa46f4f330...
record new: [1186] 02000051030343cd9c3f5bf79d8d42e4411f2f80848e306beec13afa46f4f330...
server: Original packet: [1191] 16030304a202000051030343cd9c3f5bf79d8d42e4411f2f80848e306beec13a...
server: Filtered packet: [1191] 16030304a202000051030343cd9c3f5bf79d8d42e4411f2f80848e306beec13a...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/25 (117 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/26
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303aeba82b0b2c2e30a33ae105d5bd1250a930b96f5a711b27e8f17...
record new: [1186] 020000510303aeba82b0b2c2e30a33ae105d5bd1250a930b96f5a711b27e8f17...
server: Original packet: [1191] 16030304a2020000510303aeba82b0b2c2e30a33ae105d5bd1250a930b96f5a7...
server: Filtered packet: [1191] 16030304a2020000510303aeba82b0b2c2e30a33ae105d5bd1250a930b96f5a7...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/26 (116 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/27
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103030e748ef54405238f94a5af26ca4ef5ac845bdbfed40d4e03bd23...
record new: [1186] 0200005103030e748ef54405238f94a5af26ca4ef5ac845bdbfed40d4e03bd23...
server: Original packet: [1191] 16030304a20200005103030e748ef54405238f94a5af26ca4ef5ac845bdbfed4...
server: Filtered packet: [1191] 16030304a20200005103030e748ef54405238f94a5af26ca4ef5ac845bdbfed4...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/27 (116 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/28
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103034a0a860ef1658e5fa0f8d83220e71edbbcb0b8ed670957d0df6f...
record new: [1186] 0200005103034a0a860ef1658e5fa0f8d83220e71edbbcb0b8ed670957d0df6f...
server: Original packet: [1191] 16030304a20200005103034a0a860ef1658e5fa0f8d83220e71edbbcb0b8ed67...
server: Filtered packet: [1191] 16030304a20200005103034a0a860ef1658e5fa0f8d83220e71edbbcb0b8ed67...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/28 (117 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/29
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303957c585b574e4c36796a77e2fb5fe0d90472c2c37ab8c297a0af...
record new: [1186] 020000510303957c585b574e4c36796a77e2fb5fe0d90472c2c37ab8c297a0af...
server: Original packet: [1191] 16030304a2020000510303957c585b574e4c36796a77e2fb5fe0d90472c2c37a...
server: Filtered packet: [1191] 16030304a2020000510303957c585b574e4c36796a77e2fb5fe0d90472c2c37a...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/29 (115 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/30
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103033aa28317f7afbe952ca25b05cb345b706d09acbd84a404aafb93...
record new: [1186] 0200005103033aa28317f7afbe952ca25b05cb345b706d09acbd84a404aafb93...
server: Original packet: [1191] 16030304a20200005103033aa28317f7afbe952ca25b05cb345b706d09acbd84...
server: Filtered packet: [1191] 16030304a20200005103033aa28317f7afbe952ca25b05cb345b706d09acbd84...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/30 (116 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/31
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103036f8dd4fe828baf9a1f96382d80abdaf9dbb50977fbd767c14084...
record new: [1186] 0200005103036f8dd4fe828baf9a1f96382d80abdaf9dbb50977fbd767c14084...
server: Original packet: [1191] 16030304a20200005103036f8dd4fe828baf9a1f96382d80abdaf9dbb50977fb...
server: Filtered packet: [1191] 16030304a20200005103036f8dd4fe828baf9a1f96382d80abdaf9dbb50977fb...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/31 (117 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/32
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303ecbb83fdc396b5b496668073706d6fff89ff7de95924acf7ab24...
record new: [1187] 020000510303ecbb83fdc396b5b496668073706d6fff89ff7de95924acf7ab24...
server: Original packet: [1191] 16030304a2020000510303ecbb83fdc396b5b496668073706d6fff89ff7de959...
server: Filtered packet: [1192] 16030304a3020000510303ecbb83fdc396b5b496668073706d6fff89ff7de959...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/32 (116 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/33
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 02000051030330c6a23ee345d9542c1ebfa8e6c9dce073abefffc9ad48fc39a0...
record new: [1187] 02000051030330c6a23ee345d9542c1ebfa8e6c9dce073abefffc9ad48fc39a0...
server: Original packet: [1191] 16030304a202000051030330c6a23ee345d9542c1ebfa8e6c9dce073abefffc9...
server: Filtered packet: [1192] 16030304a302000051030330c6a23ee345d9542c1ebfa8e6c9dce073abefffc9...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/33 (117 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/34
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303a5340ca3c94371342a28e143fb2c4f6438b1ab6413c825c6623d...
record new: [1187] 020000510303a5340ca3c94371342a28e143fb2c4f6438b1ab6413c825c6623d...
server: Original packet: [1191] 16030304a2020000510303a5340ca3c94371342a28e143fb2c4f6438b1ab6413...
server: Filtered packet: [1192] 16030304a3020000510303a5340ca3c94371342a28e143fb2c4f6438b1ab6413...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/34 (102 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/35
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 02000051030373f1b7e8909fff7356d26f7d8eb88ddcff4fee3c223c1146f2da...
record new: [1187] 02000051030373f1b7e8909fff7356d26f7d8eb88ddcff4fee3c223c1146f2da...
server: Original packet: [1191] 16030304a202000051030373f1b7e8909fff7356d26f7d8eb88ddcff4fee3c22...
server: Filtered packet: [1192] 16030304a302000051030373f1b7e8909fff7356d26f7d8eb88ddcff4fee3c22...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/35 (103 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01008e661b74a6724a39230465897539b5437c237eed793086e8accde874fc91...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201008e661b74a6724a39230465897539b5437c237eed793086e8accd...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 16030101061000010201008e661b74a6724a39230465897539b5437c237eed79...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/0 (153 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/1
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100de9196c75f3ca2bc6119479a6ac9399dbe569b939158cd603002363bca65...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100de9196c75f3ca2bc6119479a6ac9399dbe569b939158cd603002...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 1603010106100001020100de9196c75f3ca2bc6119479a6ac9399dbe569b9391...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/1 (154 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/2
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c9f0dcfc4d3b52d61ae81eb906807f26dd668e75b48bdf310953f7408db6...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100c9f0dcfc4d3b52d61ae81eb906807f26dd668e75b48bdf310953...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 1603010106100001020100c9f0dcfc4d3b52d61ae81eb906807f26dd668e75b4...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/2 (153 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/3
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100487410a132b6c21e175bc1c6f7c3b3bff54ec12b22ccfa6defc1008e57c9...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100487410a132b6c21e175bc1c6f7c3b3bff54ec12b22ccfa6defc1...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 1603010106100001020100487410a132b6c21e175bc1c6f7c3b3bff54ec12b22...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/3 (154 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/4
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100d613f30348d6ac12dee3ae4b56343061c109a712b4f7d2a1dcf39f025611...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100d613f30348d6ac12dee3ae4b56343061c109a712b4f7d2a1dcf3...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [326] 1603010106100001020100d613f30348d6ac12dee3ae4b56343061c109a712b4...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/4 (154 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/5
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01007a65bdc035275182ad755d67bac2a9ec6c584c5772a84ef88e29b07a7572...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 1000010201007a65bdc035275182ad755d67bac2a9ec6c584c5772a84ef88e29...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [326] 16030101061000010201007a65bdc035275182ad755d67bac2a9ec6c584c5772...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/5 (154 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/6
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010044e209af585abf5e31178d773a8574849d00eff27718318c214d842e74f0...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 10000102010044e209af585abf5e31178d773a8574849d00eff27718318c214d...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [326] 160301010610000102010044e209af585abf5e31178d773a8574849d00eff277...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/6 (154 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/7
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01008bc799b773d545430eba3171ce8e62a7e6550d189dfac62b3686fed8eb11...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 1000010201008bc799b773d545430eba3171ce8e62a7e6550d189dfac62b3686...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [326] 16030101061000010201008bc799b773d545430eba3171ce8e62a7e6550d189d...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/7 (155 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/8
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100945abdcde75c041ef98b78f806f3c6825cd6566734f105ed2b3f6b025181...
handshake new: [259] 010101945abdcde75c041ef98b78f806f3c6825cd6566734f105ed2b3f6b0251...
record old: [262] 100001020100945abdcde75c041ef98b78f806f3c6825cd6566734f105ed2b3f...
record new: [263] 10000103010101945abdcde75c041ef98b78f806f3c6825cd6566734f105ed2b...
client: Original packet: [326] 1603010106100001020100945abdcde75c041ef98b78f806f3c6825cd6566734...
client: Filtered packet: [327] 160301010710000103010101945abdcde75c041ef98b78f806f3c6825cd65667...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/8 (154 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/9
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01003eae04380167f657b046ac012f2857326181187f1e580cfcb9a98cbc4866...
handshake new: [259] 0101013eae04380167f657b046ac012f2857326181187f1e580cfcb9a98cbc48...
record old: [262] 1000010201003eae04380167f657b046ac012f2857326181187f1e580cfcb9a9...
record new: [263] 100001030101013eae04380167f657b046ac012f2857326181187f1e580cfcb9...
client: Original packet: [326] 16030101061000010201003eae04380167f657b046ac012f2857326181187f1e...
client: Filtered packet: [327] 1603010107100001030101013eae04380167f657b046ac012f2857326181187f...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/9 (158 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/10
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100bcba2e74a70baea95a669e5c7ddf9948b11ee9ef5f60a5d929aea7b7b600...
handshake new: [259] 010100bcba2e74a70baea95a669e5c7ddf9948b11ee9ef5f60a5d929aea7b7b6...
record old: [262] 100001020100bcba2e74a70baea95a669e5c7ddf9948b11ee9ef5f60a5d929ae...
record new: [263] 10000103010100bcba2e74a70baea95a669e5c7ddf9948b11ee9ef5f60a5d929...
client: Original packet: [326] 1603010106100001020100bcba2e74a70baea95a669e5c7ddf9948b11ee9ef5f...
client: Filtered packet: [327] 160301010710000103010100bcba2e74a70baea95a669e5c7ddf9948b11ee9ef...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/10 (195 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/11
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01006f3b33dd29c8cd1424968c2380eeb5d3466d1dbf1f309562207cbff2dc85...
handshake new: [259] 0101006f3b33dd29c8cd1424968c2380eeb5d3466d1dbf1f309562207cbff2dc...
record old: [262] 1000010201006f3b33dd29c8cd1424968c2380eeb5d3466d1dbf1f309562207c...
record new: [263] 100001030101006f3b33dd29c8cd1424968c2380eeb5d3466d1dbf1f30956220...
client: Original packet: [326] 16030101061000010201006f3b33dd29c8cd1424968c2380eeb5d3466d1dbf1f...
client: Filtered packet: [327] 1603010107100001030101006f3b33dd29c8cd1424968c2380eeb5d3466d1dbf...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/11 (197 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/12
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010079dd704b7cf46794c37b2214c3f1c0713d0711efef9f1e6d2ef5f821b877...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 10000102010079dd704b7cf46794c37b2214c3f1c0713d0711efef9f1e6d2ef5...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 160302010610000102010079dd704b7cf46794c37b2214c3f1c0713d0711efef...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/12 (168 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/13
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100342580679aa713b1ba00f12cbbf34d9aeaa78e9b16f0a8a457a0bd85f26c...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100342580679aa713b1ba00f12cbbf34d9aeaa78e9b16f0a8a457a0...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 1603020106100001020100342580679aa713b1ba00f12cbbf34d9aeaa78e9b16...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/13 (154 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/14
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01001e3f6ccfb80f4c77eb44b6d5577d3783db7da4e246dfe028600f6f69cb4d...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201001e3f6ccfb80f4c77eb44b6d5577d3783db7da4e246dfe028600f...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 16030201061000010201001e3f6ccfb80f4c77eb44b6d5577d3783db7da4e246...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/14 (154 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/15
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010007c51c139f27006a708e54edbd782864c37e54108300bca6011cedd0b9bb...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 10000102010007c51c139f27006a708e54edbd782864c37e54108300bca6011c...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 160302010610000102010007c51c139f27006a708e54edbd782864c37e541083...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/15 (156 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/16
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c8a7cb7fdabb63cf7d9f4398d0b9e057c0e8a0aec4ce212cf641221c1f3d...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100c8a7cb7fdabb63cf7d9f4398d0b9e057c0e8a0aec4ce212cf641...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [342] 1603020106100001020100c8a7cb7fdabb63cf7d9f4398d0b9e057c0e8a0aec4...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/16 (155 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/17
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ab26fca6da9f5235ed547a40500521d921dc6ce115d21b615593656a67ca...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100ab26fca6da9f5235ed547a40500521d921dc6ce115d21b615593...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [342] 1603020106100001020100ab26fca6da9f5235ed547a40500521d921dc6ce115...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/17 (154 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/18
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100d9e05829edf7b501426c3b5ea9528e6ca9cb21609161200c4b48f5eb60b2...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100d9e05829edf7b501426c3b5ea9528e6ca9cb21609161200c4b48...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [342] 1603020106100001020100d9e05829edf7b501426c3b5ea9528e6ca9cb216091...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/18 (155 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/19
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100848e5e4d05f867a476814cd81c5f4fe9f55c1e95fc1e85b528e4a162714e...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100848e5e4d05f867a476814cd81c5f4fe9f55c1e95fc1e85b528e4...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [342] 1603020106100001020100848e5e4d05f867a476814cd81c5f4fe9f55c1e95fc...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/19 (154 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/20
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01000543e45415e4fa761ae103b4d4eb58d729695088e782f751b196b38cf09c...
handshake new: [259] 0101010543e45415e4fa761ae103b4d4eb58d729695088e782f751b196b38cf0...
record old: [262] 1000010201000543e45415e4fa761ae103b4d4eb58d729695088e782f751b196...
record new: [263] 100001030101010543e45415e4fa761ae103b4d4eb58d729695088e782f751b1...
client: Original packet: [342] 16030201061000010201000543e45415e4fa761ae103b4d4eb58d729695088e7...
client: Filtered packet: [343] 1603020107100001030101010543e45415e4fa761ae103b4d4eb58d729695088...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/20 (154 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/21
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c8214ccd2efa65d26419eb79ae5db282345127dae7c8faeca8151a0e82d2...
handshake new: [259] 010101c8214ccd2efa65d26419eb79ae5db282345127dae7c8faeca8151a0e82...
record old: [262] 100001020100c8214ccd2efa65d26419eb79ae5db282345127dae7c8faeca815...
record new: [263] 10000103010101c8214ccd2efa65d26419eb79ae5db282345127dae7c8faeca8...
client: Original packet: [342] 1603020106100001020100c8214ccd2efa65d26419eb79ae5db282345127dae7...
client: Filtered packet: [343] 160302010710000103010101c8214ccd2efa65d26419eb79ae5db282345127da...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/21 (155 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/22
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010012b61d6e2296d38cb157e9e4ff50596008cd3edf3e9be5f8de860e4cafb0...
handshake new: [259] 01010012b61d6e2296d38cb157e9e4ff50596008cd3edf3e9be5f8de860e4caf...
record old: [262] 10000102010012b61d6e2296d38cb157e9e4ff50596008cd3edf3e9be5f8de86...
record new: [263] 1000010301010012b61d6e2296d38cb157e9e4ff50596008cd3edf3e9be5f8de...
client: Original packet: [342] 160302010610000102010012b61d6e2296d38cb157e9e4ff50596008cd3edf3e...
client: Filtered packet: [343] 16030201071000010301010012b61d6e2296d38cb157e9e4ff50596008cd3edf...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/22 (180 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/23
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01007ac792fae3b7e2aa62bd377c3e4ab085367061999d5352cf1d715418b3f0...
handshake new: [259] 0101007ac792fae3b7e2aa62bd377c3e4ab085367061999d5352cf1d715418b3...
record old: [262] 1000010201007ac792fae3b7e2aa62bd377c3e4ab085367061999d5352cf1d71...
record new: [263] 100001030101007ac792fae3b7e2aa62bd377c3e4ab085367061999d5352cf1d...
client: Original packet: [342] 16030201061000010201007ac792fae3b7e2aa62bd377c3e4ab085367061999d...
client: Filtered packet: [343] 1603020107100001030101007ac792fae3b7e2aa62bd377c3e4ab08536706199...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/23 (198 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/24
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a0046723838dd565e3d388252e88db7c0df07f6b711a178af80fe676daf2...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100a0046723838dd565e3d388252e88db7c0df07f6b711a178af80f...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 1603030106100001020100a0046723838dd565e3d388252e88db7c0df07f6b71...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/24 (168 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/25
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010066bedf47bd7f5b0bbb4cf0cbf5ac16319db001a0d972277edc707306577a...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 10000102010066bedf47bd7f5b0bbb4cf0cbf5ac16319db001a0d972277edc70...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 160303010610000102010066bedf47bd7f5b0bbb4cf0cbf5ac16319db001a0d9...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/25 (168 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/26
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01006feda0a27175985d0d22abbfc7785fb7819037e794852f4421b30b78930b...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201006feda0a27175985d0d22abbfc7785fb7819037e794852f4421b3...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 16030301061000010201006feda0a27175985d0d22abbfc7785fb7819037e794...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/26 (169 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/27
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01008d87c4857ec0039a4e3cad9bc47847b58226b7a0864ffc2e6353540c68bb...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201008d87c4857ec0039a4e3cad9bc47847b58226b7a0864ffc2e6353...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 16030301061000010201008d87c4857ec0039a4e3cad9bc47847b58226b7a086...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/27 (168 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/28
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01000d19913e40b15f6c1139ea9c0d4ae71efbb986712a0d6dfd7737bdc4827d...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 1000010201000d19913e40b15f6c1139ea9c0d4ae71efbb986712a0d6dfd7737...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [318] 16030301061000010201000d19913e40b15f6c1139ea9c0d4ae71efbb986712a...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/28 (167 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/29
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100379b4ed2c83705f8c79a49e8036c5fab311a527a8c7f55f471a96b0d0070...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100379b4ed2c83705f8c79a49e8036c5fab311a527a8c7f55f471a9...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [318] 1603030106100001020100379b4ed2c83705f8c79a49e8036c5fab311a527a8c...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/29 (168 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/30
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ce308c0d66982a2a76e96d3d2f41805a885e1f8f7e8ca586f29aa3c7c766...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100ce308c0d66982a2a76e96d3d2f41805a885e1f8f7e8ca586f29a...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [318] 1603030106100001020100ce308c0d66982a2a76e96d3d2f41805a885e1f8f7e...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/30 (169 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/31
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100aba228778547ffc85af3c58e5d4b85e5cc5dce4aa7bffe274257946db232...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100aba228778547ffc85af3c58e5d4b85e5cc5dce4aa7bffe274257...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [318] 1603030106100001020100aba228778547ffc85af3c58e5d4b85e5cc5dce4aa7...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/31 (166 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/32
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e1a9eb486dc092071b212c88c4f203bbe5d0364ff8717a1bc537485de0d3...
handshake new: [259] 010101e1a9eb486dc092071b212c88c4f203bbe5d0364ff8717a1bc537485de0...
record old: [262] 100001020100e1a9eb486dc092071b212c88c4f203bbe5d0364ff8717a1bc537...
record new: [263] 10000103010101e1a9eb486dc092071b212c88c4f203bbe5d0364ff8717a1bc5...
client: Original packet: [318] 1603030106100001020100e1a9eb486dc092071b212c88c4f203bbe5d0364ff8...
client: Filtered packet: [319] 160303010710000103010101e1a9eb486dc092071b212c88c4f203bbe5d0364f...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/32 (158 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/33
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100222c44d7842953f13921822f30898220bd7a3dfd68648b0db4c67c95248e...
handshake new: [259] 010101222c44d7842953f13921822f30898220bd7a3dfd68648b0db4c67c9524...
record old: [262] 100001020100222c44d7842953f13921822f30898220bd7a3dfd68648b0db4c6...
record new: [263] 10000103010101222c44d7842953f13921822f30898220bd7a3dfd68648b0db4...
client: Original packet: [318] 1603030106100001020100222c44d7842953f13921822f30898220bd7a3dfd68...
client: Filtered packet: [319] 160303010710000103010101222c44d7842953f13921822f30898220bd7a3dfd...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/33 (168 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/34
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010097cbe1fa57558c35e5a4468fd938b56e36651faa609292add29b6b313950...
handshake new: [259] 01010097cbe1fa57558c35e5a4468fd938b56e36651faa609292add29b6b3139...
record old: [262] 10000102010097cbe1fa57558c35e5a4468fd938b56e36651faa609292add29b...
record new: [263] 1000010301010097cbe1fa57558c35e5a4468fd938b56e36651faa609292add2...
client: Original packet: [318] 160303010610000102010097cbe1fa57558c35e5a4468fd938b56e36651faa60...
client: Filtered packet: [319] 16030301071000010301010097cbe1fa57558c35e5a4468fd938b56e36651faa...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/34 (198 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/35
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e50ed1048148c434845c599cd535018bf4c06e54df0f0d6dbc37f7368bc6...
handshake new: [259] 010100e50ed1048148c434845c599cd535018bf4c06e54df0f0d6dbc37f7368b...
record old: [262] 100001020100e50ed1048148c434845c599cd535018bf4c06e54df0f0d6dbc37...
record new: [263] 10000103010100e50ed1048148c434845c599cd535018bf4c06e54df0f0d6dbc...
client: Original packet: [318] 1603030106100001020100e50ed1048148c434845c599cd535018bf4c06e54df...
client: Filtered packet: [319] 160303010710000103010100e50ed1048148c434845c599cd535018bf4c06e54...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/35 (194 ms)
[----------] 72 tests from DamageYStream/TlsDamageDHYTest (9889 ms total)
[----------] 48 tests from DamageYDatagram/TlsDamageDHYTest
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/0
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff4bb8faefd9...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff4bb8faefd9...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/0 (117 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/1
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff262efaf01c...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff262efaf01c...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/1 (116 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffdf66142726...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feffdf66142726...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/2 (102 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff694f8183d7...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff694f8183d7...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/3 (103 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/4
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff8407e74970...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff8407e74970...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/4 (103 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/5
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffdb5b87b7a6...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feffdb5b87b7a6...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/5 (103 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/6
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051fefff1ad184f7f...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051fefff1ad184f7f...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/6 (102 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/7
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051fefff2962f9d97...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051fefff2962f9d97...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/7 (103 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/8
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff9ac87040f2...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff9ac87040f2...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/8 (103 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/9
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffc4ddddb4af...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feffc4ddddb4af...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/9 (102 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/10
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff8204707ca0...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff8204707ca0...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/10 (103 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/11
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff731d83c0a2...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff731d83c0a2...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/11 (104 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/12
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd14da3b98df...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd14da3b98df...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/12 (102 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/13
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd0dc85e0120...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd0dc85e0120...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/13 (102 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/14
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdc4238e8200...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdc4238e8200...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/14 (102 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/15
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd97b01fffe6...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd97b01fffe6...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/15 (103 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/16
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdf78ae1b0c6...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdf78ae1b0c6...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/16 (102 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/17
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdf4efbf9e4d...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdf4efbf9e4d...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/17 (102 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/18
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefda61cdb663e...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefda61cdb663e...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/18 (102 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/19
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdf46b7f1095...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdf46b7f1095...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/19 (101 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/20
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd4366b1f14d...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefd4366b1f14d...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/20 (102 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/21
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd3059785fd9...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefd3059785fd9...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/21 (102 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/22
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd55cb3661a8...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefd55cb3661a8...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/22 (103 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/23
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdc17d7719ea...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefdc17d7719ea...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/23 (103 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/0
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ab6887ab4858f0305188340abd682564f9530511a0e0868421ca1be1afbc...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100ab6887ab4858f0305188340abd682564f953...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100ab6887ab48...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/0 (155 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/1
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100d8861bbf577da5c42465277ce23450a44adfd107017f4914b4a8ba1d5a10...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100d8861bbf577da5c42465277ce23450a44adf...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100d8861bbf57...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/1 (154 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100fe734f86c4e0a7907b568df7b15b8ae012eba31947d20ede4764be336ae1...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100fe734f86c4e0a7907b568df7b15b8ae012eb...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100fe734f86c4...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/2 (154 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100327933f657c4076ac2fa1fee32a0bc92b5624d213e6e2aba7f806cd822b9...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100327933f657c4076ac2fa1fee32a0bc92b562...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100327933f657...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/3 (155 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/4
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ad7ab0c376cd5b57b2d911d713caf3cde6100a1713054f3c79626f40f537...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 1000010200010000000001020100ad7ab0c376cd5b57b2d911d713caf3cde610...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100ad7ab0c376...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/4 (155 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/5
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01002d24e686998479f54cc777717fc99db5995bef676cf6740bec5bfa7d49ba...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 10000102000100000000010201002d24e686998479f54cc777717fc99db5995b...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201002d24e68699...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/5 (154 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/6
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01002482582efc1a1c8d7b91ea814a8e6118d093d42e3bedd9a6015428c8bda3...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 10000102000100000000010201002482582efc1a1c8d7b91ea814a8e6118d093...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201002482582efc...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/6 (156 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/7
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ac1151812182871b817fb0de7ab186c5e955bad590e034ff15e8ec9fe742...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 1000010200010000000001020100ac1151812182871b817fb0de7ab186c5e955...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100ac11518121...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/7 (154 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/8
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010077a9e723feb39f54c1c3b7f9dd94a20f34c228435587d410cbf84c143e4a...
handshake new: [259] 01010177a9e723feb39f54c1c3b7f9dd94a20f34c228435587d410cbf84c143e...
record old: [270] 100001020001000000000102010077a9e723feb39f54c1c3b7f9dd94a20f34c2...
record new: [271] 10000103000100000000010301010177a9e723feb39f54c1c3b7f9dd94a20f34...
client: Original packet: [374] 16feff0000000000000001010e100001020001000000000102010077a9e723fe...
client: Filtered packet: [375] 16feff0000000000000001010f10000103000100000000010301010177a9e723...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/8 (154 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/9
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01005669bcdfeb8ad3821c70b45c43e5b10984ab4496f5dcb7ee71901fbc3aa9...
handshake new: [259] 0101015669bcdfeb8ad3821c70b45c43e5b10984ab4496f5dcb7ee71901fbc3a...
record old: [270] 10000102000100000000010201005669bcdfeb8ad3821c70b45c43e5b10984ab...
record new: [271] 1000010300010000000001030101015669bcdfeb8ad3821c70b45c43e5b10984...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201005669bcdfeb...
client: Filtered packet: [375] 16feff0000000000000001010f1000010300010000000001030101015669bcdf...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/9 (155 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/10
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ad7c5e5feb55065df78b5b1a1793040c2b526cb213f4d7331f0f7456e96e...
handshake new: [259] 010100ad7c5e5feb55065df78b5b1a1793040c2b526cb213f4d7331f0f7456e9...
record old: [270] 1000010200010000000001020100ad7c5e5feb55065df78b5b1a1793040c2b52...
record new: [271] 100001030001000000000103010100ad7c5e5feb55065df78b5b1a1793040c2b...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100ad7c5e5feb...
client: Filtered packet: [375] 16feff0000000000000001010f100001030001000000000103010100ad7c5e5f...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/10 (180 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/11
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a4273883754e7861157d1c77ba61d0ea390a90ed7de2e56adbd2f6d418dd...
handshake new: [259] 010100a4273883754e7861157d1c77ba61d0ea390a90ed7de2e56adbd2f6d418...
record old: [270] 1000010200010000000001020100a4273883754e7861157d1c77ba61d0ea390a...
record new: [271] 100001030001000000000103010100a4273883754e7861157d1c77ba61d0ea39...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100a427388375...
client: Filtered packet: [375] 16feff0000000000000001010f100001030001000000000103010100a4273883...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/11 (179 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/12
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010038f5adcf7dd7a3a49970793f59b97a245cdf27c1939fe28abe603612788b...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 100001020001000000000102010038f5adcf7dd7a3a49970793f59b97a245cdf...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010038f5adcf7d...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/12 (154 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/13
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100fe10d27c5d7a57f1a5eabe4e0bd5fd466cdc76365e6856ba08304c150da5...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100fe10d27c5d7a57f1a5eabe4e0bd5fd466cdc...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100fe10d27c5d...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/13 (155 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/14
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010092344e3356849c8ccc6eee55ce7b3f395c0e5747d97e2893ab28df2ef61e...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 100001020001000000000102010092344e3356849c8ccc6eee55ce7b3f395c0e...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010092344e3356...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/14 (154 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/15
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01003c84519883e164b7cbfe7cb27a2a02247c91df5d3ed1e3b47f5cd53de368...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 10000102000100000000010201003c84519883e164b7cbfe7cb27a2a02247c91...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201003c84519883...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/15 (158 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/16
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01006de0779263da9f51e2cac8c7577ae2724ed948c5f50e971297d25ef9a5f5...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 10000102000100000000010201006de0779263da9f51e2cac8c7577ae2724ed9...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201006de0779263...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/16 (169 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/17
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01006f33fbbbe3b73b9e908b92191f642137d380f63c824e4c78b609e419f04c...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 10000102000100000000010201006f33fbbbe3b73b9e908b92191f642137d380...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201006f33fbbbe3...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/17 (169 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/18
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01006e0cda8a68220333ac8540f7909901b0582c5ba083376028344fa23e6967...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 10000102000100000000010201006e0cda8a68220333ac8540f7909901b0582c...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201006e0cda8a68...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/18 (168 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/19
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100882e1b98cf90a8b59bd41a4e9d5e1b1fd4adb2dc39c98f04d69ec46555dc...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 1000010200010000000001020100882e1b98cf90a8b59bd41a4e9d5e1b1fd4ad...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100882e1b98cf...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/19 (169 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/20
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a7201ed8d1f89668449d42de4890dfb2bece64c03bbba6ecfe7993d4ae94...
handshake new: [259] 010101a7201ed8d1f89668449d42de4890dfb2bece64c03bbba6ecfe7993d4ae...
record old: [270] 1000010200010000000001020100a7201ed8d1f89668449d42de4890dfb2bece...
record new: [271] 100001030001000000000103010101a7201ed8d1f89668449d42de4890dfb2be...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100a7201ed8d1...
client: Filtered packet: [359] 16fefd0000000000000001010f100001030001000000000103010101a7201ed8...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/20 (169 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/21
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01007e0ce5c288221bc5fe9936368b941c807b89f780acf80bb69060ea3da408...
handshake new: [259] 0101017e0ce5c288221bc5fe9936368b941c807b89f780acf80bb69060ea3da4...
record old: [270] 10000102000100000000010201007e0ce5c288221bc5fe9936368b941c807b89...
record new: [271] 1000010300010000000001030101017e0ce5c288221bc5fe9936368b941c807b...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201007e0ce5c288...
client: Filtered packet: [359] 16fefd0000000000000001010f1000010300010000000001030101017e0ce5c2...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/21 (172 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/22
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010099a282d047bd048c0745039e0745dc1dff9bd6933869c71b86a1d66f60ca...
handshake new: [259] 01010099a282d047bd048c0745039e0745dc1dff9bd6933869c71b86a1d66f60...
record old: [270] 100001020001000000000102010099a282d047bd048c0745039e0745dc1dff9b...
record new: [271] 10000103000100000000010301010099a282d047bd048c0745039e0745dc1dff...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010099a282d047...
client: Filtered packet: [359] 16fefd0000000000000001010f10000103000100000000010301010099a282d0...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/22 (199 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/23
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100ffef6105d1687a7118b667834432ffe6b4f87bbf0e20e748c0a0c9941b18...
handshake new: [259] 010100ffef6105d1687a7118b667834432ffe6b4f87bbf0e20e748c0a0c9941b...
record old: [270] 1000010200010000000001020100ffef6105d1687a7118b667834432ffe6b4f8...
record new: [271] 100001030001000000000103010100ffef6105d1687a7118b667834432ffe6b4...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffef6105d1...
client: Filtered packet: [359] 16fefd0000000000000001010f100001030001000000000103010100ffef6105...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/23 (199 ms)
[----------] 48 tests from DamageYDatagram/TlsDamageDHYTest (6436 ms total)
[----------] 2 tests from Datagram12Plus/TlsConnectDatagram12Plus
[ RUN      ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindow/0
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindow/0 (127 ms)
[ RUN      ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindowAndOne/0
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindowAndOne/0 (127 ms)
[----------] 2 tests from Datagram12Plus/TlsConnectDatagram12Plus (255 ms total)
[----------] 16 tests from KeyExchangeTest/TlsKeyExchangeTest
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/0 (269 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/1 (223 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
client: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/2 (223 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
client: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/3 (224 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/0 (223 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/1 (222 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
client: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/2 (225 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
client: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/3 (223 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/0 (221 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/1 (221 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
client: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/2 (223 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
client: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/3 (224 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/0 (128 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/1 (128 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/2 (128 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/3 (129 ms)
[----------] 16 tests from KeyExchangeTest/TlsKeyExchangeTest (3241 ms total)
[----------] 88 tests from TlsPadding/TlsPaddingTest
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fefefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.Correct/0 (4 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0e0e
[       OK ] TlsPadding/TlsPaddingTest.Correct/1 (3 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fcfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.Correct/2 (4 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0c0c
[       OK ] TlsPadding/TlsPaddingTest.Correct/3 (2 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fbfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.Correct/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0b0b
[       OK ] TlsPadding/TlsPaddingTest.Correct/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f1f1...
[       OK ] TlsPadding/TlsPaddingTest.Correct/6 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410101
[       OK ] TlsPadding/TlsPaddingTest.Correct/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f0...
[       OK ] TlsPadding/TlsPaddingTest.Correct/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/9
Content length=31 padding length=0 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141414100
[       OK ] TlsPadding/TlsPaddingTest.Correct/9 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/12 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/17 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/19
Content length=287 padding length=0 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/19 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/0
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0e10
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/2
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0c20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/4
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0b20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/5 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/6
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410120
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/8
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/9
Content length=31 padding length=0 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141414120
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/9 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/10
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/12
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/13 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/14
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/15
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/16
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/17
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/18
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/19
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/21
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fffefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410f0e0e0e0e0e0e0e0e0e0e0e0e0e0e
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fdfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/2 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410d0c0c0c0c0c0c0c0c0c0c0c0c
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fcfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/4 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410c0b0b0b0b0b0b0b0b0b0b0b
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f2f1...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410201
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f1...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/9
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/12 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/17 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/19
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/21 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fefefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0f0e
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fcfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/2 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0d0c
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/3 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fbfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0c0b
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f1f1...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410201
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/7 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f0...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/9
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/11 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/14 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/15 (3 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/16 (5 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/17 (5 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/18 (2 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/19
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/21 (0 ms)
[----------] 88 tests from TlsPadding/TlsPaddingTest (56 ms total)
[----------] 8 tests from SkipTls10/TlsSkipTest
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateRsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 0200005103018dc8b99e043cf0a0d2caf66bf9dc9838344bd27c8b4566880f79...
record new: [89] 0200005103018dc8b99e043cf0a0d2caf66bf9dc9838344bd27c8b4566880f79...
server: Original packet: [536] 16030102130200005103018dc8b99e043cf0a0d2caf66bf9dc9838344bd27c8b...
server: Filtered packet: [94] 16030100590200005103018dc8b99e043cf0a0d2caf66bf9dc9838344bd27c8b...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateRsa/0 (72 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateDhe/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 0200005703017f427c17d66f95f094ce405dda360efc86774c8a82178c9894d3...
record new: [265] 0200005703017f427c17d66f95f094ce405dda360efc86774c8a82178c9894d3...
server: Original packet: [712] 16030102c30200005703017f427c17d66f95f094ce405dda360efc86774c8a82...
server: Filtered packet: [270] 16030101090200005703017f427c17d66f95f094ce405dda360efc86774c8a82...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateDhe/0 (83 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateEcdhe/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570301bd376ca6627da657928b83f30a8e05c596102f54f27158e3b91d...
record new: [265] 020000570301bd376ca6627da657928b83f30a8e05c596102f54f27158e3b91d...
server: Original packet: [712] 16030102c3020000570301bd376ca6627da657928b83f30a8e05c596102f54f2...
server: Filtered packet: [270] 1603010109020000570301bd376ca6627da657928b83f30a8e05c596102f54f2...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateEcdhe/0 (98 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [524] 02000057030137b0678590906be5bd3b97584384f4903fc836a17bd5fa5aca97...
record new: [209] 02000057030137b0678590906be5bd3b97584384f4903fc836a17bd5fa5aca97...
server: Original packet: [529] 160301020c02000057030137b0678590906be5bd3b97584384f4903fc836a17b...
server: Filtered packet: [214] 16030100d102000057030137b0678590906be5bd3b97584384f4903fc836a17b...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateEcdsa/0 (76 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipServerKeyExchange/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [707] 020000570301e0da62acb3da9576d4a54bf844b4d3da51385a9e7b260b1fdbb9...
record new: [537] 020000570301e0da62acb3da9576d4a54bf844b4d3da51385a9e7b260b1fdbb9...
server: Original packet: [712] 16030102c3020000570301e0da62acb3da9576d4a54bf844b4d3da51385a9e7b...
server: Filtered packet: [542] 1603010219020000570301e0da62acb3da9576d4a54bf844b4d3da51385a9e7b...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipServerKeyExchange/0 (83 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipServerKeyExchangeEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [524] 020000570301edfeb0d4a4f0444ed49af7c3f0b1785db6ccfa80a00853a61b73...
record new: [410] 020000570301edfeb0d4a4f0444ed49af7c3f0b1785db6ccfa80a00853a61b73...
server: Original packet: [529] 160301020c020000570301edfeb0d4a4f0444ed49af7c3f0b1785db6ccfa80a0...
server: Filtered packet: [415] 160301019a020000570301edfeb0d4a4f0444ed49af7c3f0b1785db6ccfa80a0...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipServerKeyExchangeEcdsa/0 (57 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertAndKeyExch/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570301f7ee52b0589424936deb477fc20294c959dd0f3c785117a6da28...
record new: [265] 020000570301f7ee52b0589424936deb477fc20294c959dd0f3c785117a6da28...
Dropping handshake: 12
record old: [265] 020000570301f7ee52b0589424936deb477fc20294c959dd0f3c785117a6da28...
record new: [95] 020000570301f7ee52b0589424936deb477fc20294c959dd0f3c785117a6da28...
server: Original packet: [712] 16030102c3020000570301f7ee52b0589424936deb477fc20294c959dd0f3c78...
server: Filtered packet: [100] 160301005f020000570301f7ee52b0589424936deb477fc20294c959dd0f3c78...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertAndKeyExch/0 (77 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertAndKeyExchEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [523] 0200005703017a9aaf01d1dc8498eec348a8044a8a239bff5ab2f93dea1c5126...
record new: [208] 0200005703017a9aaf01d1dc8498eec348a8044a8a239bff5ab2f93dea1c5126...
Dropping handshake: 12
record old: [208] 0200005703017a9aaf01d1dc8498eec348a8044a8a239bff5ab2f93dea1c5126...
record new: [95] 0200005703017a9aaf01d1dc8498eec348a8044a8a239bff5ab2f93dea1c5126...
server: Original packet: [528] 160301020b0200005703017a9aaf01d1dc8498eec348a8044a8a239bff5ab2f9...
server: Filtered packet: [100] 160301005f0200005703017a9aaf01d1dc8498eec348a8044a8a239bff5ab2f9...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertAndKeyExchEcdsa/0 (58 ms)
[----------] 8 tests from SkipTls10/TlsSkipTest (607 ms total)
[----------] 32 tests from SkipVariants/TlsSkipTest
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 02000051030224f904facdc344f231f8b878a58ff9f2c72cdee9cc15ff78e05a...
record new: [89] 02000051030224f904facdc344f231f8b878a58ff9f2c72cdee9cc15ff78e05a...
server: Original packet: [536] 160302021302000051030224f904facdc344f231f8b878a58ff9f2c72cdee9cc...
server: Filtered packet: [94] 160302005902000051030224f904facdc344f231f8b878a58ff9f2c72cdee9cc...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/0 (67 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 020000510303b6b5e01fcd35996f81b33484fd907e1529f2507323cc4435de50...
record new: [89] 020000510303b6b5e01fcd35996f81b33484fd907e1529f2507323cc4435de50...
server: Original packet: [536] 1603030213020000510303b6b5e01fcd35996f81b33484fd907e1529f2507323...
server: Filtered packet: [94] 1603030059020000510303b6b5e01fcd35996f81b33484fd907e1529f2507323...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/1 (66 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [594] 16feff0000000000000000005d020000510000000000000051feffb1cbf9a0bb...
server: Filtered packet: [144] 16feff0000000000000000005d020000510000000000000051feffb1cbf9a0bb...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/2 (68 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [594] 16fefd0000000000000000005d020000510000000000000051fefdab4a2e47d3...
server: Filtered packet: [144] 16fefd0000000000000000005d020000510000000000000051fefdab4a2e47d3...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/3 (67 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570302034159f79eadcba09278050cc060c0d253cf25c26ad3be00ca9f...
record new: [265] 020000570302034159f79eadcba09278050cc060c0d253cf25c26ad3be00ca9f...
server: Original packet: [712] 16030202c3020000570302034159f79eadcba09278050cc060c0d253cf25c26a...
server: Filtered packet: [270] 1603020109020000570302034159f79eadcba09278050cc060c0d253cf25c26a...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/0 (78 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 02000057030317b7040772ab756a6c01298d5695a8ff87dde7fddbd0b6f61732...
record new: [267] 02000057030317b7040772ab756a6c01298d5695a8ff87dde7fddbd0b6f61732...
server: Original packet: [714] 16030302c502000057030317b7040772ab756a6c01298d5695a8ff87dde7fddb...
server: Filtered packet: [272] 160303010b02000057030317b7040772ab756a6c01298d5695a8ff87dde7fddb...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/1 (76 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20b598ba447d45b64f2d090782e6bee305...
record new: [178] 0c0000a600010000000000a603001d20b598ba447d45b64f2d090782e6bee305...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff161d68cdd7...
server: Filtered packet: [341] 16feff00000000000000000063020000570000000000000057feff161d68cdd7...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/2 (77 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20b598ba447d45b64f2d090782e6bee305...
record new: [180] 0c0000a800010000000000a803001d20b598ba447d45b64f2d090782e6bee305...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefd44723c5b76...
server: Filtered packet: [343] 16fefd00000000000000000063020000570000000000000057fefd44723c5b76...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/3 (77 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 02000057030239c556552815bb8e21bba2dfed34b5fee50721c9576ffc46eec5...
record new: [265] 02000057030239c556552815bb8e21bba2dfed34b5fee50721c9576ffc46eec5...
server: Original packet: [712] 16030202c302000057030239c556552815bb8e21bba2dfed34b5fee50721c957...
server: Filtered packet: [270] 160302010902000057030239c556552815bb8e21bba2dfed34b5fee50721c957...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/0 (77 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 02000057030372b27f47645dd8539d90e35605f830bc133137a5c04a446a5fd6...
record new: [267] 02000057030372b27f47645dd8539d90e35605f830bc133137a5c04a446a5fd6...
server: Original packet: [714] 16030302c502000057030372b27f47645dd8539d90e35605f830bc133137a5c0...
server: Filtered packet: [272] 160303010b02000057030372b27f47645dd8539d90e35605f830bc133137a5c0...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/1 (76 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20b598ba447d45b64f2d090782e6bee305...
record new: [178] 0c0000a600010000000000a603001d20b598ba447d45b64f2d090782e6bee305...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff1eef8a6efd...
server: Filtered packet: [341] 16feff00000000000000000063020000570000000000000057feff1eef8a6efd...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/2 (77 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20b598ba447d45b64f2d090782e6bee305...
record new: [180] 0c0000a800010000000000a803001d20b598ba447d45b64f2d090782e6bee305...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefd0e4281f24c...
server: Filtered packet: [343] 16fefd00000000000000000063020000570000000000000057fefd0e4281f24c...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/3 (77 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [524] 020000570302826e7558a7a4e059b9cc86544eea128991420ce54c3d25c33586...
record new: [209] 020000570302826e7558a7a4e059b9cc86544eea128991420ce54c3d25c33586...
server: Original packet: [529] 160302020c020000570302826e7558a7a4e059b9cc86544eea128991420ce54c...
server: Filtered packet: [214] 16030200d1020000570302826e7558a7a4e059b9cc86544eea128991420ce54c...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/0 (57 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [526] 0200005703033dea8d42bbaf30e243596a2b1e5c78d9ad6a550572da37c1f2cd...
record new: [211] 0200005703033dea8d42bbaf30e243596a2b1e5c78d9ad6a550572da37c1f2cd...
server: Original packet: [531] 160303020e0200005703033dea8d42bbaf30e243596a2b1e5c78d9ad6a550572...
server: Filtered packet: [216] 16030300d30200005703033dea8d42bbaf30e243596a2b1e5c78d9ad6a550572...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/1 (71 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [323] 0b00013700010000000001370001340001313082012d3081d5a0030201020201...
record new: [0] 
record old: [120] 0c00006c000200000000006c03001d20b598ba447d45b64f2d090782e6bee305...
record new: [120] 0c00006c000100000000006c03001d20b598ba447d45b64f2d090782e6bee305...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [606] 16feff00000000000000000063020000570000000000000057feffef522f6979...
server: Filtered packet: [283] 16feff00000000000000000063020000570000000000000057feffef522f6979...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/2 (57 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [323] 0b00013700010000000001370001340001313082012d3081d5a0030201020201...
record new: [0] 
record old: [124] 0c000070000200000000007003001d20b598ba447d45b64f2d090782e6bee305...
record new: [124] 0c000070000100000000007003001d20b598ba447d45b64f2d090782e6bee305...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [610] 16fefd00000000000000000063020000570000000000000057fefd0cd67cd446...
server: Filtered packet: [287] 16fefd00000000000000000063020000570000000000000057fefd0cd67cd446...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/3 (58 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [707] 0200005703029c602cc9addcae5d40f15d567a49eac1ebe3f6620e351a2688b5...
record new: [537] 0200005703029c602cc9addcae5d40f15d567a49eac1ebe3f6620e351a2688b5...
server: Original packet: [712] 16030202c30200005703029c602cc9addcae5d40f15d567a49eac1ebe3f6620e...
server: Filtered packet: [542] 16030202190200005703029c602cc9addcae5d40f15d567a49eac1ebe3f6620e...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/0 (77 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [709] 020000570303d7dcad1822cf7cc6cdfcde69f8f9dced5cd534db72f829b45c50...
record new: [537] 020000570303d7dcad1822cf7cc6cdfcde69f8f9dced5cd534db72f829b45c50...
server: Original packet: [714] 16030302c5020000570303d7dcad1822cf7cc6cdfcde69f8f9dced5cd534db72...
server: Filtered packet: [542] 1603030219020000570303d7dcad1822cf7cc6cdfcde69f8f9dced5cd534db72...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/1 (76 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [178] 0c0000a600020000000000a603001d20b598ba447d45b64f2d090782e6bee305...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057fefff39d23ae7f...
server: Filtered packet: [613] 16feff00000000000000000063020000570000000000000057fefff39d23ae7f...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/2 (76 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [180] 0c0000a800020000000000a803001d20b598ba447d45b64f2d090782e6bee305...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefd5a04b5f2cd...
server: Filtered packet: [613] 16fefd00000000000000000063020000570000000000000057fefd5a04b5f2cd...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/3 (76 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [524] 02000057030271581a0ea52f6475fcac029270779f5c7b7287be7a2ebb77b6a3...
record new: [410] 02000057030271581a0ea52f6475fcac029270779f5c7b7287be7a2ebb77b6a3...
server: Original packet: [529] 160302020c02000057030271581a0ea52f6475fcac029270779f5c7b7287be7a...
server: Filtered packet: [415] 160302019a02000057030271581a0ea52f6475fcac029270779f5c7b7287be7a...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/0 (58 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [524] 0200005703031e1e718af5cad07ddff4c7dbf0068124764788ddce837a453e9e...
record new: [410] 0200005703031e1e718af5cad07ddff4c7dbf0068124764788ddce837a453e9e...
server: Original packet: [529] 160303020c0200005703031e1e718af5cad07ddff4c7dbf0068124764788ddce...
server: Filtered packet: [415] 160303019a0200005703031e1e718af5cad07ddff4c7dbf0068124764788ddce...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/1 (56 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [120] 0c00006c000200000000006c03001d20b598ba447d45b64f2d090782e6bee305...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [606] 16feff00000000000000000063020000570000000000000057feff2e4ea94638...
server: Filtered packet: [486] 16feff00000000000000000063020000570000000000000057feff2e4ea94638...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/2 (57 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [122] 0c00006e000200000000006e03001d20b598ba447d45b64f2d090782e6bee305...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [608] 16fefd00000000000000000063020000570000000000000057fefd1ffb737737...
server: Filtered packet: [486] 16fefd00000000000000000063020000570000000000000057fefd1ffb737737...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/3 (57 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570302ec26d138aa70bd840c1bad9133c5f97b1492de868eeb6985678b...
record new: [265] 020000570302ec26d138aa70bd840c1bad9133c5f97b1492de868eeb6985678b...
Dropping handshake: 12
record old: [265] 020000570302ec26d138aa70bd840c1bad9133c5f97b1492de868eeb6985678b...
record new: [95] 020000570302ec26d138aa70bd840c1bad9133c5f97b1492de868eeb6985678b...
server: Original packet: [712] 16030202c3020000570302ec26d138aa70bd840c1bad9133c5f97b1492de868e...
server: Filtered packet: [100] 160302005f020000570302ec26d138aa70bd840c1bad9133c5f97b1492de868e...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/0 (77 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 02000057030336b38634d38c8cc65b6ea48cf2dc468c71b881e8ca4ab4841ed1...
record new: [267] 02000057030336b38634d38c8cc65b6ea48cf2dc468c71b881e8ca4ab4841ed1...
Dropping handshake: 12
record old: [267] 02000057030336b38634d38c8cc65b6ea48cf2dc468c71b881e8ca4ab4841ed1...
record new: [95] 02000057030336b38634d38c8cc65b6ea48cf2dc468c71b881e8ca4ab4841ed1...
server: Original packet: [714] 16030302c502000057030336b38634d38c8cc65b6ea48cf2dc468c71b881e8ca...
server: Filtered packet: [100] 160303005f02000057030336b38634d38c8cc65b6ea48cf2dc468c71b881e8ca...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/1 (76 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20b598ba447d45b64f2d090782e6bee305...
record new: [178] 0c0000a600010000000000a603001d20b598ba447d45b64f2d090782e6bee305...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [178] 0c0000a600010000000000a603001d20b598ba447d45b64f2d090782e6bee305...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057fefff83dabff79...
server: Filtered packet: [163] 16feff00000000000000000063020000570000000000000057fefff83dabff79...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/2 (78 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20b598ba447d45b64f2d090782e6bee305...
record new: [180] 0c0000a800010000000000a803001d20b598ba447d45b64f2d090782e6bee305...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [180] 0c0000a800010000000000a803001d20b598ba447d45b64f2d090782e6bee305...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefd13650d6c10...
server: Filtered packet: [163] 16fefd00000000000000000063020000570000000000000057fefd13650d6c10...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/3 (79 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [523] 02000057030223379220499b46b183afad7c5d5c5410740dca0b806e62a23b5b...
record new: [208] 02000057030223379220499b46b183afad7c5d5c5410740dca0b806e62a23b5b...
Dropping handshake: 12
record old: [208] 02000057030223379220499b46b183afad7c5d5c5410740dca0b806e62a23b5b...
record new: [95] 02000057030223379220499b46b183afad7c5d5c5410740dca0b806e62a23b5b...
server: Original packet: [528] 160302020b02000057030223379220499b46b183afad7c5d5c5410740dca0b80...
server: Filtered packet: [100] 160302005f02000057030223379220499b46b183afad7c5d5c5410740dca0b80...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/0 (59 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [525] 0200005703032abc722d83be6f96d7d421aff3cb63f3e65abc79138e58cca287...
record new: [210] 0200005703032abc722d83be6f96d7d421aff3cb63f3e65abc79138e58cca287...
Dropping handshake: 12
record old: [210] 0200005703032abc722d83be6f96d7d421aff3cb63f3e65abc79138e58cca287...
record new: [95] 0200005703032abc722d83be6f96d7d421aff3cb63f3e65abc79138e58cca287...
server: Original packet: [530] 160303020d0200005703032abc722d83be6f96d7d421aff3cb63f3e65abc7913...
server: Filtered packet: [100] 160303005f0200005703032abc722d83be6f96d7d421aff3cb63f3e65abc7913...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/1 (57 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [323] 0b00013700010000000001370001340001313082012d3081d5a0030201020201...
record new: [0] 
record old: [121] 0c00006d000200000000006d03001d20b598ba447d45b64f2d090782e6bee305...
record new: [121] 0c00006d000100000000006d03001d20b598ba447d45b64f2d090782e6bee305...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [121] 0c00006d000100000000006d03001d20b598ba447d45b64f2d090782e6bee305...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [607] 16feff00000000000000000063020000570000000000000057feffab629f212b...
server: Filtered packet: [163] 16feff00000000000000000063020000570000000000000057feffab629f212b...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/2 (58 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [323] 0b00013700010000000001370001340001313082012d3081d5a0030201020201...
record new: [0] 
record old: [122] 0c00006e000200000000006e03001d20b598ba447d45b64f2d090782e6bee305...
record new: [122] 0c00006e000100000000006e03001d20b598ba447d45b64f2d090782e6bee305...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [122] 0c00006e000100000000006e03001d20b598ba447d45b64f2d090782e6bee305...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [608] 16fefd00000000000000000063020000570000000000000057fefd5c69ae0e65...
server: Filtered packet: [163] 16fefd00000000000000000063020000570000000000000057fefd5c69ae0e65...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/3 (59 ms)
[----------] 32 tests from SkipVariants/TlsSkipTest (2213 ms total)
[----------] 10 tests from AllHashFuncs/TlsHkdfTest
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/0
Hash = SHA-256
Output: [32] 33ad0a1c607ec03b09e6cd9893680ce210adf300aa1f2660e1b22e10f170f92a
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/1
Hash = SHA-384
Output: [48] 7ee8206f5570023e6dc7519eb1073bc4e791ad37b5c382aa10ba18e2357e7169...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/1 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/0
Hash = SHA-256
Output: [32] 11873828a9197811339124b58a1bb09f7f0d8dbb10f49c54bd1fd885cd153033
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/0 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/1
Hash = SHA-384
Output: [48] 51b1d5b4597979084a15b2db84d3d6bcfc9345d9dc74da1a57c2769f3f83452f...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/1 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/0
Hash = SHA-256
Output: [32] 2f5f78d0a4c436ee6c8a4ef9d043810213fd4783633ad2e1406d2d9800fdc187
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/0 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/1
Hash = SHA-384
Output: [48] 7b40f9ef91ffc9d129245cbff8827668ae4b63e803dd39a8d46af6e5eceaf87d...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/0
Hash = SHA-256
Output: [32] 7953b8dd6b98ce00b7dce803708ce3ac068b22fd0e3448e6e5e08ad61618e548
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/0 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/1
Hash = SHA-384
Output: [48] 0193c0073f6a830e2e4fb258e400085c689c37320037ffc31c5b980b02923ffd...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/1 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/0
Hash = SHA-256
Output: [32] 347c6780ff0bbad71c283b16eb2f9cf62d24e6cdb613d51776548cb07dcde74c
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/0 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/1
Hash = SHA-384
Output: [48] 4b1e5ec1493078ea35bd3f0104e61aea14cc182ad1c47621c464c04e4b361605...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/1 (0 ms)
[----------] 10 tests from AllHashFuncs/TlsHkdfTest (7 ms total)
[----------] Global test environment tear-down
[==========] 816 tests from 15 test cases ran. (114100 ms total)
[  PASSED  ] 816 tests.
ssl_gtest.sh: #10652: ssl_gtest run successfully  - PASSED
executing sed to parse the xml report
processing the parsed report
ssl_gtest.sh: #10653: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10654: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10655: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10656: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10657: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10658: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10659: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10660: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10661: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10662: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10663: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10664: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10665: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10666: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10667: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10668: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10669: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10670: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10671: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10672: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10673: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10674: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10675: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10676: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10677: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10678: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10679: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10680: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10681: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10682: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10683: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10684: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10685: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10686: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10687: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10688: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10689: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10690: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10691: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10692: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10693: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10694: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10695: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10696: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10697: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10698: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10699: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10700: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10701: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10702: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10703: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10704: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10705: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10706: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10707: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10708: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #10709: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #10710: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #10711: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #10712: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #10713: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #10714: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #10715: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #10716: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #10717: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #10718: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #10719: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #10720: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #10721: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #10722: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #10723: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #10724: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #10725: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #10726: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #10727: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #10728: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #10729: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #10730: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #10731: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #10732: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #10733: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #10734: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #10735: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #10736: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #10737: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #10738: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #10739: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #10740: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #10741: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #10742: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #10743: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #10744: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #10745: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #10746: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #10747: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #10748: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #10749: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #10750: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #10751: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #10752: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #10753: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #10754: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #10755: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #10756: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #10757: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #10758: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #10759: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #10760: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #10761: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #10762: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #10763: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #10764: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #10765: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #10766: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #10767: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #10768: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #10769: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #10770: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #10771: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #10772: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #10773: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #10774: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #10775: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #10776: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #10777: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #10778: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #10779: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #10780: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #10781: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #10782: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #10783: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #10784: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #10785: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #10786: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #10787: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #10788: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #10789: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #10790: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #10791: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #10792: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #10793: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #10794: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #10795: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #10796: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #10797: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #10798: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #10799: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #10800: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #10801: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #10802: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #10803: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #10804: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #10805: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #10806: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #10807: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #10808: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #10809: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #10810: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #10811: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #10812: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #10813: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #10814: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #10815: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #10816: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #10817: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #10818: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #10819: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #10820: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #10821: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #10822: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #10823: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #10824: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #10825: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #10826: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #10827: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #10828: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #10829: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #10830: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #10831: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #10832: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #10833: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #10834: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #10835: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #10836: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #10837: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #10838: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #10839: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #10840: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #10841: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #10842: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #10843: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #10844: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #10845: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #10846: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #10847: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #10848: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #10849: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #10850: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #10851: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #10852: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #10853: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #10854: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #10855: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #10856: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #10857: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #10858: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #10859: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #10860: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #10861: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #10862: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #10863: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #10864: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #10865: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #10866: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #10867: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #10868: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #10869: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #10870: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #10871: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #10872: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #10873: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #10874: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #10875: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #10876: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #10877: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #10878: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #10879: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #10880: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #10881: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #10882: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #10883: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #10884: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #10885: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #10886: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #10887: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #10888: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #10889: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #10890: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #10891: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #10892: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #10893: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #10894: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #10895: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #10896: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #10897: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #10898: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #10899: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #10900: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #10901: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #10902: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #10903: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #10904: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #10905: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #10906: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #10907: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #10908: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #10909: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #10910: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #10911: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #10912: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #10913: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #10914: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #10915: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #10916: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #10917: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #10918: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #10919: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #10920: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #10921: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #10922: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #10923: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #10924: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #10925: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #10926: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #10927: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #10928: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #10929: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #10930: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #10931: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #10932: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #10933: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #10934: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #10935: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #10936: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #10937: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #10938: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #10939: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #10940: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #10941: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #10942: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #10943: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #10944: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #10945: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #10946: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #10947: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #10948: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #10949: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #10950: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #10951: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #10952: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #10953: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #10954: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #10955: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #10956: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #10957: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #10958: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #10959: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #10960: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #10961: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #10962: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #10963: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #10964: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #10965: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #10966: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #10967: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #10968: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #10969: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #10970: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #10971: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #10972: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #10973: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #10974: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #10975: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #10976: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #10977: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #10978: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #10979: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #10980: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #10981: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #10982: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #10983: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #10984: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #10985: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #10986: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #10987: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #10988: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #10989: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #10990: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #10991: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #10992: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #10993: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #10994: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #10995: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #10996: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #10997: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #10998: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #10999: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11000: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11001: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #11002: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11003: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11004: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11005: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #11006: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11007: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11008: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11009: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #11010: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11011: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11012: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11013: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #11014: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11015: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11016: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11017: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #11018: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11019: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11020: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11021: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #11022: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11023: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11024: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11025: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #11026: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11027: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11028: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11029: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #11030: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11031: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11032: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11033: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #11034: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11035: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11036: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11037: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #11038: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11039: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11040: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11041: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #11042: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11043: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11044: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11045: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #11046: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11047: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11048: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11049: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #11050: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11051: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11052: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11053: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #11054: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11055: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11056: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11057: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #11058: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11059: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11060: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11061: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #11062: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11063: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11064: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11065: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #11066: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11067: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11068: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11069: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #11070: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11071: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11072: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11073: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #11074: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11075: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11076: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11077: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #11078: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11079: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11080: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11081: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #11082: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11083: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11084: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11085: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #11086: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11087: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11088: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11089: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11090: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11091: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11092: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11093: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11094: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11095: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11096: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11097: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11098: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11099: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11100: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11101: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11102: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11103: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11104: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11105: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11106: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11107: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11108: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11109: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11110: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11111: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11112: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11113: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11114: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11115: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11116: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11117: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11118: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11119: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11120: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11121: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11122: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11123: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11124: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11125: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11126: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11127: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11128: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11129: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11130: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11131: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11132: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11133: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11134: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11135: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11136: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11137: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11138: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11139: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11140: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11141: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11142: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11143: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11144: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11145: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11146: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11147: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11148: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11149: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11150: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11151: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11152: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11153: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11154: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11155: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11156: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11157: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11158: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11159: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11160: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11161: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11162: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11163: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11164: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11165: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11166: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11167: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11168: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11169: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11170: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11171: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11172: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11173: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #11174: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #11175: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #11176: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #11177: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #11178: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #11179: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #11180: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #11181: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #11182: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #11183: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #11184: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #11185: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/0 TLS 1.0, TLS_ECDHE_RSA_WITH_NULL_SHA, name = &quot;NULL&quot;, key size = 0' - PASSED
ssl_gtest.sh: #11186: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/1 TLS 1.0, TLS_RSA_WITH_RC4_128_SHA, name = &quot;RC4&quot;, key size = 128' - PASSED
ssl_gtest.sh: #11187: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/2 TLS 1.0, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, name = &quot;3DES-EDE-CBC&quot;, key size = 168' - PASSED
ssl_gtest.sh: #11188: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/3 TLS 1.0, TLS_RSA_WITH_AES_128_CBC_SHA, name = &quot;AES-128&quot;, key size = 128' - PASSED
ssl_gtest.sh: #11189: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/4 TLS 1.2, TLS_RSA_WITH_AES_256_CBC_SHA256, name = &quot;AES-256&quot;, key size = 256' - PASSED
ssl_gtest.sh: #11190: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/5 TLS 1.2, TLS_RSA_WITH_AES_128_GCM_SHA256, name = &quot;AES-128-GCM&quot;, key size = 128' - PASSED
ssl_gtest.sh: #11191: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/6 TLS 1.2, TLS_RSA_WITH_AES_256_GCM_SHA384, name = &quot;AES-256-GCM&quot;, key size = 256' - PASSED
ssl_gtest.sh: #11192: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/7 TLS 1.2, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256, name = &quot;ChaCha20-Poly1305&quot;, key size = 256' - PASSED
ssl_gtest.sh: #11193: 'DamageYStream/TlsDamageDHYTest: DamageServerY/0 (&quot;TLS&quot;, 769, 0, true)' - PASSED
ssl_gtest.sh: #11194: 'DamageYStream/TlsDamageDHYTest: DamageServerY/1 (&quot;TLS&quot;, 769, 0, false)' - PASSED
ssl_gtest.sh: #11195: 'DamageYStream/TlsDamageDHYTest: DamageServerY/2 (&quot;TLS&quot;, 769, 1, true)' - PASSED
ssl_gtest.sh: #11196: 'DamageYStream/TlsDamageDHYTest: DamageServerY/3 (&quot;TLS&quot;, 769, 1, false)' - PASSED
ssl_gtest.sh: #11197: 'DamageYStream/TlsDamageDHYTest: DamageServerY/4 (&quot;TLS&quot;, 769, 2, true)' - PASSED
ssl_gtest.sh: #11198: 'DamageYStream/TlsDamageDHYTest: DamageServerY/5 (&quot;TLS&quot;, 769, 2, false)' - PASSED
ssl_gtest.sh: #11199: 'DamageYStream/TlsDamageDHYTest: DamageServerY/6 (&quot;TLS&quot;, 769, 3, true)' - PASSED
ssl_gtest.sh: #11200: 'DamageYStream/TlsDamageDHYTest: DamageServerY/7 (&quot;TLS&quot;, 769, 3, false)' - PASSED
ssl_gtest.sh: #11201: 'DamageYStream/TlsDamageDHYTest: DamageServerY/8 (&quot;TLS&quot;, 769, 4, true)' - PASSED
ssl_gtest.sh: #11202: 'DamageYStream/TlsDamageDHYTest: DamageServerY/9 (&quot;TLS&quot;, 769, 4, false)' - PASSED
ssl_gtest.sh: #11203: 'DamageYStream/TlsDamageDHYTest: DamageServerY/10 (&quot;TLS&quot;, 769, 5, true)' - PASSED
ssl_gtest.sh: #11204: 'DamageYStream/TlsDamageDHYTest: DamageServerY/11 (&quot;TLS&quot;, 769, 5, false)' - PASSED
ssl_gtest.sh: #11205: 'DamageYStream/TlsDamageDHYTest: DamageServerY/12 (&quot;TLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #11206: 'DamageYStream/TlsDamageDHYTest: DamageServerY/13 (&quot;TLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #11207: 'DamageYStream/TlsDamageDHYTest: DamageServerY/14 (&quot;TLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #11208: 'DamageYStream/TlsDamageDHYTest: DamageServerY/15 (&quot;TLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #11209: 'DamageYStream/TlsDamageDHYTest: DamageServerY/16 (&quot;TLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #11210: 'DamageYStream/TlsDamageDHYTest: DamageServerY/17 (&quot;TLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #11211: 'DamageYStream/TlsDamageDHYTest: DamageServerY/18 (&quot;TLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #11212: 'DamageYStream/TlsDamageDHYTest: DamageServerY/19 (&quot;TLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #11213: 'DamageYStream/TlsDamageDHYTest: DamageServerY/20 (&quot;TLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #11214: 'DamageYStream/TlsDamageDHYTest: DamageServerY/21 (&quot;TLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #11215: 'DamageYStream/TlsDamageDHYTest: DamageServerY/22 (&quot;TLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #11216: 'DamageYStream/TlsDamageDHYTest: DamageServerY/23 (&quot;TLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #11217: 'DamageYStream/TlsDamageDHYTest: DamageServerY/24 (&quot;TLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #11218: 'DamageYStream/TlsDamageDHYTest: DamageServerY/25 (&quot;TLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #11219: 'DamageYStream/TlsDamageDHYTest: DamageServerY/26 (&quot;TLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #11220: 'DamageYStream/TlsDamageDHYTest: DamageServerY/27 (&quot;TLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #11221: 'DamageYStream/TlsDamageDHYTest: DamageServerY/28 (&quot;TLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #11222: 'DamageYStream/TlsDamageDHYTest: DamageServerY/29 (&quot;TLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #11223: 'DamageYStream/TlsDamageDHYTest: DamageServerY/30 (&quot;TLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #11224: 'DamageYStream/TlsDamageDHYTest: DamageServerY/31 (&quot;TLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #11225: 'DamageYStream/TlsDamageDHYTest: DamageServerY/32 (&quot;TLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #11226: 'DamageYStream/TlsDamageDHYTest: DamageServerY/33 (&quot;TLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #11227: 'DamageYStream/TlsDamageDHYTest: DamageServerY/34 (&quot;TLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #11228: 'DamageYStream/TlsDamageDHYTest: DamageServerY/35 (&quot;TLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #11229: 'DamageYStream/TlsDamageDHYTest: DamageClientY/0 (&quot;TLS&quot;, 769, 0, true)' - PASSED
ssl_gtest.sh: #11230: 'DamageYStream/TlsDamageDHYTest: DamageClientY/1 (&quot;TLS&quot;, 769, 0, false)' - PASSED
ssl_gtest.sh: #11231: 'DamageYStream/TlsDamageDHYTest: DamageClientY/2 (&quot;TLS&quot;, 769, 1, true)' - PASSED
ssl_gtest.sh: #11232: 'DamageYStream/TlsDamageDHYTest: DamageClientY/3 (&quot;TLS&quot;, 769, 1, false)' - PASSED
ssl_gtest.sh: #11233: 'DamageYStream/TlsDamageDHYTest: DamageClientY/4 (&quot;TLS&quot;, 769, 2, true)' - PASSED
ssl_gtest.sh: #11234: 'DamageYStream/TlsDamageDHYTest: DamageClientY/5 (&quot;TLS&quot;, 769, 2, false)' - PASSED
ssl_gtest.sh: #11235: 'DamageYStream/TlsDamageDHYTest: DamageClientY/6 (&quot;TLS&quot;, 769, 3, true)' - PASSED
ssl_gtest.sh: #11236: 'DamageYStream/TlsDamageDHYTest: DamageClientY/7 (&quot;TLS&quot;, 769, 3, false)' - PASSED
ssl_gtest.sh: #11237: 'DamageYStream/TlsDamageDHYTest: DamageClientY/8 (&quot;TLS&quot;, 769, 4, true)' - PASSED
ssl_gtest.sh: #11238: 'DamageYStream/TlsDamageDHYTest: DamageClientY/9 (&quot;TLS&quot;, 769, 4, false)' - PASSED
ssl_gtest.sh: #11239: 'DamageYStream/TlsDamageDHYTest: DamageClientY/10 (&quot;TLS&quot;, 769, 5, true)' - PASSED
ssl_gtest.sh: #11240: 'DamageYStream/TlsDamageDHYTest: DamageClientY/11 (&quot;TLS&quot;, 769, 5, false)' - PASSED
ssl_gtest.sh: #11241: 'DamageYStream/TlsDamageDHYTest: DamageClientY/12 (&quot;TLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #11242: 'DamageYStream/TlsDamageDHYTest: DamageClientY/13 (&quot;TLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #11243: 'DamageYStream/TlsDamageDHYTest: DamageClientY/14 (&quot;TLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #11244: 'DamageYStream/TlsDamageDHYTest: DamageClientY/15 (&quot;TLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #11245: 'DamageYStream/TlsDamageDHYTest: DamageClientY/16 (&quot;TLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #11246: 'DamageYStream/TlsDamageDHYTest: DamageClientY/17 (&quot;TLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #11247: 'DamageYStream/TlsDamageDHYTest: DamageClientY/18 (&quot;TLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #11248: 'DamageYStream/TlsDamageDHYTest: DamageClientY/19 (&quot;TLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #11249: 'DamageYStream/TlsDamageDHYTest: DamageClientY/20 (&quot;TLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #11250: 'DamageYStream/TlsDamageDHYTest: DamageClientY/21 (&quot;TLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #11251: 'DamageYStream/TlsDamageDHYTest: DamageClientY/22 (&quot;TLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #11252: 'DamageYStream/TlsDamageDHYTest: DamageClientY/23 (&quot;TLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #11253: 'DamageYStream/TlsDamageDHYTest: DamageClientY/24 (&quot;TLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #11254: 'DamageYStream/TlsDamageDHYTest: DamageClientY/25 (&quot;TLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #11255: 'DamageYStream/TlsDamageDHYTest: DamageClientY/26 (&quot;TLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #11256: 'DamageYStream/TlsDamageDHYTest: DamageClientY/27 (&quot;TLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #11257: 'DamageYStream/TlsDamageDHYTest: DamageClientY/28 (&quot;TLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #11258: 'DamageYStream/TlsDamageDHYTest: DamageClientY/29 (&quot;TLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #11259: 'DamageYStream/TlsDamageDHYTest: DamageClientY/30 (&quot;TLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #11260: 'DamageYStream/TlsDamageDHYTest: DamageClientY/31 (&quot;TLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #11261: 'DamageYStream/TlsDamageDHYTest: DamageClientY/32 (&quot;TLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #11262: 'DamageYStream/TlsDamageDHYTest: DamageClientY/33 (&quot;TLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #11263: 'DamageYStream/TlsDamageDHYTest: DamageClientY/34 (&quot;TLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #11264: 'DamageYStream/TlsDamageDHYTest: DamageClientY/35 (&quot;TLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #11265: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/0 (&quot;DTLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #11266: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/1 (&quot;DTLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #11267: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/2 (&quot;DTLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #11268: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/3 (&quot;DTLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #11269: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/4 (&quot;DTLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #11270: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/5 (&quot;DTLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #11271: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/6 (&quot;DTLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #11272: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/7 (&quot;DTLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #11273: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/8 (&quot;DTLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #11274: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/9 (&quot;DTLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #11275: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/10 (&quot;DTLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #11276: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/11 (&quot;DTLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #11277: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/12 (&quot;DTLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #11278: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/13 (&quot;DTLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #11279: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/14 (&quot;DTLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #11280: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/15 (&quot;DTLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #11281: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/16 (&quot;DTLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #11282: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/17 (&quot;DTLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #11283: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/18 (&quot;DTLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #11284: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/19 (&quot;DTLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #11285: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/20 (&quot;DTLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #11286: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/21 (&quot;DTLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #11287: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/22 (&quot;DTLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #11288: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/23 (&quot;DTLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #11289: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/0 (&quot;DTLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #11290: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/1 (&quot;DTLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #11291: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/2 (&quot;DTLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #11292: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/3 (&quot;DTLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #11293: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/4 (&quot;DTLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #11294: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/5 (&quot;DTLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #11295: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/6 (&quot;DTLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #11296: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/7 (&quot;DTLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #11297: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/8 (&quot;DTLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #11298: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/9 (&quot;DTLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #11299: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/10 (&quot;DTLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #11300: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/11 (&quot;DTLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #11301: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/12 (&quot;DTLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #11302: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/13 (&quot;DTLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #11303: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/14 (&quot;DTLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #11304: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/15 (&quot;DTLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #11305: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/16 (&quot;DTLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #11306: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/17 (&quot;DTLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #11307: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/18 (&quot;DTLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #11308: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/19 (&quot;DTLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #11309: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/20 (&quot;DTLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #11310: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/21 (&quot;DTLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #11311: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/22 (&quot;DTLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #11312: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/23 (&quot;DTLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #11313: 'Datagram12Plus/TlsConnectDatagram12Plus: MissAWindow/0 771' - PASSED
ssl_gtest.sh: #11314: 'Datagram12Plus/TlsConnectDatagram12Plus: MissAWindowAndOne/0 771' - PASSED
ssl_gtest.sh: #11315: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11316: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11317: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11318: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11319: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11320: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11321: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11322: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11323: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11324: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11325: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11326: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11327: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11328: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11329: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11330: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11331: 'TlsPadding/TlsPaddingTest: Correct/0 (1, true)' - PASSED
ssl_gtest.sh: #11332: 'TlsPadding/TlsPaddingTest: Correct/1 (1, false)' - PASSED
ssl_gtest.sh: #11333: 'TlsPadding/TlsPaddingTest: Correct/2 (19, true)' - PASSED
ssl_gtest.sh: #11334: 'TlsPadding/TlsPaddingTest: Correct/3 (19, false)' - PASSED
ssl_gtest.sh: #11335: 'TlsPadding/TlsPaddingTest: Correct/4 (20, true)' - PASSED
ssl_gtest.sh: #11336: 'TlsPadding/TlsPaddingTest: Correct/5 (20, false)' - PASSED
ssl_gtest.sh: #11337: 'TlsPadding/TlsPaddingTest: Correct/6 (30, true)' - PASSED
ssl_gtest.sh: #11338: 'TlsPadding/TlsPaddingTest: Correct/7 (30, false)' - PASSED
ssl_gtest.sh: #11339: 'TlsPadding/TlsPaddingTest: Correct/8 (31, true)' - PASSED
ssl_gtest.sh: #11340: 'TlsPadding/TlsPaddingTest: Correct/9 (31, false)' - PASSED
ssl_gtest.sh: #11341: 'TlsPadding/TlsPaddingTest: Correct/10 (32, true)' - PASSED
ssl_gtest.sh: #11342: 'TlsPadding/TlsPaddingTest: Correct/11 (32, false)' - PASSED
ssl_gtest.sh: #11343: 'TlsPadding/TlsPaddingTest: Correct/12 (36, true)' - PASSED
ssl_gtest.sh: #11344: 'TlsPadding/TlsPaddingTest: Correct/13 (36, false)' - PASSED
ssl_gtest.sh: #11345: 'TlsPadding/TlsPaddingTest: Correct/14 (256, true)' - PASSED
ssl_gtest.sh: #11346: 'TlsPadding/TlsPaddingTest: Correct/15 (256, false)' - PASSED
ssl_gtest.sh: #11347: 'TlsPadding/TlsPaddingTest: Correct/16 (257, true)' - PASSED
ssl_gtest.sh: #11348: 'TlsPadding/TlsPaddingTest: Correct/17 (257, false)' - PASSED
ssl_gtest.sh: #11349: 'TlsPadding/TlsPaddingTest: Correct/18 (287, true)' - PASSED
ssl_gtest.sh: #11350: 'TlsPadding/TlsPaddingTest: Correct/19 (287, false)' - PASSED
ssl_gtest.sh: #11351: 'TlsPadding/TlsPaddingTest: Correct/20 (288, true)' - PASSED
ssl_gtest.sh: #11352: 'TlsPadding/TlsPaddingTest: Correct/21 (288, false)' - PASSED
ssl_gtest.sh: #11353: 'TlsPadding/TlsPaddingTest: PadTooLong/0 (1, true)' - PASSED
ssl_gtest.sh: #11354: 'TlsPadding/TlsPaddingTest: PadTooLong/1 (1, false)' - PASSED
ssl_gtest.sh: #11355: 'TlsPadding/TlsPaddingTest: PadTooLong/2 (19, true)' - PASSED
ssl_gtest.sh: #11356: 'TlsPadding/TlsPaddingTest: PadTooLong/3 (19, false)' - PASSED
ssl_gtest.sh: #11357: 'TlsPadding/TlsPaddingTest: PadTooLong/4 (20, true)' - PASSED
ssl_gtest.sh: #11358: 'TlsPadding/TlsPaddingTest: PadTooLong/5 (20, false)' - PASSED
ssl_gtest.sh: #11359: 'TlsPadding/TlsPaddingTest: PadTooLong/6 (30, true)' - PASSED
ssl_gtest.sh: #11360: 'TlsPadding/TlsPaddingTest: PadTooLong/7 (30, false)' - PASSED
ssl_gtest.sh: #11361: 'TlsPadding/TlsPaddingTest: PadTooLong/8 (31, true)' - PASSED
ssl_gtest.sh: #11362: 'TlsPadding/TlsPaddingTest: PadTooLong/9 (31, false)' - PASSED
ssl_gtest.sh: #11363: 'TlsPadding/TlsPaddingTest: PadTooLong/10 (32, true)' - PASSED
ssl_gtest.sh: #11364: 'TlsPadding/TlsPaddingTest: PadTooLong/11 (32, false)' - PASSED
ssl_gtest.sh: #11365: 'TlsPadding/TlsPaddingTest: PadTooLong/12 (36, true)' - PASSED
ssl_gtest.sh: #11366: 'TlsPadding/TlsPaddingTest: PadTooLong/13 (36, false)' - PASSED
ssl_gtest.sh: #11367: 'TlsPadding/TlsPaddingTest: PadTooLong/14 (256, true)' - PASSED
ssl_gtest.sh: #11368: 'TlsPadding/TlsPaddingTest: PadTooLong/15 (256, false)' - PASSED
ssl_gtest.sh: #11369: 'TlsPadding/TlsPaddingTest: PadTooLong/16 (257, true)' - PASSED
ssl_gtest.sh: #11370: 'TlsPadding/TlsPaddingTest: PadTooLong/17 (257, false)' - PASSED
ssl_gtest.sh: #11371: 'TlsPadding/TlsPaddingTest: PadTooLong/18 (287, true)' - PASSED
ssl_gtest.sh: #11372: 'TlsPadding/TlsPaddingTest: PadTooLong/19 (287, false)' - PASSED
ssl_gtest.sh: #11373: 'TlsPadding/TlsPaddingTest: PadTooLong/20 (288, true)' - PASSED
ssl_gtest.sh: #11374: 'TlsPadding/TlsPaddingTest: PadTooLong/21 (288, false)' - PASSED
ssl_gtest.sh: #11375: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/0 (1, true)' - PASSED
ssl_gtest.sh: #11376: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/1 (1, false)' - PASSED
ssl_gtest.sh: #11377: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/2 (19, true)' - PASSED
ssl_gtest.sh: #11378: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/3 (19, false)' - PASSED
ssl_gtest.sh: #11379: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/4 (20, true)' - PASSED
ssl_gtest.sh: #11380: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/5 (20, false)' - PASSED
ssl_gtest.sh: #11381: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/6 (30, true)' - PASSED
ssl_gtest.sh: #11382: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/7 (30, false)' - PASSED
ssl_gtest.sh: #11383: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/8 (31, true)' - PASSED
ssl_gtest.sh: #11384: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/9 (31, false)' - PASSED
ssl_gtest.sh: #11385: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/10 (32, true)' - PASSED
ssl_gtest.sh: #11386: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/11 (32, false)' - PASSED
ssl_gtest.sh: #11387: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/12 (36, true)' - PASSED
ssl_gtest.sh: #11388: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/13 (36, false)' - PASSED
ssl_gtest.sh: #11389: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/14 (256, true)' - PASSED
ssl_gtest.sh: #11390: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/15 (256, false)' - PASSED
ssl_gtest.sh: #11391: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/16 (257, true)' - PASSED
ssl_gtest.sh: #11392: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/17 (257, false)' - PASSED
ssl_gtest.sh: #11393: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/18 (287, true)' - PASSED
ssl_gtest.sh: #11394: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/19 (287, false)' - PASSED
ssl_gtest.sh: #11395: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/20 (288, true)' - PASSED
ssl_gtest.sh: #11396: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/21 (288, false)' - PASSED
ssl_gtest.sh: #11397: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/0 (1, true)' - PASSED
ssl_gtest.sh: #11398: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/1 (1, false)' - PASSED
ssl_gtest.sh: #11399: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/2 (19, true)' - PASSED
ssl_gtest.sh: #11400: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/3 (19, false)' - PASSED
ssl_gtest.sh: #11401: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/4 (20, true)' - PASSED
ssl_gtest.sh: #11402: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/5 (20, false)' - PASSED
ssl_gtest.sh: #11403: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/6 (30, true)' - PASSED
ssl_gtest.sh: #11404: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/7 (30, false)' - PASSED
ssl_gtest.sh: #11405: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/8 (31, true)' - PASSED
ssl_gtest.sh: #11406: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/9 (31, false)' - PASSED
ssl_gtest.sh: #11407: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/10 (32, true)' - PASSED
ssl_gtest.sh: #11408: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/11 (32, false)' - PASSED
ssl_gtest.sh: #11409: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/12 (36, true)' - PASSED
ssl_gtest.sh: #11410: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/13 (36, false)' - PASSED
ssl_gtest.sh: #11411: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/14 (256, true)' - PASSED
ssl_gtest.sh: #11412: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/15 (256, false)' - PASSED
ssl_gtest.sh: #11413: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/16 (257, true)' - PASSED
ssl_gtest.sh: #11414: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/17 (257, false)' - PASSED
ssl_gtest.sh: #11415: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/18 (287, true)' - PASSED
ssl_gtest.sh: #11416: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/19 (287, false)' - PASSED
ssl_gtest.sh: #11417: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/20 (288, true)' - PASSED
ssl_gtest.sh: #11418: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/21 (288, false)' - PASSED
ssl_gtest.sh: #11419: 'SkipTls10/TlsSkipTest: SkipCertificateRsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #11420: 'SkipTls10/TlsSkipTest: SkipCertificateDhe/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #11421: 'SkipTls10/TlsSkipTest: SkipCertificateEcdhe/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #11422: 'SkipTls10/TlsSkipTest: SkipCertificateEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #11423: 'SkipTls10/TlsSkipTest: SkipServerKeyExchange/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #11424: 'SkipTls10/TlsSkipTest: SkipServerKeyExchangeEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #11425: 'SkipTls10/TlsSkipTest: SkipCertAndKeyExch/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #11426: 'SkipTls10/TlsSkipTest: SkipCertAndKeyExchEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #11427: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11428: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11429: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11430: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11431: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11432: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11433: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11434: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11435: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11436: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11437: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11438: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11439: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11440: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11441: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11442: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11443: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11444: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11445: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11446: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11447: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11448: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11449: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11450: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11451: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11452: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11453: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11454: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11455: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11456: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11457: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #11458: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #11459: 'AllHashFuncs/TlsHkdfTest: HkdfNullNull/0 4' - PASSED
ssl_gtest.sh: #11460: 'AllHashFuncs/TlsHkdfTest: HkdfNullNull/1 5' - PASSED
ssl_gtest.sh: #11461: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Only/0 4' - PASSED
ssl_gtest.sh: #11462: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Only/1 5' - PASSED
ssl_gtest.sh: #11463: 'AllHashFuncs/TlsHkdfTest: HkdfKey2Only/0 4' - PASSED
ssl_gtest.sh: #11464: 'AllHashFuncs/TlsHkdfTest: HkdfKey2Only/1 5' - PASSED
ssl_gtest.sh: #11465: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Key2/0 4' - PASSED
ssl_gtest.sh: #11466: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Key2/1 5' - PASSED
ssl_gtest.sh: #11467: 'AllHashFuncs/TlsHkdfTest: HkdfExpandLabel/0 4' - PASSED
ssl_gtest.sh: #11468: 'AllHashFuncs/TlsHkdfTest: HkdfExpandLabel/1 5' - PASSED
TIMESTAMP ssl_gtests END: Sat Oct 21 17:06:03 UTC 2017
ssl_gtests.sh: Testing with shared library ===============================
Running tests for cert
TIMESTAMP cert BEGIN: Sat Oct 21 17:06:03 UTC 2017
cert.sh: Certutil and Crlutil Tests with ECC ===============================
cert.sh: #11469: Looking for root certs module. - PASSED
cert.sh: Creating a CA Certificate TestCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -f ../tests.pw
cert.sh: #11470: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11471: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert TestCA  --------------------------
certutil -s "CN=NSS Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11472: Creating CA Cert TestCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n TestCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -o root.cert
cert.sh: #11473: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate serverCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -f ../tests.pw
cert.sh: #11474: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11475: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert serverCA  --------------------------
certutil -s "CN=NSS Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA -t Cu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11476: Creating CA Cert serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n serverCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -o root.cert
cert.sh: #11477: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-serverCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating CA Cert chain-1-serverCA  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA -t u,u,u -v 600 -c serverCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11478: Creating CA Cert chain-1-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-serverCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -o root.cert
cert.sh: #11479: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-serverCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating CA Cert chain-2-serverCA  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA -t u,u,u -v 600 -c chain-1-serverCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11480: Creating CA Cert chain-2-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-serverCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -o root.cert
cert.sh: #11481: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate clientCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -f ../tests.pw
cert.sh: #11482: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11483: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert clientCA  --------------------------
certutil -s "CN=NSS Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA -t Tu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11484: Creating CA Cert clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n clientCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -o root.cert
cert.sh: #11485: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-clientCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating CA Cert chain-1-clientCA  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA -t u,u,u -v 600 -c clientCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11486: Creating CA Cert chain-1-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-clientCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -o root.cert
cert.sh: #11487: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-clientCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating CA Cert chain-2-clientCA  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA -t u,u,u -v 600 -c chain-1-clientCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11488: Creating CA Cert chain-2-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-clientCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -o root.cert
cert.sh: #11489: Exporting Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate TestCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating DSA CA Cert TestCA-dsa  --------------------------
certutil -s "CN=NSS Test CA (DSA), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-dsa -k dsa -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11490: Creating DSA CA Cert TestCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n TestCA-dsa -r -d . -o dsaroot.cert
cert.sh: #11491: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating DSA CA Cert serverCA-dsa  --------------------------
certutil -s "CN=NSS Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-dsa -k dsa -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11492: Creating DSA CA Cert serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #11493: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating DSA CA Cert chain-1-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-dsa -k dsa -t u,u,u -v 600 -c serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11494: Creating DSA CA Cert chain-1-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #11495: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating DSA CA Cert chain-2-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11496: Creating DSA CA Cert chain-2-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #11497: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating DSA CA Cert clientCA-dsa  --------------------------
certutil -s "CN=NSS Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-dsa -k dsa -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11498: Creating DSA CA Cert clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #11499: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating DSA CA Cert chain-1-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-dsa -k dsa -t u,u,u -v 600 -c clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11500: Creating DSA CA Cert chain-1-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #11501: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating DSA CA Cert chain-2-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11502: Creating DSA CA Cert chain-2-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #11503: Exporting DSA Root Cert - PASSED
cert.sh: Creating an EC CA Certificate TestCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating EC CA Cert TestCA-ec  --------------------------
certutil -s "CN=NSS Test CA (ECC), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-ec -k ec -q secp521r1 -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11504: Creating EC CA Cert TestCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n TestCA-ec -r -d . -o ecroot.cert
cert.sh: #11505: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate serverCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating EC CA Cert serverCA-ec  --------------------------
certutil -s "CN=NSS Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-ec -k ec -q secp521r1 -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11506: Creating EC CA Cert serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n serverCA-ec -r -d . -o ecroot.cert
cert.sh: #11507: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating EC CA Cert chain-1-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11508: Creating EC CA Cert chain-1-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #11509: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating EC CA Cert chain-2-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11510: Creating EC CA Cert chain-2-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #11511: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate clientCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating EC CA Cert clientCA-ec  --------------------------
certutil -s "CN=NSS Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-ec -k ec -q secp521r1 -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11512: Creating EC CA Cert clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n clientCA-ec -r -d . -o ecroot.cert
cert.sh: #11513: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating EC CA Cert chain-1-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11514: Creating EC CA Cert chain-1-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #11515: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating EC CA Cert chain-2-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11516: Creating EC CA Cert chain-2-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #11517: Exporting EC Root Cert - PASSED
cert.sh: Creating Certificates, issued by the last ===============
     of a chain of CA's which are not in the same database============
Server Cert
cert.sh: Initializing localhost.localdomain's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw
cert.sh: #11518: Initializing localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11519: Loading root cert module to localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11520: Generate Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 200 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain.cert -f ../tests.pw
cert.sh: #11521: Sign localhost.localdomain's Request (ext) - PASSED
cert.sh: Import localhost.localdomain's Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11522: Import localhost.localdomain's Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/clientCA.ca.cert
cert.sh: #11523: Import Client Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11524: Generate DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA-dsa -m 200 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw
cert.sh: #11525: Sign localhost.localdomain's DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11526: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/clientCA-dsa.ca.cert
cert.sh: #11527: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11528: Generate mixed DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 202 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw
cert.sh: #11529: Sign localhost.localdomain's mixed DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11530: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11531: Generate EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA-ec -m 200 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-ec.cert -f ../tests.pw
cert.sh: #11532: Sign localhost.localdomain's EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11533: Import localhost.localdomain's EC Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-ec -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/clientCA-ec.ca.cert
cert.sh: #11534: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11535: Generate mixed EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 201 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw
cert.sh: #11536: Sign localhost.localdomain's mixed EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11537: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) - PASSED
Importing all the server's own CA chain into the servers DB
cert.sh: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/chain-1-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11538: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/chain-1-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11539: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/chain-2-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11540: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/serverCA-ec.ca.cert
cert.sh: #11541: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/chain-2-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11542: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/chain-1-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11543: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/serverCA.ca.cert
cert.sh: #11544: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/serverCA-dsa.ca.cert
cert.sh: #11545: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/chain-2-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11546: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
Client Cert
cert.sh: Initializing ExtendedSSLUser's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw
cert.sh: #11547: Initializing ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11548: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11549: Generate Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 300 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser.cert -f ../tests.pw
cert.sh: #11550: Sign ExtendedSSLUser's Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11551: Import ExtendedSSLUser's Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/serverCA.ca.cert
cert.sh: #11552: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11553: Generate DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA-dsa -m 300 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-dsa.cert -f ../tests.pw
cert.sh: #11554: Sign ExtendedSSLUser's DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11555: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/serverCA-dsa.ca.cert
cert.sh: #11556: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11557: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 302 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-dsamixed.cert -f ../tests.pw
cert.sh: #11558: Sign ExtendedSSLUser's mixed DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11559: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11560: Generate EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA-ec -m 300 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-ec.cert -f ../tests.pw
cert.sh: #11561: Sign ExtendedSSLUser's EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11562: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA/serverCA-ec.ca.cert
cert.sh: #11563: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11564: Generate mixed EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 301 -v 60 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-ecmixed.cert -f ../tests.pw
cert.sh: #11565: Sign ExtendedSSLUser's mixed EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11566: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) - PASSED
Importing all the client's own CA chain into the servers DB
cert.sh: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/chain-1-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11567: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/clientCA-dsa.ca.cert
cert.sh: #11568: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-ec -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/clientCA-ec.ca.cert
cert.sh: #11569: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/chain-2-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11570: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/chain-2-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11571: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/chain-1-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11572: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/chain-2-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11573: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/chain-1-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11574: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/clientCA/clientCA.ca.cert
cert.sh: #11575: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh SUCCESS: EXT passed
cert.sh: Creating Client CA Issued Certificates ===============
cert.sh: Initializing TestUser's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw
cert.sh: #11576: Initializing TestUser's Cert DB - PASSED
cert.sh: Loading root cert module to TestUser's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11577: Loading root cert module to TestUser's Cert DB - PASSED
cert.sh: Import Root CA for TestUser --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -i ../CA/TestCA.ca.cert
cert.sh: #11578: Import Root CA for TestUser - PASSED
cert.sh: Import DSA Root CA for TestUser --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -i ../CA/TestCA-dsa.ca.cert
cert.sh: #11579: Import DSA Root CA for TestUser - PASSED
cert.sh: Import EC Root CA for TestUser --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -i ../CA/TestCA-ec.ca.cert
cert.sh: #11580: Import EC Root CA for TestUser - PASSED
cert.sh: Generate Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11581: Generate Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's Request --------------------------
certutil -C -c TestCA -m 70 -v 60 -d ../CA -i req -o TestUser.cert -f ../tests.pw 
cert.sh: #11582: Sign TestUser's Request - PASSED
cert.sh: Import TestUser's Cert --------------------------
certutil -A -n TestUser -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11583: Import TestUser's Cert - PASSED
cert.sh SUCCESS: TestUser's Cert Created
cert.sh: Generate DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11584: Generate DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 70 -v 60 -d ../CA -i req -o TestUser-dsa.cert -f ../tests.pw 
cert.sh: #11585: Sign TestUser's DSA Request - PASSED
cert.sh: Import TestUser's DSA Cert --------------------------
certutil -A -n TestUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11586: Import TestUser's DSA Cert - PASSED
cert.sh SUCCESS: TestUser's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11587: Generate mixed DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20070 -v 60 -d ../CA -i req -o TestUser-dsamixed.cert -f ../tests.pw 
cert.sh: #11588: Sign TestUser's DSA Request with RSA - PASSED
cert.sh: Import TestUser's mixed DSA Cert --------------------------
certutil -A -n TestUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11589: Import TestUser's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11590: Generate EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request --------------------------
certutil -C -c TestCA-ec -m 70 -v 60 -d ../CA -i req -o TestUser-ec.cert -f ../tests.pw 
cert.sh: #11591: Sign TestUser's EC Request - PASSED
cert.sh: Import TestUser's EC Cert --------------------------
certutil -A -n TestUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11592: Import TestUser's EC Cert - PASSED
cert.sh SUCCESS: TestUser's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11593: Generate mixed EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10070 -v 60 -d ../CA -i req -o TestUser-ecmixed.cert -f ../tests.pw 
cert.sh: #11594: Sign TestUser's EC Request with RSA - PASSED
cert.sh: Import TestUser's mixed EC Cert --------------------------
certutil -A -n TestUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11595: Import TestUser's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain ------------------------------------
cert.sh: Initializing localhost.localdomain's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #11596: Initializing localhost.localdomain's Cert DB - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11597: Loading root cert module to localhost.localdomain's Cert DB - PASSED
cert.sh: Import Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -i ../CA/TestCA.ca.cert
cert.sh: #11598: Import Root CA for localhost.localdomain - PASSED
cert.sh: Import DSA Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -i ../CA/TestCA-dsa.ca.cert
cert.sh: #11599: Import DSA Root CA for localhost.localdomain - PASSED
cert.sh: Import EC Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -i ../CA/TestCA-ec.ca.cert
cert.sh: #11600: Import EC Root CA for localhost.localdomain - PASSED
cert.sh: Generate Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11601: Generate Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's Request --------------------------
certutil -C -c TestCA -m 100 -v 60 -d ../CA -i req -o localhost.localdomain.cert -f ../tests.pw 
cert.sh: #11602: Sign localhost.localdomain's Request - PASSED
cert.sh: Import localhost.localdomain's Cert --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11603: Import localhost.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11604: Generate DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #11605: Sign localhost.localdomain's DSA Request - PASSED
cert.sh: Import localhost.localdomain's DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11606: Import localhost.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11607: Generate mixed DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20100 -v 60 -d ../CA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #11608: Sign localhost.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11609: Import localhost.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11610: Generate EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-ec.cert -f ../tests.pw 
cert.sh: #11611: Sign localhost.localdomain's EC Request - PASSED
cert.sh: Import localhost.localdomain's EC Cert --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11612: Import localhost.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11613: Generate mixed EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10100 -v 60 -d ../CA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #11614: Sign localhost.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11615: Import localhost.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain-sni --------------------------------
cert.sh: Generate Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11616: Generate Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's Request --------------------------
certutil -C -c TestCA -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain.cert -f ../tests.pw 
cert.sh: #11617: Sign localhost-sni.localdomain's Request - PASSED
cert.sh: Import localhost-sni.localdomain's Cert --------------------------
certutil -A -n localhost-sni.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11618: Import localhost-sni.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11619: Generate DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #11620: Sign localhost-sni.localdomain's DSA Request - PASSED
cert.sh: Import localhost-sni.localdomain's DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11621: Import localhost-sni.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11622: Generate mixed DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #11623: Sign localhost-sni.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11624: Import localhost-sni.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11625: Generate EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ec.cert -f ../tests.pw 
cert.sh: #11626: Sign localhost-sni.localdomain's EC Request - PASSED
cert.sh: Import localhost-sni.localdomain's EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11627: Import localhost-sni.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11628: Generate mixed EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #11629: Sign localhost-sni.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11630: Import localhost-sni.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed EC Cert Created
cert.sh: Modify trust attributes of Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA -t TC,TC,TC -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #11631: Modify trust attributes of Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of DSA Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-dsa -t TC,TC,TC -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #11632: Modify trust attributes of DSA Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-ec -t TC,TC,TC -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #11633: Modify trust attributes of EC Root CA -t TC,TC,TC - PASSED
cert.sh SUCCESS: SSL passed
cert.sh: Creating database for OCSP stapling tests  ===============
cp -r /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/stapling
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -o ../stapling/ca.p12 -n TestCA -k ../tests.pw -w ../tests.pw -d ../CA
pk12util: PKCS12 EXPORT SUCCESSFUL
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -i ../stapling/ca.p12 -k ../tests.pw -w ../tests.pw -d ../stapling
pk12util: PKCS12 IMPORT SUCCESSFUL
cert.sh: Creating Client CA Issued Certificates ==============
cert.sh: Initializing Alice's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw
cert.sh: #11634: Initializing Alice's Cert DB - PASSED
cert.sh: Loading root cert module to Alice's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11635: Loading root cert module to Alice's Cert DB - PASSED
cert.sh: Import Root CA for Alice --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -i ../CA/TestCA.ca.cert
cert.sh: #11636: Import Root CA for Alice - PASSED
cert.sh: Import DSA Root CA for Alice --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #11637: Import DSA Root CA for Alice - PASSED
cert.sh: Import EC Root CA for Alice --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -i ../CA/TestCA-ec.ca.cert
cert.sh: #11638: Import EC Root CA for Alice - PASSED
cert.sh: Generate Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11639: Generate Cert Request for Alice - PASSED
cert.sh: Sign Alice's Request --------------------------
certutil -C -c TestCA -m 30 -v 60 -d ../CA -i req -o Alice.cert -f ../tests.pw 
cert.sh: #11640: Sign Alice's Request - PASSED
cert.sh: Import Alice's Cert --------------------------
certutil -A -n Alice -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11641: Import Alice's Cert - PASSED
cert.sh SUCCESS: Alice's Cert Created
cert.sh: Generate DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11642: Generate DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 30 -v 60 -d ../CA -i req -o Alice-dsa.cert -f ../tests.pw 
cert.sh: #11643: Sign Alice's DSA Request - PASSED
cert.sh: Import Alice's DSA Cert --------------------------
certutil -A -n Alice-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11644: Import Alice's DSA Cert - PASSED
cert.sh SUCCESS: Alice's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11645: Generate mixed DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20030 -v 60 -d ../CA -i req -o Alice-dsamixed.cert -f ../tests.pw 
cert.sh: #11646: Sign Alice's DSA Request with RSA - PASSED
cert.sh: Import Alice's mixed DSA Cert --------------------------
certutil -A -n Alice-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11647: Import Alice's mixed DSA Cert - PASSED
cert.sh SUCCESS: Alice's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11648: Generate EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request --------------------------
certutil -C -c TestCA-ec -m 30 -v 60 -d ../CA -i req -o Alice-ec.cert -f ../tests.pw 
cert.sh: #11649: Sign Alice's EC Request - PASSED
cert.sh: Import Alice's EC Cert --------------------------
certutil -A -n Alice-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11650: Import Alice's EC Cert - PASSED
cert.sh SUCCESS: Alice's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11651: Generate mixed EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10030 -v 60 -d ../CA -i req -o Alice-ecmixed.cert -f ../tests.pw 
cert.sh: #11652: Sign Alice's EC Request with RSA - PASSED
cert.sh: Import Alice's mixed EC Cert --------------------------
certutil -A -n Alice-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11653: Import Alice's mixed EC Cert - PASSED
cert.sh SUCCESS: Alice's mixed EC Cert Created
cert.sh: Initializing Bob's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw
cert.sh: #11654: Initializing Bob's Cert DB - PASSED
cert.sh: Loading root cert module to Bob's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11655: Loading root cert module to Bob's Cert DB - PASSED
cert.sh: Import Root CA for Bob --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -i ../CA/TestCA.ca.cert
cert.sh: #11656: Import Root CA for Bob - PASSED
cert.sh: Import DSA Root CA for Bob --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #11657: Import DSA Root CA for Bob - PASSED
cert.sh: Import EC Root CA for Bob --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -i ../CA/TestCA-ec.ca.cert
cert.sh: #11658: Import EC Root CA for Bob - PASSED
cert.sh: Generate Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11659: Generate Cert Request for Bob - PASSED
cert.sh: Sign Bob's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o Bob.cert -f ../tests.pw 
cert.sh: #11660: Sign Bob's Request - PASSED
cert.sh: Import Bob's Cert --------------------------
certutil -A -n Bob -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11661: Import Bob's Cert - PASSED
cert.sh SUCCESS: Bob's Cert Created
cert.sh: Generate DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11662: Generate DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o Bob-dsa.cert -f ../tests.pw 
cert.sh: #11663: Sign Bob's DSA Request - PASSED
cert.sh: Import Bob's DSA Cert --------------------------
certutil -A -n Bob-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11664: Import Bob's DSA Cert - PASSED
cert.sh SUCCESS: Bob's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11665: Generate mixed DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o Bob-dsamixed.cert -f ../tests.pw 
cert.sh: #11666: Sign Bob's DSA Request with RSA - PASSED
cert.sh: Import Bob's mixed DSA Cert --------------------------
certutil -A -n Bob-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11667: Import Bob's mixed DSA Cert - PASSED
cert.sh SUCCESS: Bob's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11668: Generate EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o Bob-ec.cert -f ../tests.pw 
cert.sh: #11669: Sign Bob's EC Request - PASSED
cert.sh: Import Bob's EC Cert --------------------------
certutil -A -n Bob-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11670: Import Bob's EC Cert - PASSED
cert.sh SUCCESS: Bob's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11671: Generate mixed EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o Bob-ecmixed.cert -f ../tests.pw 
cert.sh: #11672: Sign Bob's EC Request with RSA - PASSED
cert.sh: Import Bob's mixed EC Cert --------------------------
certutil -A -n Bob-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11673: Import Bob's mixed EC Cert - PASSED
cert.sh SUCCESS: Bob's mixed EC Cert Created
cert.sh: Creating Dave's Certificate -------------------------
cert.sh: Initializing Dave's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw
cert.sh: #11674: Initializing Dave's Cert DB - PASSED
cert.sh: Loading root cert module to Dave's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11675: Loading root cert module to Dave's Cert DB - PASSED
cert.sh: Import Root CA for Dave --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -i ../CA/TestCA.ca.cert
cert.sh: #11676: Import Root CA for Dave - PASSED
cert.sh: Import DSA Root CA for Dave --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -i ../CA/TestCA-dsa.ca.cert
cert.sh: #11677: Import DSA Root CA for Dave - PASSED
cert.sh: Import EC Root CA for Dave --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -i ../CA/TestCA-ec.ca.cert
cert.sh: #11678: Import EC Root CA for Dave - PASSED
cert.sh: Generate Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11679: Generate Cert Request for Dave - PASSED
cert.sh: Sign Dave's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o Dave.cert -f ../tests.pw 
cert.sh: #11680: Sign Dave's Request - PASSED
cert.sh: Import Dave's Cert --------------------------
certutil -A -n Dave -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11681: Import Dave's Cert - PASSED
cert.sh SUCCESS: Dave's Cert Created
cert.sh: Generate DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11682: Generate DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o Dave-dsa.cert -f ../tests.pw 
cert.sh: #11683: Sign Dave's DSA Request - PASSED
cert.sh: Import Dave's DSA Cert --------------------------
certutil -A -n Dave-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11684: Import Dave's DSA Cert - PASSED
cert.sh SUCCESS: Dave's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11685: Generate mixed DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o Dave-dsamixed.cert -f ../tests.pw 
cert.sh: #11686: Sign Dave's DSA Request with RSA - PASSED
cert.sh: Import Dave's mixed DSA Cert --------------------------
certutil -A -n Dave-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11687: Import Dave's mixed DSA Cert - PASSED
cert.sh SUCCESS: Dave's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11688: Generate EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o Dave-ec.cert -f ../tests.pw 
cert.sh: #11689: Sign Dave's EC Request - PASSED
cert.sh: Import Dave's EC Cert --------------------------
certutil -A -n Dave-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11690: Import Dave's EC Cert - PASSED
cert.sh SUCCESS: Dave's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11691: Generate mixed EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o Dave-ecmixed.cert -f ../tests.pw 
cert.sh: #11692: Sign Dave's EC Request with RSA - PASSED
cert.sh: Import Dave's mixed EC Cert --------------------------
certutil -A -n Dave-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11693: Import Dave's mixed EC Cert - PASSED
cert.sh SUCCESS: Dave's mixed EC Cert Created
cert.sh: Creating multiEmail's Certificate --------------------
cert.sh: Initializing Eve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw
cert.sh: #11694: Initializing Eve's Cert DB - PASSED
cert.sh: Loading root cert module to Eve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11695: Loading root cert module to Eve's Cert DB - PASSED
cert.sh: Import Root CA for Eve --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -i ../CA/TestCA.ca.cert
cert.sh: #11696: Import Root CA for Eve - PASSED
cert.sh: Import DSA Root CA for Eve --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -i ../CA/TestCA-dsa.ca.cert
cert.sh: #11697: Import DSA Root CA for Eve - PASSED
cert.sh: Import EC Root CA for Eve --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -i ../CA/TestCA-ec.ca.cert
cert.sh: #11698: Import EC Root CA for Eve - PASSED
cert.sh: Generate Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11699: Generate Cert Request for Eve - PASSED
cert.sh: Sign Eve's Request --------------------------
certutil -C -c TestCA -m 60 -v 60 -d ../CA -i req -o Eve.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #11700: Sign Eve's Request - PASSED
cert.sh: Import Eve's Cert --------------------------
certutil -A -n Eve -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11701: Import Eve's Cert - PASSED
cert.sh SUCCESS: Eve's Cert Created
cert.sh: Generate DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11702: Generate DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 60 -v 60 -d ../CA -i req -o Eve-dsa.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #11703: Sign Eve's DSA Request - PASSED
cert.sh: Import Eve's DSA Cert --------------------------
certutil -A -n Eve-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11704: Import Eve's DSA Cert - PASSED
cert.sh SUCCESS: Eve's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11705: Generate mixed DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20060 -v 60 -d ../CA -i req -o Eve-dsamixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #11706: Sign Eve's DSA Request with RSA - PASSED
cert.sh: Import Eve's mixed DSA Cert --------------------------
certutil -A -n Eve-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11707: Import Eve's mixed DSA Cert - PASSED
cert.sh SUCCESS: Eve's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11708: Generate EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request --------------------------
certutil -C -c TestCA-ec -m 60 -v 60 -d ../CA -i req -o Eve-ec.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #11709: Sign Eve's EC Request - PASSED
cert.sh: Import Eve's EC Cert --------------------------
certutil -A -n Eve-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11710: Import Eve's EC Cert - PASSED
cert.sh SUCCESS: Eve's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11711: Generate mixed EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10060 -v 60 -d ../CA -i req -o Eve-ecmixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #11712: Sign Eve's EC Request with RSA - PASSED
cert.sh: Import Eve's mixed EC Cert --------------------------
certutil -A -n Eve-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11713: Import Eve's mixed EC Cert - PASSED
cert.sh SUCCESS: Eve's mixed EC Cert Created
cert.sh: Importing Certificates ==============================
cert.sh: Import Bob's cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob.cert
cert.sh: #11714: Import Bob's cert into Alice's db - PASSED
cert.sh: Import Dave's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #11715: Import Dave's cert into Alice's DB - PASSED
cert.sh: Import Dave's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #11716: Import Dave's cert into Bob's DB - PASSED
cert.sh: Import Eve's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #11717: Import Eve's cert into Alice's DB - PASSED
cert.sh: Import Eve's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #11718: Import Eve's cert into Bob's DB - PASSED
cert.sh: Importing EC Certificates ==============================
cert.sh: Import Bob's EC cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob-ec.cert
cert.sh: #11719: Import Bob's EC cert into Alice's db - PASSED
cert.sh: Import Dave's EC cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #11720: Import Dave's EC cert into Alice's DB - PASSED
cert.sh: Import Dave's EC cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #11721: Import Dave's EC cert into Bob's DB - PASSED
cert.sh SUCCESS: SMIME passed
cert.sh: Creating FIPS 140 DSA Certificates ==============
cert.sh: Initializing FIPS PUB 140 Test Certificate's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips -f ../tests.fipspw
cert.sh: #11722: Initializing FIPS PUB 140 Test Certificate's Cert DB - PASSED
cert.sh: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11723: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) - PASSED
cert.sh: Enable FIPS mode on database -----------------------
modutil -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips -fips true 
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
FIPS mode enabled.
cert.sh: #11724: Enable FIPS mode on database for FIPS PUB 140 Test Certificate - PASSED
cert.sh: Generate Certificate for FIPS PUB 140 Test Certificate --------------------------
certutil -s "CN=FIPS PUB 140 Test Certificate, E=fips@bogus.com, O=BOGUS NSS, OU=FIPS PUB 140, L=Mountain View, ST=California, C=US" -S -n FIPS_PUB_140_Test_Certificate -x -t Cu,Cu,Cu -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips -f ../tests.fipspw -k dsa -v 600 -m 500 -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11725: Generate Certificate for FIPS PUB 140 Test Certificate - PASSED
cert.sh SUCCESS: FIPS passed
cert.sh: Creating Server CA Issued Certificate for 
             EC Curves Test Certificates ------------------------------------
cert.sh: Initializing EC Curve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw
cert.sh: #11726: Initializing EC Curve's Cert DB - PASSED
cert.sh: Loading root cert module to EC Curve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eccurves
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11727: Loading root cert module to EC Curve's Cert DB - PASSED
cert.sh: Import EC Root CA for EC Curves Test Certificates --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eccurves -i ../CA/TestCA-ec.ca.cert
cert.sh: #11728: Import EC Root CA for EC Curves Test Certificates - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp256 --------------------------
certutil -s "CN=Curve-nistp256, E=Curve-nistp256-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp256 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11729: Generate EC Cert Request for Curve-nistp256 - PASSED
cert.sh: Sign Curve-nistp256's EC Request --------------------------
certutil -C -c TestCA-ec -m 2001 -v 60 -d ../CA -i req -o Curve-nistp256-ec.cert -f ../tests.pw 
cert.sh: #11730: Sign Curve-nistp256's EC Request - PASSED
cert.sh: Import Curve-nistp256's EC Cert --------------------------
certutil -A -n Curve-nistp256-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -i Curve-nistp256-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11731: Import Curve-nistp256's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp384 --------------------------
certutil -s "CN=Curve-nistp384, E=Curve-nistp384-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp384 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11732: Generate EC Cert Request for Curve-nistp384 - PASSED
cert.sh: Sign Curve-nistp384's EC Request --------------------------
certutil -C -c TestCA-ec -m 2002 -v 60 -d ../CA -i req -o Curve-nistp384-ec.cert -f ../tests.pw 
cert.sh: #11733: Sign Curve-nistp384's EC Request - PASSED
cert.sh: Import Curve-nistp384's EC Cert --------------------------
certutil -A -n Curve-nistp384-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -i Curve-nistp384-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11734: Import Curve-nistp384's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp521 --------------------------
certutil -s "CN=Curve-nistp521, E=Curve-nistp521-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp521 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11735: Generate EC Cert Request for Curve-nistp521 - PASSED
cert.sh: Sign Curve-nistp521's EC Request --------------------------
certutil -C -c TestCA-ec -m 2003 -v 60 -d ../CA -i req -o Curve-nistp521-ec.cert -f ../tests.pw 
cert.sh: #11736: Sign Curve-nistp521's EC Request - PASSED
cert.sh: Import Curve-nistp521's EC Cert --------------------------
certutil -A -n Curve-nistp521-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -i Curve-nistp521-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11737: Import Curve-nistp521's EC Cert - PASSED
cert.sh: Initializing TestExt's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw
cert.sh: #11738: Initializing TestExt's Cert DB - PASSED
cert.sh: Loading root cert module to TestExt's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11739: Loading root cert module to TestExt's Cert DB - PASSED
cert.sh: Import Root CA for TestExt --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -i ../CA/TestCA.ca.cert
cert.sh: #11740: Import Root CA for TestExt - PASSED
cert.sh: Import DSA Root CA for TestExt --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -i ../CA/TestCA-dsa.ca.cert
cert.sh: #11741: Import DSA Root CA for TestExt - PASSED
cert.sh: Import EC Root CA for TestExt --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -i ../CA/TestCA-ec.ca.cert
cert.sh: #11742: Import EC Root CA for TestExt - PASSED
cert.sh: Generate Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11743: Generate Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's Request --------------------------
certutil -C -c TestCA -m 90 -v 60 -d ../CA -i req -o TestExt.cert -f ../tests.pw 
cert.sh: #11744: Sign TestExt's Request - PASSED
cert.sh: Import TestExt's Cert --------------------------
certutil -A -n TestExt -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11745: Import TestExt's Cert - PASSED
cert.sh SUCCESS: TestExt's Cert Created
cert.sh: Generate DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11746: Generate DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 90 -v 60 -d ../CA -i req -o TestExt-dsa.cert -f ../tests.pw 
cert.sh: #11747: Sign TestExt's DSA Request - PASSED
cert.sh: Import TestExt's DSA Cert --------------------------
certutil -A -n TestExt-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11748: Import TestExt's DSA Cert - PASSED
cert.sh SUCCESS: TestExt's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11749: Generate mixed DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20090 -v 60 -d ../CA -i req -o TestExt-dsamixed.cert -f ../tests.pw 
cert.sh: #11750: Sign TestExt's DSA Request with RSA - PASSED
cert.sh: Import TestExt's mixed DSA Cert --------------------------
certutil -A -n TestExt-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11751: Import TestExt's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestExt's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11752: Generate EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request --------------------------
certutil -C -c TestCA-ec -m 90 -v 60 -d ../CA -i req -o TestExt-ec.cert -f ../tests.pw 
cert.sh: #11753: Sign TestExt's EC Request - PASSED
cert.sh: Import TestExt's EC Cert --------------------------
certutil -A -n TestExt-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11754: Import TestExt's EC Cert - PASSED
cert.sh SUCCESS: TestExt's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11755: Generate mixed EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10090 -v 60 -d ../CA -i req -o TestExt-ecmixed.cert -f ../tests.pw 
cert.sh: #11756: Sign TestExt's EC Request with RSA - PASSED
cert.sh: Import TestExt's mixed EC Cert --------------------------
certutil -A -n TestExt-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11757: Import TestExt's mixed EC Cert - PASSED
cert.sh SUCCESS: TestExt's mixed EC Cert Created
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt1 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt1, E=TestExt1@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:82:35:b5
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 17:11:25 2017
            Not After : Sun Jan 21 17:11:25 2018
        Subject: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:9a:de:3a:9e:a8:8b:ae:ea:b1:df:5d:be:3c:e0:df:
                    d7:9a:7b:2a:74:60:06:4e:82:be:8a:17:13:38:22:df:
                    5f:44:45:bc:19:18:92:d9:c7:ae:f3:94:f6:68:07:3b:
                    8b:5b:6d:41:a7:fb:25:df:3e:f7:33:bc:49:7d:25:6c:
                    c8:4b:fb:ed:9b:cd:7c:61:5c:1d:d3:b9:6a:81:e9:30:
                    e1:d9:81:12:5b:c9:a1:56:2c:09:a1:d0:7d:96:04:9e:
                    dc:94:91:00:d4:d3:5b:04:4f:fe:b4:8e:98:57:83:39:
                    12:d5:5a:c9:3c:87:b2:82:d2:5b:98:63:13:89:50:d8:
                    41:cf:44:1a:85:2b:8a:c8:73:e3:82:fd:46:96:c3:b1:
                    5b:fd:46:24:03:0d:1a:66:73:5f:e5:0d:66:9c:b4:5f:
                    1f:c7:01:87:a1:85:ea:e7:33:78:54:a1:e3:c4:4d:6e:
                    4b:a1:e2:99:e0:a3:75:69:d1:60:79:be:cd:d9:ea:a4:
                    a9:c1:83:2b:c8:c7:2a:18:55:09:9e:43:c6:a7:9e:eb:
                    c4:d4:ff:d9:6d:61:67:27:50:c8:4c:d7:54:3d:d2:c3:
                    c0:2f:65:ca:5c:2c:62:af:99:fc:a4:b3:63:b6:c6:1c:
                    ee:79:fb:85:3f:8a:03:5d:28:e4:7c:3d:a0:a2:ea:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        77:87:0f:4e:e7:8a:63:39:99:2f:7a:46:d1:2d:cf:7e:
        67:74:86:6f:b7:00:14:5e:e6:6f:a2:0d:26:03:08:91:
        33:bf:cc:7d:ca:e2:19:e0:ba:e8:09:83:1f:51:7c:89:
        b7:55:25:b8:d3:d9:e2:a6:c4:a7:81:c5:59:ca:25:40:
        dc:25:e6:02:ff:32:e1:c8:97:55:b1:71:ca:2e:2a:8d:
        01:be:d6:47:72:7e:c9:56:ec:b9:b1:9b:92:66:1b:c1:
        25:86:5f:df:cf:d6:31:71:8d:cd:5a:80:b5:60:62:99:
        20:b8:cb:5e:dc:7f:83:8e:a0:54:a2:bc:03:22:af:82:
        f2:4b:dc:ee:4b:43:00:39:ad:a4:a0:21:c9:03:af:ff:
        08:0d:69:1b:33:29:ab:d3:9a:b9:fb:45:9c:74:b8:0a:
        23:5f:6e:04:90:98:a3:c2:a7:7f:a8:46:94:25:0f:63:
        cd:90:72:48:5e:72:3d:af:0c:2f:cb:b1:fb:a1:12:79:
        14:1d:ec:bb:e1:64:85:31:ba:24:06:eb:f1:d9:28:14:
        96:16:0e:c5:ee:71:01:6a:1b:06:37:f5:4a:68:29:7c:
        29:6a:97:d2:3a:86:81:54:c3:64:41:2d:06:18:d9:87:
        37:90:d0:13:d6:03:b1:69:62:8e:b4:4d:2b:01:c6:70
    Fingerprint (SHA-256):
        A6:72:2A:11:03:06:90:C3:4D:14:17:AB:F2:B4:07:EA:87:0B:D3:83:01:8D:A7:43:04:E5:89:35:18:32:79:93
    Fingerprint (SHA1):
        D0:38:15:34:61:4D:04:1D:8D:B5:4E:21:1C:EB:CB:07:D2:4E:0B:68
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11758: Certificate Key Usage Extension (1) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt2 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt2, E=TestExt2@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:82:35:c5
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 17:11:32 2017
            Not After : Sun Jan 21 17:11:32 2018
        Subject: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:10:8d:47:ce:d6:2e:39:de:92:e1:11:66:8c:47:39:
                    e9:d1:fd:32:a6:b1:c8:f4:6d:55:09:6e:92:86:1d:9c:
                    bd:f5:b5:ee:33:2e:71:3b:c3:cd:29:85:50:ca:da:0f:
                    5c:47:53:fc:52:a6:fe:09:9e:2d:51:67:d2:fa:83:92:
                    79:fb:da:c5:a9:2e:5b:7a:9f:a0:ee:96:f0:07:38:8b:
                    77:0e:f5:89:40:8e:a3:e9:15:85:dd:25:36:92:65:cf:
                    17:54:cc:f8:4b:5e:23:a4:77:78:d9:c7:0c:85:84:f2:
                    c3:4a:60:95:66:99:e2:bd:37:80:4f:db:2c:72:92:9a:
                    6d:27:4d:b9:2a:d5:a8:b0:29:21:86:58:2d:ee:e4:36:
                    7f:91:c7:b4:18:a5:14:8c:ed:ae:05:60:2b:4a:fe:45:
                    12:bc:67:99:8e:c4:2b:68:38:31:16:a6:64:4b:5f:08:
                    0f:6b:df:46:a9:38:97:99:a1:e3:51:72:1e:c2:f4:bf:
                    cf:65:3f:47:51:3b:69:3a:f2:0a:ac:42:49:63:38:2f:
                    62:14:9f:01:e5:34:37:41:4a:cd:bc:36:7d:f0:ea:6e:
                    8e:66:97:b5:dc:ad:58:b5:01:79:91:c2:6a:8e:12:60:
                    17:84:d2:0e:14:50:49:b0:e3:51:aa:93:19:2e:9f:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ca:f3:b8:5c:03:32:ed:03:ec:26:7d:c8:96:95:55:34:
        b6:77:80:b9:1a:77:6c:7d:ee:40:24:e8:7e:00:c9:3d:
        40:d8:af:44:7c:cb:4a:c2:60:0f:1d:74:2c:5b:6e:e5:
        9c:08:07:f4:92:ac:57:30:7c:ed:7b:b6:a6:2f:00:2e:
        49:65:82:83:35:39:56:9a:6a:87:2e:db:03:62:e1:3a:
        37:26:df:fa:b7:0f:b6:4c:9e:dc:56:dc:1a:ca:d9:6c:
        31:c9:9a:e8:68:47:85:52:51:21:ee:4a:ce:cd:14:02:
        3e:2d:63:07:2b:2b:34:f6:9e:c4:a7:36:4b:9c:3b:cd:
        66:d0:a9:ed:23:e4:e8:a3:98:1c:65:20:7b:8a:f8:55:
        1e:23:21:10:68:07:6c:4c:dc:e0:20:2f:ae:db:48:1e:
        44:b9:b5:c0:77:a3:e9:cc:16:a3:b0:d7:02:b0:ec:16:
        e5:00:ea:ea:5a:87:d9:2d:9e:6f:c4:73:9a:f5:53:c8:
        4a:e8:51:2f:4c:4b:96:c2:e2:59:46:8b:c2:9e:84:20:
        76:12:26:49:42:3c:d1:b9:a0:5f:19:73:6f:a6:25:05:
        32:a8:e0:78:20:5c:31:12:00:40:2e:67:3a:c4:a9:cc:
        0d:20:40:c2:71:ec:b1:01:f5:d5:d3:ea:74:b2:dd:4d
    Fingerprint (SHA-256):
        20:60:05:1F:10:B0:76:40:AC:93:89:AC:87:4F:2A:A2:3D:97:30:18:D3:06:A9:ED:0E:14:C2:93:AA:2F:D8:A3
    Fingerprint (SHA1):
        FE:B2:B8:6A:61:E3:3C:95:FC:69:8C:3E:6C:58:FC:8A:F8:2B:32:BA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11759: Certificate Key Usage Extension (2) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt3 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt3, E=TestExt3@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
y
-1
n
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:82:35:cd
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 17:11:36 2017
            Not After : Sun Jan 21 17:11:36 2018
        Subject: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:e0:b0:f8:ef:7e:df:cd:9d:89:98:e2:5c:3f:51:b6:
                    68:6b:50:9b:a9:1d:98:8a:4b:d8:3c:89:76:d8:96:71:
                    76:1c:53:78:89:26:45:ef:63:47:33:36:5d:64:e1:cd:
                    14:03:ca:d4:3b:87:bb:94:f2:87:47:c8:18:e2:39:d5:
                    be:65:c2:bf:5b:ab:f7:73:c7:4b:7d:ca:01:24:70:1a:
                    b3:17:b7:cc:0b:34:66:4a:9a:18:d4:df:92:3d:67:48:
                    34:ac:cf:4e:0d:25:31:3c:93:07:18:9f:8e:42:81:86:
                    bc:68:55:96:00:79:d5:50:d0:92:14:8d:a8:fb:f0:49:
                    3e:d5:83:8d:a3:f4:2d:09:b5:91:b3:93:25:4c:16:1a:
                    d8:e2:37:b3:61:af:a8:e2:a3:c3:46:75:bc:bd:97:7d:
                    03:89:a1:08:05:30:3a:1c:86:0b:09:91:12:a0:dc:09:
                    18:cb:08:78:23:e4:e2:ec:1e:20:c3:a3:56:4b:b4:06:
                    01:1d:77:49:b9:e5:fe:3c:82:b4:ac:cd:85:c2:3d:2b:
                    f3:4c:ca:f5:ff:8d:e4:f1:31:cf:8f:95:24:f5:fc:0f:
                    ca:ca:f9:83:43:cc:1e:76:f6:1e:94:46:e5:d1:20:8e:
                    42:c4:09:d2:d8:f2:7b:eb:55:47:5e:45:f7:3c:79:45
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:94:fa:15:2f:4f:39:60:01:7c:33:f0:26:78:26:f2:
        1f:4f:40:1a:eb:71:d4:26:1a:bf:53:68:4a:6d:72:4b:
        e7:47:b5:f9:01:5a:e9:c9:7b:05:43:20:f5:d0:cc:1a:
        6f:fa:7c:16:7a:7d:45:c0:64:68:a6:85:93:f3:35:74:
        e1:3c:14:7b:92:3b:a3:a3:a0:d2:dc:d5:65:37:e0:a1:
        e5:12:98:0e:df:bd:22:bc:12:7f:f4:c9:9a:dc:b1:3f:
        a1:de:03:6a:26:77:fa:47:53:c2:f1:2e:b6:6d:ce:3d:
        63:e4:0a:b1:e4:00:ca:9a:d7:c4:c5:5f:e9:84:76:4a:
        94:66:84:5f:dd:82:4e:34:46:ce:8a:c3:58:9b:27:9b:
        22:a5:4b:83:d2:99:06:84:50:ea:8c:37:26:1e:0b:e6:
        d8:70:ed:39:c1:fc:f1:67:16:5e:18:0d:09:39:2b:db:
        c5:a6:04:f9:e5:03:82:a9:ed:31:f8:1b:1c:8e:f3:0e:
        08:43:f9:1c:33:20:58:8b:c9:85:ed:9e:36:9a:cb:0e:
        59:0b:72:97:14:9d:c6:fb:39:37:bc:4f:85:25:bd:52:
        bd:a7:d7:c1:01:c5:f7:48:fc:74:fd:f5:b4:52:8f:b5:
        9d:66:c5:dc:3d:9d:0d:1b:34:72:d1:69:a6:1c:d2:9f
    Fingerprint (SHA-256):
        0C:32:7C:ED:E9:B1:D1:9A:FB:CF:0E:BC:2F:B4:03:1A:90:70:F4:E2:BA:C4:93:25:31:9E:44:B3:CC:94:A5:C1
    Fingerprint (SHA1):
        6D:38:88:D8:64:4E:A2:7C:10:37:F7:60:DB:24:6B:2F:21:92:64:69
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11760: Certificate Basic Constraints Extension (3) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt4 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt4, E=TestExt4@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
n
-1
y
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:82:35:d5
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 17:11:41 2017
            Not After : Sun Jan 21 17:11:41 2018
        Subject: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e3:83:48:1c:04:0c:04:80:cb:a2:cc:c1:5f:d5:5a:ce:
                    b7:54:d6:39:86:f7:da:41:a0:05:fd:13:02:07:c5:41:
                    80:e2:33:21:83:67:d1:a3:a8:a3:14:be:80:8d:9b:8c:
                    16:84:43:64:47:67:47:2d:ac:a7:d7:11:f6:a0:4c:d3:
                    0a:15:d7:24:77:b9:dd:13:42:84:73:80:86:82:6b:df:
                    74:18:36:75:4b:ba:f0:0b:d9:41:76:e7:58:df:84:c4:
                    80:12:08:d1:68:26:c3:db:f3:2c:6d:d4:20:50:44:4c:
                    68:6f:3a:74:db:5a:a9:7c:af:9d:20:48:42:08:31:dd:
                    02:49:e9:43:d4:a7:c2:12:22:2e:b9:39:6e:4b:d8:2e:
                    18:75:bb:96:7b:67:87:18:7c:5b:db:3d:31:c9:a0:35:
                    1b:fd:a7:59:75:ff:85:76:e6:a3:d6:a9:43:f4:17:8f:
                    0d:cf:6f:10:47:76:70:54:ca:fa:2b:51:c2:dc:70:a5:
                    fb:42:3c:54:c1:fd:e3:11:45:d1:35:b2:e7:52:07:4a:
                    66:76:2e:93:69:a6:44:3f:43:07:48:50:bf:3b:d9:5f:
                    a1:9d:b7:fe:15:10:69:cc:20:09:3f:84:8f:8e:19:ab:
                    83:cc:61:8f:76:2a:da:c9:d8:7b:b4:17:31:9c:ab:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is not a CA.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:1b:6f:c1:ef:0a:c3:a8:09:76:31:dd:d6:e9:f0:12:
        a0:1f:2c:33:12:68:d6:af:87:8a:e0:17:0d:37:cb:82:
        6b:2c:99:bf:77:0f:93:65:fc:98:af:ff:e8:f2:4c:95:
        d0:ff:23:95:35:61:7f:c4:81:16:32:a4:fd:cc:e8:b7:
        3b:db:74:9e:4f:a8:0e:a5:a7:ba:87:36:fe:f8:42:3d:
        89:2c:51:8e:0d:a4:cf:68:6a:23:8b:42:5b:17:cc:a2:
        7e:e0:4f:8c:92:b2:19:b4:68:75:8c:4e:34:7b:7b:95:
        be:b8:58:1d:b0:a1:bf:8b:1d:62:f5:e9:21:5e:55:1b:
        d8:42:33:94:74:5c:37:45:a6:42:6e:e0:82:67:41:98:
        75:73:59:d0:cd:bc:a9:33:b8:49:5e:5c:c9:72:59:2f:
        0a:85:5f:19:a5:8e:fc:2f:a9:96:64:95:17:58:d3:a8:
        0b:e5:1a:3c:ac:5c:2f:61:48:c1:1a:ea:0e:b4:ac:6d:
        f7:20:78:ce:4a:2d:76:3f:b8:c6:46:fd:12:99:86:f5:
        3c:7c:6d:b2:d2:9d:35:fd:02:07:bb:7d:fa:d0:19:0d:
        96:5d:9d:6e:29:cc:e1:76:73:46:a8:5b:14:0a:21:35:
        c6:40:aa:da:9d:e8:13:7b:8e:21:2d:9e:b3:0a:e1:b2
    Fingerprint (SHA-256):
        18:AC:2E:8E:B2:25:AE:FA:CF:C6:F0:E1:8C:26:D2:72:DF:83:36:55:79:86:F1:DC:46:E2:BB:13:3A:0D:F8:E6
    Fingerprint (SHA1):
        FE:F3:95:46:C2:54:54:66:8D:FA:5D:CC:8B:79:BE:44:56:72:B0:57
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11761: Certificate Basic Constraints Extension (4) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt5 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt5, E=TestExt5@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
y
12341235123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:82:35:de
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 17:11:47 2017
            Not After : Sun Jan 21 17:11:47 2018
        Subject: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:be:9c:57:1c:68:05:77:58:b4:2a:8a:b5:02:29:42:
                    3a:81:93:8d:1b:9d:4f:5d:b6:02:20:cf:4b:8a:54:87:
                    8e:a0:46:8e:e2:e3:d5:65:53:f1:ff:e2:23:11:3e:71:
                    81:84:e1:75:ae:99:97:b3:f7:b3:4f:46:44:95:b3:e9:
                    84:5f:c4:69:df:ec:be:34:28:2a:2c:92:6b:f4:62:87:
                    e8:26:01:78:3a:7a:6e:bb:c8:d5:87:4a:33:cd:ff:bf:
                    71:88:d4:86:9e:bb:e2:00:3d:2d:39:72:aa:23:48:03:
                    06:72:5c:1d:9d:d3:c1:91:33:a6:f7:0e:ca:d3:f4:a4:
                    34:69:7b:5f:94:4f:0d:f2:af:9b:0f:51:14:6b:99:b1:
                    93:7a:a4:7e:dd:af:b0:03:1e:15:da:44:d1:f8:9b:84:
                    a2:0f:27:a9:cf:c4:d8:80:7a:f9:4c:29:7f:d4:d6:98:
                    19:ce:88:9d:f7:e1:16:6c:1d:6a:30:6d:3d:bd:e2:fb:
                    a2:80:ba:48:ad:54:8d:40:27:44:98:74:11:4f:9f:7a:
                    cc:93:f6:2a:ba:30:07:37:25:93:1f:99:05:a9:b8:b5:
                    4a:e8:49:3b:53:4c:2f:0f:dd:a6:2d:14:8e:34:76:58:
                    46:09:3f:72:33:3b:f9:6b:99:eb:e9:4b:7b:17:1f:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Key ID:
                12341235123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:02:48:69:72:89:4f:bf:ed:62:06:a2:c0:8b:39:88:
        e0:d6:dc:4c:bd:53:35:a6:a3:7a:dc:1d:65:87:38:3c:
        68:f6:d0:a0:66:b6:a3:32:53:1e:ac:88:1f:e8:b7:61:
        40:05:41:bf:0a:24:c6:87:82:87:9a:5f:01:51:28:16:
        68:b0:1c:70:d5:2e:a2:6f:01:2a:0d:40:01:16:15:ff:
        2c:62:4d:47:88:94:4d:7b:62:a3:10:91:5a:7f:af:d9:
        27:03:8d:77:3c:52:01:ab:de:e6:ab:60:b4:95:ef:d4:
        03:21:23:1b:67:de:48:9b:03:68:b0:91:4c:6f:46:4b:
        69:ba:f9:70:cb:d4:19:48:56:66:99:7c:43:24:30:cc:
        79:b0:3b:c9:3c:30:f9:93:ef:80:a1:18:b2:3d:7a:f9:
        f3:33:ad:45:1b:d5:f0:e0:f5:d5:c3:dc:05:38:89:86:
        c0:e3:53:1a:a0:6c:9e:4f:da:66:9d:60:e4:da:ef:19:
        8b:a0:a5:ef:5a:b1:f8:db:f9:ae:9f:97:db:e5:4e:a9:
        80:82:e0:62:fb:ce:0a:6a:53:2e:d2:81:25:22:fd:37:
        94:b4:14:8b:5e:eb:7c:19:27:ac:4b:1e:c7:6d:42:08:
        02:2a:d1:c0:30:18:6a:09:86:58:df:54:c4:4e:89:b6
    Fingerprint (SHA-256):
        C8:95:7C:9C:99:EA:39:81:30:C6:91:BA:C2:E0:DD:61:A5:A9:96:A7:C1:0D:49:64:EB:15:DE:83:90:65:E2:C2
    Fingerprint (SHA1):
        F6:4D:79:B2:83:10:85:BE:51:9A:4B:BB:41:AF:3F:69:9C:07:4B:CF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11762: Certificate Authority Key Identifier Extension (5) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt6 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt6, E=TestExt6@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
y
3
test.com
214123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:82:35:ea
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 17:11:52 2017
            Not After : Sun Jan 21 17:11:52 2018
        Subject: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:cb:b8:e3:9c:49:5c:a8:e2:23:ea:f3:39:a8:17:88:
                    57:4a:bd:df:6c:97:87:68:f7:cb:b5:fe:29:22:a1:84:
                    64:75:aa:44:a6:d9:7d:64:e2:25:8a:8b:d0:c2:e3:40:
                    04:d7:58:7a:40:c3:02:cb:a2:ca:43:51:f9:05:3f:e4:
                    6d:f7:a8:ea:79:7b:5e:59:fd:34:70:3e:12:d0:e4:c5:
                    c1:29:2c:91:22:6f:47:05:0d:be:22:81:08:57:45:db:
                    1d:c9:4e:a2:0b:d5:b5:a7:4a:87:df:3d:b4:92:09:d0:
                    0b:ba:8a:10:2a:27:e2:b0:5e:c3:8d:76:42:d9:62:d6:
                    96:43:0e:e0:6a:b7:ef:81:3c:03:50:11:4d:27:52:b5:
                    ae:6e:bf:45:ca:d4:a4:9e:73:89:35:8f:d1:15:7c:da:
                    67:f0:dd:7b:0b:39:04:8a:69:8b:33:22:8a:76:f0:63:
                    29:31:2d:7d:62:ea:17:58:d0:2a:d3:79:43:1b:5b:dc:
                    79:36:00:d0:df:23:b2:5a:e7:79:df:7e:fc:03:8e:4a:
                    33:69:88:6e:13:c7:81:27:72:45:45:a3:64:38:5a:c3:
                    10:e5:2e:93:cf:20:cf:10:76:7d:fc:cc:90:2f:a5:e9:
                    2e:eb:6a:2b:37:54:0c:61:8b:a4:83:71:d5:ea:9d:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Issuer: 
                DNS name: "test.com"
            Serial Number:
                214123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        11:14:98:b7:34:72:84:1a:9c:e3:7b:9b:40:95:6b:ed:
        90:a9:8f:bd:f1:63:dc:c8:a1:d4:72:cb:54:4b:9a:52:
        37:ba:ce:bd:0b:1e:4f:07:58:c7:f2:a4:4b:a7:ed:6c:
        1a:f2:14:e6:5e:7f:55:c7:9b:03:06:72:d0:a5:1e:b7:
        03:9b:b0:b9:d8:5e:9d:e3:66:9d:42:87:36:85:c5:43:
        79:c6:e3:fc:50:70:2a:39:10:85:2b:37:0f:50:f5:24:
        51:86:2f:fb:2b:bb:04:0a:88:c2:68:45:65:a9:37:a9:
        03:83:d4:d2:e8:aa:26:6b:38:e1:ce:20:10:a4:a0:80:
        9b:2f:19:b4:89:76:5c:85:48:9f:96:55:d2:0c:4a:9a:
        e5:66:15:73:de:a5:28:19:5d:b1:a4:fe:96:00:8d:dc:
        d1:09:0d:b6:28:e4:01:08:c9:27:0e:de:ec:c2:17:f6:
        af:38:12:12:3d:67:89:19:4c:95:98:54:5f:bb:be:93:
        ae:6f:73:5f:aa:a0:6c:d3:bf:57:09:63:3c:ff:85:87:
        d9:35:44:63:80:9f:58:04:5a:61:a5:8a:77:66:cd:46:
        77:51:54:15:f1:5c:ba:b2:bd:e4:b3:14:14:6f:a3:75:
        ed:83:84:d7:d6:64:09:2b:87:b1:df:34:e5:31:d8:f9
    Fingerprint (SHA-256):
        3B:B2:F4:32:4F:05:63:7E:1D:99:A0:CA:1E:9C:7C:98:B2:AD:A9:E3:94:C5:AB:2A:92:42:0E:91:35:08:9F:9F
    Fingerprint (SHA1):
        86:64:C2:19:44:E4:98:BD:61:36:60:62:AC:E6:E9:7E:E5:1E:9D:29
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11763: Certificate Authority Key Identifier Extension (6) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt7 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt7, E=TestExt7@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
1
2
rfc822@name.tld
3
test.com
8
1.2.3.4
9
OID.0.2.213
10
0
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:82:35:f4
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 17:11:59 2017
            Not After : Sun Jan 21 17:11:59 2018
        Subject: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:e1:b2:17:ed:0b:f3:6d:97:fe:41:b1:25:7d:9c:17:
                    36:12:35:bd:3b:ab:db:24:69:7b:bb:0e:d9:14:61:0e:
                    b4:18:5f:58:dc:d5:9e:54:7a:6e:19:5e:27:41:07:97:
                    25:2a:e3:92:42:df:48:9c:c9:58:b2:bb:48:eb:5b:c9:
                    dd:1f:59:8e:af:ec:12:98:7b:90:83:f4:ae:c9:47:88:
                    ff:63:6f:2b:a2:98:98:b8:18:c9:c6:b9:35:6c:a0:7f:
                    15:c7:bf:e0:3a:1f:97:25:5b:59:61:13:0f:05:cf:ef:
                    a5:8f:af:a2:c0:cb:89:5c:f3:4c:14:9e:de:cf:ca:4f:
                    88:30:5b:70:e8:f2:19:3d:ba:fd:c1:ec:2d:5c:62:ba:
                    48:a1:ea:48:f9:b8:73:b4:20:83:32:e9:90:ae:4c:bf:
                    19:18:b9:af:ee:5f:1f:05:74:0f:03:d6:47:d9:87:85:
                    0e:60:f9:72:05:60:42:aa:f4:70:52:fa:86:01:42:4a:
                    f3:96:d7:c6:89:53:97:f8:bb:10:39:63:8e:0a:52:06:
                    6b:fc:de:c0:21:b4:e0:bd:71:90:a6:fc:c8:30:03:5a:
                    e5:7f:89:31:b3:17:7c:3d:7b:a5:31:3d:62:a9:15:b1:
                    d8:53:32:27:8c:00:40:f4:b2:ce:c5:22:40:3d:ff:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RFC822 Name: "rfc822@name.tld"
                DNS name: "test.com"
                IP Address:
                    87:07:31:2e:32:2e:33:2e:34
                Registered ID: OID.2.955.79.73.68.46.48.46.50.46.50.49.51
                Reasons:
                    80
                    (7 least significant bits unused)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:fc:9a:05:8f:e9:c3:a5:ba:24:12:78:33:86:88:34:
        12:bc:a9:21:2c:1c:79:ef:16:48:75:d9:81:7c:24:7a:
        f1:9a:61:93:5e:b4:b9:03:70:25:9d:f0:ab:48:1c:e1:
        a1:90:f8:b0:fd:74:f1:f5:dd:71:f9:e8:0f:b5:96:d1:
        81:ab:d2:cc:c5:c9:30:3a:86:06:e4:fa:28:07:83:ae:
        ff:2f:08:57:df:4a:ba:21:20:7d:fc:86:1b:61:34:5b:
        48:33:fb:cc:33:b0:e4:8e:5b:f1:2a:6a:83:0a:7b:c4:
        45:a0:d5:28:7e:93:b0:49:4e:5b:e1:a9:fa:a2:08:d5:
        39:ab:6b:48:b1:3a:e4:ac:cc:3c:48:b6:62:ed:07:83:
        77:c5:d0:fe:35:85:fa:49:d0:06:e6:54:b9:b9:62:a6:
        d9:4e:91:de:d1:4f:64:af:c4:04:50:f8:9c:76:51:72:
        ec:a8:d6:48:83:3d:3e:8b:77:67:d1:64:3d:c8:2a:27:
        84:5d:ec:29:de:57:ea:2e:f4:69:48:dd:e0:fc:f6:bc:
        96:1f:e9:4f:22:4e:22:46:73:bf:53:7c:c6:7b:35:ee:
        77:ca:04:c9:9a:01:c0:da:0f:83:70:cd:fb:2f:95:36:
        84:e3:ed:3d:98:c6:e9:12:a5:85:4a:18:fe:f1:b9:52
    Fingerprint (SHA-256):
        49:BF:90:E9:5C:3F:C5:C3:8E:CA:99:CC:5A:3E:15:CF:7C:8B:AF:A6:75:C2:6F:8D:26:56:8F:51:76:7F:D0:1D
    Fingerprint (SHA1):
        2E:49:E3:AA:D4:9B:29:14:A9:C9:BF:37:7C:2C:9F:20:51:72:CD:94
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11764: CRL Distribution Points Extension (7) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt8 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt8, E=TestExt8@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
2
SN=asdfsdf
4
3
test.com
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > Enter the relative name: 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:82:36:00
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 17:12:04 2017
            Not After : Sun Jan 21 17:12:04 2018
        Subject: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:02:ff:9d:cc:eb:57:16:9a:42:83:f2:3d:48:83:18:
                    e7:ab:44:99:b3:5e:1b:58:70:bc:4a:53:f9:b7:d2:78:
                    0c:22:35:95:d5:ee:9d:21:ff:a4:17:14:28:8a:e2:76:
                    ce:46:69:55:dc:a7:36:ec:d1:ae:77:b2:7b:5f:c0:37:
                    f3:99:86:a2:a6:bb:72:f9:75:c4:c0:bf:d8:38:32:21:
                    94:a3:75:ce:a9:24:e1:18:8f:e8:68:a2:78:15:0c:18:
                    37:3e:cf:a9:f7:1c:a9:e8:b8:67:6a:4f:62:47:99:20:
                    28:da:32:68:8d:a1:25:e6:e2:f6:ee:a4:0e:3c:11:a5:
                    de:b3:91:8c:5b:15:04:23:c9:b1:16:42:2e:3a:fc:74:
                    71:bc:4e:37:37:f7:ec:c8:d2:f2:63:b0:56:c9:fc:8b:
                    f3:c0:ee:5f:28:4a:83:62:8c:9e:7f:69:3f:16:1c:9e:
                    8d:70:0a:0c:0e:21:46:1e:9f:39:19:0f:34:58:22:c4:
                    9e:eb:8c:d3:5f:4d:04:e4:3b:42:3d:67:f9:b8:39:eb:
                    7d:c5:0f:07:c7:68:33:96:29:14:53:b9:ea:8b:9a:1f:
                    6d:bd:7a:68:c8:22:57:05:06:61:57:7d:60:7e:3f:c6:
                    4e:da:17:03:f0:04:59:c6:b1:70:2b:6f:52:fd:37:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RDN: "SN=asdfsdf"
                Reasons:
                    08
                    (7 least significant bits unused)
                CRL issuer: 
                    DNS name: "test.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        04:01:1b:1f:8d:3a:d6:8c:44:18:1b:3a:41:00:e4:0a:
        8c:f2:1a:c2:0a:af:fa:6f:99:4a:2b:3c:34:47:8c:a2:
        87:8a:f6:1b:d3:36:b9:59:70:51:5d:3a:53:3d:36:0a:
        28:d0:8a:ce:93:65:98:a6:7f:36:88:cd:b3:0e:21:cb:
        ac:51:e1:cf:3f:0c:87:97:17:6a:02:97:b3:48:5a:99:
        22:53:83:ba:95:6b:21:f6:c9:17:56:15:f4:df:64:b9:
        25:29:a0:37:97:73:da:01:6d:2c:d6:d5:a3:87:d7:4e:
        fd:05:b3:e5:b4:5f:85:1e:44:59:87:a9:cb:d3:a2:04:
        0c:48:aa:62:27:e0:d1:fe:7a:b1:6a:a7:a2:53:eb:c2:
        ad:49:ca:d0:7f:38:d5:e2:e3:26:46:c3:6d:97:2f:cd:
        e7:56:35:ae:b1:ee:64:af:a6:f9:82:e9:80:f0:8c:4e:
        99:4f:f6:96:14:6a:eb:66:96:51:96:54:f6:12:d5:98:
        ae:3d:e6:aa:7c:9c:0e:ba:c5:a0:46:26:ed:1c:73:48:
        24:bd:7d:0e:ce:22:76:1a:6e:77:1a:46:5a:33:28:34:
        73:41:1d:bd:50:de:ec:27:c4:66:df:5a:2b:ce:65:cb:
        e0:7d:fe:79:c6:e1:d6:23:a3:df:a1:3b:77:59:eb:5f
    Fingerprint (SHA-256):
        70:48:8C:08:B7:46:64:99:67:F1:4E:D5:F7:E6:74:8E:9C:4E:F2:34:A0:B6:F5:E3:50:60:E3:03:37:CA:8D:C0
    Fingerprint (SHA1):
        C3:8B:9E:BF:CB:12:AC:C5:ED:DD:C0:F7:CA:43:F5:0A:72:F2:EC:23
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11765: CRL Distribution Points Extension (8) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt9 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt9, E=TestExt9@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -5 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
10
n
Generating key.  This may take a few moments...
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:82:36:0b
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 17:12:08 2017
            Not After : Sun Jan 21 17:12:08 2018
        Subject: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:91:35:eb:f4:01:29:59:89:a1:79:41:b1:b9:17:e8:
                    33:b4:3c:0f:6e:d6:65:5c:7e:85:2d:f6:41:e6:3b:8a:
                    ee:ae:ab:67:69:44:21:1a:3e:9f:0a:cc:7a:37:fa:40:
                    ba:2a:72:e4:3f:05:49:4b:04:c1:28:be:1f:2a:b8:28:
                    47:f2:52:78:cd:cc:7f:9b:73:6e:96:6f:90:9d:c7:aa:
                    12:f7:e1:b7:69:87:d7:7f:2e:ff:4d:10:3d:88:2a:ad:
                    22:b3:91:6f:cb:30:cf:54:16:13:07:9d:07:57:b8:ea:
                    be:03:2e:c1:24:f8:e5:be:a0:2f:78:5a:3e:b6:d7:3f:
                    e5:2c:f9:2b:fd:1d:e4:c6:0e:f9:b2:6a:f0:9f:ca:eb:
                    3f:78:80:a3:53:29:db:1e:fe:39:18:89:1a:9b:e8:46:
                    f1:da:8a:92:39:c5:53:0e:ac:30:6c:2a:f4:24:a0:1e:
                    34:2a:6e:dc:08:dc:52:3a:5f:17:50:ce:68:b3:bc:f2:
                    9d:07:c5:84:79:83:d2:a7:51:79:07:02:95:09:d7:0e:
                    e1:f0:20:67:d9:1d:90:03:3a:60:3b:95:aa:a6:90:56:
                    47:5c:62:07:97:c6:2c:e8:42:54:ea:7d:2f:8c:99:75:
                    e5:07:0b:d1:96:7a:ca:9e:ae:69:c1:b5:18:5a:c0:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL Client,SSL Server,S/MIME>
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        12:a7:65:77:fa:fc:54:50:71:cb:f2:cc:b7:92:bc:c3:
        e4:b6:5a:32:31:44:59:4e:5d:97:5d:80:70:76:51:ca:
        ae:df:4a:e3:75:77:5d:57:ab:08:3c:a4:9b:39:d9:d4:
        da:40:c7:26:43:76:65:65:5e:56:59:1f:96:f5:23:ef:
        3b:3c:86:95:5b:14:83:02:02:f8:20:db:d7:2e:d3:21:
        0a:40:3b:11:7d:17:0c:00:48:61:6f:24:59:69:45:f4:
        4a:c2:91:54:4f:38:cd:88:d2:94:73:ef:f8:5c:a8:9a:
        f5:76:f9:cf:be:b0:19:56:bc:29:ad:96:c3:e7:4e:67:
        a7:64:2c:a0:ab:b4:07:14:7a:33:93:f5:b6:bd:71:78:
        de:f4:55:e3:c8:31:7b:77:5c:b9:fe:da:fe:07:4f:4a:
        e6:c3:ad:b2:24:59:4b:a6:0c:da:c1:8e:01:72:e2:35:
        1f:db:61:49:2d:0c:14:25:49:93:f5:1e:c5:ad:72:33:
        96:d8:4b:7d:19:1c:94:d8:c3:fd:ed:94:4f:6f:5b:2d:
        27:d0:ae:05:90:a2:0d:06:ba:c9:b0:c6:2b:c2:4a:7a:
        5e:20:b8:4c:33:19:66:5f:6b:fd:fd:a0:fe:e2:cd:dc:
        cc:ac:cf:90:3c:f9:c7:e7:82:0b:51:67:65:6f:f5:0b
    Fingerprint (SHA-256):
        5B:91:DD:9A:76:39:A1:30:BE:C1:8D:83:85:BE:EE:E3:09:29:33:76:F1:67:8D:93:E4:83:14:6A:66:DC:1F:54
    Fingerprint (SHA1):
        D0:68:FA:F6:85:8E:1F:61:CA:A4:5E:96:57:4F:3D:2F:7F:DB:FA:76
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11766: Certificate Type Extension (9) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt10 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt10, E=TestExt10@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -6 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt10
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:82:36:12
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 17:12:12 2017
            Not After : Sun Jan 21 17:12:12 2018
        Subject: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:3b:14:f1:14:98:9b:64:0b:0f:9e:ad:ae:22:4b:33:
                    7d:44:12:c6:e4:db:07:8c:3d:fe:2d:b3:13:72:b5:c9:
                    fd:85:55:74:07:93:b6:b3:de:e3:1a:ee:d3:85:40:3a:
                    e1:ed:7e:85:2f:9e:60:cc:65:a0:ef:02:60:45:d9:17:
                    88:87:a5:98:45:8f:0d:9f:3f:2e:cd:97:2d:9c:4e:81:
                    2c:d7:3f:0f:47:cb:45:e7:80:a6:ef:76:e7:f4:52:8e:
                    6c:20:57:df:26:f8:81:fe:de:d4:ed:e4:3c:23:d2:dd:
                    7f:23:26:46:9f:cb:b6:e3:ee:80:3d:58:f9:f6:62:58:
                    c0:7c:59:08:47:42:79:65:d9:de:3c:41:30:6b:16:49:
                    d9:6c:cd:aa:81:00:71:a1:2d:5a:ae:08:44:5d:85:96:
                    5f:bc:e2:f6:26:24:f0:e6:64:1a:2c:b3:90:23:bb:54:
                    10:4e:46:ac:7a:bc:6b:31:bb:2b:dd:20:8e:d2:93:52:
                    5a:db:57:10:88:51:73:cf:28:df:75:1f:6e:0f:70:9c:
                    16:b7:43:ec:62:71:45:a9:ac:02:78:2d:e2:e1:d6:36:
                    47:39:2c:21:9a:d1:ff:91:0b:ff:19:40:7b:93:36:8f:
                    1c:7a:5d:0e:14:3f:ec:8f:8d:f2:a9:f9:8b:48:47:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Extended Key Usage
            Critical: True
                TLS Web Server Authentication Certificate
                TLS Web Client Authentication Certificate
                Code Signing Certificate
                E-Mail Protection Certificate
                Time Stamping Certifcate
                OCSP Responder Certificate
                Strong Crypto Export Approved
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a0:c1:06:d4:59:77:33:f1:25:5a:c4:23:75:94:3c:2e:
        91:fa:5c:8f:3f:98:c1:5e:35:2f:db:01:f3:b7:02:73:
        25:35:a5:92:32:7f:36:36:1c:ac:66:0f:71:3c:69:02:
        1d:59:22:94:de:45:44:a3:c4:24:81:97:1d:ec:ed:20:
        57:bf:73:18:ab:fa:bf:86:49:e3:3c:ee:e5:86:ce:6f:
        3e:b1:93:99:21:fd:fa:20:f3:fc:e2:79:63:b7:75:42:
        0d:0e:55:45:c9:c5:36:fc:11:e1:6d:13:54:79:60:1e:
        19:ca:6a:fb:0f:d8:5c:57:da:91:b3:21:eb:d9:93:66:
        99:8f:f1:25:c4:a1:91:b8:62:16:09:3c:f6:b2:4c:8b:
        95:9a:8e:41:e5:b3:20:62:4a:5d:14:61:f5:6e:59:14:
        5f:2e:ac:07:87:f6:87:35:d5:bd:ab:f6:e1:63:fa:79:
        a4:fd:a9:1b:40:2b:27:3c:1b:d3:60:ce:a5:c6:1f:1a:
        6b:0c:f2:86:b1:b7:01:ab:fd:19:26:24:03:a5:96:b9:
        1e:b2:d4:5d:4f:d1:8a:a4:4f:2c:15:59:0c:04:26:5a:
        78:6d:2d:82:45:a4:41:6d:fb:cc:1f:79:03:32:2f:86:
        4a:e2:87:8c:1a:a5:06:9a:93:84:6f:14:33:93:97:0f
    Fingerprint (SHA-256):
        B4:D1:AA:20:B5:11:CC:0E:07:79:FD:FA:DF:3F:5F:15:2A:49:37:7A:45:31:00:D4:8A:5D:0A:7E:70:44:B9:16
    Fingerprint (SHA1):
        F0:84:05:84:77:7E:05:32:B8:07:9F:11:D0:F6:C7:65:10:1A:73:45
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11767: Extended Key Usage Extension (10) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt11 -t u,u,u -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt11
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:82:36:1a
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Sat Oct 21 17:12:17 2017
            Not After : Sun Jan 21 17:12:17 2018
        Subject: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:10:5b:7b:e5:e7:9e:f0:a2:8a:54:86:fe:7a:34:59:
                    aa:e0:20:58:27:1b:a2:f8:d5:3f:5c:09:d0:7a:62:5a:
                    0d:32:a4:5d:61:5e:20:ef:50:9a:ba:7a:58:d7:d3:ca:
                    db:b9:41:3c:d4:3a:f2:57:0a:29:07:d3:18:86:27:0a:
                    9b:32:85:e2:71:22:1b:68:f1:c7:95:eb:12:76:0c:ad:
                    6b:0c:49:0c:e8:59:e6:c2:54:af:9a:15:72:03:e1:52:
                    a0:2e:6e:c1:bf:b2:4f:74:ed:8d:7f:0b:2e:b9:35:37:
                    8a:25:12:c3:26:21:e2:65:9f:63:1f:45:13:3b:21:ce:
                    0b:f9:41:c8:d7:d7:40:e0:26:58:db:b3:35:b2:ad:de:
                    f6:25:bb:df:95:7c:2d:0e:14:eb:a0:dc:a8:9d:44:14:
                    2c:c7:93:ef:0a:e5:a8:6d:15:02:01:35:68:d1:99:ba:
                    2e:b6:95:e9:79:b5:ce:48:3f:2f:e6:42:93:4d:80:c2:
                    ff:59:f5:e1:d5:46:7b:fb:43:54:a4:46:e4:42:2b:89:
                    36:56:3c:b8:54:31:35:98:55:50:37:d0:89:52:ba:86:
                    42:87:0c:d2:ed:2e:45:ab:d6:76:50:ff:b4:82:15:5e:
                    f8:45:9f:b7:53:68:22:6d:98:d9:6d:a9:2b:f2:cb:75
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        14:96:49:6a:b2:3a:47:72:98:fe:7c:40:7b:76:90:9c:
        d4:22:35:b1:3f:2c:9a:27:70:b8:69:10:f6:af:3c:45:
        13:71:48:9d:8f:dd:2e:3b:a0:32:18:a5:90:02:a4:e4:
        8d:c7:f4:e2:63:86:80:3a:6f:f2:1f:c5:69:21:09:79:
        41:2f:c6:13:12:51:4a:ff:be:0e:6f:72:f5:ac:8d:91:
        1e:65:bd:34:3e:30:49:a4:2b:c4:33:b8:7d:04:4f:27:
        5a:1a:9a:16:66:e8:06:03:d4:5e:22:b7:e7:50:0e:f0:
        be:2f:43:9c:4b:a5:49:63:f1:e4:f5:98:11:cf:63:66:
        6e:99:33:f1:b7:5a:f8:d2:86:3f:f8:55:2c:fd:ea:b8:
        da:10:5f:d3:89:ed:9a:bd:21:3f:0b:5f:a6:f7:c7:7b:
        47:53:20:c8:23:52:10:c7:d9:01:e6:a5:fc:55:8c:ba:
        e0:17:ee:03:da:97:21:e1:5c:e2:6b:56:d6:08:b7:97:
        63:c8:2e:7e:79:5c:b3:67:71:2d:43:c9:24:c9:1f:e5:
        95:42:d5:df:4e:ed:ff:f1:63:6a:81:7e:f9:cf:c1:45:
        d0:e2:86:fc:55:46:d6:be:e9:23:0a:55:55:2a:d3:b2:
        b5:97:c7:6c:5e:e7:57:8e:dc:ea:46:0f:d2:b5:0c:fe
    Fingerprint (SHA-256):
        14:14:CA:C5:7B:E6:A9:48:F7:8C:34:FF:B4:7E:90:83:0E:0A:B5:18:26:0E:1F:BC:2A:F1:E8:43:B6:4B:42:C2
    Fingerprint (SHA1):
        EF:FE:AD:17:B0:C9:28:4E:AE:62:AA:8F:54:32:D6:50:53:68:41:6C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11768: Certificate Key Usage Extension (11) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #11769: create cert with invalid SAN parameter (12) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com,dns:www.example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #11770: create cert with invalid SAN parameter (13) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN dns:example.com,dns:www.example.com
Generating key.  This may take a few moments...
cert.sh: #11771: create cert with valid SAN parameter (14) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:82:36:32
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Sat Oct 21 17:12:31 2017
            Not After : Sun Jan 21 17:12:31 2018
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ee:38:0a:5b:ae:e0:a8:98:a7:2d:ec:24:ca:36:b5:d7:
                    60:4b:25:5d:c9:97:d1:3b:f2:35:fc:65:fb:0b:e3:cb:
                    15:27:df:18:43:82:78:28:e7:d6:9a:cd:a3:1d:6f:4d:
                    13:12:dd:37:6e:7e:e1:64:3e:63:75:5f:97:03:c5:89:
                    87:72:58:6c:02:c9:c8:ce:3d:cf:bf:4b:10:53:29:b2:
                    16:8d:72:b7:3d:a4:85:a0:2e:59:02:0d:65:29:5a:c0:
                    6d:ed:76:f1:5e:68:c9:a0:21:fd:30:96:0e:10:83:53:
                    af:37:f9:55:f8:39:c0:2c:29:92:20:c6:d9:1f:ae:59:
                    cf:55:a3:e7:ae:29:5c:a8:f9:81:33:20:67:75:c4:ec:
                    f9:8d:49:b2:be:79:44:4d:4e:39:40:7d:aa:bd:2e:11:
                    8d:fc:f7:07:09:6d:25:2f:b5:fc:93:de:79:f3:ea:4c:
                    aa:46:f9:5e:8c:7b:69:01:44:6d:5b:ae:16:e5:91:f5:
                    13:0f:eb:6c:57:ab:ba:d5:39:13:ac:70:ea:40:cf:06:
                    ed:c4:a4:06:0d:96:04:df:be:b2:de:52:c1:a8:19:a9:
                    c9:08:af:da:84:82:0c:3e:ff:15:58:70:99:50:89:7b:
                    7e:f2:72:5d:ac:c2:34:85:76:51:57:a4:50:67:bb:73
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bc:45:dd:21:ad:90:15:60:85:92:98:dc:d1:03:3f:3c:
        f9:fb:e6:7b:f6:81:1c:c4:56:a6:c9:0d:25:48:d6:b7:
        08:53:94:9d:64:36:5e:fd:78:af:51:9c:78:7e:bc:51:
        eb:89:b6:21:6b:98:98:91:b4:2c:ed:f3:e1:66:7e:e9:
        8a:48:01:19:ce:47:5b:9e:25:b6:f8:d3:f8:ae:ae:1e:
        38:55:42:5d:0b:77:35:01:32:d2:7b:e4:b9:cd:da:64:
        3e:5e:2d:6b:93:6a:35:37:88:46:7c:ff:a1:63:70:bb:
        fe:3f:bb:cd:40:91:07:d7:38:22:b3:fe:bc:1e:b8:3e:
        f9:36:aa:8e:8e:0f:66:37:c5:17:63:d2:98:ec:bc:54:
        aa:b3:a7:6a:11:4c:92:a0:e6:89:30:2c:bb:5e:ed:45:
        bd:b8:30:31:df:98:8e:27:7d:06:d6:a1:05:21:43:55:
        4b:05:28:e4:61:18:ef:fa:8b:10:42:7e:ec:fa:93:c1:
        17:ca:83:ee:7e:a1:60:b0:ea:39:ad:fa:34:4f:83:d8:
        ac:5d:02:a2:f4:e5:55:c6:bf:89:8b:63:7f:dd:a5:12:
        ac:12:6b:f6:7b:86:60:9e:f7:6e:6a:6e:19:6d:05:7b:
        f5:56:6e:50:20:7c:c7:d2:11:6f:64:2c:ea:f0:78:68
    Fingerprint (SHA-256):
        84:F1:46:47:F7:FE:A7:97:D7:5F:98:93:12:5F:76:D6:F8:4B:2E:B4:85:87:B2:AC:28:20:02:8C:4F:CE:B1:1A
    Fingerprint (SHA1):
        B5:46:5B:84:B0:DE:CE:BD:01:AE:74:81:5E:C7:98:5E:E0:8C:FE:05
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11772: create cert with valid SAN parameter (15) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN --dump-ext-val 2.5.29.17
writing output to /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
cert.sh: #11773: dump extension 2.5.29.17 to file /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der (16) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #11774: create cert with valid SAN parameter (17) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #11775: expect failure to list cert, because we deleted it (18) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der: error 0: Success
cert.sh: #11776: create cert with invalid generic ext parameter (19) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der: error 0: Success
cert.sh: #11777: create cert with invalid generic ext parameter (20) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der: error 0: Success
cert.sh: #11778: create cert with invalid generic ext parameter (21) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric 2.5.29.17:not-critical:/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
cert.sh: #11779: create cert with valid generic ext parameter (22) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:ab:82:36:58
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Sat Oct 21 17:12:52 2017
            Not After : Sun Jan 21 17:12:52 2018
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:24:a3:18:6c:a4:21:5d:c4:84:43:63:05:43:e1:d9:
                    d4:fe:87:c6:27:0f:3c:e5:e2:a4:86:6a:70:4a:77:52:
                    15:33:2a:61:05:05:3f:73:96:06:83:21:22:e1:d2:b0:
                    0b:55:48:85:25:b4:c6:54:f7:91:00:98:a0:f7:d1:d7:
                    69:69:0a:4b:c0:e7:73:03:21:78:78:d0:a4:71:da:ed:
                    e9:09:2c:14:a1:1d:3c:e6:f4:4b:bf:82:68:a1:83:de:
                    b4:bf:c3:59:be:61:e0:59:72:f7:80:d0:8e:ae:fc:7e:
                    da:e3:16:47:2a:c8:06:09:de:1d:68:2c:8c:0f:f2:cf:
                    6c:22:45:7a:ab:cf:01:a2:47:d2:03:7a:1a:55:cc:4b:
                    c6:eb:d3:ae:ee:28:81:f3:81:78:0f:a8:72:6b:70:a2:
                    98:4b:de:9c:d2:6f:a3:e2:da:1c:e9:2f:45:de:f7:a4:
                    7c:64:8f:a5:5c:9a:65:e7:49:de:02:89:fc:ce:c7:85:
                    97:b7:8d:40:e0:6e:6e:16:a1:d2:29:11:a6:89:c3:cb:
                    77:d7:12:6e:f1:f4:4d:59:6b:0e:a7:e3:d6:0d:22:df:
                    f4:ad:fc:ea:83:fe:fc:f9:23:85:31:f4:9c:52:68:4c:
                    fe:e0:c1:ff:86:90:66:8b:61:23:c2:6b:8d:be:7d:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:09:c4:37:fb:5a:8a:c2:94:1a:10:2f:82:8d:6c:7c:
        32:99:21:7c:75:d4:2e:51:70:87:cf:7e:a6:32:67:10:
        11:90:f7:e0:c6:40:5f:2f:8e:51:b5:10:ac:31:60:5f:
        2c:e1:b2:98:5f:20:6d:c1:20:0c:b7:e8:67:0e:58:8c:
        c1:48:dc:30:ee:c8:18:32:9f:8e:f9:9a:9d:98:cd:f4:
        ab:61:3c:1a:c4:10:c0:20:c9:29:4e:f7:cf:1e:9a:e8:
        0c:3c:e4:1f:db:9f:e1:27:f8:15:d3:a9:5e:f6:bb:02:
        c5:71:24:7c:74:6e:86:76:88:b5:bf:cd:b3:4d:65:22:
        79:fb:1f:a0:68:aa:47:e6:b3:dc:6d:03:34:1b:15:56:
        3f:54:7f:4c:b8:8a:a4:9a:f5:fa:a1:65:5d:c7:a6:1c:
        9c:c2:44:87:ae:59:a2:87:51:45:45:23:f6:85:1f:02:
        c3:75:23:16:e5:a3:c2:a0:c4:9f:27:57:76:ce:3e:ad:
        44:2e:6e:ef:b3:c7:14:fb:a1:a6:ff:1d:99:24:c3:fa:
        26:34:95:0d:26:14:a8:64:94:f7:b7:39:c1:ea:3a:20:
        4d:ab:4f:45:8c:22:d6:c0:46:32:7e:3a:b3:7d:19:8a:
        42:fe:2a:59:17:ba:06:d2:10:d6:a3:00:12:bc:85:47
    Fingerprint (SHA-256):
        D2:96:69:C6:92:34:48:F7:14:61:4E:D8:61:36:41:85:A7:61:04:9C:36:A5:A9:7C:88:89:DA:0C:9D:72:9D:3E
    Fingerprint (SHA1):
        54:CC:35:75:5B:00:03:D7:75:22:61:9F:C6:AC:06:26:4C:16:F8:E4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #11780: create cert with valid generic ext parameter (23) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #11781: create cert with valid generic ext parameter (24) - PASSED
certutil -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #11782: expect failure to list cert, because we deleted it (25) - PASSED
cert.sh: Create A Password Test Cert  ==============
cert.sh: Create A Password Test Ca  --------
cert.sh: Creating a CA Certificate PasswordCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dbpass
cert.sh: Creating CA Cert DB --------------------------
certutil -s "CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.pw
cert.sh: #11783: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dbpass
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11784: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert PasswordCA  --------------------------
certutil -s "CN=NSS Password Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dbpass -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #11785: Creating CA Cert PasswordCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n PasswordCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dbpass -o root.cert
cert.sh: #11786: Exporting Root Cert - PASSED
cert.sh: Changing password on Password Test Cert's Cert DB --------------------------
certutil -W -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.pw -@ ../tests.fipspw
Password changed successfully.
cert.sh: #11787: Changing password on Password Test Cert's Cert DB - PASSED
cert.sh: Generate Certificate for Password Test Cert with new password --------------------------
certutil -s "CN=Password Test Cert, E=password@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCert -c PasswordCA -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.fipspw -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11788: Generate Certificate for Password Test Cert with new password - PASSED
cert.sh SUCCESS: PASSWORD passed
cert.sh: Verify Certificate for Password Test Cert with new password --------------------------
certutil -V -n PasswordCert -u S -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.fipspw
certutil: certificate is valid
cert.sh: #11789: Verify Certificate for Password Test Cert with new password - PASSED
cert.sh: Creating Distrusted Certificate
cert.sh: Initializing Distrusted's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
cert.sh: #11790: Initializing Distrusted's Cert DB - PASSED
cert.sh: Loading root cert module to Distrusted's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #11791: Loading root cert module to Distrusted's Cert DB - PASSED
cert.sh: Import Root CA for Distrusted --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -i ../CA/TestCA.ca.cert
cert.sh: #11792: Import Root CA for Distrusted - PASSED
cert.sh: Import DSA Root CA for Distrusted --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -i ../CA/TestCA-dsa.ca.cert
cert.sh: #11793: Import DSA Root CA for Distrusted - PASSED
cert.sh: Import EC Root CA for Distrusted --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -i ../CA/TestCA-ec.ca.cert
cert.sh: #11794: Import EC Root CA for Distrusted - PASSED
cert.sh: Generate Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11795: Generate Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's Request --------------------------
certutil -C -c TestCA -m 2000 -v 60 -d ../CA -i req -o Distrusted.cert -f ../tests.pw 
cert.sh: #11796: Sign Distrusted's Request - PASSED
cert.sh: Import Distrusted's Cert --------------------------
certutil -A -n Distrusted -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11797: Import Distrusted's Cert - PASSED
cert.sh SUCCESS: Distrusted's Cert Created
cert.sh: Generate DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11798: Generate DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 2000 -v 60 -d ../CA -i req -o Distrusted-dsa.cert -f ../tests.pw 
cert.sh: #11799: Sign Distrusted's DSA Request - PASSED
cert.sh: Import Distrusted's DSA Cert --------------------------
certutil -A -n Distrusted-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11800: Import Distrusted's DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11801: Generate mixed DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 22000 -v 60 -d ../CA -i req -o Distrusted-dsamixed.cert -f ../tests.pw 
cert.sh: #11802: Sign Distrusted's DSA Request with RSA - PASSED
cert.sh: Import Distrusted's mixed DSA Cert --------------------------
certutil -A -n Distrusted-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11803: Import Distrusted's mixed DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11804: Generate EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request --------------------------
certutil -C -c TestCA-ec -m 2000 -v 60 -d ../CA -i req -o Distrusted-ec.cert -f ../tests.pw 
cert.sh: #11805: Sign Distrusted's EC Request - PASSED
cert.sh: Import Distrusted's EC Cert --------------------------
certutil -A -n Distrusted-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11806: Import Distrusted's EC Cert - PASSED
cert.sh SUCCESS: Distrusted's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11807: Generate mixed EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request with RSA --------------------------
certutil -C -c TestCA -m 12000 -v 60 -d ../CA -i req -o Distrusted-ecmixed.cert -f ../tests.pw 
cert.sh: #11808: Sign Distrusted's EC Request with RSA - PASSED
cert.sh: Import Distrusted's mixed EC Cert --------------------------
certutil -A -n Distrusted-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11809: Import Distrusted's mixed EC Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed EC Cert Created
cert.sh: Mark CERT as unstrusted --------------------------
certutil -M -n Distrusted -t p,p,p -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
cert.sh: #11810: Mark CERT as unstrusted - PASSED
cert.sh: Creating Distrusted Intermediate
cert.sh: Creating a CA Certificate DistrustedCA ==========================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating CA Cert DistrustedCA  --------------------------
certutil -s "CN=DistrustedCA, E=DistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n DistrustedCA -t ,, -v 600 -c TestCA -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2010
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Is this a critical extension [y/N]?
cert.sh: #11811: Creating CA Cert DistrustedCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n DistrustedCA -r -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -o root.cert
cert.sh: #11812: Exporting Root Cert - PASSED
cert.sh: Import Distrusted Intermediate --------------------------
certutil -A -n DistrustedCA -t p,p,p -f ../tests.pw -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -i ../CA/DistrustedCA.ca.cert
cert.sh: #11813: Import Distrusted Intermediate - PASSED
cert.sh: Generate Cert Request for Leaf Chained to Distrusted CA --------------------------
certutil -s "CN=LeafChainedToDistrustedCA, E=LeafChainedToDistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11814: Generate Cert Request for Leaf Chained to Distrusted CA - PASSED
cp: './req' and '/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA/req' are the same file
cert.sh: Sign LeafChainedToDistrustedCA's Request --------------------------
certutil -C -c DistrustedCA -m 100 -v 60 -d ../CA -i req -o LeafChainedToDistrustedCA.cert -f ../tests.pw
cert.sh: #11815: Sign LeafChainedToDistrustedCA's Request - PASSED
cert.sh: Import LeafChainedToDistrustedCA's Cert  -t u,u,u --------------------------
certutil -A -n LeafChainedToDistrustedCA -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i LeafChainedToDistrustedCA.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11816: Import LeafChainedToDistrustedCA's Cert  -t u,u,u - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Server --------------------------
certutil -V -n LeafChainedToDistrustedCA -u V -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #11817: Verify LeafChainedToDistrustedCA Cert for SSL Server - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Client --------------------------
certutil -V -n LeafChainedToDistrustedCA -u C -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #11818: Verify LeafChainedToDistrustedCA Cert for SSL Client - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u S -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #11819: Verify LeafChainedToDistrustedCA Cert for Email signer - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email recipient --------------------------
certutil -V -n LeafChainedToDistrustedCA -u R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #11820: Verify LeafChainedToDistrustedCA Cert for Email recipient - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for OCSP responder --------------------------
certutil -V -n LeafChainedToDistrustedCA -u O -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #11821: Verify LeafChainedToDistrustedCA Cert for OCSP responder - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Object Signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u J -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #11822: Verify LeafChainedToDistrustedCA Cert for Object Signer - PASSED
cert.sh: Verify Distrusted Cert for SSL Server --------------------------
certutil -V -n Distrusted -u V -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #11823: Verify Distrusted Cert for SSL Server - PASSED
cert.sh: Verify Distrusted Cert for SSL Client --------------------------
certutil -V -n Distrusted -u C -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #11824: Verify Distrusted Cert for SSL Client - PASSED
cert.sh: Verify Distrusted Cert for Email signer --------------------------
certutil -V -n Distrusted -u S -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #11825: Verify Distrusted Cert for Email signer - PASSED
cert.sh: Verify Distrusted Cert for Email recipient --------------------------
certutil -V -n Distrusted -u R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #11826: Verify Distrusted Cert for Email recipient - PASSED
cert.sh: Verify Distrusted Cert for OCSP responder --------------------------
certutil -V -n Distrusted -u O -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #11827: Verify Distrusted Cert for OCSP responder - PASSED
cert.sh: Verify Distrusted Cert for Object Signer --------------------------
certutil -V -n Distrusted -u J -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #11828: Verify Distrusted Cert for Object Signer - PASSED
cert.sh: OCSP response creation selftest
cert.sh: perform selftest --------------------------
ocspresp /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/serverCA serverCA chain-1-serverCA -f ../tests.pw
cert.sh: #11829: perform selftest - PASSED
cert.sh: Creating Client CA Issued Certificates Range 40 - 52 ===
cert.sh: Generate Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11830: Generate Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o TestUser40.cert -f ../tests.pw 
cert.sh: #11831: Sign TestUser40's Request - PASSED
cert.sh: Import TestUser40's Cert --------------------------
certutil -A -n TestUser40 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11832: Import TestUser40's Cert - PASSED
cert.sh SUCCESS: TestUser40's Cert Created
cert.sh: Generate DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11833: Generate DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o TestUser40-dsa.cert -f ../tests.pw 
cert.sh: #11834: Sign TestUser40's DSA Request - PASSED
cert.sh: Import TestUser40's DSA Cert --------------------------
certutil -A -n TestUser40-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11835: Import TestUser40's DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11836: Generate mixed DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o TestUser40-dsamixed.cert -f ../tests.pw 
cert.sh: #11837: Sign TestUser40's DSA Request with RSA - PASSED
cert.sh: Import TestUser40's mixed DSA Cert --------------------------
certutil -A -n TestUser40-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11838: Import TestUser40's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11839: Generate EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o TestUser40-ec.cert -f ../tests.pw 
cert.sh: #11840: Sign TestUser40's EC Request - PASSED
cert.sh: Import TestUser40's EC Cert --------------------------
certutil -A -n TestUser40-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11841: Import TestUser40's EC Cert - PASSED
cert.sh SUCCESS: TestUser40's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11842: Generate mixed EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o TestUser40-ecmixed.cert -f ../tests.pw 
cert.sh: #11843: Sign TestUser40's EC Request with RSA - PASSED
cert.sh: Import TestUser40's mixed EC Cert --------------------------
certutil -A -n TestUser40-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11844: Import TestUser40's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11845: Generate Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's Request --------------------------
certutil -C -c TestCA -m 41 -v 60 -d ../CA -i req -o TestUser41.cert -f ../tests.pw 
cert.sh: #11846: Sign TestUser41's Request - PASSED
cert.sh: Import TestUser41's Cert --------------------------
certutil -A -n TestUser41 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11847: Import TestUser41's Cert - PASSED
cert.sh SUCCESS: TestUser41's Cert Created
cert.sh: Generate DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11848: Generate DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 41 -v 60 -d ../CA -i req -o TestUser41-dsa.cert -f ../tests.pw 
cert.sh: #11849: Sign TestUser41's DSA Request - PASSED
cert.sh: Import TestUser41's DSA Cert --------------------------
certutil -A -n TestUser41-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11850: Import TestUser41's DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11851: Generate mixed DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20041 -v 60 -d ../CA -i req -o TestUser41-dsamixed.cert -f ../tests.pw 
cert.sh: #11852: Sign TestUser41's DSA Request with RSA - PASSED
cert.sh: Import TestUser41's mixed DSA Cert --------------------------
certutil -A -n TestUser41-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11853: Import TestUser41's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11854: Generate EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request --------------------------
certutil -C -c TestCA-ec -m 41 -v 60 -d ../CA -i req -o TestUser41-ec.cert -f ../tests.pw 
cert.sh: #11855: Sign TestUser41's EC Request - PASSED
cert.sh: Import TestUser41's EC Cert --------------------------
certutil -A -n TestUser41-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11856: Import TestUser41's EC Cert - PASSED
cert.sh SUCCESS: TestUser41's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11857: Generate mixed EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10041 -v 60 -d ../CA -i req -o TestUser41-ecmixed.cert -f ../tests.pw 
cert.sh: #11858: Sign TestUser41's EC Request with RSA - PASSED
cert.sh: Import TestUser41's mixed EC Cert --------------------------
certutil -A -n TestUser41-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11859: Import TestUser41's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11860: Generate Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's Request --------------------------
certutil -C -c TestCA -m 42 -v 60 -d ../CA -i req -o TestUser42.cert -f ../tests.pw 
cert.sh: #11861: Sign TestUser42's Request - PASSED
cert.sh: Import TestUser42's Cert --------------------------
certutil -A -n TestUser42 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11862: Import TestUser42's Cert - PASSED
cert.sh SUCCESS: TestUser42's Cert Created
cert.sh: Generate DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11863: Generate DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 42 -v 60 -d ../CA -i req -o TestUser42-dsa.cert -f ../tests.pw 
cert.sh: #11864: Sign TestUser42's DSA Request - PASSED
cert.sh: Import TestUser42's DSA Cert --------------------------
certutil -A -n TestUser42-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11865: Import TestUser42's DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11866: Generate mixed DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20042 -v 60 -d ../CA -i req -o TestUser42-dsamixed.cert -f ../tests.pw 
cert.sh: #11867: Sign TestUser42's DSA Request with RSA - PASSED
cert.sh: Import TestUser42's mixed DSA Cert --------------------------
certutil -A -n TestUser42-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11868: Import TestUser42's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11869: Generate EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request --------------------------
certutil -C -c TestCA-ec -m 42 -v 60 -d ../CA -i req -o TestUser42-ec.cert -f ../tests.pw 
cert.sh: #11870: Sign TestUser42's EC Request - PASSED
cert.sh: Import TestUser42's EC Cert --------------------------
certutil -A -n TestUser42-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11871: Import TestUser42's EC Cert - PASSED
cert.sh SUCCESS: TestUser42's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11872: Generate mixed EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10042 -v 60 -d ../CA -i req -o TestUser42-ecmixed.cert -f ../tests.pw 
cert.sh: #11873: Sign TestUser42's EC Request with RSA - PASSED
cert.sh: Import TestUser42's mixed EC Cert --------------------------
certutil -A -n TestUser42-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11874: Import TestUser42's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11875: Generate Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's Request --------------------------
certutil -C -c TestCA -m 43 -v 60 -d ../CA -i req -o TestUser43.cert -f ../tests.pw 
cert.sh: #11876: Sign TestUser43's Request - PASSED
cert.sh: Import TestUser43's Cert --------------------------
certutil -A -n TestUser43 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11877: Import TestUser43's Cert - PASSED
cert.sh SUCCESS: TestUser43's Cert Created
cert.sh: Generate DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11878: Generate DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 43 -v 60 -d ../CA -i req -o TestUser43-dsa.cert -f ../tests.pw 
cert.sh: #11879: Sign TestUser43's DSA Request - PASSED
cert.sh: Import TestUser43's DSA Cert --------------------------
certutil -A -n TestUser43-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11880: Import TestUser43's DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11881: Generate mixed DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20043 -v 60 -d ../CA -i req -o TestUser43-dsamixed.cert -f ../tests.pw 
cert.sh: #11882: Sign TestUser43's DSA Request with RSA - PASSED
cert.sh: Import TestUser43's mixed DSA Cert --------------------------
certutil -A -n TestUser43-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11883: Import TestUser43's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11884: Generate EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request --------------------------
certutil -C -c TestCA-ec -m 43 -v 60 -d ../CA -i req -o TestUser43-ec.cert -f ../tests.pw 
cert.sh: #11885: Sign TestUser43's EC Request - PASSED
cert.sh: Import TestUser43's EC Cert --------------------------
certutil -A -n TestUser43-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11886: Import TestUser43's EC Cert - PASSED
cert.sh SUCCESS: TestUser43's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11887: Generate mixed EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10043 -v 60 -d ../CA -i req -o TestUser43-ecmixed.cert -f ../tests.pw 
cert.sh: #11888: Sign TestUser43's EC Request with RSA - PASSED
cert.sh: Import TestUser43's mixed EC Cert --------------------------
certutil -A -n TestUser43-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11889: Import TestUser43's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11890: Generate Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's Request --------------------------
certutil -C -c TestCA -m 44 -v 60 -d ../CA -i req -o TestUser44.cert -f ../tests.pw 
cert.sh: #11891: Sign TestUser44's Request - PASSED
cert.sh: Import TestUser44's Cert --------------------------
certutil -A -n TestUser44 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11892: Import TestUser44's Cert - PASSED
cert.sh SUCCESS: TestUser44's Cert Created
cert.sh: Generate DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11893: Generate DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 44 -v 60 -d ../CA -i req -o TestUser44-dsa.cert -f ../tests.pw 
cert.sh: #11894: Sign TestUser44's DSA Request - PASSED
cert.sh: Import TestUser44's DSA Cert --------------------------
certutil -A -n TestUser44-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11895: Import TestUser44's DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11896: Generate mixed DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20044 -v 60 -d ../CA -i req -o TestUser44-dsamixed.cert -f ../tests.pw 
cert.sh: #11897: Sign TestUser44's DSA Request with RSA - PASSED
cert.sh: Import TestUser44's mixed DSA Cert --------------------------
certutil -A -n TestUser44-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11898: Import TestUser44's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11899: Generate EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request --------------------------
certutil -C -c TestCA-ec -m 44 -v 60 -d ../CA -i req -o TestUser44-ec.cert -f ../tests.pw 
cert.sh: #11900: Sign TestUser44's EC Request - PASSED
cert.sh: Import TestUser44's EC Cert --------------------------
certutil -A -n TestUser44-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11901: Import TestUser44's EC Cert - PASSED
cert.sh SUCCESS: TestUser44's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11902: Generate mixed EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10044 -v 60 -d ../CA -i req -o TestUser44-ecmixed.cert -f ../tests.pw 
cert.sh: #11903: Sign TestUser44's EC Request with RSA - PASSED
cert.sh: Import TestUser44's mixed EC Cert --------------------------
certutil -A -n TestUser44-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11904: Import TestUser44's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11905: Generate Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's Request --------------------------
certutil -C -c TestCA -m 45 -v 60 -d ../CA -i req -o TestUser45.cert -f ../tests.pw 
cert.sh: #11906: Sign TestUser45's Request - PASSED
cert.sh: Import TestUser45's Cert --------------------------
certutil -A -n TestUser45 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11907: Import TestUser45's Cert - PASSED
cert.sh SUCCESS: TestUser45's Cert Created
cert.sh: Generate DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11908: Generate DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 45 -v 60 -d ../CA -i req -o TestUser45-dsa.cert -f ../tests.pw 
cert.sh: #11909: Sign TestUser45's DSA Request - PASSED
cert.sh: Import TestUser45's DSA Cert --------------------------
certutil -A -n TestUser45-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11910: Import TestUser45's DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11911: Generate mixed DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20045 -v 60 -d ../CA -i req -o TestUser45-dsamixed.cert -f ../tests.pw 
cert.sh: #11912: Sign TestUser45's DSA Request with RSA - PASSED
cert.sh: Import TestUser45's mixed DSA Cert --------------------------
certutil -A -n TestUser45-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11913: Import TestUser45's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11914: Generate EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request --------------------------
certutil -C -c TestCA-ec -m 45 -v 60 -d ../CA -i req -o TestUser45-ec.cert -f ../tests.pw 
cert.sh: #11915: Sign TestUser45's EC Request - PASSED
cert.sh: Import TestUser45's EC Cert --------------------------
certutil -A -n TestUser45-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11916: Import TestUser45's EC Cert - PASSED
cert.sh SUCCESS: TestUser45's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11917: Generate mixed EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10045 -v 60 -d ../CA -i req -o TestUser45-ecmixed.cert -f ../tests.pw 
cert.sh: #11918: Sign TestUser45's EC Request with RSA - PASSED
cert.sh: Import TestUser45's mixed EC Cert --------------------------
certutil -A -n TestUser45-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11919: Import TestUser45's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11920: Generate Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's Request --------------------------
certutil -C -c TestCA -m 46 -v 60 -d ../CA -i req -o TestUser46.cert -f ../tests.pw 
cert.sh: #11921: Sign TestUser46's Request - PASSED
cert.sh: Import TestUser46's Cert --------------------------
certutil -A -n TestUser46 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11922: Import TestUser46's Cert - PASSED
cert.sh SUCCESS: TestUser46's Cert Created
cert.sh: Generate DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11923: Generate DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 46 -v 60 -d ../CA -i req -o TestUser46-dsa.cert -f ../tests.pw 
cert.sh: #11924: Sign TestUser46's DSA Request - PASSED
cert.sh: Import TestUser46's DSA Cert --------------------------
certutil -A -n TestUser46-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11925: Import TestUser46's DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11926: Generate mixed DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20046 -v 60 -d ../CA -i req -o TestUser46-dsamixed.cert -f ../tests.pw 
cert.sh: #11927: Sign TestUser46's DSA Request with RSA - PASSED
cert.sh: Import TestUser46's mixed DSA Cert --------------------------
certutil -A -n TestUser46-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11928: Import TestUser46's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11929: Generate EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request --------------------------
certutil -C -c TestCA-ec -m 46 -v 60 -d ../CA -i req -o TestUser46-ec.cert -f ../tests.pw 
cert.sh: #11930: Sign TestUser46's EC Request - PASSED
cert.sh: Import TestUser46's EC Cert --------------------------
certutil -A -n TestUser46-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11931: Import TestUser46's EC Cert - PASSED
cert.sh SUCCESS: TestUser46's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11932: Generate mixed EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10046 -v 60 -d ../CA -i req -o TestUser46-ecmixed.cert -f ../tests.pw 
cert.sh: #11933: Sign TestUser46's EC Request with RSA - PASSED
cert.sh: Import TestUser46's mixed EC Cert --------------------------
certutil -A -n TestUser46-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11934: Import TestUser46's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11935: Generate Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's Request --------------------------
certutil -C -c TestCA -m 47 -v 60 -d ../CA -i req -o TestUser47.cert -f ../tests.pw 
cert.sh: #11936: Sign TestUser47's Request - PASSED
cert.sh: Import TestUser47's Cert --------------------------
certutil -A -n TestUser47 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11937: Import TestUser47's Cert - PASSED
cert.sh SUCCESS: TestUser47's Cert Created
cert.sh: Generate DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11938: Generate DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 47 -v 60 -d ../CA -i req -o TestUser47-dsa.cert -f ../tests.pw 
cert.sh: #11939: Sign TestUser47's DSA Request - PASSED
cert.sh: Import TestUser47's DSA Cert --------------------------
certutil -A -n TestUser47-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11940: Import TestUser47's DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11941: Generate mixed DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20047 -v 60 -d ../CA -i req -o TestUser47-dsamixed.cert -f ../tests.pw 
cert.sh: #11942: Sign TestUser47's DSA Request with RSA - PASSED
cert.sh: Import TestUser47's mixed DSA Cert --------------------------
certutil -A -n TestUser47-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11943: Import TestUser47's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11944: Generate EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request --------------------------
certutil -C -c TestCA-ec -m 47 -v 60 -d ../CA -i req -o TestUser47-ec.cert -f ../tests.pw 
cert.sh: #11945: Sign TestUser47's EC Request - PASSED
cert.sh: Import TestUser47's EC Cert --------------------------
certutil -A -n TestUser47-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11946: Import TestUser47's EC Cert - PASSED
cert.sh SUCCESS: TestUser47's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11947: Generate mixed EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10047 -v 60 -d ../CA -i req -o TestUser47-ecmixed.cert -f ../tests.pw 
cert.sh: #11948: Sign TestUser47's EC Request with RSA - PASSED
cert.sh: Import TestUser47's mixed EC Cert --------------------------
certutil -A -n TestUser47-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11949: Import TestUser47's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11950: Generate Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's Request --------------------------
certutil -C -c TestCA -m 48 -v 60 -d ../CA -i req -o TestUser48.cert -f ../tests.pw 
cert.sh: #11951: Sign TestUser48's Request - PASSED
cert.sh: Import TestUser48's Cert --------------------------
certutil -A -n TestUser48 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11952: Import TestUser48's Cert - PASSED
cert.sh SUCCESS: TestUser48's Cert Created
cert.sh: Generate DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11953: Generate DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 48 -v 60 -d ../CA -i req -o TestUser48-dsa.cert -f ../tests.pw 
cert.sh: #11954: Sign TestUser48's DSA Request - PASSED
cert.sh: Import TestUser48's DSA Cert --------------------------
certutil -A -n TestUser48-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11955: Import TestUser48's DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11956: Generate mixed DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20048 -v 60 -d ../CA -i req -o TestUser48-dsamixed.cert -f ../tests.pw 
cert.sh: #11957: Sign TestUser48's DSA Request with RSA - PASSED
cert.sh: Import TestUser48's mixed DSA Cert --------------------------
certutil -A -n TestUser48-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11958: Import TestUser48's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11959: Generate EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request --------------------------
certutil -C -c TestCA-ec -m 48 -v 60 -d ../CA -i req -o TestUser48-ec.cert -f ../tests.pw 
cert.sh: #11960: Sign TestUser48's EC Request - PASSED
cert.sh: Import TestUser48's EC Cert --------------------------
certutil -A -n TestUser48-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11961: Import TestUser48's EC Cert - PASSED
cert.sh SUCCESS: TestUser48's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11962: Generate mixed EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10048 -v 60 -d ../CA -i req -o TestUser48-ecmixed.cert -f ../tests.pw 
cert.sh: #11963: Sign TestUser48's EC Request with RSA - PASSED
cert.sh: Import TestUser48's mixed EC Cert --------------------------
certutil -A -n TestUser48-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11964: Import TestUser48's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11965: Generate Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's Request --------------------------
certutil -C -c TestCA -m 49 -v 60 -d ../CA -i req -o TestUser49.cert -f ../tests.pw 
cert.sh: #11966: Sign TestUser49's Request - PASSED
cert.sh: Import TestUser49's Cert --------------------------
certutil -A -n TestUser49 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11967: Import TestUser49's Cert - PASSED
cert.sh SUCCESS: TestUser49's Cert Created
cert.sh: Generate DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11968: Generate DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 49 -v 60 -d ../CA -i req -o TestUser49-dsa.cert -f ../tests.pw 
cert.sh: #11969: Sign TestUser49's DSA Request - PASSED
cert.sh: Import TestUser49's DSA Cert --------------------------
certutil -A -n TestUser49-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11970: Import TestUser49's DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11971: Generate mixed DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20049 -v 60 -d ../CA -i req -o TestUser49-dsamixed.cert -f ../tests.pw 
cert.sh: #11972: Sign TestUser49's DSA Request with RSA - PASSED
cert.sh: Import TestUser49's mixed DSA Cert --------------------------
certutil -A -n TestUser49-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11973: Import TestUser49's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11974: Generate EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request --------------------------
certutil -C -c TestCA-ec -m 49 -v 60 -d ../CA -i req -o TestUser49-ec.cert -f ../tests.pw 
cert.sh: #11975: Sign TestUser49's EC Request - PASSED
cert.sh: Import TestUser49's EC Cert --------------------------
certutil -A -n TestUser49-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11976: Import TestUser49's EC Cert - PASSED
cert.sh SUCCESS: TestUser49's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11977: Generate mixed EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10049 -v 60 -d ../CA -i req -o TestUser49-ecmixed.cert -f ../tests.pw 
cert.sh: #11978: Sign TestUser49's EC Request with RSA - PASSED
cert.sh: Import TestUser49's mixed EC Cert --------------------------
certutil -A -n TestUser49-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11979: Import TestUser49's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11980: Generate Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o TestUser50.cert -f ../tests.pw 
cert.sh: #11981: Sign TestUser50's Request - PASSED
cert.sh: Import TestUser50's Cert --------------------------
certutil -A -n TestUser50 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11982: Import TestUser50's Cert - PASSED
cert.sh SUCCESS: TestUser50's Cert Created
cert.sh: Generate DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11983: Generate DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o TestUser50-dsa.cert -f ../tests.pw 
cert.sh: #11984: Sign TestUser50's DSA Request - PASSED
cert.sh: Import TestUser50's DSA Cert --------------------------
certutil -A -n TestUser50-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11985: Import TestUser50's DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11986: Generate mixed DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o TestUser50-dsamixed.cert -f ../tests.pw 
cert.sh: #11987: Sign TestUser50's DSA Request with RSA - PASSED
cert.sh: Import TestUser50's mixed DSA Cert --------------------------
certutil -A -n TestUser50-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11988: Import TestUser50's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11989: Generate EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o TestUser50-ec.cert -f ../tests.pw 
cert.sh: #11990: Sign TestUser50's EC Request - PASSED
cert.sh: Import TestUser50's EC Cert --------------------------
certutil -A -n TestUser50-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11991: Import TestUser50's EC Cert - PASSED
cert.sh SUCCESS: TestUser50's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11992: Generate mixed EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o TestUser50-ecmixed.cert -f ../tests.pw 
cert.sh: #11993: Sign TestUser50's EC Request with RSA - PASSED
cert.sh: Import TestUser50's mixed EC Cert --------------------------
certutil -A -n TestUser50-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11994: Import TestUser50's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11995: Generate Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's Request --------------------------
certutil -C -c TestCA -m 51 -v 60 -d ../CA -i req -o TestUser51.cert -f ../tests.pw 
cert.sh: #11996: Sign TestUser51's Request - PASSED
cert.sh: Import TestUser51's Cert --------------------------
certutil -A -n TestUser51 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #11997: Import TestUser51's Cert - PASSED
cert.sh SUCCESS: TestUser51's Cert Created
cert.sh: Generate DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #11998: Generate DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 51 -v 60 -d ../CA -i req -o TestUser51-dsa.cert -f ../tests.pw 
cert.sh: #11999: Sign TestUser51's DSA Request - PASSED
cert.sh: Import TestUser51's DSA Cert --------------------------
certutil -A -n TestUser51-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #12000: Import TestUser51's DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #12001: Generate mixed DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20051 -v 60 -d ../CA -i req -o TestUser51-dsamixed.cert -f ../tests.pw 
cert.sh: #12002: Sign TestUser51's DSA Request with RSA - PASSED
cert.sh: Import TestUser51's mixed DSA Cert --------------------------
certutil -A -n TestUser51-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #12003: Import TestUser51's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #12004: Generate EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request --------------------------
certutil -C -c TestCA-ec -m 51 -v 60 -d ../CA -i req -o TestUser51-ec.cert -f ../tests.pw 
cert.sh: #12005: Sign TestUser51's EC Request - PASSED
cert.sh: Import TestUser51's EC Cert --------------------------
certutil -A -n TestUser51-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #12006: Import TestUser51's EC Cert - PASSED
cert.sh SUCCESS: TestUser51's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #12007: Generate mixed EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10051 -v 60 -d ../CA -i req -o TestUser51-ecmixed.cert -f ../tests.pw 
cert.sh: #12008: Sign TestUser51's EC Request with RSA - PASSED
cert.sh: Import TestUser51's mixed EC Cert --------------------------
certutil -A -n TestUser51-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #12009: Import TestUser51's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #12010: Generate Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's Request --------------------------
certutil -C -c TestCA -m 52 -v 60 -d ../CA -i req -o TestUser52.cert -f ../tests.pw 
cert.sh: #12011: Sign TestUser52's Request - PASSED
cert.sh: Import TestUser52's Cert --------------------------
certutil -A -n TestUser52 -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #12012: Import TestUser52's Cert - PASSED
cert.sh SUCCESS: TestUser52's Cert Created
cert.sh: Generate DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #12013: Generate DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 52 -v 60 -d ../CA -i req -o TestUser52-dsa.cert -f ../tests.pw 
cert.sh: #12014: Sign TestUser52's DSA Request - PASSED
cert.sh: Import TestUser52's DSA Cert --------------------------
certutil -A -n TestUser52-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #12015: Import TestUser52's DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #12016: Generate mixed DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20052 -v 60 -d ../CA -i req -o TestUser52-dsamixed.cert -f ../tests.pw 
cert.sh: #12017: Sign TestUser52's DSA Request with RSA - PASSED
cert.sh: Import TestUser52's mixed DSA Cert --------------------------
certutil -A -n TestUser52-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #12018: Import TestUser52's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #12019: Generate EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request --------------------------
certutil -C -c TestCA-ec -m 52 -v 60 -d ../CA -i req -o TestUser52-ec.cert -f ../tests.pw 
cert.sh: #12020: Sign TestUser52's EC Request - PASSED
cert.sh: Import TestUser52's EC Cert --------------------------
certutil -A -n TestUser52-ec -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #12021: Import TestUser52's EC Cert - PASSED
cert.sh SUCCESS: TestUser52's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #12022: Generate mixed EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10052 -v 60 -d ../CA -i req -o TestUser52-ecmixed.cert -f ../tests.pw 
cert.sh: #12023: Sign TestUser52's EC Request with RSA - PASSED
cert.sh: Import TestUser52's mixed EC Cert --------------------------
certutil -A -n TestUser52-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #12024: Import TestUser52's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed EC Cert Created
cert.sh: Creating CA CRL =====================================
cert.sh: Generating CRL for range 40-42 TestCA authority --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -G -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or
cert.sh: #12025: Generating CRL for range 40-42 TestCA authority - PASSED
cert.sh: Generating CRL (DSA) for range 40-42 TestCA-dsa authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -G -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or-dsa
cert.sh: #12026: Generating CRL (DSA) for range 40-42 TestCA-dsa authority - PASSED
cert.sh: Generating CRL (ECC) for range 40-42 TestCA-ec authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -G -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or-ec
cert.sh: #12027: Generating CRL (ECC) for range 40-42 TestCA-ec authority - PASSED
cert.sh: Modifying CA CRL by adding one more cert ============
cert.sh: Modify CRL by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or1 -i ../server/root.crl_40-42_or
cert.sh: #12028: Modify CRL by adding one more cert - PASSED
cert.sh: Modify CRL (DSA) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or1-dsa -i ../server/root.crl_40-42_or-dsa
cert.sh: #12029: Modify CRL (DSA) by adding one more cert - PASSED
cert.sh: Modify CRL (ECC) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or1-ec -i ../server/root.crl_40-42_or-ec
cert.sh: #12030: Modify CRL (ECC) by adding one more cert - PASSED
cert.sh: Modifying CA CRL by removing one cert ===============
cert.sh: Modify CRL by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #12031: Modify CRL by removing one cert - PASSED
cert.sh: Modify CRL (DSA) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #12032: Modify CRL (DSA) by removing one cert - PASSED
cert.sh: Modify CRL (ECC) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42-ec -i ../server/root.crl_40-42_or1-ec
cert.sh: #12033: Modify CRL (ECC) by removing one cert - PASSED
cert.sh: Creating CA CRL for groups 1 and 2  ===============
cert.sh: Creating CRL for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_43-48 -i ../server/root.crl_40-42
cert.sh: #12034: Creating CRL for groups 1 and 2 - PASSED
cert.sh: Creating CRL (ECC) for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_43-48-ec -i ../server/root.crl_40-42-ec
cert.sh: #12035: Creating CRL (ECC) for groups 1 and 2 - PASSED
cert.sh: Creating CA CRL for groups 1, 2 and 3  ===============
cert.sh: Creating CRL for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_49-52 -i ../server/root.crl_43-48
cert.sh: #12036: Creating CRL for groups 1, 2 and 3 - PASSED
cert.sh: Creating CRL (ECC) for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_49-52-ec -i ../server/root.crl_43-48-ec
cert.sh: #12037: Creating CRL (ECC) for groups 1, 2 and 3 - PASSED
cert.sh: Importing Server CA Issued CRL for certs  trough 52
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -D -n TestCA -f ../tests.pw -d ../server
crlutil: could not find TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #12038: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42 -n TestCA -f ../tests.pw -d ../server
cert.sh: #12039: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -D -n TestCA-ec -f ../tests.pw -d ../server
crlutil: could not find TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #12040: Importing CRL (ECC) for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42-ec -n TestCA-ec -f ../tests.pw -d ../server
cert.sh: #12041: Importing CRL (ECC) for groups 1 - PASSED
cert.sh SUCCESS: SSL CRL prep passed
cert.sh cert.sh: finished cert.sh
TIMESTAMP cert END: Sat Oct 21 17:17:56 UTC 2017
Running tests for dbtests
TIMESTAMP dbtests BEGIN: Sat Oct 21 17:17:56 UTC 2017
dbtests.sh: CERT and Key DB Tests ===============================
---------------------------------------------------------------
| test opening the database read/write in a nonexisting directory
---------------------------------------------------------------
certutil: function failed: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #12042: Certutil didn't work in a nonexisting dir 255 - PASSED
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtest: function failed: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #12043: Dbtest readonly didn't work in a nonexisting dir 46 - PASSED
---------------------------------------------------------------
| test force opening the database in a nonexisting directory
---------------------------------------------------------------
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtests.sh: #12044: Dbtest force succeeded in a nonexisting dir 0 - PASSED
---------------------------------------------------------------
| test opening the database readonly in an empty directory
---------------------------------------------------------------
tstclnt: unable to open cert database: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #12045: Tstclnt didn't work in an empty dir 1 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/key3.db" does not exist.
dbtest: function failed: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #12046: Dbtest readonly didn't work in an empty dir 46 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir
dbtests.sh: #12047: Dbtest logout after empty DB Init has key - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir
dbtests.sh: #12048: Dbtest password DB Init maintains needlogin state - PASSED
certutil: could not find certificate named "xxxx": SEC_ERROR_UNRECOGNIZED_OID: Unrecognized Object Identifier.
dbtests.sh: #12049: Certutil didn't work in an empty dir 255 - PASSED
---------------------------------------------------------------
| test force opening the database  readonly in a empty directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/emptydir/key3.db" does not exist.
dbtests.sh: #12050: Dbtest force readonly succeeded in an empty dir 0 - PASSED
---------------------------------------------------------------
| test opening the database r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/key3.db" does not exist.
dbtest: function failed: SEC_ERROR_READ_ONLY: security library: read-only database.
dbtests.sh: #12051: Dbtest r/w didn't work in an readonly dir 46 - PASSED
certutil: could not find certificate named "TestUser": SEC_ERROR_UNRECOGNIZED_OID: Unrecognized Object Identifier.
dbtests.sh: #12052: Certutil didn't work in an readonly dir 255 - PASSED
---------------------------------------------------------------
| test opening the database ronly in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/key3.db" does not exist.
dbtests.sh: #12053: Dbtest readonly succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| test force opening the database  r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/key3.db" does not exist.
dbtests.sh: #12054: Dbtest force succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| ls -l /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir
---------------------------------------------------------------
dr-xr-xr-x. 2 mockbuild mockbuild   4096 Oct 21 17:18 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir
-r--r-----. 1 mockbuild mockbuild   1226 Oct 21 17:18 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-dsa.cert
-r--r-----. 1 mockbuild mockbuild   1424 Oct 21 17:18 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-dsamixed.cert
-r--r-----. 1 mockbuild mockbuild    581 Oct 21 17:18 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-ec.cert
-r--r-----. 1 mockbuild mockbuild    705 Oct 21 17:18 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-ecmixed.cert
-r--r-----. 1 mockbuild mockbuild    870 Oct 21 17:18 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/TestUser.cert
-r--------. 1 mockbuild mockbuild 206848 Oct 21 17:18 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/cert9.db
-r--------. 1 mockbuild mockbuild 102400 Oct 21 17:18 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/key4.db
-r--------. 1 mockbuild mockbuild    622 Oct 21 17:18 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/pkcs11.txt
-r--r-----. 1 mockbuild mockbuild    394 Oct 21 17:18 /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/ronlydir/req
---------------------------------------------------------------
| test creating a new cert with a conflicting nickname
---------------------------------------------------------------
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/conflictdir
certutil: could not add certificate to token or database: SEC_ERROR_ADDING_CERT: Error adding certificate to database.
dbtests.sh: #12055: Nicknane conflict test, could not import conflict nickname 255 - PASSED
---------------------------------------------------------------
| test importing an old cert to a conflicting nickname
---------------------------------------------------------------
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 40 (0x28)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:48 2017
            Not After : Fri Oct 21 17:09:48 2022
        Subject: "CN=Bob,E=Bob@bogus.com,O=BOGUS NSS,L=Mountain View,ST=Calif
            ornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:14:0e:c7:16:be:91:4f:bf:ee:d2:14:08:c2:66:dd:
                    0b:1a:80:10:d3:81:00:e9:1d:b6:3c:bf:7b:14:0e:8b:
                    f3:74:07:97:94:92:a8:25:1e:ae:c0:6d:5a:07:0a:74:
                    e6:7c:53:f3:64:f9:db:a7:6b:67:9d:d8:2d:d0:b2:0f:
                    5f:fe:bc:17:56:49:13:cb:42:77:93:5f:9a:2b:15:38:
                    4f:25:9c:1a:11:10:7f:0e:5d:ac:78:ae:9a:10:dc:37:
                    e9:f9:02:bf:89:ba:e2:c2:14:0d:f6:fa:37:fc:38:42:
                    56:06:ae:ed:09:04:5b:a3:84:0b:29:34:43:a1:94:3d:
                    fd:89:c5:dd:aa:d2:83:58:06:59:64:20:c3:6a:ce:c1:
                    26:0a:e8:ac:0e:a8:0e:76:2c:5a:81:26:8e:68:ec:b0:
                    fb:b0:2c:f0:73:c7:b9:eb:7a:2f:d3:71:ef:c8:ac:46:
                    f8:2c:34:e2:c2:34:cc:19:05:d6:a7:09:01:88:5e:04:
                    ae:54:be:a5:61:64:43:2b:e2:39:f8:28:f8:98:bd:8f:
                    54:98:a1:cc:cf:f5:0b:50:5e:cd:f4:4b:3f:0b:fa:ab:
                    63:8e:5d:0e:14:8c:7c:b6:3e:35:8f:06:cf:30:77:1a:
                    af:86:a6:05:4e:5e:22:36:b1:f5:56:d7:ee:14:c9:87
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:7f:3e:fd:28:57:4b:b2:bd:9b:76:14:c9:d6:5d:d6:
        5b:f5:23:ea:fe:ac:81:d0:bd:52:ad:53:15:9d:9e:40:
        85:46:36:a3:50:ca:1a:ca:75:cf:9e:58:77:80:ab:00:
        e3:16:6e:e6:98:e4:b9:e5:4c:e5:8d:87:dd:01:d8:6e:
        25:fd:de:20:c3:93:0c:f1:8b:15:90:ba:d4:ea:64:e0:
        7b:3f:01:35:d2:56:d8:43:24:be:cd:cc:7c:e0:27:39:
        e6:e2:80:5f:94:c0:14:e8:fe:6b:37:9b:5c:e4:03:d8:
        67:76:fb:97:ed:f1:71:a5:8f:a7:be:ad:b6:8d:87:40:
        e8:1b:78:a7:e4:49:22:1b:f5:2e:99:80:1e:0e:b0:a1:
        bd:71:3f:29:e9:1a:89:c0:e8:1b:c0:f1:1d:b7:b5:39:
        b3:63:18:11:41:9a:5e:a8:1a:a3:66:8f:25:b4:e3:4b:
        b8:37:9f:b4:85:c4:08:43:fe:50:55:64:4c:0f:91:3c:
        8d:de:64:b4:b2:a1:4b:3c:a5:f1:b6:81:5a:d9:31:b2:
        ca:f0:a8:5d:67:26:e3:b9:d8:bf:d6:e1:95:36:d3:0d:
        73:be:ae:ba:fc:d0:cd:0e:0e:3c:36:d3:c8:c7:24:8b:
        69:36:f5:e3:ce:20:f1:5d:bf:f3:a8:55:bd:bf:8d:d6
    Fingerprint (SHA-256):
        1E:23:B2:8E:86:BC:F9:E1:16:14:42:05:35:57:5B:F0:77:43:C7:C9:77:74:02:1C:54:7D:51:11:2A:1A:C7:9B
    Fingerprint (SHA1):
        F8:4D:7E:B6:A1:68:50:B7:E1:CC:47:68:E8:71:B8:A6:DC:CE:E1:73
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
dbtests.sh: #12056: Nicknane conflict test-setting nickname conflict was correctly rejected - PASSED
TIMESTAMP dbtests END: Sat Oct 21 17:18:08 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Sat Oct 21 17:18:09 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12057: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                20:cd:11:69:fd:e2:25:bf:85:31:b4:65:47:6c:67:55
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12058: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12059: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12060: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12061: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                5d:0e:af:b6:36:e5:76:4a:69:c3:a9:9b:a2:c9:87:a7
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA256
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Sat Oct 21 17:07:01 2017
            Not After : Fri Oct 21 17:07:01 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:00:95:72:2b:88:00:c5:86:90:0f:83:06:d1:c5:fc:
                    d0:ff:ac:69:aa:47:0b:d2:75:c4:aa:13:1c:1f:47:8f:
                    3f:e9:88:a8:5e:1c:45:6e:d2:8e:ba:51:b9:68:cf:e3:
                    a1:81:77:99:86:bc:2b:33:70:e5:dd:a3:27:32:de:3c:
                    b7:01:28:00:b4:bb:8d:c1:bc:fd:b2:be:70:29:9b:13:
                    64:15:4a:9a:2f:20:66:00:50:9f:00:88:75:94:64:cf:
                    e5:44:af:1a:08:3f:c9:2d:89:f3:4b:0f:35:0d:e7:4c:
                    de:b0:39:48:52:6e:d1:99:b6:45:07:08:3e:89:aa:73:
                    0b:71:c3:28:1e
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA256
    Signature:
        30:81:86:02:41:77:c9:ba:56:7d:f4:8c:3e:f3:93:88:
        be:a0:78:98:81:27:74:4e:b0:36:d2:41:0b:7d:5c:44:
        a8:38:54:06:5f:89:18:ff:6c:e6:da:ba:df:8c:fa:5e:
        b4:72:fa:1f:74:f6:66:cc:67:5d:6a:10:ab:3f:6b:8f:
        93:14:a0:b7:9e:86:02:41:16:34:b7:88:bc:66:c0:fa:
        2e:d3:c0:23:c5:ef:5b:77:2b:1e:02:59:7e:bc:62:ff:
        27:2d:4a:94:9e:70:8a:79:7c:29:e7:0a:2e:04:e3:75:
        2d:95:b9:92:79:ef:e3:c4:4f:2c:26:ea:38:31:d9:12:
        6e:70:d7:34:36:39:67:37:85
    Fingerprint (SHA-256):
        6B:A9:39:E4:62:78:B6:6E:1B:75:9F:8C:4A:5B:4A:6B:F4:52:52:F5:81:4D:28:A7:50:EB:AC:12:17:80:D9:6A
    Fingerprint (SHA1):
        AB:CC:86:87:9D:A8:56:09:58:E4:67:84:E7:00:C9:2E:F7:2B:D7:42
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA256
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Sat Oct 21 17:09:34 2017
            Not After : Fri Oct 21 17:09:34 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:69:a6:05:25:5b:f3:0f:23:ac:f4:e0:5f:c9:33:06:
                    42:c1:f6:80:f5:44:3b:c6:53:0c:1e:8a:77:78:0c:b5:
                    e6:8e:51:b9:6e:35:76:1d:c0:2c:ef:7b:96:9d:32:73:
                    8a:dc:97:a3:05:5a:f6:ce:1d:a4:fb:ed:e2:3c:48:8d:
                    1c:6d:7e:ae:73:c3:fe:e4:96:44:c0:f0:80:86:c5:73:
                    72:26:7a:e2:1e:57:76:bd:eb:12:26:79:74:cc:c4:0f:
                    8b
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA256
    Signature:
        30:81:88:02:42:01:3e:06:f3:b5:43:fe:9f:36:5a:7b:
        11:84:a1:45:dc:9a:38:b9:79:e1:a8:93:49:21:52:a3:
        f7:cf:f4:e6:6b:e5:af:9f:5d:83:89:0b:26:1f:52:1a:
        b1:59:f4:7c:8a:a3:a0:35:b7:c6:1f:0b:7d:73:5c:1e:
        30:2b:3e:60:a9:07:e6:02:42:00:ba:f6:cd:fd:d1:74:
        cb:c1:72:c3:bf:20:00:f5:c7:fb:96:22:fd:6d:77:ff:
        30:63:3e:ae:77:a9:d9:0d:60:7b:01:f8:15:d9:9b:6d:
        2f:32:42:bc:99:65:01:07:30:4c:88:55:21:8b:08:fb:
        e7:c7:c4:fb:b7:7a:5d:bf:46:96:d2
    Fingerprint (SHA-256):
        B9:20:40:C9:76:A6:9D:E7:04:D9:2C:49:8E:65:05:60:2D:F6:D8:80:4C:1C:91:C5:76:16:54:D4:14:C6:2F:9B
    Fingerprint (SHA1):
        6E:FE:C7:E3:86:E3:4D:5B:D4:5D:18:2C:E5:20:9F:CF:E6:46:12:D6
    Friendly Name: Alice-ec
tools.sh: #12062: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12063: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                86:57:26:52:ab:43:88:06:40:80:2a:46:5c:a5:c7:70
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12064: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12065: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12066: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                81:d9:49:62:84:99:f2:b7:df:43:f9:7d:ca:81:74:79
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12067: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12068: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12069: Exporting with [RC2-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                77:58:d5:b1:d2:af:ce:91:d1:f8:76:4c:31:a8:a3:1e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12070: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12071: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12072: Exporting with [RC2-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                62:ee:6c:e4:61:66:1b:67:e1:20:83:20:52:ff:80:da
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12073: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12074: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12075: Exporting with [RC2-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                50:c2:a5:3c:99:d3:74:af:96:3f:60:3d:7b:54:da:52
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12076: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12077: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12078: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                03:57:12:a7:4f:ac:da:ab:98:77:0b:01:db:a0:25:6b
            Iteration Count: 2000 (0x7d0)
tools.sh: #12079: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12080: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12081: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d0:1d:50:51:ea:c5:23:de:23:97:f6:6f:77:08:90:3e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12082: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12083: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12084: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ed:0c:f9:cd:4a:32:63:ca:82:f0:e3:ba:8e:61:74:4d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12085: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12086: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12087: Exporting with [DES-EDE3-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                01:79:e8:45:de:01:29:33:72:88:34:f3:7b:85:ce:7a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12088: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12089: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12090: Exporting with [DES-EDE3-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                f4:81:f1:7a:0c:78:d2:79:59:7a:18:20:21:c3:b9:37
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12091: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12092: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12093: Exporting with [DES-EDE3-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                5f:4a:6e:a8:a0:a6:0d:51:3e:73:11:c8:ee:df:81:cf
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12094: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12095: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12096: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                b1:1f:a9:c9:d9:a7:ad:b0:67:0d:90:36:5d:df:ea:11
            Iteration Count: 2000 (0x7d0)
tools.sh: #12097: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12098: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12099: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        26:6f:02:96:42:d0:4f:67:98:e3:81:3c:3a:51:7c:d0
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:45:42:ad:a8:6a:23:dd:00:65:28:03:1e:d3:58:
                    89:cd
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12100: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12101: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12102: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a1:e5:0e:d5:32:f7:f7:2a:c3:fe:f0:30:bd:91:9d:dc
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:b4:ff:f0:b8:2f:a1:4e:29:d4:7c:14:b5:ab:cf:
                    1c:bf
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12103: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12104: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12105: Exporting with [AES-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        38:53:bd:24:85:65:85:37:42:8d:1f:ff:99:c2:16:01
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:d7:ee:29:20:c4:e1:b5:58:89:fb:6e:ae:e5:7a:
                    1a:ad
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12106: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12107: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12108: Exporting with [AES-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a8:e6:e9:9c:6f:6d:5d:8f:90:22:e8:de:eb:ce:22:af
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:a8:df:f6:83:7c:cc:75:fe:ce:3a:de:4a:96:59:
                    a7:aa
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12109: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12110: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12111: Exporting with [AES-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        83:b9:66:d0:f0:98:03:1e:f7:0a:6a:05:50:01:dd:d8
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:d0:d3:f7:ff:bd:62:9f:07:b6:49:49:21:d1:48:
                    b6:f2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12112: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12113: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12114: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        28:df:3f:22:95:41:e7:d1:53:f4:5d:ad:2d:b0:22:02
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:38:56:91:e2:7a:74:fb:e7:32:64:cb:91:35:2b:
                    58:11
tools.sh: #12115: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12116: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12117: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a6:83:20:c4:61:81:c0:95:19:6c:15:d6:7a:fe:2f:fb
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:d3:17:2f:16:ef:d2:70:ce:8d:54:3d:0d:f8:18:
                    48:16
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12118: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12119: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12120: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d4:ed:23:b5:f1:ca:04:e0:1a:38:08:67:ec:87:ab:9d
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:0d:72:23:93:35:f0:c2:1b:1e:6e:3b:96:6b:3d:
                    d6:b3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12121: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12122: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12123: Exporting with [AES-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        cd:34:4f:ee:b0:9d:89:d8:76:5c:f5:c4:16:81:a0:12
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:98:20:65:28:5f:19:9a:f9:51:44:a8:2b:b0:c6:
                    85:8a
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12124: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12125: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12126: Exporting with [AES-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d3:4f:a5:fd:38:97:cc:09:e2:cc:89:17:e8:c3:15:91
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:49:ca:a1:78:4a:84:5f:f4:46:0f:39:66:94:f6:
                    89:cd
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12127: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12128: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12129: Exporting with [AES-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        97:5e:b0:e2:64:d4:f5:5d:fe:93:81:ec:b3:a2:b0:f8
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:a4:b6:c9:24:2a:23:19:2f:9c:88:52:03:01:40:
                    a2:76
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12130: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12131: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12132: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        4b:01:f2:c9:d6:63:12:f6:6b:e3:97:3b:0d:e9:cb:b4
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:ef:c6:12:5b:2b:67:53:bc:4b:b8:d2:70:6a:f4:
                    58:51
tools.sh: #12133: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12134: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12135: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        1b:c8:fe:66:4a:43:33:e6:60:48:d8:23:0a:ca:20:7b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:59:e4:e7:f1:e0:61:75:2a:c3:10:ab:30:ec:4d:
                    37:92
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12136: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12137: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12138: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        0b:a1:73:e0:2d:ea:c2:38:cc:3a:c1:f6:8d:55:58:e0
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:33:69:7d:54:99:0d:b2:1a:77:12:30:b6:f6:7f:
                    6a:80
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12139: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12140: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12141: Exporting with [AES-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b0:9b:b0:ad:dc:64:11:5e:3e:b2:51:f6:99:16:b6:cb
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:b5:7a:9c:40:ad:22:4c:06:73:cc:ce:9b:e5:54:
                    0c:15
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12142: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12143: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12144: Exporting with [AES-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e5:a9:3d:fc:80:0f:54:fe:a1:51:c9:1f:b1:f1:e1:f6
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:09:6d:f1:96:9c:89:aa:1c:c7:0b:d3:05:d4:bc:
                    68:af
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12145: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12146: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12147: Exporting with [AES-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e0:21:9e:42:14:d4:f6:02:54:7b:58:91:3b:83:cf:84
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:4f:f8:99:06:d6:95:7e:23:8f:ba:cc:db:c1:58:
                    07:2e
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12148: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12149: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12150: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        9f:e2:03:0e:a5:d2:59:71:3a:2c:be:f1:f4:32:49:95
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:a8:14:bf:df:bd:20:af:b0:fc:3c:82:fe:60:41:
                    b1:de
tools.sh: #12151: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12152: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12153: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        7d:9d:27:dd:2a:34:07:07:53:3d:29:13:fc:38:e9:db
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:c6:53:91:e8:2f:02:3d:4c:2c:29:a6:b2:43:38:
                    87:e7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12154: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12155: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12156: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        6f:95:59:8a:e4:d4:b7:89:ae:28:b9:df:e7:08:80:78
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:f1:1c:b2:24:9a:c3:e9:35:3b:16:b9:04:ed:94:
                    f6:0f
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12157: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12158: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12159: Exporting with [CAMELLIA-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f1:51:dd:6a:22:c9:3d:06:aa:d6:c8:4b:f9:1d:42:59
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:b8:11:91:b9:50:96:f8:6f:5b:d3:c3:70:61:6e:
                    43:f7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12160: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12161: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12162: Exporting with [CAMELLIA-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e4:9c:e1:ce:6e:44:b2:2a:ee:cc:87:67:80:be:0a:83
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:ef:22:8a:ce:86:20:3e:dc:90:e7:e4:78:dd:dd:
                    c0:5c
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12163: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12164: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12165: Exporting with [CAMELLIA-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        2c:74:2d:f2:0e:d6:14:e6:78:0d:ad:31:61:d4:cc:73
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:02:38:95:73:b8:ad:1d:e6:9d:9f:8e:83:93:cd:
                    02:46
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12166: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12167: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12168: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d6:ca:09:4e:df:bb:12:00:ef:d2:5e:d3:03:c6:82:be
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:19:d5:a5:35:d5:f6:5a:2e:6b:cd:cc:44:dc:98:
                    f6:6d
tools.sh: #12169: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12170: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12171: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        aa:c4:ea:fb:1f:b2:c9:f1:2b:8e:d6:04:2f:3a:68:ea
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:d0:3e:aa:ab:82:37:32:be:95:ac:c1:b0:6b:37:
                    a2:f6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12172: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12173: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12174: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        37:c3:96:6a:28:7c:44:53:99:a6:88:1a:43:71:3e:e8
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:4d:04:bb:9a:a3:13:4d:de:70:78:da:fb:e4:1e:
                    85:26
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12175: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12176: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12177: Exporting with [CAMELLIA-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        db:97:9b:b2:ed:fc:0e:eb:f3:c2:e6:f0:33:2f:06:aa
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:11:36:b8:a7:03:eb:4a:02:30:e7:2c:24:6a:b9:
                    7d:30
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12178: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12179: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12180: Exporting with [CAMELLIA-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        01:f1:29:74:09:e0:43:c0:a1:3a:d5:08:a6:77:f1:20
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:52:66:30:13:b4:3c:29:5d:c2:6d:4a:1d:39:a1:
                    56:79
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12181: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12182: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12183: Exporting with [CAMELLIA-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        00:40:f2:11:9e:c9:31:eb:af:59:68:7b:23:e3:27:e5
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:05:5f:23:aa:06:52:82:ee:63:60:23:ca:10:96:
                    09:df
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12184: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12185: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12186: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e0:42:ba:4f:39:0b:24:81:cf:bf:8f:01:5e:4e:80:90
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:7c:e8:71:ba:c9:43:b5:20:9c:6a:39:09:7c:51:
                    5b:5d
tools.sh: #12187: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12188: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12189: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        44:7e:d0:47:1b:22:4d:80:d3:90:e3:99:26:f7:16:a7
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:59:29:be:25:9f:57:ea:8c:88:2e:e8:4d:60:52:
                    7f:80
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12190: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12191: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12192: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f9:d8:37:9a:62:73:a8:12:e1:8f:18:92:17:2b:02:bb
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:ab:6b:22:50:2c:71:91:f0:a3:4a:7f:54:3b:df:
                    ba:c5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12193: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12194: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12195: Exporting with [CAMELLIA-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a4:7f:91:8a:12:b3:64:6b:44:f2:48:10:bf:1f:4d:8b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:ce:75:0b:c2:ca:9a:8a:c6:3f:8e:3a:93:b3:09:
                    06:3a
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12196: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12197: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12198: Exporting with [CAMELLIA-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        94:1f:29:aa:56:53:c0:06:d2:8b:33:f0:27:34:0a:83
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:a6:b7:47:83:c8:9a:54:9d:50:cf:ed:c2:74:5d:
                    63:a6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12199: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12200: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12201: Exporting with [CAMELLIA-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        67:c8:08:48:7d:13:ca:23:aa:7c:ce:ae:05:a7:b3:a4
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:90:ed:50:1c:43:05:56:95:77:b1:70:ff:83:88:
                    bb:83
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12202: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12203: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12204: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        12:83:46:09:62:62:07:4e:bb:9f:d0:51:44:f5:71:e0
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:0c:06:cf:5b:85:13:80:19:00:7a:0c:90:8a:9e:
                    6d:f9
tools.sh: #12205: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12206: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12207: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                0a:b2:15:98:58:85:51:e0:12:2a:0e:b4:4a:1b:84:68
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12208: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12209: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12210: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                2c:27:e7:1d:cb:c5:b4:c9:30:1a:57:14:fa:9a:4a:a1
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12211: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12212: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12213: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                87:54:14:06:92:60:ed:6b:23:13:04:36:3d:6f:12:80
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12214: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12215: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12216: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                60:1d:d3:b4:26:21:0d:9e:81:02:34:bc:4c:10:75:31
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12217: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12218: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12219: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                23:39:3b:c5:3e:fb:1f:b9:71:f0:c9:8c:ae:b7:95:49
            Iteration Count: 2000 (0x7d0)
tools.sh: #12220: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12221: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12222: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                fb:fd:1e:c2:00:17:4e:f6:0a:06:d9:49:b2:e1:e1:b5
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12223: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12224: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12225: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                2a:fb:0c:be:60:0d:de:24:be:0e:ef:d0:5b:ac:a6:56
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12226: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12227: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12228: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                41:3a:51:26:c8:ba:91:22:85:33:7a:3a:27:1e:19:ce
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12229: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12230: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12231: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                0a:42:17:65:d3:cb:c5:b1:34:83:0a:2e:c3:79:e8:dc
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12232: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12233: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12234: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                85:bc:ef:76:2c:9f:b9:aa:9a:b2:68:ec:5b:77:8a:fd
            Iteration Count: 2000 (0x7d0)
tools.sh: #12235: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12236: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12237: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                68:e4:4c:a4:3e:6a:31:fa:c1:d8:0f:4b:0b:01:69:98
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12238: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12239: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12240: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                35:bb:54:9e:ba:a3:f5:02:f4:48:d4:c1:8c:6d:d1:6f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12241: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12242: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12243: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                40:60:40:f4:37:80:e6:09:72:2b:25:9a:cf:1d:01:ed
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12244: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12245: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12246: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                b6:77:0e:6b:01:fe:f1:3f:68:16:83:ac:da:9a:5b:c3
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12247: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12248: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12249: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                10:64:f5:e5:3e:9d:75:cd:76:84:bf:bf:3d:a8:be:32
            Iteration Count: 2000 (0x7d0)
tools.sh: #12250: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12251: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12252: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                4b:ba:af:e7:1d:91:ce:6e:d4:b6:24:1f:42:f2:5b:66
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12253: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12254: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12255: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                37:79:c2:e4:cd:90:78:91:ed:fc:91:af:eb:26:39:df
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12256: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12257: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12258: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                1a:ec:14:60:72:33:d6:f9:6c:4a:ff:10:79:9f:22:0f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12259: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12260: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12261: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                4e:63:3b:c0:0d:82:96:d6:8c:f7:e5:51:e0:b7:63:32
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12262: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12263: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12264: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                70:af:65:49:3d:37:20:0b:93:cb:b1:aa:3b:a3:d1:77
            Iteration Count: 2000 (0x7d0)
tools.sh: #12265: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12266: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12267: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                94:81:58:63:79:cc:21:be:cd:9d:16:e3:9f:8e:78:77
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12268: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12269: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12270: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                f5:9e:90:7c:fe:2a:27:0f:3b:ae:6e:7c:37:09:96:5a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12271: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12272: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12273: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                3e:d6:18:d4:b6:53:a5:cb:ad:83:f1:6f:73:89:ce:f5
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12274: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12275: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12276: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                e8:9d:50:ff:9b:e4:e6:f7:91:22:43:28:06:75:7f:aa
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12277: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12278: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12279: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                19:50:57:2c:9a:23:3e:a7:95:36:a4:e0:81:84:fc:25
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12280: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12281: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12282: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                f8:e5:10:97:4c:1e:80:a7:f0:b7:d8:01:0e:6a:3f:46
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12283: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12284: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12285: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ff:74:7f:76:3a:8d:af:57:0b:2c:71:e2:5d:66:29:84
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12286: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12287: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12288: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ce:a4:6d:66:1d:d9:6d:a1:37:9b:00:6a:cd:33:04:e5
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12289: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12290: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12291: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                bb:7d:02:74:da:fa:02:ff:3d:4f:b3:dc:b0:d3:7e:9e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12292: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12293: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12294: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ca:ba:0d:2c:00:92:04:9a:b3:75:73:be:12:80:30:9a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:06:08 2017
            Not After : Fri Oct 21 17:06:08 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:56:03:c6:47:31:5e:db:87:97:f1:d4:f8:ab:63:37:
                    13:5a:bd:f2:30:6c:e8:06:a9:91:40:76:59:81:27:b4:
                    8a:e8:13:03:98:95:a5:75:32:84:21:45:f4:ae:a4:bd:
                    56:5a:60:e6:77:47:fb:f5:23:2a:56:e6:39:7a:c2:fa:
                    92:1b:5a:e5:b9:34:14:a9:33:9b:1a:5a:d2:b6:94:e8:
                    14:b5:7e:08:1e:a4:7d:2d:82:03:c7:32:d1:1b:b8:de:
                    30:1b:3d:4a:47:0c:3c:60:e3:80:9c:ad:e4:51:2d:35:
                    89:75:4e:1d:cf:1d:75:2b:9f:6a:37:74:43:5e:be:85:
                    93:e8:c2:6c:4c:61:c9:2b:59:65:f3:32:fc:95:5f:b1:
                    8b:27:87:bd:79:36:c7:a2:77:16:81:ff:73:c7:d1:09:
                    1a:07:94:9c:7e:93:e0:24:d3:d9:ad:fe:9e:ae:a7:05:
                    c2:24:c1:f0:c5:91:14:c3:e8:e3:24:6f:ac:fd:94:6a:
                    a9:43:82:56:af:5a:75:b2:96:8f:e8:b9:82:98:e0:08:
                    59:6c:09:d2:25:29:47:87:df:8b:d3:e1:41:80:b7:1e:
                    e3:0c:7f:0b:a7:6c:37:a4:ad:0b:53:57:c8:39:37:fe:
                    74:87:5a:23:14:89:3d:82:48:60:fa:ad:73:94:6a:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:9d:07:7f:2c:b2:78:94:8e:68:d6:b6:a3:d9:94:c9:
        c1:45:80:75:5f:77:7e:87:2e:70:9e:1d:91:15:6a:fd:
        cc:89:15:47:d7:01:48:3e:06:85:92:b9:37:dd:10:06:
        d3:34:5d:d7:72:f8:de:37:c4:d1:bc:90:57:e9:c2:c5:
        1a:02:91:d2:d0:58:70:9e:15:7f:52:5d:8c:02:13:df:
        0d:56:ba:ca:a2:1a:1a:3b:c1:20:93:e7:3b:ad:31:be:
        54:d7:de:dc:d4:53:1a:d3:a9:9b:41:1a:62:b9:1c:90:
        a5:ca:41:a1:3d:84:69:e0:c4:37:a4:7a:53:a0:78:10:
        37:c6:d6:4a:02:c1:a1:a4:18:08:a2:e1:ca:eb:da:63:
        8f:d3:e8:12:19:39:10:41:bc:da:7d:17:cd:09:3a:9f:
        1f:97:9d:82:6c:90:eb:62:5a:ad:74:51:cd:b4:5a:45:
        a9:98:83:b9:4e:9e:6d:e1:d2:c3:9e:d7:ca:60:08:21:
        aa:5b:75:84:d9:ba:fb:a9:ac:73:3c:e5:cd:35:1c:da:
        33:f7:93:13:02:3f:24:06:76:ec:18:f8:87:3e:31:06:
        b7:ef:b5:77:46:b2:22:8f:8f:e2:15:4b:bf:85:cf:35:
        5d:f0:f6:81:1c:6b:cf:d4:4a:95:f0:8a:f1:4c:a3:0f
    Fingerprint (SHA-256):
        67:49:8B:E3:69:CF:67:CD:7F:52:C7:F3:ED:79:51:0F:AB:B3:47:A9:29:15:4F:AB:44:4F:C7:67:30:FB:F6:5C
    Fingerprint (SHA1):
        78:B3:09:92:95:73:61:02:5E:28:D6:D4:D5:96:EA:CF:FD:3E:C7:17
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:09:26 2017
            Not After : Fri Oct 21 17:09:26 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:51:bd:26:55:97:49:89:6d:9a:a7:da:c5:ba:a6:c6:
                    b6:e4:0e:c0:9c:e0:57:a1:b1:e7:d3:58:df:43:a8:9e:
                    d2:b7:3c:19:70:6a:f1:23:27:92:82:37:ec:a1:7f:13:
                    e2:18:02:36:24:08:83:52:98:b4:0f:f3:59:67:75:53:
                    b3:e9:3e:bf:74:44:29:09:d2:09:61:90:75:8e:0b:69:
                    b1:97:50:f5:f2:39:f5:ff:93:44:30:d9:f3:02:c9:a5:
                    86:fb:60:58:1b:09:ba:2c:b2:79:7f:12:2c:6f:67:e5:
                    75:ed:1f:a4:3b:ae:e7:fc:a0:6e:ab:21:be:44:d3:73:
                    a0:ed:01:96:40:c7:4e:68:a3:86:51:78:ae:5f:14:24:
                    ed:a6:ad:38:e9:9a:72:b4:46:e1:01:20:c7:75:e5:b8:
                    e5:ca:ff:7d:5b:24:85:93:b5:fa:ac:1c:f2:af:9e:0b:
                    65:97:46:d5:95:c2:42:f6:c3:48:96:46:b3:4d:1b:6b:
                    48:8a:fc:09:bb:0f:2c:59:7a:c5:39:aa:fa:27:27:e9:
                    5b:20:f5:0a:72:53:3a:31:fb:db:43:cf:93:19:bf:df:
                    2d:a1:f2:b6:32:8b:c4:ed:f1:03:30:6d:53:e0:38:63:
                    d9:60:86:a5:e2:6e:54:88:f1:25:25:6a:9e:ab:1b:f5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:28:6d:38:f7:4a:a7:0f:97:e0:bf:af:c9:6f:43:67:
        1c:ad:62:4e:84:3d:2e:fd:33:da:80:d7:a6:67:f8:e0:
        d9:3a:8a:b7:ba:74:39:3e:ae:5d:8d:3c:c5:24:fd:c2:
        bf:34:0a:f4:fd:f0:1d:73:9b:9b:92:b5:6b:bb:0c:87:
        44:bd:a9:c9:b8:9b:a6:91:94:05:47:67:39:d5:36:21:
        4e:a6:3f:c6:73:cb:59:87:15:cb:51:db:f7:8f:58:c5:
        df:bd:50:d6:2b:34:2c:1d:63:60:ef:94:be:e5:87:a3:
        10:7a:38:4c:06:0c:f3:3a:8c:23:50:60:15:d4:d4:02:
        77:04:e2:00:41:6b:d9:89:3f:8b:9d:37:d9:37:10:fa:
        ec:16:97:f7:3a:59:95:fa:f1:fc:23:67:30:97:5a:66:
        05:6c:b0:7f:4f:97:10:19:8a:fe:20:f9:df:c2:4e:d2:
        9a:2e:d6:8c:b4:06:ec:09:dd:b0:6c:6f:6e:a4:2d:5a:
        7f:fc:4c:68:1b:ac:76:00:bb:56:17:2b:8a:e7:0c:8f:
        c1:d3:a1:1d:1e:9c:c8:c5:a7:4b:3f:8a:ed:82:43:69:
        08:c8:d2:ce:71:e3:08:14:cf:4c:b4:ea:1b:22:1f:84:
        8a:8a:c9:f4:f9:51:ad:c8:fa:0f:74:6f:36:18:d8:69
    Fingerprint (SHA-256):
        C4:D9:89:05:A1:22:06:0E:32:C6:A5:C2:37:70:16:78:F7:AF:50:C7:08:36:73:50:15:7C:36:65:0C:7A:33:A7
    Fingerprint (SHA1):
        E0:85:DF:E8:89:B6:67:71:F0:B3:23:EF:AA:DB:12:DC:59:12:07:50
    Friendly Name: Alice
tools.sh: #12295: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12296: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #12297: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #12298: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Importing CA cert & key created with NSS 3.21 --------------
pk12util -i TestOldCA.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #12299: Importing CA cert & key created with NSS 3.21  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #12300: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 36%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 32%)
tree "../tools/html" signed successfully
tools.sh: #12301: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   signjs.html
        verified   sign.html
tools.sh: #12302: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #12303: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> signjs.html
--> sign.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 32%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 36%)
tree "../tools/html" signed successfully
tools.sh: #12304: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   signjs.html
        verified   sign.html
tools.sh: #12305: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #12306: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Sat Oct 21 17:29:49 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Sat Oct 21 17:29:49 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #12307: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #12308: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      48c32d2fe7591fd8e1f31e5be290dd52dd070a8e   NSS FIPS 140-2 Certificate DB:FIPS_PUB_140_Test_Certificate
fips.sh: #12309: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #12310: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #12311: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #12312: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #12313: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #12314: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #12315: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #12316: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #12317: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #12318: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #12319: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      48c32d2fe7591fd8e1f31e5be290dd52dd070a8e   FIPS_PUB_140_Test_Certificate
fips.sh: #12320: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #12321: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #12322: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #12323: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #12324: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      48c32d2fe7591fd8e1f31e5be290dd52dd070a8e   FIPS_PUB_140_Test_Certificate
fips.sh: #12325: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #12326: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #12327: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle/libsoftokn3.so -o -8 -b 5
cp /usr/lib/libsoftokn3.so /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle
Changing byte 0x00033998 (211352): from 01 (1) to 21 (33)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/fips/mangle dbtest -r -d ../fips
fips.sh: #12328: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Sat Oct 21 17:30:48 UTC 2017
Running tests for crmf
TIMESTAMP crmf BEGIN: Sat Oct 21 17:30:48 UTC 2017
crmf.sh: CRMF/CMMF Tests ===============================
crmf.sh: CRMF/CMMF Tests ------------------------------
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss crmf decode
crmftest v1.0
Generating CRMF request
Decoding CRMF request
crmftest: Processing cert request 0
crmftest: Processing cert request 1
Exiting successfully!!!
crmf.sh: #12329: CRMF test . - PASSED
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss cmmf
crmftest v1.0
Doing CMMF Stuff
Exiting successfully!!!
crmf.sh: #12330: CMMF test . - PASSED
TIMESTAMP crmf END: Sat Oct 21 17:30:50 UTC 2017
Running tests for smime
TIMESTAMP smime BEGIN: Sat Oct 21 17:30:50 UTC 2017
smime.sh: S/MIME Tests with ECC ===============================
smime.sh: Signing Detached Message {SHA1} ------------------
cmsutil -S -T -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA1
smime.sh: #12331: Create Detached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #12332: Verifying Alice's Detached Signature (SHA1) . - PASSED
smime.sh: Signing Attached Message (SHA1) ------------------
cmsutil -S -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA1
smime.sh: #12333: Create Attached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.sig.SHA1 -d ../bobdir -o alice.data.SHA1
smime.sh: #12334: Decode Alice's Attached Signature (SHA1) . - PASSED
diff alice.txt alice.data.SHA1
smime.sh: #12335: Compare Attached Signed Data and Original (SHA1) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA1} ------------------
cmsutil -S -T -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA1
smime.sh: #12336: Create Detached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #12337: Verifying Alice's Detached Signature (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA1) ------------------
cmsutil -S -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA1
smime.sh: #12338: Create Attached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.sig.SHA1 -d ../bobdir -o alice-ec.data.SHA1
smime.sh: #12339: Decode Alice's Attached Signature (ECDSA w/ SHA1) . - PASSED
diff alice.txt alice-ec.data.SHA1
smime.sh: #12340: Compare Attached Signed Data and Original (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Detached Message {SHA256} ------------------
cmsutil -S -T -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA256
smime.sh: #12341: Create Detached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #12342: Verifying Alice's Detached Signature (SHA256) . - PASSED
smime.sh: Signing Attached Message (SHA256) ------------------
cmsutil -S -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA256
smime.sh: #12343: Create Attached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.sig.SHA256 -d ../bobdir -o alice.data.SHA256
smime.sh: #12344: Decode Alice's Attached Signature (SHA256) . - PASSED
diff alice.txt alice.data.SHA256
smime.sh: #12345: Compare Attached Signed Data and Original (SHA256) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA256} ------------------
cmsutil -S -T -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA256
smime.sh: #12346: Create Detached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #12347: Verifying Alice's Detached Signature (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA256) ------------------
cmsutil -S -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA256
smime.sh: #12348: Create Attached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.sig.SHA256 -d ../bobdir -o alice-ec.data.SHA256
smime.sh: #12349: Decode Alice's Attached Signature (ECDSA w/ SHA256) . - PASSED
diff alice.txt alice-ec.data.SHA256
smime.sh: #12350: Compare Attached Signed Data and Original (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Detached Message {SHA384} ------------------
cmsutil -S -T -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA384
smime.sh: #12351: Create Detached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #12352: Verifying Alice's Detached Signature (SHA384) . - PASSED
smime.sh: Signing Attached Message (SHA384) ------------------
cmsutil -S -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA384
smime.sh: #12353: Create Attached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.sig.SHA384 -d ../bobdir -o alice.data.SHA384
smime.sh: #12354: Decode Alice's Attached Signature (SHA384) . - PASSED
diff alice.txt alice.data.SHA384
smime.sh: #12355: Compare Attached Signed Data and Original (SHA384) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA384} ------------------
cmsutil -S -T -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA384
smime.sh: #12356: Create Detached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #12357: Verifying Alice's Detached Signature (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA384) ------------------
cmsutil -S -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA384
smime.sh: #12358: Create Attached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.sig.SHA384 -d ../bobdir -o alice-ec.data.SHA384
smime.sh: #12359: Decode Alice's Attached Signature (ECDSA w/ SHA384) . - PASSED
diff alice.txt alice-ec.data.SHA384
smime.sh: #12360: Compare Attached Signed Data and Original (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Detached Message {SHA512} ------------------
cmsutil -S -T -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA512
smime.sh: #12361: Create Detached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #12362: Verifying Alice's Detached Signature (SHA512) . - PASSED
smime.sh: Signing Attached Message (SHA512) ------------------
cmsutil -S -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA512
smime.sh: #12363: Create Attached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.sig.SHA512 -d ../bobdir -o alice.data.SHA512
smime.sh: #12364: Decode Alice's Attached Signature (SHA512) . - PASSED
diff alice.txt alice.data.SHA512
smime.sh: #12365: Compare Attached Signed Data and Original (SHA512) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA512} ------------------
cmsutil -S -T -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA512
smime.sh: #12366: Create Detached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #12367: Verifying Alice's Detached Signature (ECDSA w/ SHA512) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA512) ------------------
cmsutil -S -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA512
smime.sh: #12368: Create Attached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.sig.SHA512 -d ../bobdir -o alice-ec.data.SHA512
smime.sh: #12369: Decode Alice's Attached Signature (ECDSA w/ SHA512) . - PASSED
diff alice.txt alice-ec.data.SHA512
smime.sh: #12370: Compare Attached Signed Data and Original (ECDSA w/ SHA512) . - PASSED
smime.sh: Enveloped Data Tests ------------------------------
cmsutil -E -r bob@bogus.com -i alice.txt -d ../alicedir -p nss \
        -o alice.env
smime.sh: #12371: Create Enveloped Data Alice . - PASSED
cmsutil -D -i alice.env -d ../bobdir -p nss -o alice.data1
smime.sh: #12372: Decode Enveloped Data Alice . - PASSED
diff alice.txt alice.data1
smime.sh: #12373: Compare Decoded Enveloped Data and Original . - PASSED
smime.sh: Testing multiple recipients ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o alicecc.env \
        -r bob@bogus.com,dave@bogus.com
smime.sh: #12374: Create Multiple Recipients Enveloped Data Alice . - PASSED
smime.sh: Testing multiple email addrs ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o aliceve.env \
        -r eve@bogus.net
smime.sh: #12375: Encrypt to a Multiple Email cert . - PASSED
cmsutil -D -i alicecc.env -d ../bobdir -p nss -o alice.data2
smime.sh: #12376: Decode Multiple Recipients Enveloped Data Alice by Bob . - PASSED
cmsutil -D -i alicecc.env -d ../dave -p nss -o alice.data3
smime.sh: #12377: Decode Multiple Recipients Enveloped Data Alice by Dave . - PASSED
cmsutil -D -i aliceve.env -d ../eve -p nss -o alice.data4
smime.sh: #12378: Decrypt with a Multiple Email cert . - PASSED
smime.sh: #12379: Compare Decoded Mult. Recipients Enveloped Data Alice/Bob . - PASSED
smime.sh: #12380: Compare Decoded Mult. Recipients Enveloped Data Alice/Dave . - PASSED
smime.sh: #12381: Compare Decoded with Multiple Email cert . - PASSED
smime.sh: Sending CERTS-ONLY Message ------------------------------
cmsutil -O -r "Alice,bob@bogus.com,dave@bogus.com" \
        -d ../alicedir > co.der
smime.sh: #12382: Create Certs-Only Alice . - PASSED
cmsutil -D -i co.der -d ../bobdir
smime.sh: #12383: Verify Certs-Only by CA . - PASSED
smime.sh: Encrypted-Data Message ---------------------------------
cmsutil -C -i alice.txt -e alicehello.env -d ../alicedir \
        -r "bob@bogus.com" > alice.enc
smime.sh: #12384: Create Encrypted-Data . - PASSED
cmsutil -D -i alice.enc -d ../bobdir -e alicehello.env -p nss \
        -o alice.data2
smime.sh: #12385: Decode Encrypted-Data . - PASSED
smime.sh: #12386: Compare Decoded and Original Data . - PASSED
smime.sh: p7 util Data Tests ------------------------------
p7env -d ../alicedir -r Alice -i alice.txt -o alice_p7.env
smime.sh: #12387: Creating envelope for user Alice . - PASSED
p7content -d ../alicedir -i alice.env -o alice_p7.data
smime.sh: #12388: Verifying file delivered to user Alice . - PASSED
diff alice.txt alice_p7.data.sed
smime.sh: #12389: Compare Decoded Enveloped Data and Original . - PASSED
p7sign -d ../alicedir -k Alice -i alice.txt -o alice.sig -p nss -e
smime.sh: #12390: Signing file for user Alice . - PASSED
p7verify -d ../alicedir -c alice.txt -s alice.sig
Signature is valid.
smime.sh: #12391: Verifying file delivered to user Alice . - PASSED
TIMESTAMP smime END: Sat Oct 21 17:31:29 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Sat Oct 21 17:31:30 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:31:30 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:31:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16714 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16714 found at Sat Oct 21 17:31:30 UTC 2017
selfserv_9183 with PID 16714 started at Sat Oct 21 17:31:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12392: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 16714 at Sat Oct 21 17:31:32 UTC 2017
kill -USR1 16714
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 16714 killed at Sat Oct 21 17:31:33 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:31:33 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:31:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16770 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16770 found at Sat Oct 21 17:31:33 UTC 2017
selfserv_9183 with PID 16770 started at Sat Oct 21 17:31:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12393: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 16770 at Sat Oct 21 17:31:35 UTC 2017
kill -USR1 16770
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 16770 killed at Sat Oct 21 17:31:36 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:31:36 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:31:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16827 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16827 found at Sat Oct 21 17:31:36 UTC 2017
selfserv_9183 with PID 16827 started at Sat Oct 21 17:31:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12394: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 16827 at Sat Oct 21 17:31:38 UTC 2017
kill -USR1 16827
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 16827 killed at Sat Oct 21 17:31:39 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:31:39 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:31:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16898 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16898 found at Sat Oct 21 17:31:40 UTC 2017
selfserv_9183 with PID 16898 started at Sat Oct 21 17:31:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12395: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 16898 at Sat Oct 21 17:31:42 UTC 2017
kill -USR1 16898
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 16898 killed at Sat Oct 21 17:31:42 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:31:42 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:31:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16954 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16954 found at Sat Oct 21 17:31:43 UTC 2017
selfserv_9183 with PID 16954 started at Sat Oct 21 17:31:43 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12396: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 16954 at Sat Oct 21 17:31:45 UTC 2017
kill -USR1 16954
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 16954 killed at Sat Oct 21 17:31:45 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:31:45 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:31:45 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17010 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17010 found at Sat Oct 21 17:31:46 UTC 2017
selfserv_9183 with PID 17010 started at Sat Oct 21 17:31:46 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12397: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 17010 at Sat Oct 21 17:31:48 UTC 2017
kill -USR1 17010
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17010 killed at Sat Oct 21 17:31:49 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:31:50 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:31:50 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17078 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17078 found at Sat Oct 21 17:31:51 UTC 2017
selfserv_9183 with PID 17078 started at Sat Oct 21 17:31:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12398: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 17078 at Sat Oct 21 17:31:53 UTC 2017
kill -USR1 17078
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17078 killed at Sat Oct 21 17:31:53 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:31:53 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:31:53 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17134 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17134 found at Sat Oct 21 17:31:54 UTC 2017
selfserv_9183 with PID 17134 started at Sat Oct 21 17:31:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12399: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 17134 at Sat Oct 21 17:31:56 UTC 2017
kill -USR1 17134
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17134 killed at Sat Oct 21 17:31:56 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:31:56 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:31:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17191 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17191 found at Sat Oct 21 17:31:57 UTC 2017
selfserv_9183 with PID 17191 started at Sat Oct 21 17:31:57 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12400: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 17191 at Sat Oct 21 17:31:59 UTC 2017
kill -USR1 17191
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17191 killed at Sat Oct 21 17:31:59 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:32:00 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:32:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17259 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17259 found at Sat Oct 21 17:32:00 UTC 2017
selfserv_9183 with PID 17259 started at Sat Oct 21 17:32:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12401: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 17259 at Sat Oct 21 17:32:02 UTC 2017
kill -USR1 17259
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17259 killed at Sat Oct 21 17:32:02 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:32:03 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:32:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17327 found at Sat Oct 21 17:32:03 UTC 2017
selfserv_9183 with PID 17327 started at Sat Oct 21 17:32:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12402: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 17327 at Sat Oct 21 17:32:05 UTC 2017
kill -USR1 17327
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17327 killed at Sat Oct 21 17:32:05 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:32:05 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:32:05 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17383 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17383 found at Sat Oct 21 17:32:06 UTC 2017
selfserv_9183 with PID 17383 started at Sat Oct 21 17:32:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12403: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 17383 at Sat Oct 21 17:32:08 UTC 2017
kill -USR1 17383
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17383 killed at Sat Oct 21 17:32:08 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:32:08 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:32:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17451 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17451 found at Sat Oct 21 17:32:09 UTC 2017
selfserv_9183 with PID 17451 started at Sat Oct 21 17:32:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12404: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 17451 at Sat Oct 21 17:32:11 UTC 2017
kill -USR1 17451
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17451 killed at Sat Oct 21 17:32:11 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:32:11 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:32:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17507 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17507 found at Sat Oct 21 17:32:12 UTC 2017
selfserv_9183 with PID 17507 started at Sat Oct 21 17:32:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12405: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 17507 at Sat Oct 21 17:32:14 UTC 2017
kill -USR1 17507
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17507 killed at Sat Oct 21 17:32:14 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:32:14 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:32:14 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17563 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17563 found at Sat Oct 21 17:32:15 UTC 2017
selfserv_9183 with PID 17563 started at Sat Oct 21 17:32:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12406: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 17563 at Sat Oct 21 17:32:17 UTC 2017
kill -USR1 17563
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17563 killed at Sat Oct 21 17:32:17 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:32:17 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:32:17 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17632 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17632 found at Sat Oct 21 17:32:18 UTC 2017
selfserv_9183 with PID 17632 started at Sat Oct 21 17:32:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12407: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 17632 at Sat Oct 21 17:32:20 UTC 2017
kill -USR1 17632
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17632 killed at Sat Oct 21 17:32:20 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:32:20 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:32:20 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17688 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17688 found at Sat Oct 21 17:32:21 UTC 2017
selfserv_9183 with PID 17688 started at Sat Oct 21 17:32:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12408: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 17688 at Sat Oct 21 17:32:23 UTC 2017
kill -USR1 17688
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17688 killed at Sat Oct 21 17:32:23 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:32:23 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:32:23 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17744 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17744 found at Sat Oct 21 17:32:24 UTC 2017
selfserv_9183 with PID 17744 started at Sat Oct 21 17:32:24 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12409: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 17744 at Sat Oct 21 17:32:26 UTC 2017
kill -USR1 17744
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17744 killed at Sat Oct 21 17:32:26 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:32:27 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:32:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17812 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17812 found at Sat Oct 21 17:32:27 UTC 2017
selfserv_9183 with PID 17812 started at Sat Oct 21 17:32:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12410: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 17812 at Sat Oct 21 17:32:29 UTC 2017
kill -USR1 17812
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17812 killed at Sat Oct 21 17:32:29 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:32:29 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:32:29 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17868 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17868 found at Sat Oct 21 17:32:30 UTC 2017
selfserv_9183 with PID 17868 started at Sat Oct 21 17:32:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12411: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 17868 at Sat Oct 21 17:32:31 UTC 2017
kill -USR1 17868
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17868 killed at Sat Oct 21 17:32:32 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:32:32 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:32:32 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17924 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17924 found at Sat Oct 21 17:32:33 UTC 2017
selfserv_9183 with PID 17924 started at Sat Oct 21 17:32:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12412: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 17924 at Sat Oct 21 17:32:34 UTC 2017
kill -USR1 17924
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17924 killed at Sat Oct 21 17:32:35 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:32:35 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:32:35 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 17992 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 17992 found at Sat Oct 21 17:32:35 UTC 2017
selfserv_9183 with PID 17992 started at Sat Oct 21 17:32:35 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12413: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 17992 at Sat Oct 21 17:32:37 UTC 2017
kill -USR1 17992
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 17992 killed at Sat Oct 21 17:32:38 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:32:38 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:32:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18052 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18052 found at Sat Oct 21 17:32:38 UTC 2017
selfserv_9183 with PID 18052 started at Sat Oct 21 17:32:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12414: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 18052 at Sat Oct 21 17:32:40 UTC 2017
kill -USR1 18052
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18052 killed at Sat Oct 21 17:32:40 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:32:40 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:32:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18108 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18108 found at Sat Oct 21 17:32:41 UTC 2017
selfserv_9183 with PID 18108 started at Sat Oct 21 17:32:41 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12415: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 18108 at Sat Oct 21 17:32:43 UTC 2017
kill -USR1 18108
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18108 killed at Sat Oct 21 17:32:43 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:32:43 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:32:43 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18176 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18176 found at Sat Oct 21 17:32:44 UTC 2017
selfserv_9183 with PID 18176 started at Sat Oct 21 17:32:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12416: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 18176 at Sat Oct 21 17:32:46 UTC 2017
kill -USR1 18176
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18176 killed at Sat Oct 21 17:32:46 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:32:46 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:32:46 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18232 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18232 found at Sat Oct 21 17:32:47 UTC 2017
selfserv_9183 with PID 18232 started at Sat Oct 21 17:32:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12417: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 18232 at Sat Oct 21 17:32:49 UTC 2017
kill -USR1 18232
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18232 killed at Sat Oct 21 17:32:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:32:49 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:32:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18288 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18288 found at Sat Oct 21 17:32:50 UTC 2017
selfserv_9183 with PID 18288 started at Sat Oct 21 17:32:50 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12418: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 18288 at Sat Oct 21 17:32:51 UTC 2017
kill -USR1 18288
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18288 killed at Sat Oct 21 17:32:52 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:32:52 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:32:52 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18356 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18356 found at Sat Oct 21 17:32:53 UTC 2017
selfserv_9183 with PID 18356 started at Sat Oct 21 17:32:53 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12419: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 18356 at Sat Oct 21 17:32:54 UTC 2017
kill -USR1 18356
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18356 killed at Sat Oct 21 17:32:55 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:32:55 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:32:55 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18412 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18412 found at Sat Oct 21 17:32:55 UTC 2017
selfserv_9183 with PID 18412 started at Sat Oct 21 17:32:55 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12420: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 18412 at Sat Oct 21 17:32:57 UTC 2017
kill -USR1 18412
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18412 killed at Sat Oct 21 17:32:57 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:32:57 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:32:58 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18468 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18468 found at Sat Oct 21 17:32:58 UTC 2017
selfserv_9183 with PID 18468 started at Sat Oct 21 17:32:58 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12421: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 18468 at Sat Oct 21 17:33:00 UTC 2017
kill -USR1 18468
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18468 killed at Sat Oct 21 17:33:00 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:33:00 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:33:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18537 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18537 found at Sat Oct 21 17:33:01 UTC 2017
selfserv_9183 with PID 18537 started at Sat Oct 21 17:33:01 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12422: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 18537 at Sat Oct 21 17:33:03 UTC 2017
kill -USR1 18537
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18537 killed at Sat Oct 21 17:33:03 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:33:03 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:33:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18606 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18606 found at Sat Oct 21 17:33:04 UTC 2017
selfserv_9183 with PID 18606 started at Sat Oct 21 17:33:04 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12423: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 18606 at Sat Oct 21 17:33:05 UTC 2017
kill -USR1 18606
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18606 killed at Sat Oct 21 17:33:06 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:33:06 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:33:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18662 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18662 found at Sat Oct 21 17:33:06 UTC 2017
selfserv_9183 with PID 18662 started at Sat Oct 21 17:33:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12424: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 18662 at Sat Oct 21 17:33:08 UTC 2017
kill -USR1 18662
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18662 killed at Sat Oct 21 17:33:09 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:33:09 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:33:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18730 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18730 found at Sat Oct 21 17:33:09 UTC 2017
selfserv_9183 with PID 18730 started at Sat Oct 21 17:33:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12425: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 18730 at Sat Oct 21 17:33:11 UTC 2017
kill -USR1 18730
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18730 killed at Sat Oct 21 17:33:12 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:33:12 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:33:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18786 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18786 found at Sat Oct 21 17:33:12 UTC 2017
selfserv_9183 with PID 18786 started at Sat Oct 21 17:33:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12426: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 18786 at Sat Oct 21 17:33:14 UTC 2017
kill -USR1 18786
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18786 killed at Sat Oct 21 17:33:14 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:33:15 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:33:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18842 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18842 found at Sat Oct 21 17:33:15 UTC 2017
selfserv_9183 with PID 18842 started at Sat Oct 21 17:33:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12427: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 18842 at Sat Oct 21 17:33:17 UTC 2017
kill -USR1 18842
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18842 killed at Sat Oct 21 17:33:17 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:33:18 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:33:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18910 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18910 found at Sat Oct 21 17:33:18 UTC 2017
selfserv_9183 with PID 18910 started at Sat Oct 21 17:33:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12428: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 18910 at Sat Oct 21 17:33:20 UTC 2017
kill -USR1 18910
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18910 killed at Sat Oct 21 17:33:21 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:33:21 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:33:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 18967 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 18967 found at Sat Oct 21 17:33:21 UTC 2017
selfserv_9183 with PID 18967 started at Sat Oct 21 17:33:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12429: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 18967 at Sat Oct 21 17:33:24 UTC 2017
kill -USR1 18967
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 18967 killed at Sat Oct 21 17:33:24 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:33:24 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:33:24 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19023 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19023 found at Sat Oct 21 17:33:25 UTC 2017
selfserv_9183 with PID 19023 started at Sat Oct 21 17:33:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12430: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 19023 at Sat Oct 21 17:33:27 UTC 2017
kill -USR1 19023
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19023 killed at Sat Oct 21 17:33:27 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:33:27 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:33:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19091 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19091 found at Sat Oct 21 17:33:28 UTC 2017
selfserv_9183 with PID 19091 started at Sat Oct 21 17:33:28 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12431: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 19091 at Sat Oct 21 17:33:31 UTC 2017
kill -USR1 19091
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19091 killed at Sat Oct 21 17:33:31 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:33:31 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:33:31 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19147 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19147 found at Sat Oct 21 17:33:32 UTC 2017
selfserv_9183 with PID 19147 started at Sat Oct 21 17:33:32 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12432: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 19147 at Sat Oct 21 17:33:34 UTC 2017
kill -USR1 19147
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19147 killed at Sat Oct 21 17:33:34 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:33:35 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:33:35 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19203 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19203 found at Sat Oct 21 17:33:35 UTC 2017
selfserv_9183 with PID 19203 started at Sat Oct 21 17:33:35 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12433: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 19203 at Sat Oct 21 17:33:37 UTC 2017
kill -USR1 19203
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19203 killed at Sat Oct 21 17:33:38 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:33:38 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:33:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19274 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19274 found at Sat Oct 21 17:33:38 UTC 2017
selfserv_9183 with PID 19274 started at Sat Oct 21 17:33:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12434: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 19274 at Sat Oct 21 17:33:41 UTC 2017
kill -USR1 19274
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19274 killed at Sat Oct 21 17:33:41 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:33:41 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:33:41 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19331 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19331 found at Sat Oct 21 17:33:42 UTC 2017
selfserv_9183 with PID 19331 started at Sat Oct 21 17:33:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12435: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 19331 at Sat Oct 21 17:33:44 UTC 2017
kill -USR1 19331
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19331 killed at Sat Oct 21 17:33:45 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:33:45 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:33:45 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19387 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19387 found at Sat Oct 21 17:33:45 UTC 2017
selfserv_9183 with PID 19387 started at Sat Oct 21 17:33:45 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12436: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 19387 at Sat Oct 21 17:33:48 UTC 2017
kill -USR1 19387
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19387 killed at Sat Oct 21 17:33:48 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:33:48 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:33:48 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19455 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19455 found at Sat Oct 21 17:33:49 UTC 2017
selfserv_9183 with PID 19455 started at Sat Oct 21 17:33:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12437: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 19455 at Sat Oct 21 17:33:51 UTC 2017
kill -USR1 19455
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19455 killed at Sat Oct 21 17:33:51 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:33:52 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:33:52 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19511 found at Sat Oct 21 17:33:52 UTC 2017
selfserv_9183 with PID 19511 started at Sat Oct 21 17:33:52 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12438: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 19511 at Sat Oct 21 17:33:54 UTC 2017
kill -USR1 19511
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19511 killed at Sat Oct 21 17:33:55 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:33:55 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:33:55 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19568 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19568 found at Sat Oct 21 17:33:55 UTC 2017
selfserv_9183 with PID 19568 started at Sat Oct 21 17:33:55 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12439: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 19568 at Sat Oct 21 17:33:57 UTC 2017
kill -USR1 19568
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19568 killed at Sat Oct 21 17:33:58 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:33:58 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:33:58 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19636 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19636 found at Sat Oct 21 17:33:59 UTC 2017
selfserv_9183 with PID 19636 started at Sat Oct 21 17:33:59 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12440: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 19636 at Sat Oct 21 17:34:01 UTC 2017
kill -USR1 19636
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19636 killed at Sat Oct 21 17:34:01 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:34:01 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:34:01 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19705 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19705 found at Sat Oct 21 17:34:02 UTC 2017
selfserv_9183 with PID 19705 started at Sat Oct 21 17:34:02 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12441: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 19705 at Sat Oct 21 17:34:04 UTC 2017
kill -USR1 19705
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19705 killed at Sat Oct 21 17:34:05 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:34:05 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:34:05 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19762 found at Sat Oct 21 17:34:05 UTC 2017
selfserv_9183 with PID 19762 started at Sat Oct 21 17:34:05 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12442: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 19762 at Sat Oct 21 17:34:07 UTC 2017
kill -USR1 19762
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19762 killed at Sat Oct 21 17:34:08 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:34:08 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:34:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19830 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19830 found at Sat Oct 21 17:34:08 UTC 2017
selfserv_9183 with PID 19830 started at Sat Oct 21 17:34:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12443: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 19830 at Sat Oct 21 17:34:11 UTC 2017
kill -USR1 19830
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19830 killed at Sat Oct 21 17:34:11 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:34:11 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:34:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19886 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19886 found at Sat Oct 21 17:34:12 UTC 2017
selfserv_9183 with PID 19886 started at Sat Oct 21 17:34:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12444: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 19886 at Sat Oct 21 17:34:14 UTC 2017
kill -USR1 19886
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19886 killed at Sat Oct 21 17:34:15 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:34:15 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:34:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 19942 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 19942 found at Sat Oct 21 17:34:15 UTC 2017
selfserv_9183 with PID 19942 started at Sat Oct 21 17:34:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12445: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 19942 at Sat Oct 21 17:34:18 UTC 2017
kill -USR1 19942
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 19942 killed at Sat Oct 21 17:34:18 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:34:18 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:34:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20010 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20010 found at Sat Oct 21 17:34:19 UTC 2017
selfserv_9183 with PID 20010 started at Sat Oct 21 17:34:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12446: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 20010 at Sat Oct 21 17:34:21 UTC 2017
kill -USR1 20010
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20010 killed at Sat Oct 21 17:34:22 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:34:22 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:34:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20066 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20066 found at Sat Oct 21 17:34:22 UTC 2017
selfserv_9183 with PID 20066 started at Sat Oct 21 17:34:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12447: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 20066 at Sat Oct 21 17:34:24 UTC 2017
kill -USR1 20066
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20066 killed at Sat Oct 21 17:34:25 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:34:25 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:34:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20123 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20123 found at Sat Oct 21 17:34:25 UTC 2017
selfserv_9183 with PID 20123 started at Sat Oct 21 17:34:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12448: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 20123 at Sat Oct 21 17:34:28 UTC 2017
kill -USR1 20123
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20123 killed at Sat Oct 21 17:34:28 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:34:28 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:34:28 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20191 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20191 found at Sat Oct 21 17:34:29 UTC 2017
selfserv_9183 with PID 20191 started at Sat Oct 21 17:34:29 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12449: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 20191 at Sat Oct 21 17:34:31 UTC 2017
kill -USR1 20191
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20191 killed at Sat Oct 21 17:34:31 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:34:32 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:34:32 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20247 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20247 found at Sat Oct 21 17:34:32 UTC 2017
selfserv_9183 with PID 20247 started at Sat Oct 21 17:34:32 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12450: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 20247 at Sat Oct 21 17:34:34 UTC 2017
kill -USR1 20247
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20247 killed at Sat Oct 21 17:34:35 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:34:35 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:34:35 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20303 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20303 found at Sat Oct 21 17:34:35 UTC 2017
selfserv_9183 with PID 20303 started at Sat Oct 21 17:34:35 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12451: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 20303 at Sat Oct 21 17:34:38 UTC 2017
kill -USR1 20303
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20303 killed at Sat Oct 21 17:34:38 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:34:38 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:34:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20376 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20376 found at Sat Oct 21 17:34:39 UTC 2017
selfserv_9183 with PID 20376 started at Sat Oct 21 17:34:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12452: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 20376 at Sat Oct 21 17:34:41 UTC 2017
kill -USR1 20376
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20376 killed at Sat Oct 21 17:34:42 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:34:42 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:34:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20432 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20432 found at Sat Oct 21 17:34:42 UTC 2017
selfserv_9183 with PID 20432 started at Sat Oct 21 17:34:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12453: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 20432 at Sat Oct 21 17:34:45 UTC 2017
kill -USR1 20432
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20432 killed at Sat Oct 21 17:34:45 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:34:45 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:34:45 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20489 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20489 found at Sat Oct 21 17:34:46 UTC 2017
selfserv_9183 with PID 20489 started at Sat Oct 21 17:34:46 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12454: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 20489 at Sat Oct 21 17:34:48 UTC 2017
kill -USR1 20489
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20489 killed at Sat Oct 21 17:34:48 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:34:49 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:34:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20558 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20558 found at Sat Oct 21 17:34:49 UTC 2017
selfserv_9183 with PID 20558 started at Sat Oct 21 17:34:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12455: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 20558 at Sat Oct 21 17:34:51 UTC 2017
kill -USR1 20558
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20558 killed at Sat Oct 21 17:34:52 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:34:52 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:34:52 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20614 found at Sat Oct 21 17:34:52 UTC 2017
selfserv_9183 with PID 20614 started at Sat Oct 21 17:34:52 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12456: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 20614 at Sat Oct 21 17:34:55 UTC 2017
kill -USR1 20614
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20614 killed at Sat Oct 21 17:34:55 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:34:55 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:34:55 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20670 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20670 found at Sat Oct 21 17:34:56 UTC 2017
selfserv_9183 with PID 20670 started at Sat Oct 21 17:34:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12457: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 20670 at Sat Oct 21 17:34:58 UTC 2017
kill -USR1 20670
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20670 killed at Sat Oct 21 17:34:58 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:34:58 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:34:58 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20738 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20738 found at Sat Oct 21 17:34:59 UTC 2017
selfserv_9183 with PID 20738 started at Sat Oct 21 17:34:59 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12458: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 20738 at Sat Oct 21 17:35:01 UTC 2017
kill -USR1 20738
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20738 killed at Sat Oct 21 17:35:02 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:35:02 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:35:02 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20806 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20806 found at Sat Oct 21 17:35:02 UTC 2017
selfserv_9183 with PID 20806 started at Sat Oct 21 17:35:02 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12459: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 20806 at Sat Oct 21 17:35:05 UTC 2017
kill -USR1 20806
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20806 killed at Sat Oct 21 17:35:05 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:35:05 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:35:05 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20863 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20863 found at Sat Oct 21 17:35:06 UTC 2017
selfserv_9183 with PID 20863 started at Sat Oct 21 17:35:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12460: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 20863 at Sat Oct 21 17:35:08 UTC 2017
kill -USR1 20863
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20863 killed at Sat Oct 21 17:35:08 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:35:08 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:35:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20931 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20931 found at Sat Oct 21 17:35:09 UTC 2017
selfserv_9183 with PID 20931 started at Sat Oct 21 17:35:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12461: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 20931 at Sat Oct 21 17:35:11 UTC 2017
kill -USR1 20931
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20931 killed at Sat Oct 21 17:35:12 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:35:12 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:35:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 20987 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 20987 found at Sat Oct 21 17:35:12 UTC 2017
selfserv_9183 with PID 20987 started at Sat Oct 21 17:35:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12462: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 20987 at Sat Oct 21 17:35:15 UTC 2017
kill -USR1 20987
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 20987 killed at Sat Oct 21 17:35:15 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:35:15 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:35:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21043 found at Sat Oct 21 17:35:16 UTC 2017
selfserv_9183 with PID 21043 started at Sat Oct 21 17:35:16 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12463: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 21043 at Sat Oct 21 17:35:18 UTC 2017
kill -USR1 21043
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21043 killed at Sat Oct 21 17:35:19 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:35:19 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:35:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21111 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21111 found at Sat Oct 21 17:35:19 UTC 2017
selfserv_9183 with PID 21111 started at Sat Oct 21 17:35:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12464: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 21111 at Sat Oct 21 17:35:21 UTC 2017
kill -USR1 21111
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21111 killed at Sat Oct 21 17:35:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:35:22 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:35:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21167 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21167 found at Sat Oct 21 17:35:22 UTC 2017
selfserv_9183 with PID 21167 started at Sat Oct 21 17:35:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12465: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 21167 at Sat Oct 21 17:35:24 UTC 2017
kill -USR1 21167
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21167 killed at Sat Oct 21 17:35:25 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:35:25 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:35:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21223 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21223 found at Sat Oct 21 17:35:25 UTC 2017
selfserv_9183 with PID 21223 started at Sat Oct 21 17:35:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12466: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 21223 at Sat Oct 21 17:35:27 UTC 2017
kill -USR1 21223
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21223 killed at Sat Oct 21 17:35:28 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:35:28 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:35:28 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21292 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21292 found at Sat Oct 21 17:35:28 UTC 2017
selfserv_9183 with PID 21292 started at Sat Oct 21 17:35:28 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12467: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 21292 at Sat Oct 21 17:35:30 UTC 2017
kill -USR1 21292
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21292 killed at Sat Oct 21 17:35:31 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:35:31 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:35:31 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21348 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21348 found at Sat Oct 21 17:35:31 UTC 2017
selfserv_9183 with PID 21348 started at Sat Oct 21 17:35:31 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12468: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 21348 at Sat Oct 21 17:35:33 UTC 2017
kill -USR1 21348
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21348 killed at Sat Oct 21 17:35:34 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:35:34 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:35:34 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21404 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21404 found at Sat Oct 21 17:35:34 UTC 2017
selfserv_9183 with PID 21404 started at Sat Oct 21 17:35:34 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12469: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 21404 at Sat Oct 21 17:35:36 UTC 2017
kill -USR1 21404
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21404 killed at Sat Oct 21 17:35:37 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:35:37 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:35:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21472 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21472 found at Sat Oct 21 17:35:37 UTC 2017
selfserv_9183 with PID 21472 started at Sat Oct 21 17:35:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12470: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 21472 at Sat Oct 21 17:35:39 UTC 2017
kill -USR1 21472
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21472 killed at Sat Oct 21 17:35:40 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:35:40 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:35:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21531 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21531 found at Sat Oct 21 17:35:41 UTC 2017
selfserv_9183 with PID 21531 started at Sat Oct 21 17:35:41 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12471: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 21531 at Sat Oct 21 17:35:43 UTC 2017
kill -USR1 21531
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21531 killed at Sat Oct 21 17:35:43 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:35:43 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:35:43 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21587 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21587 found at Sat Oct 21 17:35:44 UTC 2017
selfserv_9183 with PID 21587 started at Sat Oct 21 17:35:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12472: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 21587 at Sat Oct 21 17:35:46 UTC 2017
kill -USR1 21587
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21587 killed at Sat Oct 21 17:35:46 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:35:46 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:35:46 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21655 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21655 found at Sat Oct 21 17:35:47 UTC 2017
selfserv_9183 with PID 21655 started at Sat Oct 21 17:35:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12473: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 21655 at Sat Oct 21 17:35:49 UTC 2017
kill -USR1 21655
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21655 killed at Sat Oct 21 17:35:50 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:35:50 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:35:50 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21712 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21712 found at Sat Oct 21 17:35:50 UTC 2017
selfserv_9183 with PID 21712 started at Sat Oct 21 17:35:50 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12474: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 21712 at Sat Oct 21 17:35:52 UTC 2017
kill -USR1 21712
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21712 killed at Sat Oct 21 17:35:52 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9183 starting at Sat Oct 21 17:35:53 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:35:53 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21768 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21768 found at Sat Oct 21 17:35:53 UTC 2017
selfserv_9183 with PID 21768 started at Sat Oct 21 17:35:53 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12475: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 21768 at Sat Oct 21 17:35:55 UTC 2017
kill -USR1 21768
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21768 killed at Sat Oct 21 17:35:55 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:35:56 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:35:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21836 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21836 found at Sat Oct 21 17:35:56 UTC 2017
selfserv_9183 with PID 21836 started at Sat Oct 21 17:35:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12476: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 21836 at Sat Oct 21 17:35:58 UTC 2017
kill -USR1 21836
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21836 killed at Sat Oct 21 17:35:58 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:35:59 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:35:59 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21892 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21892 found at Sat Oct 21 17:35:59 UTC 2017
selfserv_9183 with PID 21892 started at Sat Oct 21 17:35:59 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12477: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 21892 at Sat Oct 21 17:36:01 UTC 2017
kill -USR1 21892
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21892 killed at Sat Oct 21 17:36:01 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:36:02 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:36:02 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 21950 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 21950 found at Sat Oct 21 17:36:02 UTC 2017
selfserv_9183 with PID 21950 started at Sat Oct 21 17:36:02 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12478: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 21950 at Sat Oct 21 17:36:04 UTC 2017
kill -USR1 21950
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 21950 killed at Sat Oct 21 17:36:04 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:36:05 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:36:05 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22029 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22029 found at Sat Oct 21 17:36:05 UTC 2017
selfserv_9183 with PID 22029 started at Sat Oct 21 17:36:05 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12479: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 22029 at Sat Oct 21 17:36:07 UTC 2017
kill -USR1 22029
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22029 killed at Sat Oct 21 17:36:08 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:36:08 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:36:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22086 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22086 found at Sat Oct 21 17:36:08 UTC 2017
selfserv_9183 with PID 22086 started at Sat Oct 21 17:36:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12480: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 22086 at Sat Oct 21 17:36:10 UTC 2017
kill -USR1 22086
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22086 killed at Sat Oct 21 17:36:11 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:36:11 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:36:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22142 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22142 found at Sat Oct 21 17:36:11 UTC 2017
selfserv_9183 with PID 22142 started at Sat Oct 21 17:36:11 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12481: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 22142 at Sat Oct 21 17:36:13 UTC 2017
kill -USR1 22142
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22142 killed at Sat Oct 21 17:36:14 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:36:14 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:36:14 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22219 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22219 found at Sat Oct 21 17:36:15 UTC 2017
selfserv_9183 with PID 22219 started at Sat Oct 21 17:36:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12482: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 22219 at Sat Oct 21 17:36:17 UTC 2017
kill -USR1 22219
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22219 killed at Sat Oct 21 17:36:17 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:36:17 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:36:17 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22275 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22275 found at Sat Oct 21 17:36:18 UTC 2017
selfserv_9183 with PID 22275 started at Sat Oct 21 17:36:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12483: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 22275 at Sat Oct 21 17:36:20 UTC 2017
kill -USR1 22275
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22275 killed at Sat Oct 21 17:36:20 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:36:20 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:36:20 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22331 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22331 found at Sat Oct 21 17:36:21 UTC 2017
selfserv_9183 with PID 22331 started at Sat Oct 21 17:36:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12484: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 22331 at Sat Oct 21 17:36:23 UTC 2017
kill -USR1 22331
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22331 killed at Sat Oct 21 17:36:23 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:36:23 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:36:23 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22399 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22399 found at Sat Oct 21 17:36:24 UTC 2017
selfserv_9183 with PID 22399 started at Sat Oct 21 17:36:24 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12485: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 22399 at Sat Oct 21 17:36:26 UTC 2017
kill -USR1 22399
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22399 killed at Sat Oct 21 17:36:26 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:36:26 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:36:26 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22455 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22455 found at Sat Oct 21 17:36:27 UTC 2017
selfserv_9183 with PID 22455 started at Sat Oct 21 17:36:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12486: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 22455 at Sat Oct 21 17:36:29 UTC 2017
kill -USR1 22455
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22455 killed at Sat Oct 21 17:36:30 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:36:30 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:36:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22512 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22512 found at Sat Oct 21 17:36:30 UTC 2017
selfserv_9183 with PID 22512 started at Sat Oct 21 17:36:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12487: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 22512 at Sat Oct 21 17:36:32 UTC 2017
kill -USR1 22512
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22512 killed at Sat Oct 21 17:36:33 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:36:33 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:36:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22580 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22580 found at Sat Oct 21 17:36:33 UTC 2017
selfserv_9183 with PID 22580 started at Sat Oct 21 17:36:34 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12488: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 22580 at Sat Oct 21 17:36:35 UTC 2017
kill -USR1 22580
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22580 killed at Sat Oct 21 17:36:36 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:36:36 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:36:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22636 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22636 found at Sat Oct 21 17:36:36 UTC 2017
selfserv_9183 with PID 22636 started at Sat Oct 21 17:36:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12489: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 22636 at Sat Oct 21 17:36:38 UTC 2017
kill -USR1 22636
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22636 killed at Sat Oct 21 17:36:39 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:36:39 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:36:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22695 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22695 found at Sat Oct 21 17:36:39 UTC 2017
selfserv_9183 with PID 22695 started at Sat Oct 21 17:36:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12490: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 22695 at Sat Oct 21 17:36:41 UTC 2017
kill -USR1 22695
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22695 killed at Sat Oct 21 17:36:42 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:36:42 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:36:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22763 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22763 found at Sat Oct 21 17:36:42 UTC 2017
selfserv_9183 with PID 22763 started at Sat Oct 21 17:36:42 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12491: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 22763 at Sat Oct 21 17:36:44 UTC 2017
kill -USR1 22763
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22763 killed at Sat Oct 21 17:36:45 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:36:45 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:36:45 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22819 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22819 found at Sat Oct 21 17:36:45 UTC 2017
selfserv_9183 with PID 22819 started at Sat Oct 21 17:36:45 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12492: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 22819 at Sat Oct 21 17:36:48 UTC 2017
kill -USR1 22819
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22819 killed at Sat Oct 21 17:36:48 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:36:48 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:36:48 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22875 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22875 found at Sat Oct 21 17:36:49 UTC 2017
selfserv_9183 with PID 22875 started at Sat Oct 21 17:36:49 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12493: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 22875 at Sat Oct 21 17:36:51 UTC 2017
kill -USR1 22875
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22875 killed at Sat Oct 21 17:36:51 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:36:51 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:36:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 22944 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 22944 found at Sat Oct 21 17:36:52 UTC 2017
selfserv_9183 with PID 22944 started at Sat Oct 21 17:36:52 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12494: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 22944 at Sat Oct 21 17:36:54 UTC 2017
kill -USR1 22944
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 22944 killed at Sat Oct 21 17:36:54 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:36:54 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:36:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23000 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23000 found at Sat Oct 21 17:36:55 UTC 2017
selfserv_9183 with PID 23000 started at Sat Oct 21 17:36:55 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12495: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 23000 at Sat Oct 21 17:36:56 UTC 2017
kill -USR1 23000
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23000 killed at Sat Oct 21 17:36:57 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:36:57 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:36:57 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23056 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23056 found at Sat Oct 21 17:36:57 UTC 2017
selfserv_9183 with PID 23056 started at Sat Oct 21 17:36:57 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12496: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 23056 at Sat Oct 21 17:36:59 UTC 2017
kill -USR1 23056
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23056 killed at Sat Oct 21 17:37:00 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:37:00 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:37:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23124 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23124 found at Sat Oct 21 17:37:00 UTC 2017
selfserv_9183 with PID 23124 started at Sat Oct 21 17:37:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12497: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 23124 at Sat Oct 21 17:37:02 UTC 2017
kill -USR1 23124
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23124 killed at Sat Oct 21 17:37:03 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:37:03 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:37:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23192 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23192 found at Sat Oct 21 17:37:03 UTC 2017
selfserv_9183 with PID 23192 started at Sat Oct 21 17:37:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12498: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 23192 at Sat Oct 21 17:37:05 UTC 2017
kill -USR1 23192
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23192 killed at Sat Oct 21 17:37:06 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:37:06 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:37:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23248 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23248 found at Sat Oct 21 17:37:07 UTC 2017
selfserv_9183 with PID 23248 started at Sat Oct 21 17:37:07 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12499: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 23248 at Sat Oct 21 17:37:08 UTC 2017
kill -USR1 23248
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23248 killed at Sat Oct 21 17:37:09 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:37:09 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:37:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23316 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23316 found at Sat Oct 21 17:37:10 UTC 2017
selfserv_9183 with PID 23316 started at Sat Oct 21 17:37:10 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12500: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 23316 at Sat Oct 21 17:37:11 UTC 2017
kill -USR1 23316
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23316 killed at Sat Oct 21 17:37:12 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:37:12 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:37:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23375 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23375 found at Sat Oct 21 17:37:12 UTC 2017
selfserv_9183 with PID 23375 started at Sat Oct 21 17:37:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12501: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 23375 at Sat Oct 21 17:37:14 UTC 2017
kill -USR1 23375
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23375 killed at Sat Oct 21 17:37:14 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:37:15 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:37:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23431 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23431 found at Sat Oct 21 17:37:15 UTC 2017
selfserv_9183 with PID 23431 started at Sat Oct 21 17:37:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12502: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 23431 at Sat Oct 21 17:37:17 UTC 2017
kill -USR1 23431
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23431 killed at Sat Oct 21 17:37:17 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:37:17 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:37:17 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23499 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23499 found at Sat Oct 21 17:37:18 UTC 2017
selfserv_9183 with PID 23499 started at Sat Oct 21 17:37:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12503: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 23499 at Sat Oct 21 17:37:20 UTC 2017
kill -USR1 23499
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23499 killed at Sat Oct 21 17:37:20 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:37:20 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:37:20 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23555 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23555 found at Sat Oct 21 17:37:21 UTC 2017
selfserv_9183 with PID 23555 started at Sat Oct 21 17:37:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12504: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 23555 at Sat Oct 21 17:37:23 UTC 2017
kill -USR1 23555
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23555 killed at Sat Oct 21 17:37:23 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:37:24 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:37:24 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23611 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23611 found at Sat Oct 21 17:37:24 UTC 2017
selfserv_9183 with PID 23611 started at Sat Oct 21 17:37:24 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12505: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 23611 at Sat Oct 21 17:37:26 UTC 2017
kill -USR1 23611
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23611 killed at Sat Oct 21 17:37:26 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:37:27 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:37:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23679 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23679 found at Sat Oct 21 17:37:27 UTC 2017
selfserv_9183 with PID 23679 started at Sat Oct 21 17:37:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12506: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 23679 at Sat Oct 21 17:37:29 UTC 2017
kill -USR1 23679
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23679 killed at Sat Oct 21 17:37:30 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:37:30 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:37:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23735 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23735 found at Sat Oct 21 17:37:30 UTC 2017
selfserv_9183 with PID 23735 started at Sat Oct 21 17:37:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12507: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 23735 at Sat Oct 21 17:37:33 UTC 2017
kill -USR1 23735
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23735 killed at Sat Oct 21 17:37:33 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:37:33 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:37:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23792 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23792 found at Sat Oct 21 17:37:34 UTC 2017
selfserv_9183 with PID 23792 started at Sat Oct 21 17:37:34 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12508: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 23792 at Sat Oct 21 17:37:36 UTC 2017
kill -USR1 23792
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23792 killed at Sat Oct 21 17:37:36 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:37:37 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:37:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23860 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23860 found at Sat Oct 21 17:37:37 UTC 2017
selfserv_9183 with PID 23860 started at Sat Oct 21 17:37:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12509: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 23860 at Sat Oct 21 17:37:39 UTC 2017
kill -USR1 23860
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23860 killed at Sat Oct 21 17:37:40 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:37:40 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:37:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23919 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23919 found at Sat Oct 21 17:37:41 UTC 2017
selfserv_9183 with PID 23919 started at Sat Oct 21 17:37:41 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12510: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 23919 at Sat Oct 21 17:37:43 UTC 2017
kill -USR1 23919
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23919 killed at Sat Oct 21 17:37:44 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:37:44 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:37:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 23975 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 23975 found at Sat Oct 21 17:37:44 UTC 2017
selfserv_9183 with PID 23975 started at Sat Oct 21 17:37:44 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12511: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 23975 at Sat Oct 21 17:37:47 UTC 2017
kill -USR1 23975
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 23975 killed at Sat Oct 21 17:37:47 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:37:47 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:37:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24043 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24043 found at Sat Oct 21 17:37:48 UTC 2017
selfserv_9183 with PID 24043 started at Sat Oct 21 17:37:48 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12512: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 24043 at Sat Oct 21 17:37:50 UTC 2017
kill -USR1 24043
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 24043 killed at Sat Oct 21 17:37:50 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:37:51 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:37:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24099 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24099 found at Sat Oct 21 17:37:51 UTC 2017
selfserv_9183 with PID 24099 started at Sat Oct 21 17:37:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12513: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 24099 at Sat Oct 21 17:37:53 UTC 2017
kill -USR1 24099
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 24099 killed at Sat Oct 21 17:37:54 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:37:54 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:37:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24156 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24156 found at Sat Oct 21 17:37:54 UTC 2017
selfserv_9183 with PID 24156 started at Sat Oct 21 17:37:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12514: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 24156 at Sat Oct 21 17:37:56 UTC 2017
kill -USR1 24156
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 24156 killed at Sat Oct 21 17:37:57 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:37:57 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:37:57 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24224 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24224 found at Sat Oct 21 17:37:58 UTC 2017
selfserv_9183 with PID 24224 started at Sat Oct 21 17:37:58 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12515: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 24224 at Sat Oct 21 17:38:00 UTC 2017
kill -USR1 24224
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 24224 killed at Sat Oct 21 17:38:00 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:38:01 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:38:01 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24280 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24280 found at Sat Oct 21 17:38:01 UTC 2017
selfserv_9183 with PID 24280 started at Sat Oct 21 17:38:01 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12516: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 24280 at Sat Oct 21 17:38:04 UTC 2017
kill -USR1 24280
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 24280 killed at Sat Oct 21 17:38:04 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:38:04 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:38:04 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24349 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24349 found at Sat Oct 21 17:38:05 UTC 2017
selfserv_9183 with PID 24349 started at Sat Oct 21 17:38:05 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12517: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 24349 at Sat Oct 21 17:38:07 UTC 2017
kill -USR1 24349
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 24349 killed at Sat Oct 21 17:38:08 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:38:08 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:38:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24417 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24417 found at Sat Oct 21 17:38:08 UTC 2017
selfserv_9183 with PID 24417 started at Sat Oct 21 17:38:08 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12518: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 24417 at Sat Oct 21 17:38:11 UTC 2017
kill -USR1 24417
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 24417 killed at Sat Oct 21 17:38:11 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:38:12 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:38:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24473 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24473 found at Sat Oct 21 17:38:13 UTC 2017
selfserv_9183 with PID 24473 started at Sat Oct 21 17:38:13 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12519: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 24473 at Sat Oct 21 17:38:15 UTC 2017
kill -USR1 24473
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 24473 killed at Sat Oct 21 17:38:15 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:38:16 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:38:16 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24530 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24530 found at Sat Oct 21 17:38:16 UTC 2017
selfserv_9183 with PID 24530 started at Sat Oct 21 17:38:16 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12520: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 24530 at Sat Oct 21 17:38:18 UTC 2017
kill -USR1 24530
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 24530 killed at Sat Oct 21 17:38:19 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:38:19 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:38:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24598 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24598 found at Sat Oct 21 17:38:19 UTC 2017
selfserv_9183 with PID 24598 started at Sat Oct 21 17:38:20 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12521: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 24598 at Sat Oct 21 17:38:22 UTC 2017
kill -USR1 24598
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 24598 killed at Sat Oct 21 17:38:22 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:38:22 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:38:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24654 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24654 found at Sat Oct 21 17:38:23 UTC 2017
selfserv_9183 with PID 24654 started at Sat Oct 21 17:38:23 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12522: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 24654 at Sat Oct 21 17:38:25 UTC 2017
kill -USR1 24654
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 24654 killed at Sat Oct 21 17:38:26 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:38:26 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:38:26 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24710 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24710 found at Sat Oct 21 17:38:27 UTC 2017
selfserv_9183 with PID 24710 started at Sat Oct 21 17:38:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12523: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 24710 at Sat Oct 21 17:38:29 UTC 2017
kill -USR1 24710
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 24710 killed at Sat Oct 21 17:38:29 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:38:30 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:38:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24778 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24778 found at Sat Oct 21 17:38:30 UTC 2017
selfserv_9183 with PID 24778 started at Sat Oct 21 17:38:30 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12524: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 24778 at Sat Oct 21 17:38:32 UTC 2017
kill -USR1 24778
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 24778 killed at Sat Oct 21 17:38:33 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:38:33 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:38:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24834 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24834 found at Sat Oct 21 17:38:33 UTC 2017
selfserv_9183 with PID 24834 started at Sat Oct 21 17:38:33 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12525: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 24834 at Sat Oct 21 17:38:36 UTC 2017
kill -USR1 24834
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 24834 killed at Sat Oct 21 17:38:36 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:38:36 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:38:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24891 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24891 found at Sat Oct 21 17:38:37 UTC 2017
selfserv_9183 with PID 24891 started at Sat Oct 21 17:38:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12526: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 24891 at Sat Oct 21 17:38:39 UTC 2017
kill -USR1 24891
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 24891 killed at Sat Oct 21 17:38:39 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:38:39 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:38:39 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 24962 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 24962 found at Sat Oct 21 17:38:40 UTC 2017
selfserv_9183 with PID 24962 started at Sat Oct 21 17:38:40 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12527: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 24962 at Sat Oct 21 17:38:42 UTC 2017
kill -USR1 24962
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 24962 killed at Sat Oct 21 17:38:43 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:38:43 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:38:43 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25018 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25018 found at Sat Oct 21 17:38:43 UTC 2017
selfserv_9183 with PID 25018 started at Sat Oct 21 17:38:43 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12528: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 25018 at Sat Oct 21 17:38:46 UTC 2017
kill -USR1 25018
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 25018 killed at Sat Oct 21 17:38:46 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:38:47 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:38:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25074 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25074 found at Sat Oct 21 17:38:47 UTC 2017
selfserv_9183 with PID 25074 started at Sat Oct 21 17:38:47 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12529: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 25074 at Sat Oct 21 17:38:49 UTC 2017
kill -USR1 25074
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 25074 killed at Sat Oct 21 17:38:50 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:38:50 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:38:50 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25142 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25142 found at Sat Oct 21 17:38:51 UTC 2017
selfserv_9183 with PID 25142 started at Sat Oct 21 17:38:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12530: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 25142 at Sat Oct 21 17:38:52 UTC 2017
kill -USR1 25142
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 25142 killed at Sat Oct 21 17:38:53 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:38:53 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:38:53 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25198 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25198 found at Sat Oct 21 17:38:54 UTC 2017
selfserv_9183 with PID 25198 started at Sat Oct 21 17:38:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12531: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 25198 at Sat Oct 21 17:38:55 UTC 2017
kill -USR1 25198
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 25198 killed at Sat Oct 21 17:38:56 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:38:56 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:38:56 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25255 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25255 found at Sat Oct 21 17:38:57 UTC 2017
selfserv_9183 with PID 25255 started at Sat Oct 21 17:38:57 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12532: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 25255 at Sat Oct 21 17:38:58 UTC 2017
kill -USR1 25255
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 25255 killed at Sat Oct 21 17:38:59 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:38:59 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:38:59 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25323 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25323 found at Sat Oct 21 17:39:00 UTC 2017
selfserv_9183 with PID 25323 started at Sat Oct 21 17:39:00 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12533: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 25323 at Sat Oct 21 17:39:02 UTC 2017
kill -USR1 25323
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 25323 killed at Sat Oct 21 17:39:02 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:39:02 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:39:02 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25393 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25393 found at Sat Oct 21 17:39:03 UTC 2017
selfserv_9183 with PID 25393 started at Sat Oct 21 17:39:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12534: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 25393 at Sat Oct 21 17:39:05 UTC 2017
kill -USR1 25393
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 25393 killed at Sat Oct 21 17:39:06 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:39:06 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:39:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25449 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25449 found at Sat Oct 21 17:39:06 UTC 2017
selfserv_9183 with PID 25449 started at Sat Oct 21 17:39:06 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12535: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 25449 at Sat Oct 21 17:39:08 UTC 2017
kill -USR1 25449
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 25449 killed at Sat Oct 21 17:39:09 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:39:09 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:39:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25517 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25517 found at Sat Oct 21 17:39:10 UTC 2017
selfserv_9183 with PID 25517 started at Sat Oct 21 17:39:10 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12536: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 25517 at Sat Oct 21 17:39:11 UTC 2017
kill -USR1 25517
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 25517 killed at Sat Oct 21 17:39:12 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:39:12 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:39:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25573 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25573 found at Sat Oct 21 17:39:13 UTC 2017
selfserv_9183 with PID 25573 started at Sat Oct 21 17:39:13 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12537: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 25573 at Sat Oct 21 17:39:15 UTC 2017
kill -USR1 25573
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 25573 killed at Sat Oct 21 17:39:15 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9183 starting at Sat Oct 21 17:39:15 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:39:15 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25629 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25629 found at Sat Oct 21 17:39:16 UTC 2017
selfserv_9183 with PID 25629 started at Sat Oct 21 17:39:16 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #12538: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 25629 at Sat Oct 21 17:39:17 UTC 2017
kill -USR1 25629
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 25629 killed at Sat Oct 21 17:39:18 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:39:18 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:39:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25698 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25698 found at Sat Oct 21 17:39:19 UTC 2017
selfserv_9183 with PID 25698 started at Sat Oct 21 17:39:19 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12539: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 25698 at Sat Oct 21 17:39:21 UTC 2017
kill -USR1 25698
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 25698 killed at Sat Oct 21 17:39:21 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:39:21 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:39:21 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25754 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25754 found at Sat Oct 21 17:39:22 UTC 2017
selfserv_9183 with PID 25754 started at Sat Oct 21 17:39:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #12540: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9183 with PID 25754 at Sat Oct 21 17:39:24 UTC 2017
kill -USR1 25754
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 25754 killed at Sat Oct 21 17:39:25 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:39:25 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:39:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25810 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25810 found at Sat Oct 21 17:39:25 UTC 2017
selfserv_9183 with PID 25810 started at Sat Oct 21 17:39:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #12541: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 25810 at Sat Oct 21 17:39:27 UTC 2017
kill -USR1 25810
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 25810 killed at Sat Oct 21 17:39:28 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/authin.tl.tmp
0
selfserv_9183 starting at Sat Oct 21 17:39:28 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:39:28 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:39:28 UTC 2017
selfserv_9183 with PID 25873 started at Sat Oct 21 17:39:28 UTC 2017
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:39:30 UTC 2017
ssl.sh: #12542: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:39:32 UTC 2017
ssl.sh: #12543: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:39:33 UTC 2017
ssl.sh: #12544: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:39:34 UTC 2017
ssl.sh: #12545: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:39:36 UTC 2017
ssl.sh: #12546: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:39:37 UTC 2017
ssl.sh: #12547: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:39:38 UTC 2017
ssl.sh: #12548: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:39:40 UTC 2017
ssl.sh: #12549: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:39:41 UTC 2017
ssl.sh: #12550: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:39:42 UTC 2017
ssl.sh: #12551: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:39:44 UTC 2017
ssl.sh: #12552: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:39:45 UTC 2017
ssl.sh: #12553: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:39:47 UTC 2017
ssl.sh: #12554: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:39:48 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12555: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:39:49 UTC 2017
ssl.sh: #12556: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:39:50 UTC 2017
ssl.sh: #12557: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:39:52 UTC 2017
ssl.sh: #12558: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:39:53 UTC 2017
ssl.sh: #12559: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:39:54 UTC 2017
ssl.sh: #12560: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:39:55 UTC 2017
ssl.sh: #12561: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:39:57 UTC 2017
ssl.sh: #12562: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:39:58 UTC 2017
ssl.sh: #12563: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:39:59 UTC 2017
ssl.sh: #12564: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:40:01 UTC 2017
ssl.sh: #12565: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:40:02 UTC 2017
ssl.sh: #12566: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:40:04 UTC 2017
ssl.sh: #12567: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:40:05 UTC 2017
ssl.sh: #12568: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:40:06 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12569: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:40:08 UTC 2017
ssl.sh: #12570: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:40:10 UTC 2017
ssl.sh: #12571: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:40:11 UTC 2017
ssl.sh: #12572: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:40:12 UTC 2017
ssl.sh: #12573: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:40:14 UTC 2017
ssl.sh: #12574: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:40:15 UTC 2017
ssl.sh: #12575: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:40:16 UTC 2017
ssl.sh: #12576: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:40:17 UTC 2017
ssl.sh: #12577: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:40:19 UTC 2017
ssl.sh: #12578: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:40:20 UTC 2017
ssl.sh: #12579: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:40:21 UTC 2017
ssl.sh: #12580: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:40:23 UTC 2017
ssl.sh: #12581: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25873 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 25873 found at Sat Oct 21 17:40:24 UTC 2017
ssl.sh: #12582: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 25873 at Sat Oct 21 17:40:24 UTC 2017
kill -USR1 25873
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 25873 killed at Sat Oct 21 17:40:25 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:40:25 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:40:25 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:40:25 UTC 2017
selfserv_9183 with PID 27320 started at Sat Oct 21 17:40:25 UTC 2017
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:40:27 UTC 2017
ssl.sh: #12583: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:40:28 UTC 2017
ssl.sh: #12584: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:40:29 UTC 2017
ssl.sh: #12585: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:40:30 UTC 2017
ssl.sh: #12586: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:40:32 UTC 2017
ssl.sh: #12587: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:40:33 UTC 2017
ssl.sh: #12588: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:40:34 UTC 2017
ssl.sh: #12589: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:40:35 UTC 2017
ssl.sh: #12590: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:40:36 UTC 2017
ssl.sh: #12591: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:40:38 UTC 2017
ssl.sh: #12592: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:40:39 UTC 2017
ssl.sh: #12593: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:40:40 UTC 2017
ssl.sh: #12594: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:40:41 UTC 2017
ssl.sh: #12595: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:40:43 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12596: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:40:44 UTC 2017
ssl.sh: #12597: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:40:45 UTC 2017
ssl.sh: #12598: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:40:46 UTC 2017
ssl.sh: #12599: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:40:47 UTC 2017
ssl.sh: #12600: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:40:48 UTC 2017
ssl.sh: #12601: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:40:50 UTC 2017
ssl.sh: #12602: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:40:51 UTC 2017
ssl.sh: #12603: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:40:52 UTC 2017
ssl.sh: #12604: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:40:53 UTC 2017
ssl.sh: #12605: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:40:54 UTC 2017
ssl.sh: #12606: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:40:55 UTC 2017
ssl.sh: #12607: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:40:57 UTC 2017
ssl.sh: #12608: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:40:58 UTC 2017
ssl.sh: #12609: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:40:59 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12610: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:41:00 UTC 2017
ssl.sh: #12611: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:41:02 UTC 2017
ssl.sh: #12612: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:41:03 UTC 2017
ssl.sh: #12613: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:41:04 UTC 2017
ssl.sh: #12614: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:41:05 UTC 2017
ssl.sh: #12615: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:41:06 UTC 2017
ssl.sh: #12616: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:41:07 UTC 2017
ssl.sh: #12617: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:41:08 UTC 2017
ssl.sh: #12618: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:41:10 UTC 2017
ssl.sh: #12619: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:41:11 UTC 2017
ssl.sh: #12620: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:41:12 UTC 2017
ssl.sh: #12621: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:41:13 UTC 2017
ssl.sh: #12622: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27320 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 27320 found at Sat Oct 21 17:41:15 UTC 2017
ssl.sh: #12623: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 27320 at Sat Oct 21 17:41:15 UTC 2017
kill -USR1 27320
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 27320 killed at Sat Oct 21 17:41:16 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:41:16 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:41:16 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:17 UTC 2017
selfserv_9183 with PID 28762 started at Sat Oct 21 17:41:17 UTC 2017
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:19 UTC 2017
ssl.sh: #12624: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:20 UTC 2017
ssl.sh: #12625: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:22 UTC 2017
ssl.sh: #12626: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:23 UTC 2017
ssl.sh: #12627: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:24 UTC 2017
ssl.sh: #12628: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:26 UTC 2017
ssl.sh: #12629: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:27 UTC 2017
ssl.sh: #12630: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:29 UTC 2017
ssl.sh: #12631: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:30 UTC 2017
ssl.sh: #12632: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:31 UTC 2017
ssl.sh: #12633: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:33 UTC 2017
ssl.sh: #12634: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:34 UTC 2017
ssl.sh: #12635: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:36 UTC 2017
ssl.sh: #12636: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:37 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12637: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:38 UTC 2017
ssl.sh: #12638: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:40 UTC 2017
ssl.sh: #12639: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:41 UTC 2017
ssl.sh: #12640: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:42 UTC 2017
ssl.sh: #12641: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:44 UTC 2017
ssl.sh: #12642: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:45 UTC 2017
ssl.sh: #12643: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:46 UTC 2017
ssl.sh: #12644: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:48 UTC 2017
ssl.sh: #12645: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:49 UTC 2017
ssl.sh: #12646: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:50 UTC 2017
ssl.sh: #12647: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:52 UTC 2017
ssl.sh: #12648: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:53 UTC 2017
ssl.sh: #12649: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:55 UTC 2017
ssl.sh: #12650: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:56 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12651: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:57 UTC 2017
ssl.sh: #12652: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:41:59 UTC 2017
ssl.sh: #12653: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:42:00 UTC 2017
ssl.sh: #12654: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:42:01 UTC 2017
ssl.sh: #12655: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:42:03 UTC 2017
ssl.sh: #12656: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:42:04 UTC 2017
ssl.sh: #12657: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:42:05 UTC 2017
ssl.sh: #12658: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:42:07 UTC 2017
ssl.sh: #12659: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:42:08 UTC 2017
ssl.sh: #12660: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:42:09 UTC 2017
ssl.sh: #12661: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:42:11 UTC 2017
ssl.sh: #12662: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:42:12 UTC 2017
ssl.sh: #12663: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28762 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 28762 found at Sat Oct 21 17:42:13 UTC 2017
ssl.sh: #12664: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 28762 at Sat Oct 21 17:42:14 UTC 2017
kill -USR1 28762
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 28762 killed at Sat Oct 21 17:42:14 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:42:14 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:42:14 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:15 UTC 2017
selfserv_9183 with PID 30202 started at Sat Oct 21 17:42:15 UTC 2017
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:17 UTC 2017
ssl.sh: #12665: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:18 UTC 2017
ssl.sh: #12666: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:19 UTC 2017
ssl.sh: #12667: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:20 UTC 2017
ssl.sh: #12668: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:22 UTC 2017
ssl.sh: #12669: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:23 UTC 2017
ssl.sh: #12670: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:24 UTC 2017
ssl.sh: #12671: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:25 UTC 2017
ssl.sh: #12672: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:27 UTC 2017
ssl.sh: #12673: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:28 UTC 2017
ssl.sh: #12674: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:29 UTC 2017
ssl.sh: #12675: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:31 UTC 2017
ssl.sh: #12676: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:32 UTC 2017
ssl.sh: #12677: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:34 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12678: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:35 UTC 2017
ssl.sh: #12679: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:36 UTC 2017
ssl.sh: #12680: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:37 UTC 2017
ssl.sh: #12681: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:38 UTC 2017
ssl.sh: #12682: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:40 UTC 2017
ssl.sh: #12683: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:41 UTC 2017
ssl.sh: #12684: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:43 UTC 2017
ssl.sh: #12685: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:44 UTC 2017
ssl.sh: #12686: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:45 UTC 2017
ssl.sh: #12687: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:47 UTC 2017
ssl.sh: #12688: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:48 UTC 2017
ssl.sh: #12689: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:49 UTC 2017
ssl.sh: #12690: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:51 UTC 2017
ssl.sh: #12691: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:52 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12692: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:53 UTC 2017
ssl.sh: #12693: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:55 UTC 2017
ssl.sh: #12694: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:56 UTC 2017
ssl.sh: #12695: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:57 UTC 2017
ssl.sh: #12696: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:58 UTC 2017
ssl.sh: #12697: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:42:59 UTC 2017
ssl.sh: #12698: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:43:01 UTC 2017
ssl.sh: #12699: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:43:02 UTC 2017
ssl.sh: #12700: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:43:03 UTC 2017
ssl.sh: #12701: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:43:04 UTC 2017
ssl.sh: #12702: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:43:06 UTC 2017
ssl.sh: #12703: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:43:07 UTC 2017
ssl.sh: #12704: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30202 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 30202 found at Sat Oct 21 17:43:08 UTC 2017
ssl.sh: #12705: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9183 with PID 30202 at Sat Oct 21 17:43:08 UTC 2017
kill -USR1 30202
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 30202 killed at Sat Oct 21 17:43:09 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:43:09 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:43:09 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31642 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31642 found at Sat Oct 21 17:43:09 UTC 2017
selfserv_9183 with PID 31642 started at Sat Oct 21 17:43:09 UTC 2017
trying to kill selfserv_9183 with PID 31642 at Sat Oct 21 17:43:10 UTC 2017
kill -USR1 31642
./ssl.sh: line 197: 31642 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9183 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31642 killed at Sat Oct 21 17:43:10 UTC 2017
selfserv_9183 starting at Sat Oct 21 17:43:10 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:43:10 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:11 UTC 2017
selfserv_9183 with PID 31676 started at Sat Oct 21 17:43:11 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:13 UTC 2017
ssl.sh: #12706: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:15 UTC 2017
ssl.sh: #12707: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:16 UTC 2017
ssl.sh: #12708: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:18 UTC 2017
ssl.sh: #12709: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:19 UTC 2017
ssl.sh: #12710: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:21 UTC 2017
ssl.sh: #12711: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:23 UTC 2017
ssl.sh: #12712: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:24 UTC 2017
ssl.sh: #12713: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:26 UTC 2017
ssl.sh: #12714: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:28 UTC 2017
ssl.sh: #12715: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:29 UTC 2017
ssl.sh: #12716: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:31 UTC 2017
ssl.sh: #12717: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:33 UTC 2017
ssl.sh: #12718: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:34 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12719: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:36 UTC 2017
ssl.sh: #12720: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:37 UTC 2017
ssl.sh: #12721: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:39 UTC 2017
ssl.sh: #12722: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:40 UTC 2017
ssl.sh: #12723: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:42 UTC 2017
ssl.sh: #12724: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:44 UTC 2017
ssl.sh: #12725: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:45 UTC 2017
ssl.sh: #12726: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:47 UTC 2017
ssl.sh: #12727: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:48 UTC 2017
ssl.sh: #12728: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:50 UTC 2017
ssl.sh: #12729: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:52 UTC 2017
ssl.sh: #12730: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:53 UTC 2017
ssl.sh: #12731: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:55 UTC 2017
ssl.sh: #12732: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:57 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12733: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:43:58 UTC 2017
ssl.sh: #12734: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:44:00 UTC 2017
ssl.sh: #12735: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:44:01 UTC 2017
ssl.sh: #12736: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:44:03 UTC 2017
ssl.sh: #12737: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:44:05 UTC 2017
ssl.sh: #12738: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:44:06 UTC 2017
ssl.sh: #12739: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:44:08 UTC 2017
ssl.sh: #12740: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:44:09 UTC 2017
ssl.sh: #12741: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:44:11 UTC 2017
ssl.sh: #12742: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:44:13 UTC 2017
ssl.sh: #12743: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:44:14 UTC 2017
ssl.sh: #12744: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:44:16 UTC 2017
ssl.sh: #12745: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31676 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 31676 found at Sat Oct 21 17:44:18 UTC 2017
ssl.sh: #12746: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 31676 at Sat Oct 21 17:44:18 UTC 2017
kill -USR1 31676
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 31676 killed at Sat Oct 21 17:44:18 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:44:18 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:44:18 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:44:19 UTC 2017
selfserv_9183 with PID 652 started at Sat Oct 21 17:44:19 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:44:21 UTC 2017
ssl.sh: #12747: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:44:23 UTC 2017
ssl.sh: #12748: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:44:25 UTC 2017
ssl.sh: #12749: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:44:26 UTC 2017
ssl.sh: #12750: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:44:28 UTC 2017
ssl.sh: #12751: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:44:30 UTC 2017
ssl.sh: #12752: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:44:31 UTC 2017
ssl.sh: #12753: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:44:33 UTC 2017
ssl.sh: #12754: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:44:35 UTC 2017
ssl.sh: #12755: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:44:36 UTC 2017
ssl.sh: #12756: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:44:38 UTC 2017
ssl.sh: #12757: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:44:40 UTC 2017
ssl.sh: #12758: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:44:41 UTC 2017
ssl.sh: #12759: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:44:43 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12760: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:44:44 UTC 2017
ssl.sh: #12761: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:44:46 UTC 2017
ssl.sh: #12762: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:44:48 UTC 2017
ssl.sh: #12763: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:44:49 UTC 2017
ssl.sh: #12764: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:44:51 UTC 2017
ssl.sh: #12765: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:44:52 UTC 2017
ssl.sh: #12766: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:44:54 UTC 2017
ssl.sh: #12767: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:44:56 UTC 2017
ssl.sh: #12768: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:44:57 UTC 2017
ssl.sh: #12769: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:44:59 UTC 2017
ssl.sh: #12770: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:45:01 UTC 2017
ssl.sh: #12771: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:45:02 UTC 2017
ssl.sh: #12772: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:45:04 UTC 2017
ssl.sh: #12773: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:45:05 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12774: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:45:07 UTC 2017
ssl.sh: #12775: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:45:09 UTC 2017
ssl.sh: #12776: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:45:10 UTC 2017
ssl.sh: #12777: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:45:12 UTC 2017
ssl.sh: #12778: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:45:13 UTC 2017
ssl.sh: #12779: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:45:15 UTC 2017
ssl.sh: #12780: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:45:17 UTC 2017
ssl.sh: #12781: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:45:18 UTC 2017
ssl.sh: #12782: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:45:20 UTC 2017
ssl.sh: #12783: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:45:21 UTC 2017
ssl.sh: #12784: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:45:23 UTC 2017
ssl.sh: #12785: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:45:25 UTC 2017
ssl.sh: #12786: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 652 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 652 found at Sat Oct 21 17:45:26 UTC 2017
ssl.sh: #12787: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 652 at Sat Oct 21 17:45:26 UTC 2017
kill -USR1 652
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 652 killed at Sat Oct 21 17:45:27 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:45:27 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:45:27 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:45:28 UTC 2017
selfserv_9183 with PID 2118 started at Sat Oct 21 17:45:28 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:45:30 UTC 2017
ssl.sh: #12788: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:45:31 UTC 2017
ssl.sh: #12789: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:45:32 UTC 2017
ssl.sh: #12790: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:45:34 UTC 2017
ssl.sh: #12791: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:45:35 UTC 2017
ssl.sh: #12792: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:45:36 UTC 2017
ssl.sh: #12793: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:45:38 UTC 2017
ssl.sh: #12794: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:45:39 UTC 2017
ssl.sh: #12795: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:45:41 UTC 2017
ssl.sh: #12796: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:45:42 UTC 2017
ssl.sh: #12797: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:45:43 UTC 2017
ssl.sh: #12798: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:45:45 UTC 2017
ssl.sh: #12799: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:45:46 UTC 2017
ssl.sh: #12800: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:45:48 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12801: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:45:49 UTC 2017
ssl.sh: #12802: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:45:51 UTC 2017
ssl.sh: #12803: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:45:52 UTC 2017
ssl.sh: #12804: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:45:53 UTC 2017
ssl.sh: #12805: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:45:55 UTC 2017
ssl.sh: #12806: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:45:56 UTC 2017
ssl.sh: #12807: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:45:58 UTC 2017
ssl.sh: #12808: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:45:59 UTC 2017
ssl.sh: #12809: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:46:00 UTC 2017
ssl.sh: #12810: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:46:02 UTC 2017
ssl.sh: #12811: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:46:03 UTC 2017
ssl.sh: #12812: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:46:05 UTC 2017
ssl.sh: #12813: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:46:06 UTC 2017
ssl.sh: #12814: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:46:08 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12815: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:46:09 UTC 2017
ssl.sh: #12816: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:46:12 UTC 2017
ssl.sh: #12817: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:46:14 UTC 2017
ssl.sh: #12818: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:46:15 UTC 2017
ssl.sh: #12819: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:46:16 UTC 2017
ssl.sh: #12820: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:46:18 UTC 2017
ssl.sh: #12821: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:46:19 UTC 2017
ssl.sh: #12822: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:46:20 UTC 2017
ssl.sh: #12823: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:46:22 UTC 2017
ssl.sh: #12824: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:46:23 UTC 2017
ssl.sh: #12825: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:46:25 UTC 2017
ssl.sh: #12826: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:46:26 UTC 2017
ssl.sh: #12827: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2118 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 2118 found at Sat Oct 21 17:46:27 UTC 2017
ssl.sh: #12828: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 2118 at Sat Oct 21 17:46:28 UTC 2017
kill -USR1 2118
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 2118 killed at Sat Oct 21 17:46:28 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:46:28 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:46:28 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:46:29 UTC 2017
selfserv_9183 with PID 3614 started at Sat Oct 21 17:46:29 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:46:31 UTC 2017
ssl.sh: #12829: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:46:33 UTC 2017
ssl.sh: #12830: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:46:34 UTC 2017
ssl.sh: #12831: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:46:36 UTC 2017
ssl.sh: #12832: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:46:38 UTC 2017
ssl.sh: #12833: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:46:39 UTC 2017
ssl.sh: #12834: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:46:41 UTC 2017
ssl.sh: #12835: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:46:43 UTC 2017
ssl.sh: #12836: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:46:44 UTC 2017
ssl.sh: #12837: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:46:46 UTC 2017
ssl.sh: #12838: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:46:48 UTC 2017
ssl.sh: #12839: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:46:50 UTC 2017
ssl.sh: #12840: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:46:51 UTC 2017
ssl.sh: #12841: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:46:53 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12842: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:46:55 UTC 2017
ssl.sh: #12843: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:46:56 UTC 2017
ssl.sh: #12844: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:46:58 UTC 2017
ssl.sh: #12845: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:46:59 UTC 2017
ssl.sh: #12846: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:47:01 UTC 2017
ssl.sh: #12847: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:47:03 UTC 2017
ssl.sh: #12848: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:47:04 UTC 2017
ssl.sh: #12849: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:47:06 UTC 2017
ssl.sh: #12850: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:47:07 UTC 2017
ssl.sh: #12851: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:47:09 UTC 2017
ssl.sh: #12852: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:47:11 UTC 2017
ssl.sh: #12853: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:47:13 UTC 2017
ssl.sh: #12854: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:47:14 UTC 2017
ssl.sh: #12855: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:47:16 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12856: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:47:18 UTC 2017
ssl.sh: #12857: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:47:19 UTC 2017
ssl.sh: #12858: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:47:21 UTC 2017
ssl.sh: #12859: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:47:22 UTC 2017
ssl.sh: #12860: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:47:24 UTC 2017
ssl.sh: #12861: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:47:26 UTC 2017
ssl.sh: #12862: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:47:27 UTC 2017
ssl.sh: #12863: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:47:29 UTC 2017
ssl.sh: #12864: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:47:30 UTC 2017
ssl.sh: #12865: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:47:32 UTC 2017
ssl.sh: #12866: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:47:34 UTC 2017
ssl.sh: #12867: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:47:35 UTC 2017
ssl.sh: #12868: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3614 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 3614 found at Sat Oct 21 17:47:37 UTC 2017
ssl.sh: #12869: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 3614 at Sat Oct 21 17:47:37 UTC 2017
kill -USR1 3614
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 3614 killed at Sat Oct 21 17:47:38 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:47:38 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:47:38 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:47:38 UTC 2017
selfserv_9183 with PID 5062 started at Sat Oct 21 17:47:38 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:47:41 UTC 2017
ssl.sh: #12870: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:47:42 UTC 2017
ssl.sh: #12871: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:47:44 UTC 2017
ssl.sh: #12872: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:47:46 UTC 2017
ssl.sh: #12873: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:47:47 UTC 2017
ssl.sh: #12874: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:47:49 UTC 2017
ssl.sh: #12875: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:47:51 UTC 2017
ssl.sh: #12876: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:47:52 UTC 2017
ssl.sh: #12877: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:47:54 UTC 2017
ssl.sh: #12878: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:47:56 UTC 2017
ssl.sh: #12879: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:47:57 UTC 2017
ssl.sh: #12880: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:47:59 UTC 2017
ssl.sh: #12881: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:48:01 UTC 2017
ssl.sh: #12882: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:48:03 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12883: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:48:06 UTC 2017
ssl.sh: #12884: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:48:09 UTC 2017
ssl.sh: #12885: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:48:11 UTC 2017
ssl.sh: #12886: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:48:12 UTC 2017
ssl.sh: #12887: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:48:14 UTC 2017
ssl.sh: #12888: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:48:15 UTC 2017
ssl.sh: #12889: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:48:17 UTC 2017
ssl.sh: #12890: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:48:19 UTC 2017
ssl.sh: #12891: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:48:20 UTC 2017
ssl.sh: #12892: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:48:22 UTC 2017
ssl.sh: #12893: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:48:24 UTC 2017
ssl.sh: #12894: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:48:25 UTC 2017
ssl.sh: #12895: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:48:27 UTC 2017
ssl.sh: #12896: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:48:29 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12897: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:48:30 UTC 2017
ssl.sh: #12898: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:48:32 UTC 2017
ssl.sh: #12899: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:48:34 UTC 2017
ssl.sh: #12900: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:48:35 UTC 2017
ssl.sh: #12901: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:48:37 UTC 2017
ssl.sh: #12902: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:48:38 UTC 2017
ssl.sh: #12903: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:48:40 UTC 2017
ssl.sh: #12904: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:48:42 UTC 2017
ssl.sh: #12905: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:48:43 UTC 2017
ssl.sh: #12906: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:48:45 UTC 2017
ssl.sh: #12907: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:48:47 UTC 2017
ssl.sh: #12908: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:48:48 UTC 2017
ssl.sh: #12909: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5062 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 5062 found at Sat Oct 21 17:48:50 UTC 2017
ssl.sh: #12910: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 5062 at Sat Oct 21 17:48:50 UTC 2017
kill -USR1 5062
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 5062 killed at Sat Oct 21 17:48:51 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:48:51 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:48:51 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:48:51 UTC 2017
selfserv_9183 with PID 6511 started at Sat Oct 21 17:48:51 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:48:53 UTC 2017
ssl.sh: #12911: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:48:55 UTC 2017
ssl.sh: #12912: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:48:56 UTC 2017
ssl.sh: #12913: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:48:58 UTC 2017
ssl.sh: #12914: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:48:59 UTC 2017
ssl.sh: #12915: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:01 UTC 2017
ssl.sh: #12916: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:02 UTC 2017
ssl.sh: #12917: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:04 UTC 2017
ssl.sh: #12918: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:05 UTC 2017
ssl.sh: #12919: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:07 UTC 2017
ssl.sh: #12920: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:08 UTC 2017
ssl.sh: #12921: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:10 UTC 2017
ssl.sh: #12922: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:11 UTC 2017
ssl.sh: #12923: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:13 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12924: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:15 UTC 2017
ssl.sh: #12925: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:16 UTC 2017
ssl.sh: #12926: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:17 UTC 2017
ssl.sh: #12927: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:19 UTC 2017
ssl.sh: #12928: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:20 UTC 2017
ssl.sh: #12929: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:22 UTC 2017
ssl.sh: #12930: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:23 UTC 2017
ssl.sh: #12931: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:25 UTC 2017
ssl.sh: #12932: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:26 UTC 2017
ssl.sh: #12933: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:28 UTC 2017
ssl.sh: #12934: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:29 UTC 2017
ssl.sh: #12935: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:31 UTC 2017
ssl.sh: #12936: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:32 UTC 2017
ssl.sh: #12937: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:34 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12938: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:36 UTC 2017
ssl.sh: #12939: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:37 UTC 2017
ssl.sh: #12940: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:38 UTC 2017
ssl.sh: #12941: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:40 UTC 2017
ssl.sh: #12942: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:41 UTC 2017
ssl.sh: #12943: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:43 UTC 2017
ssl.sh: #12944: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:44 UTC 2017
ssl.sh: #12945: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:46 UTC 2017
ssl.sh: #12946: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:47 UTC 2017
ssl.sh: #12947: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:48 UTC 2017
ssl.sh: #12948: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:50 UTC 2017
ssl.sh: #12949: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:51 UTC 2017
ssl.sh: #12950: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6511 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 6511 found at Sat Oct 21 17:49:53 UTC 2017
ssl.sh: #12951: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 6511 at Sat Oct 21 17:49:53 UTC 2017
kill -USR1 6511
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 6511 killed at Sat Oct 21 17:49:53 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:49:54 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:49:54 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7951 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7951 found at Sat Oct 21 17:49:54 UTC 2017
selfserv_9183 with PID 7951 started at Sat Oct 21 17:49:54 UTC 2017
trying to kill selfserv_9183 with PID 7951 at Sat Oct 21 17:49:54 UTC 2017
kill -USR1 7951
./ssl.sh: line 197:  7951 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9183 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 7951 killed at Sat Oct 21 17:49:55 UTC 2017
selfserv_9183 starting at Sat Oct 21 17:49:55 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:49:55 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:49:55 UTC 2017
selfserv_9183 with PID 7985 started at Sat Oct 21 17:49:55 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:49:57 UTC 2017
ssl.sh: #12952: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:49:59 UTC 2017
ssl.sh: #12953: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:01 UTC 2017
ssl.sh: #12954: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:02 UTC 2017
ssl.sh: #12955: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:04 UTC 2017
ssl.sh: #12956: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:06 UTC 2017
ssl.sh: #12957: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:07 UTC 2017
ssl.sh: #12958: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:09 UTC 2017
ssl.sh: #12959: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:11 UTC 2017
ssl.sh: #12960: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:12 UTC 2017
ssl.sh: #12961: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:14 UTC 2017
ssl.sh: #12962: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:16 UTC 2017
ssl.sh: #12963: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:17 UTC 2017
ssl.sh: #12964: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:19 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12965: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:20 UTC 2017
ssl.sh: #12966: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:22 UTC 2017
ssl.sh: #12967: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:24 UTC 2017
ssl.sh: #12968: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:25 UTC 2017
ssl.sh: #12969: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:27 UTC 2017
ssl.sh: #12970: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:28 UTC 2017
ssl.sh: #12971: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:30 UTC 2017
ssl.sh: #12972: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:32 UTC 2017
ssl.sh: #12973: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:33 UTC 2017
ssl.sh: #12974: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:35 UTC 2017
ssl.sh: #12975: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:37 UTC 2017
ssl.sh: #12976: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:38 UTC 2017
ssl.sh: #12977: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:40 UTC 2017
ssl.sh: #12978: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:41 UTC 2017
================= CRL Reloaded =============
ssl.sh: #12979: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:43 UTC 2017
ssl.sh: #12980: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:45 UTC 2017
ssl.sh: #12981: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:46 UTC 2017
ssl.sh: #12982: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:48 UTC 2017
ssl.sh: #12983: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:49 UTC 2017
ssl.sh: #12984: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:51 UTC 2017
ssl.sh: #12985: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:53 UTC 2017
ssl.sh: #12986: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:54 UTC 2017
ssl.sh: #12987: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:56 UTC 2017
ssl.sh: #12988: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:58 UTC 2017
ssl.sh: #12989: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:50:59 UTC 2017
ssl.sh: #12990: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:51:01 UTC 2017
ssl.sh: #12991: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7985 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 7985 found at Sat Oct 21 17:51:03 UTC 2017
ssl.sh: #12992: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 7985 at Sat Oct 21 17:51:03 UTC 2017
kill -USR1 7985
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 7985 killed at Sat Oct 21 17:51:03 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:51:03 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:51:03 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:04 UTC 2017
selfserv_9183 with PID 9444 started at Sat Oct 21 17:51:04 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:06 UTC 2017
ssl.sh: #12993: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:08 UTC 2017
ssl.sh: #12994: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:09 UTC 2017
ssl.sh: #12995: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:11 UTC 2017
ssl.sh: #12996: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:13 UTC 2017
ssl.sh: #12997: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:15 UTC 2017
ssl.sh: #12998: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:17 UTC 2017
ssl.sh: #12999: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:18 UTC 2017
ssl.sh: #13000: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:20 UTC 2017
ssl.sh: #13001: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:22 UTC 2017
ssl.sh: #13002: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:23 UTC 2017
ssl.sh: #13003: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:25 UTC 2017
ssl.sh: #13004: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:27 UTC 2017
ssl.sh: #13005: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:28 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13006: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:30 UTC 2017
ssl.sh: #13007: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:31 UTC 2017
ssl.sh: #13008: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:33 UTC 2017
ssl.sh: #13009: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:35 UTC 2017
ssl.sh: #13010: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:36 UTC 2017
ssl.sh: #13011: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:38 UTC 2017
ssl.sh: #13012: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:39 UTC 2017
ssl.sh: #13013: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:41 UTC 2017
ssl.sh: #13014: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:43 UTC 2017
ssl.sh: #13015: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:44 UTC 2017
ssl.sh: #13016: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:46 UTC 2017
ssl.sh: #13017: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:48 UTC 2017
ssl.sh: #13018: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:49 UTC 2017
ssl.sh: #13019: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:51 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13020: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:52 UTC 2017
ssl.sh: #13021: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:54 UTC 2017
ssl.sh: #13022: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:56 UTC 2017
ssl.sh: #13023: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:57 UTC 2017
ssl.sh: #13024: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:51:59 UTC 2017
ssl.sh: #13025: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:52:00 UTC 2017
ssl.sh: #13026: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:52:02 UTC 2017
ssl.sh: #13027: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:52:04 UTC 2017
ssl.sh: #13028: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:52:05 UTC 2017
ssl.sh: #13029: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:52:07 UTC 2017
ssl.sh: #13030: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:52:09 UTC 2017
ssl.sh: #13031: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:52:10 UTC 2017
ssl.sh: #13032: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9444 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 9444 found at Sat Oct 21 17:52:12 UTC 2017
ssl.sh: #13033: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 9444 at Sat Oct 21 17:52:12 UTC 2017
kill -USR1 9444
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 9444 killed at Sat Oct 21 17:52:13 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:52:13 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:52:13 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:13 UTC 2017
selfserv_9183 with PID 10885 started at Sat Oct 21 17:52:13 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:15 UTC 2017
ssl.sh: #13034: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:17 UTC 2017
ssl.sh: #13035: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:18 UTC 2017
ssl.sh: #13036: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:19 UTC 2017
ssl.sh: #13037: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:21 UTC 2017
ssl.sh: #13038: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:22 UTC 2017
ssl.sh: #13039: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:23 UTC 2017
ssl.sh: #13040: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:25 UTC 2017
ssl.sh: #13041: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:26 UTC 2017
ssl.sh: #13042: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:28 UTC 2017
ssl.sh: #13043: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:29 UTC 2017
ssl.sh: #13044: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:31 UTC 2017
ssl.sh: #13045: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:32 UTC 2017
ssl.sh: #13046: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:34 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13047: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:35 UTC 2017
ssl.sh: #13048: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:36 UTC 2017
ssl.sh: #13049: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:38 UTC 2017
ssl.sh: #13050: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:39 UTC 2017
ssl.sh: #13051: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:40 UTC 2017
ssl.sh: #13052: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:42 UTC 2017
ssl.sh: #13053: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:43 UTC 2017
ssl.sh: #13054: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:45 UTC 2017
ssl.sh: #13055: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:46 UTC 2017
ssl.sh: #13056: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:47 UTC 2017
ssl.sh: #13057: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:49 UTC 2017
ssl.sh: #13058: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:50 UTC 2017
ssl.sh: #13059: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:52 UTC 2017
ssl.sh: #13060: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:53 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13061: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:55 UTC 2017
ssl.sh: #13062: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:56 UTC 2017
ssl.sh: #13063: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:57 UTC 2017
ssl.sh: #13064: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:52:59 UTC 2017
ssl.sh: #13065: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:53:00 UTC 2017
ssl.sh: #13066: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:53:02 UTC 2017
ssl.sh: #13067: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:53:03 UTC 2017
ssl.sh: #13068: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:53:04 UTC 2017
ssl.sh: #13069: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:53:06 UTC 2017
ssl.sh: #13070: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:53:07 UTC 2017
ssl.sh: #13071: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:53:09 UTC 2017
ssl.sh: #13072: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:53:10 UTC 2017
ssl.sh: #13073: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10885 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 10885 found at Sat Oct 21 17:53:12 UTC 2017
ssl.sh: #13074: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 10885 at Sat Oct 21 17:53:12 UTC 2017
kill -USR1 10885
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 10885 killed at Sat Oct 21 17:53:12 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:53:12 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:53:12 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:53:13 UTC 2017
selfserv_9183 with PID 12327 started at Sat Oct 21 17:53:13 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:53:15 UTC 2017
ssl.sh: #13075: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:53:17 UTC 2017
ssl.sh: #13076: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:53:18 UTC 2017
ssl.sh: #13077: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:53:20 UTC 2017
ssl.sh: #13078: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:53:22 UTC 2017
ssl.sh: #13079: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:53:23 UTC 2017
ssl.sh: #13080: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:53:25 UTC 2017
ssl.sh: #13081: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:53:27 UTC 2017
ssl.sh: #13082: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:53:29 UTC 2017
ssl.sh: #13083: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:53:30 UTC 2017
ssl.sh: #13084: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:53:32 UTC 2017
ssl.sh: #13085: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:53:34 UTC 2017
ssl.sh: #13086: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:53:35 UTC 2017
ssl.sh: #13087: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:53:37 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13088: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:53:39 UTC 2017
ssl.sh: #13089: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:53:40 UTC 2017
ssl.sh: #13090: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:53:42 UTC 2017
ssl.sh: #13091: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:53:44 UTC 2017
ssl.sh: #13092: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:53:45 UTC 2017
ssl.sh: #13093: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:53:47 UTC 2017
ssl.sh: #13094: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:53:48 UTC 2017
ssl.sh: #13095: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:53:50 UTC 2017
ssl.sh: #13096: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:53:52 UTC 2017
ssl.sh: #13097: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:53:53 UTC 2017
ssl.sh: #13098: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:53:55 UTC 2017
ssl.sh: #13099: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:53:57 UTC 2017
ssl.sh: #13100: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:53:59 UTC 2017
ssl.sh: #13101: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:54:00 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13102: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:54:02 UTC 2017
ssl.sh: #13103: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:54:04 UTC 2017
ssl.sh: #13104: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:54:05 UTC 2017
ssl.sh: #13105: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:54:07 UTC 2017
ssl.sh: #13106: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:54:08 UTC 2017
ssl.sh: #13107: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:54:10 UTC 2017
ssl.sh: #13108: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:54:12 UTC 2017
ssl.sh: #13109: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:54:13 UTC 2017
ssl.sh: #13110: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:54:15 UTC 2017
ssl.sh: #13111: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:54:16 UTC 2017
ssl.sh: #13112: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:54:18 UTC 2017
ssl.sh: #13113: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:54:20 UTC 2017
ssl.sh: #13114: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12327 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 12327 found at Sat Oct 21 17:54:22 UTC 2017
ssl.sh: #13115: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 12327 at Sat Oct 21 17:54:22 UTC 2017
kill -USR1 12327
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 12327 killed at Sat Oct 21 17:54:22 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:54:22 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:54:22 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:54:23 UTC 2017
selfserv_9183 with PID 13769 started at Sat Oct 21 17:54:23 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:54:25 UTC 2017
ssl.sh: #13116: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:54:27 UTC 2017
ssl.sh: #13117: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:54:28 UTC 2017
ssl.sh: #13118: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:54:30 UTC 2017
ssl.sh: #13119: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:54:32 UTC 2017
ssl.sh: #13120: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:54:34 UTC 2017
ssl.sh: #13121: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:54:35 UTC 2017
ssl.sh: #13122: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:54:37 UTC 2017
ssl.sh: #13123: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:54:39 UTC 2017
ssl.sh: #13124: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:54:40 UTC 2017
ssl.sh: #13125: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:54:42 UTC 2017
ssl.sh: #13126: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:54:44 UTC 2017
ssl.sh: #13127: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:54:46 UTC 2017
ssl.sh: #13128: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:54:47 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13129: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:54:49 UTC 2017
ssl.sh: #13130: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:54:51 UTC 2017
ssl.sh: #13131: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:54:52 UTC 2017
ssl.sh: #13132: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:54:54 UTC 2017
ssl.sh: #13133: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:54:55 UTC 2017
ssl.sh: #13134: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:54:57 UTC 2017
ssl.sh: #13135: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:54:59 UTC 2017
ssl.sh: #13136: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:55:00 UTC 2017
ssl.sh: #13137: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:55:02 UTC 2017
ssl.sh: #13138: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:55:04 UTC 2017
ssl.sh: #13139: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:55:05 UTC 2017
ssl.sh: #13140: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:55:07 UTC 2017
ssl.sh: #13141: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:55:09 UTC 2017
ssl.sh: #13142: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:55:11 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13143: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:55:12 UTC 2017
ssl.sh: #13144: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:55:14 UTC 2017
ssl.sh: #13145: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:55:15 UTC 2017
ssl.sh: #13146: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:55:17 UTC 2017
ssl.sh: #13147: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:55:19 UTC 2017
ssl.sh: #13148: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:55:20 UTC 2017
ssl.sh: #13149: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:55:22 UTC 2017
ssl.sh: #13150: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:55:23 UTC 2017
ssl.sh: #13151: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:55:25 UTC 2017
ssl.sh: #13152: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:55:27 UTC 2017
ssl.sh: #13153: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:55:28 UTC 2017
ssl.sh: #13154: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:55:30 UTC 2017
ssl.sh: #13155: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13769 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 13769 found at Sat Oct 21 17:55:32 UTC 2017
ssl.sh: #13156: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 13769 at Sat Oct 21 17:55:32 UTC 2017
kill -USR1 13769
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 13769 killed at Sat Oct 21 17:55:32 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:55:32 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:55:32 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:55:33 UTC 2017
selfserv_9183 with PID 15213 started at Sat Oct 21 17:55:33 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:55:35 UTC 2017
ssl.sh: #13157: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:55:36 UTC 2017
ssl.sh: #13158: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:55:38 UTC 2017
ssl.sh: #13159: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:55:39 UTC 2017
ssl.sh: #13160: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:55:41 UTC 2017
ssl.sh: #13161: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:55:42 UTC 2017
ssl.sh: #13162: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:55:44 UTC 2017
ssl.sh: #13163: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:55:45 UTC 2017
ssl.sh: #13164: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:55:47 UTC 2017
ssl.sh: #13165: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:55:48 UTC 2017
ssl.sh: #13166: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:55:50 UTC 2017
ssl.sh: #13167: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:55:52 UTC 2017
ssl.sh: #13168: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:55:53 UTC 2017
ssl.sh: #13169: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:55:55 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13170: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:55:56 UTC 2017
ssl.sh: #13171: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:55:58 UTC 2017
ssl.sh: #13172: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:56:00 UTC 2017
ssl.sh: #13173: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:56:02 UTC 2017
ssl.sh: #13174: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:56:03 UTC 2017
ssl.sh: #13175: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:56:04 UTC 2017
ssl.sh: #13176: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:56:06 UTC 2017
ssl.sh: #13177: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:56:07 UTC 2017
ssl.sh: #13178: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:56:09 UTC 2017
ssl.sh: #13179: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:56:10 UTC 2017
ssl.sh: #13180: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:56:12 UTC 2017
ssl.sh: #13181: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:56:14 UTC 2017
ssl.sh: #13182: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:56:15 UTC 2017
ssl.sh: #13183: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:56:17 UTC 2017
================= CRL Reloaded =============
ssl.sh: #13184: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:56:18 UTC 2017
ssl.sh: #13185: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:56:20 UTC 2017
ssl.sh: #13186: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:56:21 UTC 2017
ssl.sh: #13187: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:56:22 UTC 2017
ssl.sh: #13188: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:56:24 UTC 2017
ssl.sh: #13189: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:56:25 UTC 2017
ssl.sh: #13190: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:56:27 UTC 2017
ssl.sh: #13191: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:56:28 UTC 2017
ssl.sh: #13192: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:56:30 UTC 2017
ssl.sh: #13193: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:56:31 UTC 2017
ssl.sh: #13194: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:56:33 UTC 2017
ssl.sh: #13195: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:56:34 UTC 2017
ssl.sh: #13196: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9183 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15213 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 15213 found at Sat Oct 21 17:56:36 UTC 2017
ssl.sh: #13197: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 15213 at Sat Oct 21 17:56:36 UTC 2017
kill -USR1 15213
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 15213 killed at Sat Oct 21 17:56:36 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9183 starting at Sat Oct 21 17:56:36 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:56:36 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16658 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16658 found at Sat Oct 21 17:56:37 UTC 2017
selfserv_9183 with PID 16658 started at Sat Oct 21 17:56:37 UTC 2017
trying to kill selfserv_9183 with PID 16658 at Sat Oct 21 17:56:37 UTC 2017
kill -USR1 16658
./ssl.sh: line 197: 16658 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9183 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 16658 killed at Sat Oct 21 17:56:37 UTC 2017
ssl.sh: SSL POLICY  - server /client   - with ECC ===============================
Saving pkcs11.txt
selfserv_9183 starting at Sat Oct 21 17:56:37 UTC 2017
selfserv_9183 -D -p 9183 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.3868\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9183 at Sat Oct 21 17:56:37 UTC 2017
tstclnt -p 9183 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
kill -0 16693 >/dev/null 2>/dev/null
No server to kill
selfserv_9183 with PID 16693 found at Sat Oct 21 17:56:38 UTC 2017
selfserv_9183 with PID 16693 started at Sat Oct 21 17:56:38 UTC 2017
ssl.sh: running Allowed by Narrow Policy ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:rsa:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #13198: Allowed by Narrow Policy produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running Allowed by Strict Policy ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1/ssl,ssl-key-exchange:sha256/cert-signature:rsa/ssl-key-exchange:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #13199: Allowed by Strict Policy produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running Allow All Explicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #13200: Allow All Explicitly produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running Disallow All Explicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13201: Disallow All Explicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow SHA256 Signatures Explicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=sha256
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: authentication of server cert failed: SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED: The certificate was signed using a signature algorithm that is disabled because it is not secure.
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
ssl.sh: #13202: Disallow SHA256 Signatures Explicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow SHA256 Signatures Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:rsa/ssl-key-exchange:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: authentication of server cert failed: SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED: The certificate was signed using a signature algorithm that is disabled because it is not secure.
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
ssl.sh: #13203: Disallow SHA256 Signatures Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow SHA256 Signatures Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: authentication of server cert failed: SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED: The certificate was signed using a signature algorithm that is disabled because it is not secure.
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
ssl.sh: #13204: Disallow SHA256 Signatures Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Cipher Explicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=des-ede3-cbc
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13205: Disallow Cipher Explicitly produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Cipher Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:rsa:des-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13206: Disallow Cipher Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Cipher Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-verion-max=tls1.2
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13207: Disallow Cipher Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow HMAC Explicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=hmac-sha1
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13208: Disallow HMAC Explicitly produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow HMAC Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md5:sha256:rsa:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13209: Disallow HMAC Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow HMAC Signatures Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13210: Disallow HMAC Signatures Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Key Exchange Explicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=rsa/ssl-key-exchange
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13211: Disallow Key Exchange Explicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Key Exchange Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:dh-dss:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13212: Disallow Key Exchange Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Key Exchnage Signatures Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #13213: Disallow Key Exchnage Signatures Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Version Exlicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=allow=tls-version-min=tls1.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: error setting SSL/TLS version range : SSL_ERROR_INVALID_VERSION_RANGE: SSL version range is not valid.
ssl.sh: #13214: Disallow Version Exlicitly produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Version Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:rsa:des-ede3-cbc:tls-version-min=tls1.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: error setting SSL/TLS version range : SSL_ERROR_INVALID_VERSION_RANGE: SSL version range is not valid.
ssl.sh: #13215: Disallow Version Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Version Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=tls1.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9183 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.28.4/nss/tests/ssl/sslreq.dat
tstclnt: error setting SSL/TLS version range : SSL_ERROR_INVALID_VERSION_RANGE: SSL version range is not valid.
ssl.sh: #13216: Disallow Version Implicitly. produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9183 with PID 16693 at Sat Oct 21 17:56:56 UTC 2017
kill -USR1 16693
selfserv: 0 cache hits; 6 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9183 -b -p 9183 2>/dev/null;
selfserv_9183 with PID 16693 killed at Sat Oct 21 17:56:56 UTC 2017
TIMESTAMP ssl END: Sat Oct 21 17:56:56 UTC 2017
Running tests for merge
TIMESTAMP merge BEGIN: Sat Oct 21 17:56:56 UTC 2017
sdr.sh: SDR Tests ===============================
sdr.sh: Creating an SDR key/SDR Encrypt - Value 1
sdrtest -d . -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.v1.3868 -t "Test1"
sdr.sh: #13217: Creating SDR Key/Encrypt - Value 1  - PASSED
sdr.sh: SDR Encrypt - Value 2
sdrtest -d . -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.v2.3868 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #13218: Encrypt - Value 2  - PASSED
sdr.sh: SDR Encrypt - Value 3
sdrtest -d . -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.v3.3868 -t "1234567"
sdr.sh: #13219: Encrypt - Value 3  - PASSED
sdr.sh: SDR Decrypt - Value 1
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.v1.3868 -t "Test1"
sdr.sh: #13220: Decrypt - Value 1  - PASSED
sdr.sh: SDR Decrypt - Value 2
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.v2.3868 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #13221: Decrypt - Value 2  - PASSED
sdr.sh: SDR Decrypt - Value 3
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.v3.3868 -t "1234567"
sdr.sh: #13222: Decrypt - Value 3  - PASSED
merge.sh: Merge Tests ===============================
merge.sh: Creating an SDR key & Encrypt
sdrtest -d . -o /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.v3.3868 -t Test2 -f ../tests.pw
merge.sh: #13223: Creating SDR Key  - PASSED
merge.sh: Merging in Key for Existing user
certutil --merge --source-dir ../dave -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #13224: Merging Dave  - PASSED
merge.sh: Merging in new user 
certutil --merge --source-dir ../server -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #13225: Merging server  - PASSED
merge.sh: Merging in new chain 
certutil --merge --source-dir ../ext_client -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #13226: Merging ext_client  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict1 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #13227: Merging conflicting nicknames 1  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict2 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #13228: Merging conflicting nicknames 2  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #4)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 45 (0x2d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:15:18 2017
            Not After : Fri Oct 21 17:15:18 2022
        Subject: "CN=TestUser45,E=TestUser45@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:63:5f:e5:97:8d:8d:24:de:b9:d3:5d:cd:7c:cc:8c:
                    6a:3e:5d:35:0a:f4:fd:9f:fe:bf:76:62:e2:6a:7c:2e:
                    37:fa:72:4c:b2:17:89:16:ad:e3:05:52:b0:e4:3f:2c:
                    e4:e7:f7:8d:ee:dd:71:92:41:d3:7b:ad:7d:ee:d1:47:
                    fa:23:63:67:4d:b6:46:29:98:ff:e9:64:88:ab:51:5a:
                    1c:ed:43:27:d3:67:dd:c0:af:84:a0:1d:73:ef:8e:ca:
                    d2:2e:43:e4:72:61:45:03:70:41:34:4e:b9:f5:79:87:
                    04:62:fc:2f:14:66:6b:65:cc:d0:68:30:ca:db:48:62:
                    c2:0b:62:b6:90:1b:9a:ab:a5:96:1e:52:31:4a:a2:5b:
                    e7:68:f8:8f:9b:32:f6:94:09:5c:57:78:76:89:af:9a:
                    da:69:5c:04:64:13:dc:12:69:be:44:68:a4:be:2c:b6:
                    e5:3d:66:a3:a2:25:ac:66:77:88:c7:68:b5:67:36:f6:
                    17:ca:fa:18:53:e3:b7:32:b6:48:fe:71:4e:65:62:8f:
                    22:43:25:11:e1:14:5d:8c:05:0d:57:6d:1e:e5:f5:b4:
                    4f:8b:be:36:0e:e8:8e:cc:2d:36:66:6d:ba:94:b0:7c:
                    26:73:7d:ac:9c:95:f2:d4:63:2f:55:30:82:9b:a4:45
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:ec:43:1c:3f:6b:5e:99:65:27:05:df:48:3c:13:c6:
        5f:2b:ef:e8:73:50:10:81:52:62:9b:77:30:f3:11:cb:
        58:81:52:d9:f0:10:0e:b1:d7:73:8c:4b:06:38:f9:1e:
        83:11:d3:49:41:dc:cd:e2:8c:fd:26:ee:5c:2d:81:f3:
        dc:42:85:b4:ae:28:93:33:1f:8c:83:13:a3:98:33:b4:
        08:71:5e:1b:29:a9:c0:7b:5d:e4:18:c2:48:fe:a6:7b:
        2d:bb:9e:19:ae:16:2f:d4:ba:4c:5d:5c:d9:2c:d3:e0:
        ef:63:47:66:9d:a1:7b:82:cb:4d:ca:8d:57:58:04:4a:
        39:19:d0:a0:25:1e:27:7c:6c:dd:24:76:b7:db:49:43:
        be:45:4d:5e:08:e7:c8:7a:85:ad:24:50:51:d1:e4:f7:
        97:6d:f3:cf:76:64:94:85:13:26:02:60:ba:19:a3:5e:
        1b:62:f0:c4:ba:f3:64:75:0f:fe:2a:25:af:bb:6d:a8:
        83:77:62:c8:b5:f6:b9:f7:fd:5f:6e:62:fd:e1:88:d5:
        15:fc:e5:ca:c1:4d:be:2a:e2:d5:17:f0:18:c1:9d:78:
        90:e8:56:0c:e3:ee:44:4b:8b:7b:96:cc:93:88:7f:6b:
        e9:6f:01:33:20:30:ae:10:a9:79:72:69:0a:2f:fa:65
    Fingerprint (SHA-256):
        DA:6E:D6:8B:75:46:E5:AA:FA:C2:9E:45:16:44:89:3D:12:B4:8F:49:69:5B:1E:1E:C3:38:49:19:A7:A5:F0:B9
    Fingerprint (SHA1):
        5B:9B:AA:74:32:DB:66:E9:BE:F8:EC:63:C6:9D:8A:37:5A:78:31:73
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #13229: Verify nicknames were deconflicted (Alice #4)  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #100)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 46 (0x2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Sat Oct 21 17:15:33 2017
            Not After : Fri Oct 21 17:15:33 2022
        Subject: "CN=TestUser46,E=TestUser46@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:34:f5:1d:27:48:e4:84:af:fc:48:df:70:05:d9:e1:
                    09:72:b7:27:91:c0:c5:fc:a2:57:43:25:4f:88:b7:12:
                    68:d5:d6:d6:03:ae:f1:17:1f:10:c6:2f:50:f0:d7:f4:
                    21:c5:2e:0f:ee:ad:c8:3c:7f:27:bb:f5:34:13:3e:cb:
                    e0:18:4c:e6:dc:8e:8f:22:de:c7:04:b5:28:8d:b5:fd:
                    70:c4:6f:ea:1e:ac:eb:42:ad:af:89:b5:d7:ff:51:96:
                    60:46:c7:4a:62:75:88:86:18:8e:fe:f0:a1:a6:52:a4:
                    f2:70:b2:93:a8:f5:d6:56:3c:39:35:d1:cb:b1:91:e4:
                    0d:98:9a:d0:54:ad:28:c7:21:4b:ae:de:33:d2:aa:10:
                    4a:1b:0f:bc:ac:08:46:41:ef:17:7e:e4:fd:54:fb:60:
                    fd:b4:c9:a3:9d:11:84:6c:d2:1c:a3:92:9b:9d:e6:a4:
                    25:b6:82:69:8f:a3:38:f8:63:dc:37:95:fc:64:81:dd:
                    1a:b2:f8:fe:11:d8:c0:57:72:36:b6:bf:94:c0:5e:5c:
                    a1:a0:56:f0:f8:ca:f8:45:55:47:91:50:51:8a:92:7f:
                    48:c4:15:95:50:d9:0e:1f:5b:46:be:c7:db:cd:da:b3:
                    54:b5:4e:f1:e3:31:fd:b3:bb:f1:5b:ad:3a:1e:bf:5d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        20:7b:e5:7a:e1:ad:40:02:ea:b5:0d:8d:1d:90:5d:45:
        b0:a4:0d:6d:82:18:dc:8f:7e:2d:b2:e1:20:bf:07:f8:
        52:0d:a4:78:40:ae:e5:ed:3a:67:f9:93:03:43:6c:a9:
        7d:3e:bc:48:c0:d9:6b:97:5f:b6:54:38:59:3e:cb:5d:
        46:aa:5b:12:5c:a4:16:93:70:e7:78:d9:bc:6f:82:1e:
        0d:b9:77:e8:8e:e2:82:7c:ea:81:8a:8c:5b:b2:ed:15:
        0d:06:a9:d6:e2:60:db:dd:74:05:57:aa:fb:fc:67:22:
        fe:54:65:46:1d:cf:ab:a8:74:e5:64:ef:74:b7:76:87:
        28:48:49:5d:f9:fa:75:4b:e8:04:a0:78:64:c6:90:45:
        3b:a0:8a:85:b2:55:ce:2e:36:33:40:9c:ec:0c:35:bf:
        99:a1:a0:7e:cd:a0:ad:b1:e8:78:26:63:f5:87:d5:10:
        ac:1c:a0:1c:b3:99:aa:cb:95:3e:e4:98:b4:f1:f9:ba:
        3c:e0:66:bd:b5:0a:03:4e:57:12:68:25:8e:cd:2d:66:
        5a:8f:87:c8:0c:18:14:3a:6f:8a:cd:3e:17:9f:3a:dd:
        4d:36:e6:a3:5e:5a:23:36:c6:da:95:77:ed:b8:16:5e:
        9a:b0:8a:f5:dd:2a:e7:82:76:c3:d9:b9:c8:72:c1:91
    Fingerprint (SHA-256):
        D8:D9:C5:75:A6:29:D3:6E:23:1E:1C:98:14:33:17:1E:1B:16:E9:FC:7B:7C:8A:63:A5:CA:EC:E4:E1:51:04:D7
    Fingerprint (SHA1):
        A0:65:EA:E8:03:5D:A9:40:98:FE:C8:53:23:79:57:04:AD:8F:75:2E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #13230: Verify nicknames were deconflicted (Alice #100)  - PASSED
merge.sh: Merging in SDR 
certutil --merge --source-dir ../SDR -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #13231: Merging SDR  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
TestCA                                                       CT,C,C
TestCA-dsa                                                   CT,C,C
TestCA-ec                                                    CT,C,C
Alice                                                        u,u,u
Alice-dsa                                                    u,u,u
Alice-dsamixed                                               u,u,u
Alice-ec                                                     u,u,u
Alice-ecmixed                                                u,u,u
bob@bogus.com                                                ,,   
Dave                                                         u,u,u
eve@bogus.com                                                ,,   
bob-ec@bogus.com                                             ,,   
Dave-ec                                                      u,u,u
Dave-dsa                                                     u,u,u
Dave-dsamixed                                                u,u,u
Dave-ecmixed                                                 u,u,u
localhost.localdomain                                        u,u,u
localhost.localdomain-dsa                                    u,u,u
localhost.localdomain-dsamixed                               u,u,u
localhost.localdomain-ec                                     u,u,u
localhost.localdomain-ecmixed                                u,u,u
localhost-sni.localdomain                                    u,u,u
localhost-sni.localdomain-dsa                                u,u,u
localhost-sni.localdomain-dsamixed                           u,u,u
localhost-sni.localdomain-ec                                 u,u,u
localhost-sni.localdomain-ecmixed                            u,u,u
ExtendedSSLUser                                              u,u,u
serverCA                                                     C,C,C
ExtendedSSLUser-dsa                                          u,u,u
serverCA-dsa                                                 C,C,C
ExtendedSSLUser-dsamixed                                     u,u,u
ExtendedSSLUser-ec                                           u,u,u
serverCA-ec                                                  C,C,C
ExtendedSSLUser-ecmixed                                      u,u,u
chain-1-clientCA                                             ,,   
clientCA-dsa                                                 T,C,C
clientCA-ec                                                  T,C,C
chain-2-clientCA-ec                                          ,,   
chain-2-clientCA-dsa                                         ,,   
chain-1-clientCA-dsa                                         ,,   
chain-2-clientCA                                             ,,   
chain-1-clientCA-ec                                          ,,   
clientCA                                                     T,C,C
Alice #2                                                     ,,   
Alice #1                                                     ,,   
Alice #99                                                    ,,   
Alice #3                                                     ,,   
Alice #4                                                     ,,   
Alice #100                                                   ,,   
CRL names                                CRL Type
TestCA                                   CRL  
TestCA-ec                                CRL  
merge.sh: Decrypt - With Original SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.v3.3868 -t Test2 -f ../tests.pw
merge.sh: #13232: Decrypt - Value 3  - PASSED
merge.sh: Decrypt - With Merged SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests.v1.3868 -t Test1 -f ../tests.pw
merge.sh: #13233: Decrypt - Value 1  - PASSED
merge.sh: Signing with merged key  ------------------
cmsutil -S -T -N Dave -H SHA1 -i alice.txt -d . -p nss -o dave.dsig
merge.sh: #13234: Create Detached Signature Dave . - PASSED
cmsutil -D -i dave.dsig -c alice.txt -d . 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
merge.sh: #13235: Verifying Dave's Detached Signature  - PASSED
merge.sh: verifying  merged cert  ------------------
certutil -V -n ExtendedSSLUser -u C -d .
certutil: certificate is valid
merge.sh: #13236: Verifying ExtendedSSL User Cert  - PASSED
merge.sh: verifying  merged crl  ------------------
crlutil -L -n TestCA -d .
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US"
    This Update: Sat Oct 21 17:17:43 2017
    Entry 1 (0x1):
        Serial Number: 40 (0x28)
        Revocation Date: Sat Oct 21 17:06:03 2017
        Entry Extensions:
            Name: CRL reason code
    Entry 2 (0x2):
        Serial Number: 42 (0x2a)
        Revocation Date: Sat Oct 21 17:17:35 2017
    CRL Extensions:
        Name: Certificate Issuer Alt Name
        RFC822 Name: "caemail@ca.com"
        DNS name: "ca.com"
        Directory Name: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=Califo
            rnia,C=US"
        URI: "http://ca.com"
        IP Address:
            87:0b:31:39:32:2e:31:36:38:2e:30:2e:31
merge.sh: #13237: Verifying TestCA CRL  - PASSED
TEST_MODE=SHARED_DB
NSS_DEFAULT_DB_TYPE=sql
TIMESTAMP merge END: Sat Oct 21 17:57:44 UTC 2017
Running tests for chains
TIMESTAMP chains BEGIN: Sat Oct 21 17:57:44 UTC 2017
chains.sh: Certificate Chains Tests ===============================
chains.sh: Creating DB OCSPRootDB
certutil -N -d OCSPRootDB -f OCSPRootDB/dbpasswd
chains.sh: #13238: OCSPD: Creating DB OCSPRootDB  - PASSED
chains.sh: Creating Root CA OCSPRoot
certutil -s "CN=OCSPRoot ROOT CA, O=OCSPRoot, C=US" -S -n OCSPRoot  -t CTu,CTu,CTu -v 600 -x -d OCSPRootDB -1 -2 -5 -f OCSPRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175745 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13239: OCSPD: Creating Root CA OCSPRoot  - PASSED
chains.sh: Exporting Root CA OCSPRoot.der
certutil -L -d OCSPRootDB -r -n OCSPRoot -o OCSPRoot.der
chains.sh: #13240: OCSPD: Exporting Root CA OCSPRoot.der  - PASSED
chains.sh: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d OCSPRootDB -o OCSPRoot.p12 -n OCSPRoot -k OCSPRootDB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #13241: OCSPD: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database  - PASSED
chains.sh: Creating DB OCSPCA1DB
certutil -N -d OCSPCA1DB -f OCSPCA1DB/dbpasswd
chains.sh: #13242: OCSPD: Creating DB OCSPCA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA1Req.der
certutil -s "CN=OCSPCA1 Intermediate, O=OCSPCA1, C=US"  -R -2 -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPCA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13243: OCSPD: Creating Intermediate certifiate request OCSPCA1Req.der  - PASSED
chains.sh: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA1Req.der -o OCSPCA1OCSPRoot.der -f OCSPRootDB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13244: OCSPD: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database
certutil -A -n OCSPCA1 -t u,u,u -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -i OCSPCA1OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13245: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database  - PASSED
chains.sh: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d OCSPCA1DB -o OCSPCA1.p12 -n OCSPCA1 -k OCSPCA1DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #13246: OCSPD: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database  - PASSED
chains.sh: Creating DB OCSPCA2DB
certutil -N -d OCSPCA2DB -f OCSPCA2DB/dbpasswd
chains.sh: #13247: OCSPD: Creating DB OCSPCA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA2Req.der
certutil -s "CN=OCSPCA2 Intermediate, O=OCSPCA2, C=US"  -R -2 -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPCA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13248: OCSPD: Creating Intermediate certifiate request OCSPCA2Req.der  - PASSED
chains.sh: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA2Req.der -o OCSPCA2OCSPRoot.der -f OCSPRootDB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13249: OCSPD: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database
certutil -A -n OCSPCA2 -t u,u,u -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -i OCSPCA2OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13250: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database  - PASSED
chains.sh: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d OCSPCA2DB -o OCSPCA2.p12 -n OCSPCA2 -k OCSPCA2DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #13251: OCSPD: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database  - PASSED
chains.sh: Creating DB OCSPCA3DB
certutil -N -d OCSPCA3DB -f OCSPCA3DB/dbpasswd
chains.sh: #13252: OCSPD: Creating DB OCSPCA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA3Req.der
certutil -s "CN=OCSPCA3 Intermediate, O=OCSPCA3, C=US"  -R -2 -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPCA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13253: OCSPD: Creating Intermediate certifiate request OCSPCA3Req.der  - PASSED
chains.sh: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA3Req.der -o OCSPCA3OCSPRoot.der -f OCSPRootDB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9194
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13254: OCSPD: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database
certutil -A -n OCSPCA3 -t u,u,u -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -i OCSPCA3OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13255: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database  - PASSED
chains.sh: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d OCSPCA3DB -o OCSPCA3.p12 -n OCSPCA3 -k OCSPCA3DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #13256: OCSPD: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database  - PASSED
chains.sh: Creating DB OCSPEE11DB
certutil -N -d OCSPEE11DB -f OCSPEE11DB/dbpasswd
chains.sh: #13257: OCSPD: Creating DB OCSPEE11DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE11Req.der
certutil -s "CN=OCSPEE11 EE, O=OCSPEE11, C=US"  -R  -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13258: OCSPD: Creating EE certifiate request OCSPEE11Req.der  - PASSED
chains.sh: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE11Req.der -o OCSPEE11OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13259: OCSPD: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database
certutil -A -n OCSPEE11 -t u,u,u -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -i OCSPEE11OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13260: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database  - PASSED
chains.sh: Creating DB OCSPEE12DB
certutil -N -d OCSPEE12DB -f OCSPEE12DB/dbpasswd
chains.sh: #13261: OCSPD: Creating DB OCSPEE12DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE12Req.der
certutil -s "CN=OCSPEE12 EE, O=OCSPEE12, C=US"  -R  -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13262: OCSPD: Creating EE certifiate request OCSPEE12Req.der  - PASSED
chains.sh: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE12Req.der -o OCSPEE12OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13263: OCSPD: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database
certutil -A -n OCSPEE12 -t u,u,u -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -i OCSPEE12OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13264: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database  - PASSED
chains.sh: Creating DB OCSPEE13DB
certutil -N -d OCSPEE13DB -f OCSPEE13DB/dbpasswd
chains.sh: #13265: OCSPD: Creating DB OCSPEE13DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE13Req.der
certutil -s "CN=OCSPEE13 EE, O=OCSPEE13, C=US"  -R  -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13266: OCSPD: Creating EE certifiate request OCSPEE13Req.der  - PASSED
chains.sh: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE13Req.der -o OCSPEE13OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13267: OCSPD: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database
certutil -A -n OCSPEE13 -t u,u,u -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -i OCSPEE13OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13268: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database  - PASSED
chains.sh: Creating DB OCSPEE14DB
certutil -N -d OCSPEE14DB -f OCSPEE14DB/dbpasswd
chains.sh: #13269: OCSPD: Creating DB OCSPEE14DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE14Req.der
certutil -s "CN=OCSPEE14 EE, O=OCSPEE14, C=US"  -R  -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE14Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13270: OCSPD: Creating EE certifiate request OCSPEE14Req.der  - PASSED
chains.sh: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE14Req.der -o OCSPEE14OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 4   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13271: OCSPD: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database
certutil -A -n OCSPEE14 -t u,u,u -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -i OCSPEE14OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13272: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database  - PASSED
chains.sh: Creating DB OCSPEE15DB
certutil -N -d OCSPEE15DB -f OCSPEE15DB/dbpasswd
chains.sh: #13273: OCSPD: Creating DB OCSPEE15DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE15Req.der
certutil -s "CN=OCSPEE15 EE, O=OCSPEE15, C=US"  -R  -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE15Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13274: OCSPD: Creating EE certifiate request OCSPEE15Req.der  - PASSED
chains.sh: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE15Req.der -o OCSPEE15OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 5   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9194
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13275: OCSPD: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database
certutil -A -n OCSPEE15 -t u,u,u -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -i OCSPEE15OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13276: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database  - PASSED
chains.sh: Creating DB OCSPEE21DB
certutil -N -d OCSPEE21DB -f OCSPEE21DB/dbpasswd
chains.sh: #13277: OCSPD: Creating DB OCSPEE21DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE21Req.der
certutil -s "CN=OCSPEE21 EE, O=OCSPEE21, C=US"  -R  -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13278: OCSPD: Creating EE certifiate request OCSPEE21Req.der  - PASSED
chains.sh: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE21Req.der -o OCSPEE21OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13279: OCSPD: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database
certutil -A -n OCSPEE21 -t u,u,u -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -i OCSPEE21OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13280: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database  - PASSED
chains.sh: Creating DB OCSPEE22DB
certutil -N -d OCSPEE22DB -f OCSPEE22DB/dbpasswd
chains.sh: #13281: OCSPD: Creating DB OCSPEE22DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE22Req.der
certutil -s "CN=OCSPEE22 EE, O=OCSPEE22, C=US"  -R  -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE22Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13282: OCSPD: Creating EE certifiate request OCSPEE22Req.der  - PASSED
chains.sh: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE22Req.der -o OCSPEE22OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13283: OCSPD: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database
certutil -A -n OCSPEE22 -t u,u,u -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -i OCSPEE22OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13284: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database  - PASSED
chains.sh: Creating DB OCSPEE23DB
certutil -N -d OCSPEE23DB -f OCSPEE23DB/dbpasswd
chains.sh: #13285: OCSPD: Creating DB OCSPEE23DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE23Req.der
certutil -s "CN=OCSPEE23 EE, O=OCSPEE23, C=US"  -R  -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE23Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13286: OCSPD: Creating EE certifiate request OCSPEE23Req.der  - PASSED
chains.sh: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE23Req.der -o OCSPEE23OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9194
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13287: OCSPD: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database
certutil -A -n OCSPEE23 -t u,u,u -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -i OCSPEE23OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13288: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database  - PASSED
chains.sh: Creating DB OCSPEE31DB
certutil -N -d OCSPEE31DB -f OCSPEE31DB/dbpasswd
chains.sh: #13289: OCSPD: Creating DB OCSPEE31DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE31Req.der
certutil -s "CN=OCSPEE31 EE, O=OCSPEE31, C=US"  -R  -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE31Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13290: OCSPD: Creating EE certifiate request OCSPEE31Req.der  - PASSED
chains.sh: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE31Req.der -o OCSPEE31OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13291: OCSPD: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database
certutil -A -n OCSPEE31 -t u,u,u -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -i OCSPEE31OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13292: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database  - PASSED
chains.sh: Creating DB OCSPEE32DB
certutil -N -d OCSPEE32DB -f OCSPEE32DB/dbpasswd
chains.sh: #13293: OCSPD: Creating DB OCSPEE32DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE32Req.der
certutil -s "CN=OCSPEE32 EE, O=OCSPEE32, C=US"  -R  -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE32Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13294: OCSPD: Creating EE certifiate request OCSPEE32Req.der  - PASSED
chains.sh: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE32Req.der -o OCSPEE32OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9193/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13295: OCSPD: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database
certutil -A -n OCSPEE32 -t u,u,u -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -i OCSPEE32OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13296: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database  - PASSED
chains.sh: Creating DB OCSPEE33DB
certutil -N -d OCSPEE33DB -f OCSPEE33DB/dbpasswd
chains.sh: #13297: OCSPD: Creating DB OCSPEE33DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE33Req.der
certutil -s "CN=OCSPEE33 EE, O=OCSPEE33, C=US"  -R  -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE33Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13298: OCSPD: Creating EE certifiate request OCSPEE33Req.der  - PASSED
chains.sh: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE33Req.der -o OCSPEE33OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9194
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13299: OCSPD: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database
certutil -A -n OCSPEE33 -t u,u,u -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -i OCSPEE33OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13300: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database  - PASSED
chains.sh: Create CRL for OCSPRootDB
crlutil -G -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20171021175932Z
nextupdate=20181021175932Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Sat Oct 21 17:59:32 2017
    Next Update: Sun Oct 21 17:59:32 2018
    CRL Extensions:
chains.sh: #13301: OCSPD: Create CRL for OCSPRootDB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPRoot
crlutil -M -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20171021175933Z
addcert 2 20171021175933Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Sat Oct 21 17:59:33 2017
    Next Update: Sun Oct 21 17:59:32 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sat Oct 21 17:59:33 2017
    CRL Extensions:
chains.sh: #13302: OCSPD: Revoking certificate with SN 2 issued by OCSPRoot  - PASSED
chains.sh: Create CRL for OCSPCA1DB
crlutil -G -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20171021175934Z
nextupdate=20181021175934Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Sat Oct 21 17:59:34 2017
    Next Update: Sun Oct 21 17:59:34 2018
    CRL Extensions:
chains.sh: #13303: OCSPD: Create CRL for OCSPCA1DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20171021175935Z
addcert 2 20171021175935Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Sat Oct 21 17:59:35 2017
    Next Update: Sun Oct 21 17:59:34 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sat Oct 21 17:59:35 2017
    CRL Extensions:
chains.sh: #13304: OCSPD: Revoking certificate with SN 2 issued by OCSPCA1  - PASSED
chains.sh: Revoking certificate with SN 4 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20171021175936Z
addcert 4 20171021175936Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Sat Oct 21 17:59:36 2017
    Next Update: Sun Oct 21 17:59:34 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sat Oct 21 17:59:35 2017
    Entry 2 (0x2):
        Serial Number: 4 (0x4)
        Revocation Date: Sat Oct 21 17:59:36 2017
    CRL Extensions:
chains.sh: #13305: OCSPD: Revoking certificate with SN 4 issued by OCSPCA1  - PASSED
chains.sh: Create CRL for OCSPCA2DB
crlutil -G -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20171021175937Z
nextupdate=20181021175937Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Sat Oct 21 17:59:37 2017
    Next Update: Sun Oct 21 17:59:37 2018
    CRL Extensions:
chains.sh: #13306: OCSPD: Create CRL for OCSPCA2DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20171021175938Z
addcert 2 20171021175938Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Sat Oct 21 17:59:38 2017
    Next Update: Sun Oct 21 17:59:37 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sat Oct 21 17:59:38 2017
    CRL Extensions:
chains.sh: #13307: OCSPD: Revoking certificate with SN 2 issued by OCSPCA2  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20171021175939Z
addcert 3 20171021175939Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Sat Oct 21 17:59:39 2017
    Next Update: Sun Oct 21 17:59:37 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sat Oct 21 17:59:38 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Sat Oct 21 17:59:39 2017
    CRL Extensions:
chains.sh: #13308: OCSPD: Revoking certificate with SN 3 issued by OCSPCA2  - PASSED
chains.sh: Create CRL for OCSPCA3DB
crlutil -G -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20171021175940Z
nextupdate=20181021175940Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Sat Oct 21 17:59:40 2017
    Next Update: Sun Oct 21 17:59:40 2018
    CRL Extensions:
chains.sh: #13309: OCSPD: Create CRL for OCSPCA3DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20171021175941Z
addcert 2 20171021175941Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Sat Oct 21 17:59:41 2017
    Next Update: Sun Oct 21 17:59:40 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sat Oct 21 17:59:41 2017
    CRL Extensions:
chains.sh: #13310: OCSPD: Revoking certificate with SN 2 issued by OCSPCA3  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20171021175942Z
addcert 3 20171021175942Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Sat Oct 21 17:59:42 2017
    Next Update: Sun Oct 21 17:59:40 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Sat Oct 21 17:59:41 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Sat Oct 21 17:59:42 2017
    CRL Extensions:
chains.sh: #13311: OCSPD: Revoking certificate with SN 3 issued by OCSPCA3  - PASSED
chains.sh: Creating DB ServerDB
certutil -N -d ServerDB -f ServerDB/dbpasswd
chains.sh: #13312: OCSPD: Creating DB ServerDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ServerDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.der
chains.sh: #13313: OCSPD: Importing certificate OCSPRoot.der to ServerDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ServerDB database
crlutil -I -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.crl
chains.sh: #13314: OCSPD: Importing CRL OCSPRoot.crl to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPRoot.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPRoot.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #13315: OCSPD: Importing p12 key OCSPRoot.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA1.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA1.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #13316: OCSPD: Importing p12 key OCSPCA1.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA2.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA2.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #13317: OCSPD: Importing p12 key OCSPCA2.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA3.p12 to ServerDB database
/builddir/build/BUILD/nss-3.28.4/dist/Linux4.8_arm_cc_glibc_PTH_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA3.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #13318: OCSPD: Importing p12 key OCSPCA3.p12 to ServerDB database  - PASSED
chains.sh: Creating DB ClientDB
certutil -N -d ClientDB -f ClientDB/dbpasswd
chains.sh: #13319: OCSPD: Creating DB ClientDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ClientDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.der
chains.sh: #13320: OCSPD: Importing certificate OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ClientDB database
crlutil -I -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.crl
chains.sh: #13321: OCSPD: Importing CRL OCSPRoot.crl to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA1OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA1OCSPRoot.der
chains.sh: #13322: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA2OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA2OCSPRoot.der
chains.sh: #13323: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA3OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA3OCSPRoot.der
chains.sh: #13324: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE11OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE11OCSPCA1.der
chains.sh: #13325: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE12OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE12OCSPCA1.der
chains.sh: #13326: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE13OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE13OCSPCA1.der
chains.sh: #13327: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE14OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE14OCSPCA1.der
chains.sh: #13328: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE15OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE15OCSPCA1.der
chains.sh: #13329: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE21OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE21OCSPCA2.der
chains.sh: #13330: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE22OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE22OCSPCA2.der
chains.sh: #13331: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE23OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE23OCSPCA2.der
chains.sh: #13332: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE31OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE31OCSPCA3.der
chains.sh: #13333: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE32OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE32OCSPCA3.der
chains.sh: #13334: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE33OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE33OCSPCA3.der
chains.sh: #13335: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database  - PASSED
httpserv starting at Sat Oct 21 18:00:09 UTC 2017
httpserv -D -p 9193  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O get -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.3868  &
trying to connect to httpserv at Sat Oct 21 18:00:09 UTC 2017
tstclnt -p 9193 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9193 (address=127.0.0.1)
tstclnt: exiting with return code 0
kill -0 19273 >/dev/null 2>/dev/null
httpserv with PID 19273 found at Sat Oct 21 18:00:10 UTC 2017
httpserv with PID 19273 started at Sat Oct 21 18:00:10 UTC 2017
tstclnt -h localhost.localdomain -p 9193 -q -t 20
chains.sh: #13336: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175745 (0x3cdde7c1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Sat Oct 21 17:57:49 2017
            Not After : Fri Oct 21 17:57:49 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:84:d4:e9:6a:54:a7:0e:8f:ca:6d:77:5f:69:20:6b:
                    b8:1b:ed:6c:44:ae:23:e6:7d:c5:8f:5c:f6:14:79:f2:
                    46:e1:12:24:75:e0:23:3b:22:cf:85:77:27:6c:51:2f:
                    99:68:00:18:65:2e:f6:e2:34:eb:4f:c2:45:61:c2:0f:
                    a1:92:ca:97:54:e9:dc:08:31:f2:c3:6f:dd:f1:03:6b:
                    cf:4d:b2:1a:15:df:a2:3e:14:ab:37:f1:f5:85:b5:c4:
                    1d:fd:33:9e:bf:f4:53:29:9e:09:90:a3:af:5f:5d:af:
                    29:2b:a9:81:9c:bf:cc:f7:29:f6:bf:54:b4:7a:f2:02:
                    5c:d5:99:3a:c8:a9:e6:73:ab:0b:b9:82:47:ec:38:b4:
                    95:29:48:f1:c3:3b:2f:43:c9:a5:d4:c8:9d:1f:11:e1:
                    c1:f9:92:45:3b:f3:a8:72:5c:9d:24:ea:4a:68:f6:46:
                    83:dc:d0:26:4f:b4:05:45:54:42:6f:ad:12:23:c0:28:
                    ae:02:43:62:fe:a1:4a:60:d4:54:fa:45:fe:74:3b:ab:
                    2a:6e:45:2b:c1:3f:a3:67:fd:2c:59:86:b6:b1:12:10:
                    0d:30:58:3c:32:93:8e:09:16:84:7a:03:d0:a0:01:4f:
                    0c:b9:3f:34:56:d5:5c:44:5d:83:27:9b:3f:5f:8e:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        18:22:a5:db:ff:ad:96:51:84:c6:c6:72:c1:d6:4c:bd:
        39:f9:81:96:97:6f:f5:c0:ba:0d:87:38:01:50:6b:5b:
        70:35:65:67:01:3e:30:f2:a2:eb:59:49:c3:f3:7d:da:
        da:ba:77:ea:40:43:d3:16:41:af:1b:3d:1c:07:2e:5e:
        f7:08:59:44:8b:cd:da:f3:9f:a4:c4:13:73:9c:e8:3e:
        a1:37:41:0d:b6:13:d4:04:24:4e:85:71:fe:a7:89:1c:
        20:92:15:f8:51:b6:a2:e3:6e:6c:92:01:09:24:fe:9f:
        1d:15:01:ba:24:92:41:7e:fa:3b:2f:98:be:23:bb:5e:
        d8:d2:de:1f:d7:85:31:f7:17:5b:97:f2:9a:95:af:e5:
        ef:fb:50:7a:4e:15:fd:6f:2c:21:40:76:5b:ae:74:89:
        b5:37:e9:d2:74:fb:a2:69:f5:c9:82:e5:78:02:7f:9d:
        a3:fc:99:1d:79:73:f0:46:e8:a2:67:4d:cf:bf:bf:6a:
        65:d6:05:83:50:17:60:2d:8a:4d:67:84:09:fb:24:80:
        48:87:28:f1:f1:56:92:af:e4:5d:40:49:dc:6c:2d:ff:
        7c:61:4f:66:28:ec:a3:16:ea:b1:bd:fe:6d:e3:74:24:
        6c:30:a7:27:c6:4a:d5:b7:f0:27:be:3f:1e:50:38:3e
    Fingerprint (SHA-256):
        B8:44:8D:29:09:46:F4:EE:F8:EB:69:97:43:0F:B8:E7:BF:55:72:C9:AB:AC:1B:7E:AA:C3:D5:54:D0:61:0E:C7
    Fingerprint (SHA1):
        EC:8D:B4:01:29:DE:3E:C3:6C:38:5F:40:75:AE:BC:6C:F7:2A:E0:62
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13337: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #13338: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #13339: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 19273 at Sat Oct 21 18:00:15 UTC 2017
kill -USR1 19273
httpserv: normal termination
httpserv -b -p 9193 2>/dev/null;
httpserv with PID 19273 killed at Sat Oct 21 18:00:15 UTC 2017
httpserv starting at Sat Oct 21 18:00:15 UTC 2017
httpserv -D -p 9193  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O post -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.3868  &
trying to connect to httpserv at Sat Oct 21 18:00:15 UTC 2017
tstclnt -p 9193 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9193 (address=127.0.0.1)
tstclnt: exiting with return code 0
kill -0 19442 >/dev/null 2>/dev/null
httpserv with PID 19442 found at Sat Oct 21 18:00:16 UTC 2017
httpserv with PID 19442 started at Sat Oct 21 18:00:16 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #13340: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. OCSPEE12OCSPCA1 :
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #13341: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #13342: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
tstclnt -h localhost.localdomain -p 9193 -q -t 20
chains.sh: #13343: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175745 (0x3cdde7c1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Sat Oct 21 17:57:49 2017
            Not After : Fri Oct 21 17:57:49 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:84:d4:e9:6a:54:a7:0e:8f:ca:6d:77:5f:69:20:6b:
                    b8:1b:ed:6c:44:ae:23:e6:7d:c5:8f:5c:f6:14:79:f2:
                    46:e1:12:24:75:e0:23:3b:22:cf:85:77:27:6c:51:2f:
                    99:68:00:18:65:2e:f6:e2:34:eb:4f:c2:45:61:c2:0f:
                    a1:92:ca:97:54:e9:dc:08:31:f2:c3:6f:dd:f1:03:6b:
                    cf:4d:b2:1a:15:df:a2:3e:14:ab:37:f1:f5:85:b5:c4:
                    1d:fd:33:9e:bf:f4:53:29:9e:09:90:a3:af:5f:5d:af:
                    29:2b:a9:81:9c:bf:cc:f7:29:f6:bf:54:b4:7a:f2:02:
                    5c:d5:99:3a:c8:a9:e6:73:ab:0b:b9:82:47:ec:38:b4:
                    95:29:48:f1:c3:3b:2f:43:c9:a5:d4:c8:9d:1f:11:e1:
                    c1:f9:92:45:3b:f3:a8:72:5c:9d:24:ea:4a:68:f6:46:
                    83:dc:d0:26:4f:b4:05:45:54:42:6f:ad:12:23:c0:28:
                    ae:02:43:62:fe:a1:4a:60:d4:54:fa:45:fe:74:3b:ab:
                    2a:6e:45:2b:c1:3f:a3:67:fd:2c:59:86:b6:b1:12:10:
                    0d:30:58:3c:32:93:8e:09:16:84:7a:03:d0:a0:01:4f:
                    0c:b9:3f:34:56:d5:5c:44:5d:83:27:9b:3f:5f:8e:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        18:22:a5:db:ff:ad:96:51:84:c6:c6:72:c1:d6:4c:bd:
        39:f9:81:96:97:6f:f5:c0:ba:0d:87:38:01:50:6b:5b:
        70:35:65:67:01:3e:30:f2:a2:eb:59:49:c3:f3:7d:da:
        da:ba:77:ea:40:43:d3:16:41:af:1b:3d:1c:07:2e:5e:
        f7:08:59:44:8b:cd:da:f3:9f:a4:c4:13:73:9c:e8:3e:
        a1:37:41:0d:b6:13:d4:04:24:4e:85:71:fe:a7:89:1c:
        20:92:15:f8:51:b6:a2:e3:6e:6c:92:01:09:24:fe:9f:
        1d:15:01:ba:24:92:41:7e:fa:3b:2f:98:be:23:bb:5e:
        d8:d2:de:1f:d7:85:31:f7:17:5b:97:f2:9a:95:af:e5:
        ef:fb:50:7a:4e:15:fd:6f:2c:21:40:76:5b:ae:74:89:
        b5:37:e9:d2:74:fb:a2:69:f5:c9:82:e5:78:02:7f:9d:
        a3:fc:99:1d:79:73:f0:46:e8:a2:67:4d:cf:bf:bf:6a:
        65:d6:05:83:50:17:60:2d:8a:4d:67:84:09:fb:24:80:
        48:87:28:f1:f1:56:92:af:e4:5d:40:49:dc:6c:2d:ff:
        7c:61:4f:66:28:ec:a3:16:ea:b1:bd:fe:6d:e3:74:24:
        6c:30:a7:27:c6:4a:d5:b7:f0:27:be:3f:1e:50:38:3e
    Fingerprint (SHA-256):
        B8:44:8D:29:09:46:F4:EE:F8:EB:69:97:43:0F:B8:E7:BF:55:72:C9:AB:AC:1B:7E:AA:C3:D5:54:D0:61:0E:C7
    Fingerprint (SHA1):
        EC:8D:B4:01:29:DE:3E:C3:6C:38:5F:40:75:AE:BC:6C:F7:2A:E0:62
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13344: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #13345: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #13346: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 19442 at Sat Oct 21 18:00:23 UTC 2017
kill -USR1 19442
httpserv: normal termination
httpserv -b -p 9193 2>/dev/null;
httpserv with PID 19442 killed at Sat Oct 21 18:00:24 UTC 2017
httpserv starting at Sat Oct 21 18:00:24 UTC 2017
httpserv -D -p 9193  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O random -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.3868  &
trying to connect to httpserv at Sat Oct 21 18:00:24 UTC 2017
tstclnt -p 9193 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9193 (address=127.0.0.1)
tstclnt: exiting with return code 0
kill -0 19691 >/dev/null 2>/dev/null
httpserv with PID 19691 found at Sat Oct 21 18:00:24 UTC 2017
httpserv with PID 19691 started at Sat Oct 21 18:00:25 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #13347: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #13348: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175746 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13349: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #13350: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #13351: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175747 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13352: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #13353: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #13354: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13355: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 1021175748 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13356: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13357: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 1021175749 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13358: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13359: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #13360: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #13361: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13362: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 1021175750   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13363: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13364: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13365: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #13366: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #13367: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175747 (0x3cdde7c3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 18:00:34 2017
            Not After : Fri Oct 21 18:00:34 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:89:7b:f8:2d:90:94:dd:42:05:c2:e7:31:6b:00:ac:
                    f9:d0:25:dd:3a:8a:ad:2b:b8:9f:92:31:da:28:91:52:
                    09:4a:19:bb:44:e0:94:d8:ef:6c:2e:1c:31:9b:ac:b5:
                    f7:48:ff:f0:22:d6:e2:0b:d2:a9:8d:2e:f3:76:6a:cb:
                    42:21:fc:ca:d9:0a:b6:56:c9:16:c5:cc:bf:02:de:08:
                    87:1a:a5:00:84:18:70:82:8a:a6:92:3a:26:49:86:77:
                    dc:ff:f8:46:bf:d8:1d:36:aa:80:a1:53:28:2b:ba:77:
                    c0:7a:72:b5:b4:ff:37:8b:2a:89:e1:ba:9d:4d:3e:fa:
                    25:61:c2:07:f7:18:76:eb:36:65:9a:49:b7:1d:da:64:
                    41:ee:4a:51:bd:93:87:9e:12:16:5a:00:f2:90:d4:d0:
                    2e:c7:4d:ad:9b:a8:62:b8:fb:bb:4f:de:a5:b1:75:ed:
                    b4:7c:71:d7:f8:4d:4c:ed:38:60:e8:75:44:4b:b9:28:
                    17:f6:2f:1c:62:3f:45:95:fa:c8:b9:59:29:27:84:7e:
                    35:50:45:d7:41:89:0a:ca:73:7b:a2:7a:1f:2a:73:05:
                    2c:38:e2:64:17:e7:b9:bc:c7:26:d0:e6:7c:a7:fd:01:
                    13:b8:92:cd:f3:5e:80:bf:02:8a:a1:ee:08:d6:5f:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6d:c6:04:4c:5e:da:f4:d4:3d:14:66:1e:ad:39:74:8a:
        61:19:32:6b:f6:a8:87:ec:7f:b6:64:d0:84:2f:8a:3b:
        7f:8f:a0:df:47:3c:45:07:c1:3a:0a:78:8a:20:a7:91:
        d7:63:34:94:f1:82:54:a1:7e:44:0d:cf:95:04:6c:a7:
        61:80:c3:f1:72:7b:dc:f3:31:9b:69:46:2d:e8:f6:be:
        44:32:c2:28:a5:ca:8a:b7:e8:08:40:08:ec:44:7b:3a:
        c9:b1:05:8c:9a:24:81:3b:2b:30:b2:29:45:4f:d9:69:
        f2:ad:c9:ad:07:4f:8c:02:be:b6:34:ac:d6:72:3d:55:
        1a:71:f1:83:19:8d:21:fd:05:a9:3b:eb:bf:07:37:72:
        2a:1c:45:7e:e6:63:aa:f2:2c:ea:07:3c:1c:ed:95:3d:
        b0:24:0d:15:80:91:bc:9d:d9:b9:bb:8a:b1:40:d0:a9:
        67:3a:e4:b0:77:8e:b5:97:71:f0:1d:03:19:6a:f5:8a:
        95:40:55:3d:2c:ff:64:10:21:49:db:5a:94:8a:ba:ef:
        8f:51:7d:c5:63:cf:8c:ab:dc:d3:a2:dd:9c:8f:3a:57:
        a8:a3:f9:f0:d6:ac:3b:f1:62:ee:dd:d5:7e:8f:10:df:
        63:66:f5:19:02:d5:a8:9d:fa:c0:17:51:f7:ea:53:a9
    Fingerprint (SHA-256):
        CE:A7:16:09:F4:0C:EE:7A:07:7C:AF:84:68:F9:A3:82:06:59:96:15:F1:59:BA:DC:35:B9:D8:FB:02:48:5B:51
    Fingerprint (SHA1):
        00:6B:B7:6B:F6:02:F9:D5:95:21:4F:87:9D:9C:80:7D:52:44:4E:02
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13368: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175746 (0x3cdde7c2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 18:00:29 2017
            Not After : Fri Oct 21 18:00:29 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:11:8e:ad:d5:63:02:3b:08:49:5d:00:2a:96:a7:38:
                    cf:9f:46:56:87:ff:42:d1:a8:78:89:62:ec:6a:f2:47:
                    21:eb:ad:37:63:4c:f2:80:13:f3:af:d2:89:6d:f7:0a:
                    28:6f:b9:60:95:5a:5a:bb:9f:c4:73:b0:2d:19:b0:92:
                    0e:84:d9:c7:30:e0:a8:c9:b9:37:cf:05:7a:a2:ec:3d:
                    8a:27:64:be:67:bd:18:47:ce:00:05:15:25:e9:f5:a6:
                    3a:54:67:a7:6c:16:dd:2e:00:74:68:38:a4:09:f5:92:
                    02:7a:0f:c0:84:30:fb:ca:74:d6:0f:58:91:ac:43:f2:
                    2a:80:87:7c:4d:ba:f2:2c:93:94:ef:5c:be:2c:6a:ab:
                    09:93:c1:e7:ca:a5:4e:5a:cc:54:5a:09:12:93:d2:f5:
                    fd:61:aa:ea:a7:35:27:25:a3:45:f1:af:0d:a1:95:bb:
                    18:44:f1:fb:c9:5c:94:ea:01:21:3a:67:0a:33:b2:9a:
                    a6:ab:13:f5:58:6e:8e:85:92:86:c0:cf:c1:b5:7d:90:
                    8f:5c:b0:63:25:71:69:90:8c:21:6c:0f:0c:32:5a:39:
                    19:1c:e4:ca:61:03:22:85:d1:05:8c:74:6d:9a:b0:cb:
                    58:50:d8:de:72:e4:32:73:ac:91:1a:f8:98:4e:d2:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        65:bf:86:0e:c6:75:df:b9:af:76:e5:ce:ba:71:ca:3d:
        ba:ce:ca:54:c0:54:22:5c:63:bb:17:13:e7:fc:d7:95:
        f7:fd:92:7f:7d:64:dd:4c:8a:ab:07:e6:d2:d9:c0:06:
        1d:12:91:e5:22:87:2c:94:ec:73:88:84:ea:71:25:08:
        1c:5f:35:51:98:62:07:a7:51:dc:2d:fd:20:70:93:12:
        4b:67:7f:6a:cc:b2:58:b3:54:81:33:91:25:86:fb:b7:
        cc:f2:d4:9f:8a:95:28:32:6e:f1:97:c7:4f:b1:bb:83:
        be:ef:37:45:aa:3c:01:bb:d6:2b:99:53:52:b6:7b:57:
        f1:d6:3a:ba:af:a3:d0:6f:cf:88:bb:2d:86:73:35:ae:
        cb:36:ea:49:2c:9b:e5:54:13:d0:d6:5f:af:91:30:b1:
        4d:81:a5:9f:39:34:7e:fd:ff:18:12:cb:58:da:cb:39:
        99:07:2b:ab:37:db:9e:43:1e:8f:f8:9c:e5:64:55:9b:
        a2:34:5a:b8:96:5d:c7:5f:4b:47:8c:0f:4d:3d:65:56:
        bc:59:00:d2:df:42:9b:74:d7:c7:61:43:4d:16:85:90:
        35:31:a0:d2:36:68:96:29:0d:44:8b:bc:e0:73:ae:4e:
        db:2f:bf:cf:ea:14:60:19:85:ca:1a:ad:3c:54:16:88
    Fingerprint (SHA-256):
        0C:9A:05:F8:E4:79:49:8C:6C:2E:3D:7E:67:ED:DE:F1:C2:C9:A2:3E:39:A6:83:F0:6F:01:FA:BC:08:CE:B7:99
    Fingerprint (SHA1):
        2B:DC:4F:6A:20:EE:A6:68:EF:AB:50:09:92:5E:42:0C:76:49:75:08
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13369: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #13370: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #13371: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #13372: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175746 (0x3cdde7c2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 18:00:29 2017
            Not After : Fri Oct 21 18:00:29 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:11:8e:ad:d5:63:02:3b:08:49:5d:00:2a:96:a7:38:
                    cf:9f:46:56:87:ff:42:d1:a8:78:89:62:ec:6a:f2:47:
                    21:eb:ad:37:63:4c:f2:80:13:f3:af:d2:89:6d:f7:0a:
                    28:6f:b9:60:95:5a:5a:bb:9f:c4:73:b0:2d:19:b0:92:
                    0e:84:d9:c7:30:e0:a8:c9:b9:37:cf:05:7a:a2:ec:3d:
                    8a:27:64:be:67:bd:18:47:ce:00:05:15:25:e9:f5:a6:
                    3a:54:67:a7:6c:16:dd:2e:00:74:68:38:a4:09:f5:92:
                    02:7a:0f:c0:84:30:fb:ca:74:d6:0f:58:91:ac:43:f2:
                    2a:80:87:7c:4d:ba:f2:2c:93:94:ef:5c:be:2c:6a:ab:
                    09:93:c1:e7:ca:a5:4e:5a:cc:54:5a:09:12:93:d2:f5:
                    fd:61:aa:ea:a7:35:27:25:a3:45:f1:af:0d:a1:95:bb:
                    18:44:f1:fb:c9:5c:94:ea:01:21:3a:67:0a:33:b2:9a:
                    a6:ab:13:f5:58:6e:8e:85:92:86:c0:cf:c1:b5:7d:90:
                    8f:5c:b0:63:25:71:69:90:8c:21:6c:0f:0c:32:5a:39:
                    19:1c:e4:ca:61:03:22:85:d1:05:8c:74:6d:9a:b0:cb:
                    58:50:d8:de:72:e4:32:73:ac:91:1a:f8:98:4e:d2:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        65:bf:86:0e:c6:75:df:b9:af:76:e5:ce:ba:71:ca:3d:
        ba:ce:ca:54:c0:54:22:5c:63:bb:17:13:e7:fc:d7:95:
        f7:fd:92:7f:7d:64:dd:4c:8a:ab:07:e6:d2:d9:c0:06:
        1d:12:91:e5:22:87:2c:94:ec:73:88:84:ea:71:25:08:
        1c:5f:35:51:98:62:07:a7:51:dc:2d:fd:20:70:93:12:
        4b:67:7f:6a:cc:b2:58:b3:54:81:33:91:25:86:fb:b7:
        cc:f2:d4:9f:8a:95:28:32:6e:f1:97:c7:4f:b1:bb:83:
        be:ef:37:45:aa:3c:01:bb:d6:2b:99:53:52:b6:7b:57:
        f1:d6:3a:ba:af:a3:d0:6f:cf:88:bb:2d:86:73:35:ae:
        cb:36:ea:49:2c:9b:e5:54:13:d0:d6:5f:af:91:30:b1:
        4d:81:a5:9f:39:34:7e:fd:ff:18:12:cb:58:da:cb:39:
        99:07:2b:ab:37:db:9e:43:1e:8f:f8:9c:e5:64:55:9b:
        a2:34:5a:b8:96:5d:c7:5f:4b:47:8c:0f:4d:3d:65:56:
        bc:59:00:d2:df:42:9b:74:d7:c7:61:43:4d:16:85:90:
        35:31:a0:d2:36:68:96:29:0d:44:8b:bc:e0:73:ae:4e:
        db:2f:bf:cf:ea:14:60:19:85:ca:1a:ad:3c:54:16:88
    Fingerprint (SHA-256):
        0C:9A:05:F8:E4:79:49:8C:6C:2E:3D:7E:67:ED:DE:F1:C2:C9:A2:3E:39:A6:83:F0:6F:01:FA:BC:08:CE:B7:99
    Fingerprint (SHA1):
        2B:DC:4F:6A:20:EE:A6:68:EF:AB:50:09:92:5E:42:0C:76:49:75:08
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13373: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175747 (0x3cdde7c3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 18:00:34 2017
            Not After : Fri Oct 21 18:00:34 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:89:7b:f8:2d:90:94:dd:42:05:c2:e7:31:6b:00:ac:
                    f9:d0:25:dd:3a:8a:ad:2b:b8:9f:92:31:da:28:91:52:
                    09:4a:19:bb:44:e0:94:d8:ef:6c:2e:1c:31:9b:ac:b5:
                    f7:48:ff:f0:22:d6:e2:0b:d2:a9:8d:2e:f3:76:6a:cb:
                    42:21:fc:ca:d9:0a:b6:56:c9:16:c5:cc:bf:02:de:08:
                    87:1a:a5:00:84:18:70:82:8a:a6:92:3a:26:49:86:77:
                    dc:ff:f8:46:bf:d8:1d:36:aa:80:a1:53:28:2b:ba:77:
                    c0:7a:72:b5:b4:ff:37:8b:2a:89:e1:ba:9d:4d:3e:fa:
                    25:61:c2:07:f7:18:76:eb:36:65:9a:49:b7:1d:da:64:
                    41:ee:4a:51:bd:93:87:9e:12:16:5a:00:f2:90:d4:d0:
                    2e:c7:4d:ad:9b:a8:62:b8:fb:bb:4f:de:a5:b1:75:ed:
                    b4:7c:71:d7:f8:4d:4c:ed:38:60:e8:75:44:4b:b9:28:
                    17:f6:2f:1c:62:3f:45:95:fa:c8:b9:59:29:27:84:7e:
                    35:50:45:d7:41:89:0a:ca:73:7b:a2:7a:1f:2a:73:05:
                    2c:38:e2:64:17:e7:b9:bc:c7:26:d0:e6:7c:a7:fd:01:
                    13:b8:92:cd:f3:5e:80:bf:02:8a:a1:ee:08:d6:5f:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6d:c6:04:4c:5e:da:f4:d4:3d:14:66:1e:ad:39:74:8a:
        61:19:32:6b:f6:a8:87:ec:7f:b6:64:d0:84:2f:8a:3b:
        7f:8f:a0:df:47:3c:45:07:c1:3a:0a:78:8a:20:a7:91:
        d7:63:34:94:f1:82:54:a1:7e:44:0d:cf:95:04:6c:a7:
        61:80:c3:f1:72:7b:dc:f3:31:9b:69:46:2d:e8:f6:be:
        44:32:c2:28:a5:ca:8a:b7:e8:08:40:08:ec:44:7b:3a:
        c9:b1:05:8c:9a:24:81:3b:2b:30:b2:29:45:4f:d9:69:
        f2:ad:c9:ad:07:4f:8c:02:be:b6:34:ac:d6:72:3d:55:
        1a:71:f1:83:19:8d:21:fd:05:a9:3b:eb:bf:07:37:72:
        2a:1c:45:7e:e6:63:aa:f2:2c:ea:07:3c:1c:ed:95:3d:
        b0:24:0d:15:80:91:bc:9d:d9:b9:bb:8a:b1:40:d0:a9:
        67:3a:e4:b0:77:8e:b5:97:71:f0:1d:03:19:6a:f5:8a:
        95:40:55:3d:2c:ff:64:10:21:49:db:5a:94:8a:ba:ef:
        8f:51:7d:c5:63:cf:8c:ab:dc:d3:a2:dd:9c:8f:3a:57:
        a8:a3:f9:f0:d6:ac:3b:f1:62:ee:dd:d5:7e:8f:10:df:
        63:66:f5:19:02:d5:a8:9d:fa:c0:17:51:f7:ea:53:a9
    Fingerprint (SHA-256):
        CE:A7:16:09:F4:0C:EE:7A:07:7C:AF:84:68:F9:A3:82:06:59:96:15:F1:59:BA:DC:35:B9:D8:FB:02:48:5B:51
    Fingerprint (SHA1):
        00:6B:B7:6B:F6:02:F9:D5:95:21:4F:87:9D:9C:80:7D:52:44:4E:02
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13374: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #13375: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #13376: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #13377: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #13378: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #13379: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175747 (0x3cdde7c3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 18:00:34 2017
            Not After : Fri Oct 21 18:00:34 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:89:7b:f8:2d:90:94:dd:42:05:c2:e7:31:6b:00:ac:
                    f9:d0:25:dd:3a:8a:ad:2b:b8:9f:92:31:da:28:91:52:
                    09:4a:19:bb:44:e0:94:d8:ef:6c:2e:1c:31:9b:ac:b5:
                    f7:48:ff:f0:22:d6:e2:0b:d2:a9:8d:2e:f3:76:6a:cb:
                    42:21:fc:ca:d9:0a:b6:56:c9:16:c5:cc:bf:02:de:08:
                    87:1a:a5:00:84:18:70:82:8a:a6:92:3a:26:49:86:77:
                    dc:ff:f8:46:bf:d8:1d:36:aa:80:a1:53:28:2b:ba:77:
                    c0:7a:72:b5:b4:ff:37:8b:2a:89:e1:ba:9d:4d:3e:fa:
                    25:61:c2:07:f7:18:76:eb:36:65:9a:49:b7:1d:da:64:
                    41:ee:4a:51:bd:93:87:9e:12:16:5a:00:f2:90:d4:d0:
                    2e:c7:4d:ad:9b:a8:62:b8:fb:bb:4f:de:a5:b1:75:ed:
                    b4:7c:71:d7:f8:4d:4c:ed:38:60:e8:75:44:4b:b9:28:
                    17:f6:2f:1c:62:3f:45:95:fa:c8:b9:59:29:27:84:7e:
                    35:50:45:d7:41:89:0a:ca:73:7b:a2:7a:1f:2a:73:05:
                    2c:38:e2:64:17:e7:b9:bc:c7:26:d0:e6:7c:a7:fd:01:
                    13:b8:92:cd:f3:5e:80:bf:02:8a:a1:ee:08:d6:5f:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6d:c6:04:4c:5e:da:f4:d4:3d:14:66:1e:ad:39:74:8a:
        61:19:32:6b:f6:a8:87:ec:7f:b6:64:d0:84:2f:8a:3b:
        7f:8f:a0:df:47:3c:45:07:c1:3a:0a:78:8a:20:a7:91:
        d7:63:34:94:f1:82:54:a1:7e:44:0d:cf:95:04:6c:a7:
        61:80:c3:f1:72:7b:dc:f3:31:9b:69:46:2d:e8:f6:be:
        44:32:c2:28:a5:ca:8a:b7:e8:08:40:08:ec:44:7b:3a:
        c9:b1:05:8c:9a:24:81:3b:2b:30:b2:29:45:4f:d9:69:
        f2:ad:c9:ad:07:4f:8c:02:be:b6:34:ac:d6:72:3d:55:
        1a:71:f1:83:19:8d:21:fd:05:a9:3b:eb:bf:07:37:72:
        2a:1c:45:7e:e6:63:aa:f2:2c:ea:07:3c:1c:ed:95:3d:
        b0:24:0d:15:80:91:bc:9d:d9:b9:bb:8a:b1:40:d0:a9:
        67:3a:e4:b0:77:8e:b5:97:71:f0:1d:03:19:6a:f5:8a:
        95:40:55:3d:2c:ff:64:10:21:49:db:5a:94:8a:ba:ef:
        8f:51:7d:c5:63:cf:8c:ab:dc:d3:a2:dd:9c:8f:3a:57:
        a8:a3:f9:f0:d6:ac:3b:f1:62:ee:dd:d5:7e:8f:10:df:
        63:66:f5:19:02:d5:a8:9d:fa:c0:17:51:f7:ea:53:a9
    Fingerprint (SHA-256):
        CE:A7:16:09:F4:0C:EE:7A:07:7C:AF:84:68:F9:A3:82:06:59:96:15:F1:59:BA:DC:35:B9:D8:FB:02:48:5B:51
    Fingerprint (SHA1):
        00:6B:B7:6B:F6:02:F9:D5:95:21:4F:87:9D:9C:80:7D:52:44:4E:02
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13380: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175747 (0x3cdde7c3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 18:00:34 2017
            Not After : Fri Oct 21 18:00:34 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:89:7b:f8:2d:90:94:dd:42:05:c2:e7:31:6b:00:ac:
                    f9:d0:25:dd:3a:8a:ad:2b:b8:9f:92:31:da:28:91:52:
                    09:4a:19:bb:44:e0:94:d8:ef:6c:2e:1c:31:9b:ac:b5:
                    f7:48:ff:f0:22:d6:e2:0b:d2:a9:8d:2e:f3:76:6a:cb:
                    42:21:fc:ca:d9:0a:b6:56:c9:16:c5:cc:bf:02:de:08:
                    87:1a:a5:00:84:18:70:82:8a:a6:92:3a:26:49:86:77:
                    dc:ff:f8:46:bf:d8:1d:36:aa:80:a1:53:28:2b:ba:77:
                    c0:7a:72:b5:b4:ff:37:8b:2a:89:e1:ba:9d:4d:3e:fa:
                    25:61:c2:07:f7:18:76:eb:36:65:9a:49:b7:1d:da:64:
                    41:ee:4a:51:bd:93:87:9e:12:16:5a:00:f2:90:d4:d0:
                    2e:c7:4d:ad:9b:a8:62:b8:fb:bb:4f:de:a5:b1:75:ed:
                    b4:7c:71:d7:f8:4d:4c:ed:38:60:e8:75:44:4b:b9:28:
                    17:f6:2f:1c:62:3f:45:95:fa:c8:b9:59:29:27:84:7e:
                    35:50:45:d7:41:89:0a:ca:73:7b:a2:7a:1f:2a:73:05:
                    2c:38:e2:64:17:e7:b9:bc:c7:26:d0:e6:7c:a7:fd:01:
                    13:b8:92:cd:f3:5e:80:bf:02:8a:a1:ee:08:d6:5f:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6d:c6:04:4c:5e:da:f4:d4:3d:14:66:1e:ad:39:74:8a:
        61:19:32:6b:f6:a8:87:ec:7f:b6:64:d0:84:2f:8a:3b:
        7f:8f:a0:df:47:3c:45:07:c1:3a:0a:78:8a:20:a7:91:
        d7:63:34:94:f1:82:54:a1:7e:44:0d:cf:95:04:6c:a7:
        61:80:c3:f1:72:7b:dc:f3:31:9b:69:46:2d:e8:f6:be:
        44:32:c2:28:a5:ca:8a:b7:e8:08:40:08:ec:44:7b:3a:
        c9:b1:05:8c:9a:24:81:3b:2b:30:b2:29:45:4f:d9:69:
        f2:ad:c9:ad:07:4f:8c:02:be:b6:34:ac:d6:72:3d:55:
        1a:71:f1:83:19:8d:21:fd:05:a9:3b:eb:bf:07:37:72:
        2a:1c:45:7e:e6:63:aa:f2:2c:ea:07:3c:1c:ed:95:3d:
        b0:24:0d:15:80:91:bc:9d:d9:b9:bb:8a:b1:40:d0:a9:
        67:3a:e4:b0:77:8e:b5:97:71:f0:1d:03:19:6a:f5:8a:
        95:40:55:3d:2c:ff:64:10:21:49:db:5a:94:8a:ba:ef:
        8f:51:7d:c5:63:cf:8c:ab:dc:d3:a2:dd:9c:8f:3a:57:
        a8:a3:f9:f0:d6:ac:3b:f1:62:ee:dd:d5:7e:8f:10:df:
        63:66:f5:19:02:d5:a8:9d:fa:c0:17:51:f7:ea:53:a9
    Fingerprint (SHA-256):
        CE:A7:16:09:F4:0C:EE:7A:07:7C:AF:84:68:F9:A3:82:06:59:96:15:F1:59:BA:DC:35:B9:D8:FB:02:48:5B:51
    Fingerprint (SHA1):
        00:6B:B7:6B:F6:02:F9:D5:95:21:4F:87:9D:9C:80:7D:52:44:4E:02
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13381: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #13382: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #13383: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #13384: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #13385: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #13386: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175746 (0x3cdde7c2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 18:00:29 2017
            Not After : Fri Oct 21 18:00:29 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:11:8e:ad:d5:63:02:3b:08:49:5d:00:2a:96:a7:38:
                    cf:9f:46:56:87:ff:42:d1:a8:78:89:62:ec:6a:f2:47:
                    21:eb:ad:37:63:4c:f2:80:13:f3:af:d2:89:6d:f7:0a:
                    28:6f:b9:60:95:5a:5a:bb:9f:c4:73:b0:2d:19:b0:92:
                    0e:84:d9:c7:30:e0:a8:c9:b9:37:cf:05:7a:a2:ec:3d:
                    8a:27:64:be:67:bd:18:47:ce:00:05:15:25:e9:f5:a6:
                    3a:54:67:a7:6c:16:dd:2e:00:74:68:38:a4:09:f5:92:
                    02:7a:0f:c0:84:30:fb:ca:74:d6:0f:58:91:ac:43:f2:
                    2a:80:87:7c:4d:ba:f2:2c:93:94:ef:5c:be:2c:6a:ab:
                    09:93:c1:e7:ca:a5:4e:5a:cc:54:5a:09:12:93:d2:f5:
                    fd:61:aa:ea:a7:35:27:25:a3:45:f1:af:0d:a1:95:bb:
                    18:44:f1:fb:c9:5c:94:ea:01:21:3a:67:0a:33:b2:9a:
                    a6:ab:13:f5:58:6e:8e:85:92:86:c0:cf:c1:b5:7d:90:
                    8f:5c:b0:63:25:71:69:90:8c:21:6c:0f:0c:32:5a:39:
                    19:1c:e4:ca:61:03:22:85:d1:05:8c:74:6d:9a:b0:cb:
                    58:50:d8:de:72:e4:32:73:ac:91:1a:f8:98:4e:d2:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        65:bf:86:0e:c6:75:df:b9:af:76:e5:ce:ba:71:ca:3d:
        ba:ce:ca:54:c0:54:22:5c:63:bb:17:13:e7:fc:d7:95:
        f7:fd:92:7f:7d:64:dd:4c:8a:ab:07:e6:d2:d9:c0:06:
        1d:12:91:e5:22:87:2c:94:ec:73:88:84:ea:71:25:08:
        1c:5f:35:51:98:62:07:a7:51:dc:2d:fd:20:70:93:12:
        4b:67:7f:6a:cc:b2:58:b3:54:81:33:91:25:86:fb:b7:
        cc:f2:d4:9f:8a:95:28:32:6e:f1:97:c7:4f:b1:bb:83:
        be:ef:37:45:aa:3c:01:bb:d6:2b:99:53:52:b6:7b:57:
        f1:d6:3a:ba:af:a3:d0:6f:cf:88:bb:2d:86:73:35:ae:
        cb:36:ea:49:2c:9b:e5:54:13:d0:d6:5f:af:91:30:b1:
        4d:81:a5:9f:39:34:7e:fd:ff:18:12:cb:58:da:cb:39:
        99:07:2b:ab:37:db:9e:43:1e:8f:f8:9c:e5:64:55:9b:
        a2:34:5a:b8:96:5d:c7:5f:4b:47:8c:0f:4d:3d:65:56:
        bc:59:00:d2:df:42:9b:74:d7:c7:61:43:4d:16:85:90:
        35:31:a0:d2:36:68:96:29:0d:44:8b:bc:e0:73:ae:4e:
        db:2f:bf:cf:ea:14:60:19:85:ca:1a:ad:3c:54:16:88
    Fingerprint (SHA-256):
        0C:9A:05:F8:E4:79:49:8C:6C:2E:3D:7E:67:ED:DE:F1:C2:C9:A2:3E:39:A6:83:F0:6F:01:FA:BC:08:CE:B7:99
    Fingerprint (SHA1):
        2B:DC:4F:6A:20:EE:A6:68:EF:AB:50:09:92:5E:42:0C:76:49:75:08
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13387: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175746 (0x3cdde7c2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 18:00:29 2017
            Not After : Fri Oct 21 18:00:29 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:11:8e:ad:d5:63:02:3b:08:49:5d:00:2a:96:a7:38:
                    cf:9f:46:56:87:ff:42:d1:a8:78:89:62:ec:6a:f2:47:
                    21:eb:ad:37:63:4c:f2:80:13:f3:af:d2:89:6d:f7:0a:
                    28:6f:b9:60:95:5a:5a:bb:9f:c4:73:b0:2d:19:b0:92:
                    0e:84:d9:c7:30:e0:a8:c9:b9:37:cf:05:7a:a2:ec:3d:
                    8a:27:64:be:67:bd:18:47:ce:00:05:15:25:e9:f5:a6:
                    3a:54:67:a7:6c:16:dd:2e:00:74:68:38:a4:09:f5:92:
                    02:7a:0f:c0:84:30:fb:ca:74:d6:0f:58:91:ac:43:f2:
                    2a:80:87:7c:4d:ba:f2:2c:93:94:ef:5c:be:2c:6a:ab:
                    09:93:c1:e7:ca:a5:4e:5a:cc:54:5a:09:12:93:d2:f5:
                    fd:61:aa:ea:a7:35:27:25:a3:45:f1:af:0d:a1:95:bb:
                    18:44:f1:fb:c9:5c:94:ea:01:21:3a:67:0a:33:b2:9a:
                    a6:ab:13:f5:58:6e:8e:85:92:86:c0:cf:c1:b5:7d:90:
                    8f:5c:b0:63:25:71:69:90:8c:21:6c:0f:0c:32:5a:39:
                    19:1c:e4:ca:61:03:22:85:d1:05:8c:74:6d:9a:b0:cb:
                    58:50:d8:de:72:e4:32:73:ac:91:1a:f8:98:4e:d2:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        65:bf:86:0e:c6:75:df:b9:af:76:e5:ce:ba:71:ca:3d:
        ba:ce:ca:54:c0:54:22:5c:63:bb:17:13:e7:fc:d7:95:
        f7:fd:92:7f:7d:64:dd:4c:8a:ab:07:e6:d2:d9:c0:06:
        1d:12:91:e5:22:87:2c:94:ec:73:88:84:ea:71:25:08:
        1c:5f:35:51:98:62:07:a7:51:dc:2d:fd:20:70:93:12:
        4b:67:7f:6a:cc:b2:58:b3:54:81:33:91:25:86:fb:b7:
        cc:f2:d4:9f:8a:95:28:32:6e:f1:97:c7:4f:b1:bb:83:
        be:ef:37:45:aa:3c:01:bb:d6:2b:99:53:52:b6:7b:57:
        f1:d6:3a:ba:af:a3:d0:6f:cf:88:bb:2d:86:73:35:ae:
        cb:36:ea:49:2c:9b:e5:54:13:d0:d6:5f:af:91:30:b1:
        4d:81:a5:9f:39:34:7e:fd:ff:18:12:cb:58:da:cb:39:
        99:07:2b:ab:37:db:9e:43:1e:8f:f8:9c:e5:64:55:9b:
        a2:34:5a:b8:96:5d:c7:5f:4b:47:8c:0f:4d:3d:65:56:
        bc:59:00:d2:df:42:9b:74:d7:c7:61:43:4d:16:85:90:
        35:31:a0:d2:36:68:96:29:0d:44:8b:bc:e0:73:ae:4e:
        db:2f:bf:cf:ea:14:60:19:85:ca:1a:ad:3c:54:16:88
    Fingerprint (SHA-256):
        0C:9A:05:F8:E4:79:49:8C:6C:2E:3D:7E:67:ED:DE:F1:C2:C9:A2:3E:39:A6:83:F0:6F:01:FA:BC:08:CE:B7:99
    Fingerprint (SHA1):
        2B:DC:4F:6A:20:EE:A6:68:EF:AB:50:09:92:5E:42:0C:76:49:75:08
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13388: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #13389: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175751 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13390: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #13391: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #13392: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175752 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13393: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #13394: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #13395: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175753 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13396: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #13397: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #13398: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175754 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13399: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #13400: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #13401: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175755 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13402: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #13403: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #13404: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175756 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13405: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #13406: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #13407: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175757 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13408: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #13409: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #13410: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175758 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13411: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #13412: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #13413: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175759 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13414: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #13415: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #13416: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13417: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 1021175760 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13418: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13419: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 1021175761 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13420: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13421: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 1021175762 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13422: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13423: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #13424: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #13425: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13426: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 1021175763 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13427: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13428: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 1021175764 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13429: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13430: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 1021175765 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13431: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13432: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #13433: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #13434: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13435: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 1021175766 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13436: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13437: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 1021175767 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13438: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13439: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 1021175768 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13440: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13441: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #13442: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #13443: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13444: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 1021175769 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13445: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13446: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 1021175770 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13447: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13448: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 1021175771 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13449: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13450: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #13451: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13452: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13453: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 1021175772   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13454: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13455: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #13456: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13457: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021175773   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13458: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13459: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175751 (0x3cdde7c7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Sat Oct 21 18:01:16 2017
            Not After : Fri Oct 21 18:01:16 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:e2:44:12:05:fb:d5:44:72:e8:5a:6c:47:55:f0:8b:
                    a5:ea:f0:5a:e7:1c:70:dc:25:de:bf:4f:eb:6a:95:cf:
                    17:8c:33:eb:28:33:da:21:15:7b:ff:e4:af:65:93:42:
                    18:ff:3f:12:0d:7e:1d:84:7a:bc:18:65:51:08:98:f3:
                    1c:78:8f:cd:e8:7d:b1:6f:21:b5:c2:a3:ed:64:3f:94:
                    65:64:a6:2c:a5:29:8e:ca:c7:53:72:f6:90:a1:c8:1e:
                    69:5b:ee:09:f6:34:44:18:06:16:d5:12:6e:8c:d9:21:
                    38:a8:39:fa:e9:c0:29:d9:b0:3a:cd:7f:41:d9:c4:a2:
                    a1:1c:64:c3:08:3d:43:fa:ab:da:ab:87:0c:4e:c2:00:
                    2b:1e:06:aa:27:4d:1b:c9:77:10:34:cf:56:bc:74:85:
                    25:2a:86:a9:93:be:91:0d:a9:e6:dd:cb:0b:9d:ea:20:
                    14:08:d8:ea:db:fa:0b:78:f8:0a:83:4c:ca:08:b4:40:
                    11:f5:64:60:1a:02:56:b3:ac:84:e4:08:fa:29:ea:f2:
                    9f:8d:47:7c:68:97:84:25:23:61:2b:94:74:b0:1f:f5:
                    97:d8:59:c2:12:14:f8:a6:33:22:64:6a:02:ba:f3:5b:
                    b7:2a:4d:5f:67:d1:cf:24:24:4c:52:63:2d:1b:b6:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d3:f3:21:3b:ba:1b:dd:d6:95:82:0e:d9:67:26:df:76:
        36:a2:11:d5:00:b3:0e:55:cb:7a:cb:57:56:62:52:64:
        97:e7:c1:fa:3d:36:9b:de:50:4f:f1:12:2e:49:2f:00:
        34:04:a4:f3:92:47:6f:56:33:73:1a:bb:e0:51:5a:3f:
        ef:13:a3:64:da:5f:6c:b2:1a:c8:42:ea:7a:a3:2b:90:
        7b:bd:73:93:82:b9:90:f1:14:07:59:b6:7c:6e:cb:af:
        16:87:cb:4c:b6:08:a8:ce:92:b4:94:20:ba:50:53:b0:
        27:15:f5:6c:37:c0:5f:be:14:c9:96:c0:d9:ff:54:cd:
        1a:86:7a:49:bc:cd:d1:65:eb:d2:91:8a:53:74:09:12:
        c4:10:79:6b:d1:e3:58:40:33:f2:68:9e:8a:38:e2:62:
        31:cf:d9:80:b2:87:bf:a8:38:20:e6:97:fb:7d:55:d2:
        45:86:9b:97:e3:8d:2d:c7:99:4a:85:09:82:3f:4f:91:
        f6:6f:f5:ee:72:e9:bc:b7:41:f5:54:22:a5:d7:9f:fe:
        8a:83:80:7b:16:a9:60:7c:e3:f2:8a:96:43:3e:03:4d:
        3b:da:92:c2:54:ca:7b:7a:e2:17:4e:4c:4b:cc:41:4c:
        18:d9:a6:50:31:34:cc:ba:c1:51:c5:33:45:f0:20:38
    Fingerprint (SHA-256):
        8B:1C:83:3F:48:36:33:6B:D4:D0:A8:5A:EA:4F:93:E7:DA:47:DB:71:EB:1F:E2:3F:6C:69:10:99:E6:6B:3B:6D
    Fingerprint (SHA1):
        6D:FB:BD:D1:70:43:73:DA:71:53:FB:A8:15:14:6A:95:47:41:DB:0E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #13460: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175752 (0x3cdde7c8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Sat Oct 21 18:01:22 2017
            Not After : Fri Oct 21 18:01:22 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:f1:79:78:cc:c9:f0:1d:02:f0:a3:9f:ec:3f:4d:92:
                    0a:7b:77:b5:12:b2:6b:1b:83:91:d6:fd:04:2a:8a:62:
                    e0:04:4a:4e:d1:34:cf:c3:3e:a2:a7:ca:43:fb:21:8b:
                    39:f4:e3:2c:ae:42:fc:6f:02:b9:16:67:67:79:06:3c:
                    86:f4:f4:74:0f:6b:d9:ca:1e:c9:1d:c2:08:f5:f5:e7:
                    e5:8d:84:7b:eb:dd:47:18:c2:b1:5a:ba:23:52:22:3e:
                    ec:01:91:0c:23:33:ab:67:c6:a1:3e:32:3b:5a:1d:36:
                    ca:97:19:b4:6b:c1:a5:3f:43:59:18:c6:50:84:84:59:
                    60:92:ff:0f:52:1f:2b:a1:61:16:da:54:37:54:7c:c0:
                    c1:d5:9d:01:7d:31:5a:22:96:75:8c:e3:0f:06:85:5a:
                    90:dd:ab:24:28:89:8c:fd:df:20:1d:11:4b:7f:28:dc:
                    8f:44:7a:4a:60:76:31:ab:c7:c4:d9:e2:fc:7e:43:4a:
                    18:0e:93:d9:17:c5:b9:ca:98:6b:d5:1a:3e:ae:7f:58:
                    e1:cc:73:bb:f9:69:26:00:87:aa:9f:ab:6e:fd:da:85:
                    1b:99:6a:49:8d:51:18:cf:86:68:f5:ca:58:05:84:26:
                    6a:37:1e:12:56:88:b8:d4:42:70:8b:e3:be:d0:bc:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:2d:37:37:57:f9:9d:72:98:fa:ca:83:0e:29:06:79:
        16:14:f8:eb:e2:da:c1:23:43:16:40:12:ab:5d:97:56:
        fc:ea:4e:cf:04:e1:50:6f:29:85:a4:1e:53:6d:d3:21:
        5c:c2:d1:39:e4:4e:c9:ed:0e:0e:a1:80:8d:0b:fc:c0:
        d1:db:0a:70:de:fe:4f:54:12:31:13:92:61:cd:90:e3:
        82:f3:8e:64:5a:58:9e:4b:a3:0e:14:70:f1:c4:41:23:
        f4:49:16:3b:26:f4:ca:49:49:1b:88:e4:00:00:ba:36:
        64:28:fa:0a:af:2f:bc:35:ef:a7:35:cb:5e:c3:37:ae:
        2a:f4:c2:fc:25:43:06:bc:74:56:d1:49:8b:7e:ff:97:
        ff:62:2e:24:95:64:00:22:0e:95:19:70:a7:90:29:54:
        7e:fa:80:e5:9b:56:9c:bd:ef:eb:19:7b:c0:3c:0f:34:
        3a:cc:bd:a7:69:be:7b:a8:e1:40:37:0b:70:bb:27:10:
        af:9f:33:f4:97:d6:8f:8d:51:34:fa:b7:8a:f2:60:ca:
        b3:f1:d0:82:d2:a0:5d:2e:0f:ad:e3:24:fa:6c:2b:14:
        db:8d:a1:38:46:cc:f3:69:a8:24:67:4a:ad:ad:7a:72:
        7b:39:f9:96:a8:52:bd:fc:51:70:2f:cc:c3:c0:03:53
    Fingerprint (SHA-256):
        50:0A:FC:E3:10:2E:02:F1:99:3B:F1:68:13:E5:18:A1:9F:D3:7E:8D:2D:3C:1F:89:63:9B:FF:C4:F3:EE:37:67
    Fingerprint (SHA1):
        2F:10:E6:88:1D:29:5D:0E:A9:90:68:28:B4:EB:FF:02:A3:9E:27:3E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #13461: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175753 (0x3cdde7c9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Sat Oct 21 18:01:29 2017
            Not After : Fri Oct 21 18:01:29 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:25:80:7b:dd:8d:5d:9b:41:66:fd:1e:be:6b:98:0a:
                    10:bb:0a:d4:af:1b:29:fa:54:f5:d8:86:c9:27:70:81:
                    fd:71:d7:b2:70:74:42:e2:7d:c4:03:55:f2:c4:98:2c:
                    a2:d7:e8:43:53:08:b9:a0:c1:16:8a:0a:73:fb:ef:ab:
                    77:99:8a:17:56:d9:05:12:f7:36:c9:e4:a2:dc:09:38:
                    7a:b0:28:9a:87:67:d2:82:a1:af:61:87:32:51:7b:44:
                    28:94:17:81:91:fd:03:2a:53:af:2e:9c:92:3b:53:0b:
                    9b:a8:00:31:60:7a:34:65:bf:e6:3b:12:64:d9:b4:9a:
                    de:73:7d:40:25:30:8b:fc:28:87:83:76:f0:60:01:40:
                    3a:9b:f8:b0:66:71:ed:33:8c:01:7c:14:4b:dc:a2:d8:
                    13:4c:65:17:0d:ce:85:94:eb:76:bd:55:a4:91:ca:a6:
                    f1:f7:a8:c3:7e:d9:b3:99:6e:04:08:6b:de:2e:4d:46:
                    ae:e3:c9:cb:ee:6a:48:a6:fa:93:36:3e:98:5a:0a:21:
                    7e:b9:9f:ad:c7:66:d3:96:1a:fb:3a:6e:56:74:01:6c:
                    93:32:33:a5:7d:f1:d1:9f:9f:3d:31:d7:a1:55:db:dc:
                    4a:9d:90:b8:c5:65:4e:1a:a8:f0:43:ba:01:88:57:a1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:43:ce:cd:84:e5:06:00:e8:b4:de:07:4c:31:85:86:
        32:26:d5:5d:b2:fe:cf:7b:67:23:34:28:be:a7:ad:24:
        ae:c1:2b:25:74:12:59:6d:0a:cb:1f:9d:f6:18:ca:9f:
        38:a3:51:97:39:33:0d:07:6e:97:32:3d:07:86:6b:a1:
        e0:e8:1c:1a:02:95:58:72:1c:0c:0b:42:cc:8d:00:26:
        34:8c:a6:1b:70:67:f1:9e:25:d7:36:50:ba:03:59:5d:
        5e:8d:36:a2:81:5e:b0:8f:80:e1:0a:6d:ef:58:1a:b9:
        bb:22:2e:ee:36:99:7e:4f:ef:dc:e8:e4:0e:8c:7e:fb:
        0d:3c:3f:2a:9f:ef:72:a7:f7:dd:aa:4f:4d:25:e8:58:
        c8:ad:76:92:e6:ae:bf:ed:dd:84:a2:79:c6:df:5f:8d:
        5e:ec:22:11:80:67:9f:dc:a6:f0:cf:cf:ac:14:53:f0:
        41:3f:65:9b:5a:d6:73:aa:b5:1f:51:af:1a:84:07:af:
        61:d3:c8:90:d2:a0:8f:33:4c:f6:18:cd:76:ee:b9:a0:
        47:72:23:12:c1:1a:bf:91:c4:be:8f:8a:99:69:82:63:
        96:76:2f:ec:03:d5:9f:ee:14:30:b7:84:13:41:4a:ab:
        b3:8a:e6:70:e4:e1:65:a0:3e:47:31:0f:55:a9:c6:2b
    Fingerprint (SHA-256):
        16:3F:53:F6:B2:D3:A9:7E:00:59:20:23:E2:3C:86:B7:87:20:8E:13:B5:6D:A4:A5:AF:79:2B:E9:73:3F:6A:38
    Fingerprint (SHA1):
        0D:C6:E1:BA:7D:51:15:74:6A:A6:4F:19:2C:50:36:7F:4B:08:3D:1F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #13462: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175754 (0x3cdde7ca)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Sat Oct 21 18:01:37 2017
            Not After : Fri Oct 21 18:01:37 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:28:ab:ee:ad:f7:61:87:c3:60:1c:cb:a1:40:12:30:
                    cf:c9:fe:53:14:58:aa:38:f4:a7:c9:e4:39:83:b4:31:
                    c7:50:42:67:9d:e8:fb:dc:32:46:7a:5f:85:f6:d7:49:
                    42:50:c5:3e:80:d1:5f:b4:6b:eb:b9:eb:e2:12:8c:a3:
                    f0:d5:60:4b:c5:b7:3d:3b:3d:c8:b7:3d:df:31:1b:cf:
                    8b:47:ce:3d:5f:89:08:d3:18:dc:08:1e:2e:81:72:93:
                    b9:65:47:86:e8:98:57:0f:c2:c8:cf:53:14:f2:43:95:
                    bc:57:fa:5f:31:bb:8a:2b:53:3c:79:18:ae:31:27:7d:
                    32:ba:2c:de:c5:b0:05:50:a5:ef:cf:53:3f:85:27:39:
                    72:1a:c0:99:37:98:8a:9f:74:3e:d2:b4:97:0b:9a:55:
                    93:4a:30:07:46:9f:4a:6f:79:46:45:aa:90:a9:cb:93:
                    b4:ca:df:69:37:fe:25:ae:6b:42:01:04:79:1f:f1:83:
                    72:2f:16:d0:1b:6a:c1:78:4c:5a:f0:a5:8a:82:66:fc:
                    96:77:76:8a:0f:5a:39:2f:a0:0c:ae:a1:be:33:bc:77:
                    90:1a:fb:2e:c5:25:a8:25:c1:04:ce:af:ac:4a:4e:06:
                    2f:a0:fe:e5:f1:ea:d6:8f:a3:e2:4e:d3:47:09:ac:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        32:5e:f9:12:a8:78:1c:be:ea:99:03:8d:d5:29:6b:8f:
        38:69:a2:3c:51:00:b1:9d:77:b6:bf:7c:2b:e1:7e:f8:
        8b:8b:ff:0f:0c:6f:24:d5:b4:c1:ba:7d:c7:a5:c6:f9:
        fe:2a:9c:70:90:4a:89:ef:d4:fe:bd:1e:fe:0b:dd:21:
        80:5e:98:62:f1:5c:f3:2f:64:67:03:f5:22:42:62:4e:
        6c:eb:1d:20:15:10:57:12:f2:dd:62:09:e2:ea:a1:c8:
        b0:b3:ef:3d:97:fd:e8:91:7f:f9:90:c8:ed:49:83:08:
        26:c2:74:fb:f4:46:76:f1:86:65:bd:60:e1:14:cf:2f:
        77:19:5d:6f:48:87:a5:c3:f6:c7:d0:1e:02:c7:1b:50:
        ef:b6:03:b0:c2:0a:30:d7:5a:f7:af:77:88:39:64:e8:
        c1:c7:e7:c9:9e:b4:6a:a7:c5:fb:28:2e:0a:f8:c3:19:
        23:a9:be:ca:1d:21:d9:5c:43:53:64:43:ec:2e:2c:6b:
        e5:37:f1:6b:df:98:5e:68:4b:a7:b9:b1:d5:f5:15:63:
        18:e0:c8:04:e8:22:e1:0b:a8:87:85:91:b9:58:9f:70:
        53:70:54:e2:7e:1b:6d:3b:3f:1b:7a:ca:ab:35:d1:86:
        0f:67:50:a4:af:18:43:bb:91:98:d6:50:b8:96:4c:30
    Fingerprint (SHA-256):
        24:59:1B:23:E1:B6:46:66:EE:D9:03:EA:B4:6F:FA:37:F6:09:39:65:9C:49:CD:44:89:6F:F2:EA:4B:D6:D0:3B
    Fingerprint (SHA1):
        E9:2A:09:9C:37:FB:E1:95:E1:D1:F3:C2:C3:54:84:0A:3C:93:DC:3F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #13463: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175755 (0x3cdde7cb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Sat Oct 21 18:01:43 2017
            Not After : Fri Oct 21 18:01:43 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:3a:38:a2:23:28:7a:82:da:9b:87:10:f7:b2:3b:73:
                    e6:de:79:00:27:fa:20:e3:eb:7b:77:66:4a:1e:b2:d3:
                    ec:b5:5c:59:2b:e7:0e:98:cf:d9:24:f5:07:a4:22:fe:
                    71:e1:c5:24:fc:b9:0b:ca:8c:a4:09:1d:9f:2e:55:c0:
                    4a:1e:5d:0c:62:10:fa:d6:49:b0:02:d3:1d:e5:51:3c:
                    25:30:c1:ed:2d:f2:ed:00:1d:4e:46:47:18:b4:39:9f:
                    af:95:6d:dd:bb:aa:f2:01:01:8a:cd:3c:3e:0c:f5:3e:
                    93:aa:1d:fa:f1:0d:d3:02:a3:78:99:a4:b8:42:9f:b8:
                    e5:a8:08:2d:43:21:11:8d:2d:9d:14:3d:70:35:b5:b4:
                    e8:ca:3b:17:24:7f:0c:4d:96:3e:33:25:1a:22:3e:eb:
                    3a:aa:7c:35:ff:54:02:46:53:fd:f5:61:03:af:e2:7a:
                    a7:c6:77:08:dc:3c:95:be:17:b5:b1:cf:ea:b4:16:45:
                    c3:f4:ff:bf:1c:47:6c:fe:00:81:9a:13:d4:82:bb:68:
                    91:9d:f6:44:ce:ed:e9:17:19:02:1d:f9:44:19:9a:54:
                    e1:a7:62:fd:68:70:89:1e:a6:27:93:b6:14:77:de:c7:
                    59:b1:a9:71:1b:c2:76:c5:4e:63:14:13:ca:47:34:bf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:35:c2:e3:91:55:74:6c:ee:91:0a:1e:2b:ac:6b:29:
        4e:55:d7:0d:67:aa:b6:cb:d8:ec:58:55:23:61:4a:31:
        c1:e2:06:ec:7b:1b:bc:8d:0c:c9:91:af:bc:c4:7e:f2:
        e4:e0:cb:61:42:9c:a8:bd:a3:93:75:a8:65:d9:c8:de:
        a1:50:90:e1:5b:82:53:0b:01:cf:f5:c2:3b:b4:1e:a5:
        96:e0:cb:2c:2e:5f:70:0b:af:e7:1c:57:60:88:b4:0f:
        b4:1c:b7:49:e5:fe:49:9e:b5:c0:d7:b1:c9:32:7f:25:
        6b:c2:36:9c:9e:f6:7e:70:0b:53:a7:9d:6b:ce:20:e9:
        fb:14:21:03:76:b1:82:63:98:dd:36:d1:b5:ea:6c:bd:
        2c:f9:fc:b5:51:62:38:3d:52:a3:bc:bb:91:62:68:34:
        97:a4:aa:af:02:af:1e:50:c9:6e:a5:aa:f0:e4:60:1b:
        63:4b:65:e7:96:ea:e9:ed:fc:cf:38:f4:31:e9:c8:58:
        11:5c:0e:29:45:77:71:51:8e:4c:15:0c:45:4f:c0:3a:
        af:b4:3e:2a:93:94:22:80:50:c0:87:c4:27:66:72:c9:
        39:d1:64:f3:0e:b7:e8:01:06:06:12:4e:93:3f:87:89:
        fe:63:6c:bb:08:53:44:72:22:b7:36:40:66:8b:3a:a4
    Fingerprint (SHA-256):
        DD:B8:85:88:00:A2:2A:6F:57:29:A3:45:97:F1:F3:E4:74:1D:FF:FF:84:D1:2D:1B:5D:54:C6:B3:11:86:F4:E7
    Fingerprint (SHA1):
        0F:DF:C1:8B:1E:8E:BF:71:DF:A4:79:50:54:29:C1:8F:A9:0C:3A:1A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #13464: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175756 (0x3cdde7cc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Sat Oct 21 18:01:49 2017
            Not After : Fri Oct 21 18:01:49 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:fd:0d:e1:37:90:9e:09:0b:bd:d3:de:30:90:31:e9:
                    db:0a:77:89:18:5e:dd:0a:a4:ca:95:15:44:52:5b:b0:
                    a4:d2:54:61:c9:11:e5:c8:b9:40:8a:36:8c:0e:43:36:
                    df:d7:18:c0:c2:61:ed:2d:d3:7d:1d:30:3e:e9:87:72:
                    b8:f2:17:93:60:b5:84:f3:85:7d:64:78:17:f1:4c:fe:
                    58:bb:72:de:a3:20:56:d8:63:8a:b2:54:9b:3c:14:da:
                    80:26:16:2c:07:32:88:91:77:52:09:c9:3d:0c:c9:16:
                    53:7e:f4:22:f1:29:d6:eb:7a:a2:44:4d:c4:80:a7:18:
                    c5:0b:60:22:93:c3:7e:e4:ed:29:bb:7f:a5:7b:0a:1a:
                    10:f7:1e:30:cb:d2:7a:c9:3d:59:4d:34:64:a1:a4:d6:
                    f9:9a:23:08:ab:13:b5:56:2e:5b:1f:e5:82:79:64:f4:
                    f4:a7:37:3b:91:d6:3a:05:91:fa:9c:f5:ed:9b:db:cd:
                    03:78:07:1a:10:4a:97:3d:9c:40:83:fa:ac:51:ee:0f:
                    c6:a4:88:ef:3b:b9:f2:69:e2:30:15:4b:e6:4b:e4:0e:
                    68:2d:10:3a:04:63:5b:65:37:50:51:e4:36:20:eb:86:
                    32:fa:44:06:9d:00:23:d4:5c:6e:9c:5d:50:4f:9a:0b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        47:90:c2:20:0f:0d:3e:3a:b5:fa:34:d9:c2:b3:5f:98:
        3c:3e:86:46:35:dd:47:13:aa:8a:57:8f:76:60:86:90:
        90:c9:d4:7d:07:85:65:b3:9e:9f:d1:38:90:9c:f4:8d:
        63:d4:cf:fa:07:56:e9:75:7d:15:9c:4c:9b:15:a0:3e:
        5b:ba:28:53:e8:0c:25:08:7a:76:06:00:65:78:76:97:
        8d:be:c4:e0:27:4c:d0:e4:55:53:49:6e:a3:e3:2a:9b:
        4e:43:fd:8e:f8:65:46:cc:36:ba:97:c9:5d:94:f7:7a:
        86:48:13:c2:80:2c:03:a8:87:64:46:38:56:65:74:c2:
        ff:f1:a0:22:4c:2c:cc:28:bc:c0:77:cb:15:64:bb:04:
        39:74:83:48:a3:88:6e:7e:9a:82:27:b8:bc:35:6c:ad:
        8a:df:f0:23:d1:ca:48:2c:42:76:ac:00:77:2b:06:1b:
        07:47:12:70:94:b1:34:5b:db:f8:2f:2a:a1:2f:0a:19:
        2d:1e:5d:55:f1:f2:7f:a3:b3:ab:63:ba:a6:9d:61:98:
        00:f2:8e:c3:d5:bb:e9:65:5d:f1:d2:42:ec:98:2b:1e:
        eb:de:94:41:81:e2:8b:35:9d:0c:db:96:59:ff:e0:ab:
        c1:60:42:85:2f:57:e7:3b:0e:ea:dc:ab:a7:71:bc:6b
    Fingerprint (SHA-256):
        E7:07:99:4A:E5:84:53:7D:C5:A0:35:E0:BF:BF:3D:C1:22:3A:34:DE:C9:5C:55:85:88:D8:C7:39:CF:74:08:72
    Fingerprint (SHA1):
        B1:35:A0:96:C1:18:91:C6:44:6A:06:6F:4D:34:49:49:8B:4F:80:F7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #13465: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175757 (0x3cdde7cd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Sat Oct 21 18:01:59 2017
            Not After : Fri Oct 21 18:01:59 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:12:02:d6:37:96:e8:cd:a7:57:66:18:9f:28:30:d6:
                    0a:93:d0:17:71:2a:06:0a:d5:b0:e3:f0:59:72:c9:06:
                    84:dd:6b:00:19:0b:a0:cc:6e:fe:fc:e7:96:63:f3:4d:
                    fd:94:ab:56:76:09:57:58:c0:22:6d:56:3d:17:2a:a4:
                    38:cb:5b:dc:f7:b3:7d:90:1d:17:0f:13:a5:da:ca:07:
                    b5:51:7e:69:76:a7:09:5c:a9:73:7e:5b:82:10:5b:89:
                    e8:2a:23:ba:ab:5e:30:44:d8:dc:02:5e:76:d6:83:48:
                    b2:d3:ab:d4:92:98:43:45:c6:cd:34:1a:34:69:d3:cf:
                    e4:33:80:9b:da:fb:29:f5:99:7e:22:97:83:9f:eb:cf:
                    18:d1:03:d4:12:76:88:0d:05:a2:df:34:02:ad:0a:d1:
                    92:1e:e5:60:cb:65:c5:dd:a2:f2:87:bd:f1:09:f7:14:
                    6a:0f:cf:b8:ca:70:5c:4e:77:43:54:19:61:c7:93:26:
                    05:64:9d:ae:97:bd:13:c7:40:a7:d5:94:77:b9:93:07:
                    00:05:bd:cb:17:38:79:4e:c4:5e:56:02:61:05:92:1c:
                    13:da:f0:68:27:22:ee:2d:87:cc:96:c0:e1:dd:35:fc:
                    0e:65:1f:7d:f6:37:e3:52:b1:ab:70:77:c7:b0:dc:8b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c8:a7:37:e2:43:fa:fb:61:6a:2d:3b:a5:c3:78:09:87:
        b5:7f:fb:be:9c:04:8a:65:59:1a:14:c3:ee:20:07:d6:
        62:a2:86:c9:35:e9:22:a0:8a:37:7b:04:bc:4f:80:80:
        94:5b:64:0f:27:95:99:67:22:44:64:a0:3b:30:3e:38:
        9d:9e:1f:83:ee:69:0b:bb:f6:71:55:fa:24:c7:3b:6b:
        43:ab:20:76:cd:00:88:05:4d:34:8c:ae:ab:b3:d0:b7:
        2f:57:5f:70:80:4c:52:12:5b:60:78:a9:0e:98:59:64:
        d0:17:6e:3b:65:b3:1b:7e:a7:3a:9b:16:28:03:0c:db:
        91:12:e7:f0:52:ac:89:88:ef:53:46:81:0c:32:7a:24:
        9b:14:e0:da:50:dd:6d:7e:3c:c5:0e:90:cb:31:f6:f6:
        47:0f:b4:3d:55:e9:fa:9b:49:4f:49:58:bd:11:eb:2e:
        fa:b2:5f:55:9d:ff:4c:33:1a:a9:c9:b4:1a:e4:b5:e6:
        cb:ed:62:62:bf:a7:01:68:75:37:f5:74:08:b4:8f:83:
        23:85:5a:0d:12:af:eb:03:2e:e8:a9:ba:52:06:16:51:
        d0:e4:c0:46:18:69:05:34:05:04:e4:c6:ae:7e:66:07:
        c8:3e:05:10:75:20:d7:fc:97:a8:06:03:bc:96:40:43
    Fingerprint (SHA-256):
        3B:AD:FC:E5:13:74:5F:FC:BC:D2:3F:DB:A4:EB:6D:FC:36:64:6D:EB:00:1F:42:BA:13:AD:58:F6:37:7B:ED:85
    Fingerprint (SHA1):
        11:F5:1F:B7:BE:42:60:95:8C:32:DD:7B:53:DF:86:30:7B:96:54:29
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #13466: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175758 (0x3cdde7ce)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Sat Oct 21 18:02:06 2017
            Not After : Fri Oct 21 18:02:06 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:35:10:9c:87:69:18:50:83:49:76:b6:70:06:d5:54:
                    1d:06:2c:9c:45:fe:50:df:c0:78:c0:a4:01:a3:ae:34:
                    81:f7:81:f8:54:a9:3b:3f:58:23:65:d0:a7:a4:d5:8c:
                    eb:7f:19:2f:48:c2:1d:d3:be:7b:98:ed:06:07:50:79:
                    87:43:bb:24:31:7f:e0:09:0d:df:b1:3c:69:e7:ce:61:
                    51:0e:0d:4d:ac:7e:8a:24:96:04:fe:86:c9:69:45:12:
                    d1:65:38:51:e8:b5:b4:df:7f:00:f9:e7:a8:1d:79:48:
                    a8:b6:73:51:69:2f:05:aa:9f:a2:b8:6b:e9:0c:da:56:
                    f2:02:dd:66:22:e6:97:d8:e6:2a:f3:74:62:ae:64:64:
                    a7:7f:bd:d2:b4:f2:0c:c1:84:19:67:a7:bf:19:81:85:
                    c7:45:05:06:bf:82:f0:15:6a:46:a1:d9:25:3e:c9:e5:
                    59:3a:b7:a5:d3:88:4c:a7:01:58:05:3a:b3:53:92:84:
                    34:ac:53:1a:4c:b1:96:73:32:e1:77:d9:e4:a9:fa:7f:
                    8f:fc:c8:33:c3:24:66:d6:f4:7d:f8:19:57:35:ce:d9:
                    f4:a4:57:6c:73:a4:6b:d6:20:ee:97:71:e9:96:57:88:
                    20:1a:fa:1e:58:9b:78:b5:8d:7d:14:a7:d3:a7:1b:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:3d:17:be:0b:99:86:59:d6:cf:74:18:79:34:c5:97:
        7e:c6:11:ac:49:16:a6:69:f3:f8:57:ce:42:e4:74:e6:
        69:db:56:f6:b7:34:43:6b:9b:b2:e9:fb:2b:02:1a:9a:
        c5:11:21:40:36:c9:1a:68:dd:4a:7e:76:25:68:bf:23:
        ec:ca:ff:48:70:84:c5:9f:08:86:ce:79:1c:44:82:06:
        c8:b0:5c:41:26:97:9c:83:99:13:e9:0e:b0:4b:c8:6c:
        03:af:d3:5d:fa:50:6c:a4:32:ac:29:ea:21:63:18:f8:
        ee:14:92:96:16:8e:2d:91:d4:28:cf:b1:2e:86:62:b2:
        a1:ca:22:98:bf:8e:43:40:f6:c6:b3:fc:65:27:b5:53:
        ef:69:e1:ef:a6:84:6f:d6:b7:56:cc:71:73:30:5e:2d:
        b8:15:8d:74:74:2e:4b:14:90:97:81:d3:f2:ee:ba:df:
        61:2f:f4:85:ec:8b:de:8b:21:5d:10:ca:d3:e6:1b:40:
        99:3a:de:95:61:bc:5b:da:c9:e1:ca:b4:99:45:e2:1a:
        e2:ff:56:40:b8:25:2a:27:be:19:05:7f:43:46:5f:ed:
        2e:a0:5d:08:b1:05:64:88:df:e1:82:cf:42:ec:2b:fb:
        3a:6a:27:09:58:c3:ad:f1:a6:49:0d:83:f0:15:6c:91
    Fingerprint (SHA-256):
        F6:73:4C:26:66:3C:7A:8D:0F:7B:18:9C:CF:9A:08:FA:6A:67:7D:3F:AD:98:1B:66:48:C3:2F:FD:4E:51:A0:CD
    Fingerprint (SHA1):
        AA:4B:B8:61:A4:94:86:F3:FB:1B:4B:A4:9D:5D:A8:66:75:1B:A2:32
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #13467: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175759 (0x3cdde7cf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Sat Oct 21 18:02:15 2017
            Not After : Fri Oct 21 18:02:15 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:ac:fd:16:61:07:be:61:e6:b0:7e:b7:f2:a1:83:5a:
                    32:34:81:f1:e4:29:79:9c:3a:4f:09:fb:10:32:7f:eb:
                    2a:ff:70:ae:34:ce:c1:85:d2:5d:04:b0:a5:18:06:02:
                    8c:2d:9c:59:82:71:a0:76:b4:61:0a:9d:e0:10:f0:ab:
                    7b:51:22:07:86:ff:80:7a:07:af:f2:11:da:b7:7a:9f:
                    cd:4a:39:a3:86:50:a8:23:43:91:3e:5b:4d:1d:72:d6:
                    36:00:65:c3:84:10:86:e6:78:7f:5a:7b:70:c5:d1:5c:
                    ea:21:9d:39:5d:1b:9e:fa:1e:a1:91:5c:c9:f0:56:f4:
                    be:24:ac:c1:95:9c:f9:3f:62:09:74:0c:27:60:9e:c5:
                    3f:fb:a4:fc:37:7a:15:c5:ef:78:e1:b3:f3:96:08:99:
                    76:1c:74:de:4c:62:38:48:a9:9d:2b:07:d4:0f:47:cd:
                    3f:ad:9a:78:37:30:33:5a:81:00:5c:2e:4f:cc:61:b2:
                    2b:7a:2d:a3:5a:aa:c9:0c:d9:dc:a2:2b:7b:fd:df:89:
                    9a:37:e5:e8:79:e0:1c:08:af:a7:ec:03:17:40:4f:52:
                    d3:a8:d9:03:cf:de:7d:38:2a:d1:0c:89:ca:ca:04:bb:
                    69:1e:bb:5e:3c:6c:cd:d6:5a:db:5f:df:24:85:fe:43
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1c:34:7c:0e:43:9c:c2:5e:a5:ba:48:28:78:fc:94:ee:
        3c:95:87:49:3c:46:05:f7:32:15:7b:ac:51:48:6d:d9:
        d6:23:61:e1:6d:22:2a:a5:db:38:11:4e:e0:a7:9d:96:
        e7:d6:33:85:75:77:71:a0:03:3f:a0:1e:b8:f8:05:55:
        a7:b1:f7:f1:2b:44:bc:bd:88:c5:53:a5:43:ed:d4:02:
        8b:47:fb:dd:a1:42:e2:d2:2b:3b:ea:90:c3:5e:5b:e4:
        37:9e:fa:ac:f9:cd:8d:75:f0:77:23:6f:94:71:3d:5c:
        98:09:81:82:f0:f9:2d:5b:06:03:28:df:bd:4f:4c:86:
        4e:b6:17:e5:b8:81:c8:ae:c5:36:8a:6d:52:8b:53:e2:
        d2:0d:53:72:2a:52:68:6c:5c:c0:d2:41:4f:f3:f2:51:
        f3:78:69:19:c4:0a:cf:cf:c3:c6:39:9f:fd:4c:a3:63:
        05:c3:54:3c:d4:3b:aa:7b:b7:44:fe:18:d7:b1:a5:ee:
        d3:c0:06:bb:76:52:8e:71:91:e9:f3:26:ba:08:ea:7f:
        5a:70:64:25:c8:53:39:68:48:66:80:99:0b:d1:a1:dc:
        7f:80:bb:a4:ff:dc:76:c2:b5:e5:1d:fb:4f:51:c4:29:
        ec:54:36:77:65:75:19:7e:a9:3c:b9:4e:01:c1:38:a6
    Fingerprint (SHA-256):
        4B:D5:D2:3E:33:6D:30:C1:40:E6:84:B9:1C:98:66:1C:AB:2E:9F:EE:D1:49:30:13:67:0F:C0:77:FD:71:E8:0B
    Fingerprint (SHA1):
        E5:6E:94:1E:52:AD:89:A1:CC:D2:59:69:7B:A9:19:9B:AE:E4:AF:86
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #13468: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #13469: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175774 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13470: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #13471: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13472: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13473: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021175775   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13474: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13475: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #13476: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13477: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021175776   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13478: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13479: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #13480: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13481: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 1021175777   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13482: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13483: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13484: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175774 (0x3cdde7de)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:03:24 2017
            Not After : Fri Oct 21 18:03:24 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:26:7d:1a:02:df:f6:1d:71:32:65:05:97:cc:53:1e:
                    5d:7b:75:32:b2:06:c8:03:08:52:df:f9:39:86:9e:1e:
                    77:fd:b7:d8:13:19:4f:f1:90:98:59:20:19:f7:01:3d:
                    ad:b1:fa:ac:80:2d:bd:a3:8a:4e:35:fb:a2:6f:78:3c:
                    93:71:df:ef:2d:ec:67:02:6d:ae:fd:f0:c0:ba:fb:6a:
                    91:2b:b6:ae:33:cd:3e:9b:24:b4:2a:fc:2c:fe:31:d2:
                    8d:36:74:f9:18:92:91:25:4a:41:7c:e1:33:1d:23:d4:
                    99:86:ac:4b:b7:61:e5:41:84:b6:0d:16:be:ca:46:87:
                    03:b5:ef:e7:de:01:29:e7:b0:29:78:23:98:e2:67:28:
                    c3:79:29:31:5c:58:37:e7:80:02:43:a7:57:e0:db:bb:
                    1c:ce:fd:3a:b6:cd:d0:da:ff:c3:df:61:58:ad:86:79:
                    9a:8f:43:f4:87:6e:50:89:6e:51:0d:1f:e4:83:a9:9d:
                    d5:2f:14:d8:4e:2d:43:5e:b2:4d:c2:96:83:dc:12:85:
                    60:0c:a5:5d:45:79:1e:8f:71:17:d9:8c:ca:29:e8:0a:
                    b1:37:7a:e9:7a:48:b8:ca:8e:6d:25:74:31:7f:ab:a6:
                    dc:48:39:ea:5d:12:77:8b:be:91:6b:2a:4b:69:aa:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ac:c5:76:eb:1a:f3:ad:cf:78:bd:f2:d5:3e:a9:86:d7:
        f2:ec:74:e5:51:5d:99:4c:57:ff:47:4c:47:8e:38:1b:
        0c:fd:82:3f:3b:0b:ce:a0:9d:ec:0a:9e:74:a7:48:3e:
        12:72:fe:c1:82:07:b8:24:31:be:9e:3a:12:ff:bf:e8:
        49:ab:5a:84:01:98:55:6a:06:36:92:fc:d5:f4:fb:e5:
        b5:c6:1b:2f:39:50:10:9e:50:4a:5d:67:2c:99:b6:7f:
        97:b6:89:5f:29:3b:b9:67:49:7a:30:df:66:e9:01:3e:
        43:7f:2e:24:f1:d6:3a:45:cd:40:29:ea:84:0a:ad:bf:
        45:56:17:fe:7e:cb:47:1b:63:08:bd:00:39:9e:ea:cf:
        22:68:48:d5:52:e8:33:b9:e0:02:d9:2d:30:4a:20:8e:
        0c:56:a6:f1:db:28:0f:cc:0c:23:2d:20:5a:ee:9d:ab:
        bb:be:1d:68:2e:7c:e3:52:69:a9:96:23:7c:99:46:de:
        3d:ac:ae:c5:78:fc:18:d0:95:28:97:32:bb:40:f8:e0:
        82:04:44:f3:ed:24:9b:13:c1:dd:81:6f:05:37:48:96:
        19:55:df:10:ca:a9:c5:da:34:0b:8b:f5:c4:c9:78:a3:
        f6:b3:42:ea:fb:13:f5:73:e9:5e:e4:31:22:05:33:0d
    Fingerprint (SHA-256):
        52:B7:EA:D3:49:6E:DD:78:5C:13:82:F9:05:1A:72:9F:B2:64:AC:F6:E6:8A:AD:CF:63:D7:36:9B:B2:E7:5D:D4
    Fingerprint (SHA1):
        D7:78:54:A6:8A:91:6A:0A:65:22:EC:45:D6:64:97:80:82:63:1C:F9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13485: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13486: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175775 (0x3cdde7df)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:03:31 2017
            Not After : Fri Oct 21 18:03:31 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:8c:21:2f:75:aa:a3:66:5f:55:64:da:30:45:b8:7a:
                    29:5b:58:6c:3e:c5:79:dd:5a:41:b4:62:2f:bd:6b:ad:
                    99:c1:f6:3b:f4:6f:06:02:2a:1f:19:d7:dc:88:7f:ea:
                    97:44:12:52:f3:03:e9:4b:54:bb:2a:76:d7:75:56:02:
                    42:1d:fc:4f:ba:82:46:55:7a:0b:1e:91:f8:2c:ef:95:
                    d3:d8:64:3d:7a:3b:aa:ef:24:e9:76:13:4d:19:63:67:
                    0d:1e:32:11:53:d1:8c:55:55:4e:f4:9c:fe:a7:fe:10:
                    78:da:33:d2:83:7c:02:bf:55:ae:2b:c9:74:cd:6c:60:
                    50:85:0f:32:71:a2:10:18:88:bd:3a:8c:62:17:4c:b8:
                    24:29:b9:d0:61:0f:e5:c5:c7:0e:c6:99:34:c2:55:f2:
                    6d:41:fa:ae:4f:f1:27:ee:89:e3:c1:3a:c6:13:81:c1:
                    ab:48:13:57:e9:c8:b1:74:81:b3:f2:28:54:2c:8a:91:
                    d4:8e:60:24:fb:4d:e3:30:18:24:b6:c0:f7:a2:f3:15:
                    f1:74:4b:d1:5c:7a:4a:1e:6c:a6:11:c4:02:fa:da:01:
                    9c:ce:11:60:f5:f5:7c:7f:a8:37:6f:84:2d:33:e6:f0:
                    ad:dc:dc:9b:05:11:2d:43:d6:f4:91:82:fe:5c:fc:b1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        15:55:69:92:3b:e6:ee:ef:e3:02:62:e9:08:d3:c9:31:
        b5:55:35:45:d9:c4:c5:14:32:cf:2c:39:6c:f5:12:7c:
        84:23:bc:a1:d4:9c:46:79:10:8e:d4:d2:4a:6e:b1:e3:
        64:c6:08:cb:a2:1c:1b:30:b4:75:9e:1e:38:06:d5:52:
        25:6d:ca:48:14:38:63:cc:50:8b:2b:24:7a:99:2a:b4:
        23:19:fa:d0:8c:88:e3:88:99:b6:9f:75:f7:cf:30:43:
        0b:ad:75:96:18:b8:f5:65:87:00:a8:e2:93:0c:29:dd:
        7c:58:7b:47:2f:7e:b7:a3:d8:71:20:ce:ed:27:ff:ef:
        bb:b5:5c:9b:f8:27:95:6c:ee:4e:8f:94:f8:3e:2e:97:
        08:97:c3:c9:cb:25:22:bc:56:e1:9e:76:72:1c:d3:ce:
        25:1e:9a:c1:b3:80:bd:87:c4:eb:05:dd:e7:ef:ef:f4:
        a8:55:27:98:b0:f4:31:69:5d:ac:25:ad:2c:41:ec:ae:
        7a:9c:a1:f6:2d:34:8c:05:6a:f9:1f:7e:6b:fb:04:b6:
        21:5d:94:e0:95:37:40:0a:77:d9:cd:78:d6:bb:c9:6a:
        9c:aa:e8:00:49:96:cb:08:cf:cc:17:6f:f2:8b:d3:8a:
        7e:4f:63:f4:33:e3:8e:2a:67:43:0a:dd:e6:f4:03:bd
    Fingerprint (SHA-256):
        64:9E:16:E2:DD:63:8B:FE:E4:7C:36:C5:62:6C:D7:AB:B9:B4:CD:5D:79:D4:E4:9D:21:69:F1:7C:9B:BD:37:1C
    Fingerprint (SHA1):
        03:92:73:7F:15:84:7C:0A:A5:72:AD:29:E1:61:61:9B:11:1E:0D:39
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13487: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13488: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175776 (0x3cdde7e0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 18:03:36 2017
            Not After : Fri Oct 21 18:03:36 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:72:3b:f3:0b:46:e9:a8:0e:6e:b2:71:f6:e7:83:cd:
                    de:e8:fd:a1:15:87:37:1d:16:56:57:36:7d:b0:8e:74:
                    db:f4:f6:f8:89:82:fc:f2:63:f8:6b:7d:cd:ba:ed:35:
                    ee:fc:79:4b:64:7f:24:57:aa:cb:ae:25:62:f6:e9:07:
                    87:d8:9c:48:f7:77:1d:d4:a7:48:f1:8f:50:f7:97:b6:
                    63:c7:34:ec:15:4d:36:c4:ec:e9:63:dd:b4:4e:3d:be:
                    74:80:32:d6:5a:ea:f9:fd:cc:78:41:9f:f3:26:b1:72:
                    08:dd:0f:9b:46:81:49:35:80:64:0e:29:13:cf:d5:1d:
                    3c:70:26:95:89:dc:83:6d:2d:60:76:18:a6:36:21:51:
                    81:12:90:14:58:24:72:ce:e8:75:a4:9c:ad:1e:ab:c6:
                    5f:75:5f:fa:22:92:c7:fe:a5:0f:47:a2:f4:4a:4c:58:
                    3b:60:57:c3:e5:87:b8:16:2d:1b:cf:96:87:62:bf:79:
                    1e:b2:85:10:3f:73:89:50:93:1c:60:6e:01:2c:48:ee:
                    05:3e:cf:7b:3d:13:63:a7:69:a2:8d:2c:6c:3a:7b:94:
                    00:a0:6f:15:0b:4d:29:bf:24:52:84:13:c2:cb:33:e2:
                    35:7f:3f:10:5d:14:6a:62:73:4b:0c:ef:55:f1:e3:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2f:38:00:c4:69:17:14:a3:fe:a8:18:19:3a:d2:23:6a:
        e6:ff:21:40:f7:ff:27:77:f2:b3:3d:33:68:29:7a:d1:
        8b:95:98:af:da:99:3e:12:ce:69:3a:db:e6:a5:3e:86:
        12:0a:24:15:f7:a1:02:3b:42:dd:55:40:2b:56:74:e4:
        2f:3f:90:4d:74:ef:33:6d:d2:ea:b1:2a:1d:a5:2d:f3:
        a1:c8:a5:32:6d:87:46:32:4d:97:98:3d:1c:63:dc:09:
        fc:85:37:5c:92:5a:bb:f5:6e:e7:a3:d1:d4:22:2b:f9:
        97:ae:bf:64:e8:50:62:bc:af:06:80:57:e6:47:63:16:
        c8:3c:08:e6:02:a1:5a:93:f7:f0:ff:f8:9c:79:b8:f3:
        73:fd:5e:0e:6e:35:6c:03:02:d2:91:bf:5c:95:5b:1e:
        04:7d:af:3b:8b:39:a0:a1:20:69:9a:f6:60:c2:7f:1d:
        e2:75:d5:b9:4e:0f:6a:e7:d4:6a:1d:7a:b6:bd:17:7b:
        04:28:9f:93:d6:d1:4e:9a:e9:4e:79:16:e4:c6:b9:cd:
        43:11:94:b0:b6:56:cb:18:36:52:01:41:61:a7:c9:1b:
        1c:ba:4b:4b:6e:8f:d1:04:0a:00:63:ea:f2:2f:f3:8c:
        46:7f:81:f4:c2:74:f9:95:9b:12:76:cb:13:ec:10:45
    Fingerprint (SHA-256):
        A9:A6:0E:10:BD:B2:0C:16:6F:F8:1F:8B:2C:4E:BE:B1:B0:C3:E8:CA:47:AE:9A:02:52:86:56:3B:D4:99:3D:B8
    Fingerprint (SHA1):
        C3:A2:2D:97:2A:5E:95:DC:12:D3:27:42:F8:30:2C:CA:29:B8:CF:E4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #13489: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13490: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #13491: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #13492: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #13493: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175774 (0x3cdde7de)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:03:24 2017
            Not After : Fri Oct 21 18:03:24 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:26:7d:1a:02:df:f6:1d:71:32:65:05:97:cc:53:1e:
                    5d:7b:75:32:b2:06:c8:03:08:52:df:f9:39:86:9e:1e:
                    77:fd:b7:d8:13:19:4f:f1:90:98:59:20:19:f7:01:3d:
                    ad:b1:fa:ac:80:2d:bd:a3:8a:4e:35:fb:a2:6f:78:3c:
                    93:71:df:ef:2d:ec:67:02:6d:ae:fd:f0:c0:ba:fb:6a:
                    91:2b:b6:ae:33:cd:3e:9b:24:b4:2a:fc:2c:fe:31:d2:
                    8d:36:74:f9:18:92:91:25:4a:41:7c:e1:33:1d:23:d4:
                    99:86:ac:4b:b7:61:e5:41:84:b6:0d:16:be:ca:46:87:
                    03:b5:ef:e7:de:01:29:e7:b0:29:78:23:98:e2:67:28:
                    c3:79:29:31:5c:58:37:e7:80:02:43:a7:57:e0:db:bb:
                    1c:ce:fd:3a:b6:cd:d0:da:ff:c3:df:61:58:ad:86:79:
                    9a:8f:43:f4:87:6e:50:89:6e:51:0d:1f:e4:83:a9:9d:
                    d5:2f:14:d8:4e:2d:43:5e:b2:4d:c2:96:83:dc:12:85:
                    60:0c:a5:5d:45:79:1e:8f:71:17:d9:8c:ca:29:e8:0a:
                    b1:37:7a:e9:7a:48:b8:ca:8e:6d:25:74:31:7f:ab:a6:
                    dc:48:39:ea:5d:12:77:8b:be:91:6b:2a:4b:69:aa:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ac:c5:76:eb:1a:f3:ad:cf:78:bd:f2:d5:3e:a9:86:d7:
        f2:ec:74:e5:51:5d:99:4c:57:ff:47:4c:47:8e:38:1b:
        0c:fd:82:3f:3b:0b:ce:a0:9d:ec:0a:9e:74:a7:48:3e:
        12:72:fe:c1:82:07:b8:24:31:be:9e:3a:12:ff:bf:e8:
        49:ab:5a:84:01:98:55:6a:06:36:92:fc:d5:f4:fb:e5:
        b5:c6:1b:2f:39:50:10:9e:50:4a:5d:67:2c:99:b6:7f:
        97:b6:89:5f:29:3b:b9:67:49:7a:30:df:66:e9:01:3e:
        43:7f:2e:24:f1:d6:3a:45:cd:40:29:ea:84:0a:ad:bf:
        45:56:17:fe:7e:cb:47:1b:63:08:bd:00:39:9e:ea:cf:
        22:68:48:d5:52:e8:33:b9:e0:02:d9:2d:30:4a:20:8e:
        0c:56:a6:f1:db:28:0f:cc:0c:23:2d:20:5a:ee:9d:ab:
        bb:be:1d:68:2e:7c:e3:52:69:a9:96:23:7c:99:46:de:
        3d:ac:ae:c5:78:fc:18:d0:95:28:97:32:bb:40:f8:e0:
        82:04:44:f3:ed:24:9b:13:c1:dd:81:6f:05:37:48:96:
        19:55:df:10:ca:a9:c5:da:34:0b:8b:f5:c4:c9:78:a3:
        f6:b3:42:ea:fb:13:f5:73:e9:5e:e4:31:22:05:33:0d
    Fingerprint (SHA-256):
        52:B7:EA:D3:49:6E:DD:78:5C:13:82:F9:05:1A:72:9F:B2:64:AC:F6:E6:8A:AD:CF:63:D7:36:9B:B2:E7:5D:D4
    Fingerprint (SHA1):
        D7:78:54:A6:8A:91:6A:0A:65:22:EC:45:D6:64:97:80:82:63:1C:F9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13494: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13495: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175775 (0x3cdde7df)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:03:31 2017
            Not After : Fri Oct 21 18:03:31 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:8c:21:2f:75:aa:a3:66:5f:55:64:da:30:45:b8:7a:
                    29:5b:58:6c:3e:c5:79:dd:5a:41:b4:62:2f:bd:6b:ad:
                    99:c1:f6:3b:f4:6f:06:02:2a:1f:19:d7:dc:88:7f:ea:
                    97:44:12:52:f3:03:e9:4b:54:bb:2a:76:d7:75:56:02:
                    42:1d:fc:4f:ba:82:46:55:7a:0b:1e:91:f8:2c:ef:95:
                    d3:d8:64:3d:7a:3b:aa:ef:24:e9:76:13:4d:19:63:67:
                    0d:1e:32:11:53:d1:8c:55:55:4e:f4:9c:fe:a7:fe:10:
                    78:da:33:d2:83:7c:02:bf:55:ae:2b:c9:74:cd:6c:60:
                    50:85:0f:32:71:a2:10:18:88:bd:3a:8c:62:17:4c:b8:
                    24:29:b9:d0:61:0f:e5:c5:c7:0e:c6:99:34:c2:55:f2:
                    6d:41:fa:ae:4f:f1:27:ee:89:e3:c1:3a:c6:13:81:c1:
                    ab:48:13:57:e9:c8:b1:74:81:b3:f2:28:54:2c:8a:91:
                    d4:8e:60:24:fb:4d:e3:30:18:24:b6:c0:f7:a2:f3:15:
                    f1:74:4b:d1:5c:7a:4a:1e:6c:a6:11:c4:02:fa:da:01:
                    9c:ce:11:60:f5:f5:7c:7f:a8:37:6f:84:2d:33:e6:f0:
                    ad:dc:dc:9b:05:11:2d:43:d6:f4:91:82:fe:5c:fc:b1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        15:55:69:92:3b:e6:ee:ef:e3:02:62:e9:08:d3:c9:31:
        b5:55:35:45:d9:c4:c5:14:32:cf:2c:39:6c:f5:12:7c:
        84:23:bc:a1:d4:9c:46:79:10:8e:d4:d2:4a:6e:b1:e3:
        64:c6:08:cb:a2:1c:1b:30:b4:75:9e:1e:38:06:d5:52:
        25:6d:ca:48:14:38:63:cc:50:8b:2b:24:7a:99:2a:b4:
        23:19:fa:d0:8c:88:e3:88:99:b6:9f:75:f7:cf:30:43:
        0b:ad:75:96:18:b8:f5:65:87:00:a8:e2:93:0c:29:dd:
        7c:58:7b:47:2f:7e:b7:a3:d8:71:20:ce:ed:27:ff:ef:
        bb:b5:5c:9b:f8:27:95:6c:ee:4e:8f:94:f8:3e:2e:97:
        08:97:c3:c9:cb:25:22:bc:56:e1:9e:76:72:1c:d3:ce:
        25:1e:9a:c1:b3:80:bd:87:c4:eb:05:dd:e7:ef:ef:f4:
        a8:55:27:98:b0:f4:31:69:5d:ac:25:ad:2c:41:ec:ae:
        7a:9c:a1:f6:2d:34:8c:05:6a:f9:1f:7e:6b:fb:04:b6:
        21:5d:94:e0:95:37:40:0a:77:d9:cd:78:d6:bb:c9:6a:
        9c:aa:e8:00:49:96:cb:08:cf:cc:17:6f:f2:8b:d3:8a:
        7e:4f:63:f4:33:e3:8e:2a:67:43:0a:dd:e6:f4:03:bd
    Fingerprint (SHA-256):
        64:9E:16:E2:DD:63:8B:FE:E4:7C:36:C5:62:6C:D7:AB:B9:B4:CD:5D:79:D4:E4:9D:21:69:F1:7C:9B:BD:37:1C
    Fingerprint (SHA1):
        03:92:73:7F:15:84:7C:0A:A5:72:AD:29:E1:61:61:9B:11:1E:0D:39
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13496: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13497: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175776 (0x3cdde7e0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 18:03:36 2017
            Not After : Fri Oct 21 18:03:36 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:72:3b:f3:0b:46:e9:a8:0e:6e:b2:71:f6:e7:83:cd:
                    de:e8:fd:a1:15:87:37:1d:16:56:57:36:7d:b0:8e:74:
                    db:f4:f6:f8:89:82:fc:f2:63:f8:6b:7d:cd:ba:ed:35:
                    ee:fc:79:4b:64:7f:24:57:aa:cb:ae:25:62:f6:e9:07:
                    87:d8:9c:48:f7:77:1d:d4:a7:48:f1:8f:50:f7:97:b6:
                    63:c7:34:ec:15:4d:36:c4:ec:e9:63:dd:b4:4e:3d:be:
                    74:80:32:d6:5a:ea:f9:fd:cc:78:41:9f:f3:26:b1:72:
                    08:dd:0f:9b:46:81:49:35:80:64:0e:29:13:cf:d5:1d:
                    3c:70:26:95:89:dc:83:6d:2d:60:76:18:a6:36:21:51:
                    81:12:90:14:58:24:72:ce:e8:75:a4:9c:ad:1e:ab:c6:
                    5f:75:5f:fa:22:92:c7:fe:a5:0f:47:a2:f4:4a:4c:58:
                    3b:60:57:c3:e5:87:b8:16:2d:1b:cf:96:87:62:bf:79:
                    1e:b2:85:10:3f:73:89:50:93:1c:60:6e:01:2c:48:ee:
                    05:3e:cf:7b:3d:13:63:a7:69:a2:8d:2c:6c:3a:7b:94:
                    00:a0:6f:15:0b:4d:29:bf:24:52:84:13:c2:cb:33:e2:
                    35:7f:3f:10:5d:14:6a:62:73:4b:0c:ef:55:f1:e3:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2f:38:00:c4:69:17:14:a3:fe:a8:18:19:3a:d2:23:6a:
        e6:ff:21:40:f7:ff:27:77:f2:b3:3d:33:68:29:7a:d1:
        8b:95:98:af:da:99:3e:12:ce:69:3a:db:e6:a5:3e:86:
        12:0a:24:15:f7:a1:02:3b:42:dd:55:40:2b:56:74:e4:
        2f:3f:90:4d:74:ef:33:6d:d2:ea:b1:2a:1d:a5:2d:f3:
        a1:c8:a5:32:6d:87:46:32:4d:97:98:3d:1c:63:dc:09:
        fc:85:37:5c:92:5a:bb:f5:6e:e7:a3:d1:d4:22:2b:f9:
        97:ae:bf:64:e8:50:62:bc:af:06:80:57:e6:47:63:16:
        c8:3c:08:e6:02:a1:5a:93:f7:f0:ff:f8:9c:79:b8:f3:
        73:fd:5e:0e:6e:35:6c:03:02:d2:91:bf:5c:95:5b:1e:
        04:7d:af:3b:8b:39:a0:a1:20:69:9a:f6:60:c2:7f:1d:
        e2:75:d5:b9:4e:0f:6a:e7:d4:6a:1d:7a:b6:bd:17:7b:
        04:28:9f:93:d6:d1:4e:9a:e9:4e:79:16:e4:c6:b9:cd:
        43:11:94:b0:b6:56:cb:18:36:52:01:41:61:a7:c9:1b:
        1c:ba:4b:4b:6e:8f:d1:04:0a:00:63:ea:f2:2f:f3:8c:
        46:7f:81:f4:c2:74:f9:95:9b:12:76:cb:13:ec:10:45
    Fingerprint (SHA-256):
        A9:A6:0E:10:BD:B2:0C:16:6F:F8:1F:8B:2C:4E:BE:B1:B0:C3:E8:CA:47:AE:9A:02:52:86:56:3B:D4:99:3D:B8
    Fingerprint (SHA1):
        C3:A2:2D:97:2A:5E:95:DC:12:D3:27:42:F8:30:2C:CA:29:B8:CF:E4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #13498: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13499: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #13500: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175778 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13501: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #13502: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13503: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13504: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021175779   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13505: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13506: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #13507: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13508: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021175780   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13509: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13510: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #13511: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13512: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 1021175781   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13513: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13514: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #13515: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13516: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 1021175782   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13517: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13518: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13519: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175778 (0x3cdde7e2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:04:02 2017
            Not After : Fri Oct 21 18:04:02 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:c6:20:0d:5e:62:fe:37:79:11:0d:27:02:79:df:a5:
                    9f:df:08:43:f9:ca:d4:00:5c:17:9a:d7:9b:7e:6d:5e:
                    e0:91:71:6a:95:aa:a3:14:52:0a:4d:fc:c4:67:39:50:
                    6d:cf:d8:57:63:7b:02:68:bd:97:4c:a9:c8:b7:d1:5c:
                    f5:2b:89:9f:73:6d:c7:dd:cb:5b:54:05:c0:c2:88:d3:
                    a6:d4:25:7d:17:16:4c:97:56:22:7a:c9:86:7f:ef:fe:
                    0f:78:67:eb:68:8b:f7:88:71:38:9b:32:00:1f:0c:ce:
                    7e:a9:d4:8a:c8:be:c0:96:b9:ae:91:89:52:42:a4:8f:
                    bf:1c:ea:de:7b:a2:95:72:3b:b0:76:d8:2b:5e:86:14:
                    bb:0c:07:bc:b3:3d:0c:5d:de:85:0e:25:0a:df:78:27:
                    f4:81:c9:9e:fa:d5:84:b3:ef:e5:12:57:68:6d:cb:60:
                    6b:55:c8:d2:cd:1b:02:d3:e3:d4:49:da:9c:97:f2:ce:
                    41:36:d6:f8:84:13:48:c3:44:58:60:67:7a:b8:78:a3:
                    37:67:07:0b:e0:bf:8a:a4:16:a2:5b:8d:ff:4c:52:32:
                    ee:62:c2:51:0e:1c:7c:5f:e4:11:44:d9:30:2e:48:b0:
                    17:aa:e6:36:bc:9c:94:55:c9:5c:d7:da:db:52:7b:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:8e:7d:41:00:44:97:18:80:08:90:55:67:ab:ac:be:
        83:0c:67:ef:c2:00:be:c4:69:fe:15:b7:cb:90:ed:d7:
        0e:0d:e7:31:82:8d:c7:45:ec:d7:e3:07:e0:8c:0c:da:
        31:68:8b:2d:91:0e:9b:c6:be:c2:00:a3:42:83:30:4b:
        47:bb:2f:4e:94:57:db:2a:44:7d:15:99:c7:5a:af:b9:
        17:d4:49:f0:2f:09:47:59:71:2d:cb:2d:a9:5a:58:36:
        f2:a4:42:90:58:21:b8:d8:52:7d:f7:d7:a7:85:2d:dd:
        f6:d1:d8:a5:1d:51:a5:75:74:7b:19:a2:ee:14:cd:33:
        30:d7:87:f6:43:84:52:a6:94:90:be:a6:26:b9:b5:a7:
        57:fd:c9:1c:a1:51:13:da:79:ee:40:06:63:bf:3f:6a:
        96:22:89:95:cd:a8:c4:bd:4e:40:ab:42:31:2a:6f:99:
        fa:5a:75:fe:46:88:0d:0a:15:d4:6d:50:92:8b:bc:54:
        68:d9:51:95:f9:09:a7:39:51:1f:e5:ba:ba:97:6e:50:
        03:ff:2e:8b:a6:73:39:12:95:76:c1:97:d1:25:2d:6c:
        df:d1:d7:4a:71:e2:95:c3:9e:8a:02:10:75:fe:4e:2b:
        30:ae:62:86:94:44:41:10:d4:d1:6d:ea:71:33:30:1e
    Fingerprint (SHA-256):
        26:35:CA:C7:72:43:A4:B8:10:22:0A:12:F9:48:56:FA:87:3B:51:DC:07:8F:D6:43:D8:A1:C1:39:DE:02:5E:75
    Fingerprint (SHA1):
        D4:43:E9:D6:13:60:AD:FF:AC:0E:1E:6A:7F:FC:57:7E:A2:D1:D1:29
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13520: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13521: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175779 (0x3cdde7e3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:04:10 2017
            Not After : Fri Oct 21 18:04:10 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:5f:e4:e5:29:65:30:11:5a:42:7c:bf:4c:ba:17:22:
                    06:ba:9b:02:8d:bb:d2:d6:35:fb:3e:a6:12:aa:fd:24:
                    d8:41:d6:97:87:0f:35:7b:73:d6:60:11:b8:69:2c:87:
                    2f:85:12:33:3d:36:74:cc:c4:8e:79:2c:82:c8:42:05:
                    89:ca:c4:e9:e2:d1:81:72:a1:2a:2b:10:68:7e:25:68:
                    36:50:2d:da:90:77:ef:39:d3:27:eb:3b:48:44:c9:47:
                    1a:2e:68:76:58:27:a1:59:1b:ea:02:25:88:8e:ad:77:
                    07:eb:a0:91:29:06:51:65:2e:95:5b:1e:d2:1b:3a:82:
                    a9:9f:a7:42:27:c7:ab:9f:f3:cc:4a:3f:ec:9e:51:c5:
                    c6:2f:f4:fd:4b:13:da:e4:ba:01:e7:6b:da:e8:1c:14:
                    f0:87:31:4b:dc:1c:b6:dc:e3:89:6e:55:b5:51:95:cc:
                    b8:2b:6b:8e:00:c1:b6:e7:4a:b1:7d:1c:eb:a6:b9:92:
                    23:3c:37:99:0a:f9:5f:7c:b6:ae:22:ac:18:c4:6b:25:
                    00:76:08:bd:ad:08:fe:ce:c6:18:b7:69:c3:ae:7d:fe:
                    ff:7f:81:1e:f6:55:e2:f5:93:74:6f:22:34:7b:27:f2:
                    b7:1c:e3:44:f9:bf:22:80:cb:cc:5b:7b:e0:9d:08:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1c:23:b3:d3:86:a1:bb:43:08:80:d1:6c:c3:a9:ca:7d:
        a8:72:11:e7:ca:b3:3d:43:75:b5:90:41:6c:8d:57:a8:
        99:b4:eb:a0:99:3a:a7:ea:57:4e:80:35:1a:2b:4e:2d:
        d1:64:55:0b:29:92:27:6d:4c:0a:d1:dd:61:46:6c:b2:
        64:72:04:81:16:55:e4:af:5a:98:fd:08:f5:32:c7:42:
        6a:df:ad:7d:d7:85:93:5d:71:14:e6:be:d2:63:93:0b:
        a0:d3:8f:50:2e:c6:01:6f:ef:d7:c0:83:12:f9:c2:9d:
        b4:27:e2:47:a0:96:a6:68:f4:09:83:0b:86:e7:86:f4:
        30:8e:92:9e:52:ce:1e:11:fe:c4:c2:38:5e:a6:99:18:
        15:bd:e0:88:1d:55:9c:b6:38:83:13:89:57:12:45:2d:
        93:81:ba:c0:db:b2:6d:5a:34:41:d0:34:4e:41:f8:81:
        81:bf:53:d8:1c:d6:58:79:ba:06:37:fc:7e:cd:8b:7c:
        43:23:a6:57:94:7f:64:ee:e4:f2:68:7b:9f:71:90:99:
        0f:89:ee:a9:8d:a6:c8:0a:ab:73:92:c4:c2:7f:64:fe:
        c2:cf:7d:a8:d3:e6:c7:86:41:d6:f4:46:f3:f6:6a:e4:
        52:5a:0d:a2:13:b4:95:1b:0c:b7:4f:e4:7c:7f:a2:46
    Fingerprint (SHA-256):
        99:84:48:71:B1:DA:69:F0:FF:57:32:0E:5C:BF:12:37:2C:6D:BC:22:BF:33:41:0A:65:C1:CC:B1:18:F0:82:48
    Fingerprint (SHA1):
        02:1B:F0:66:95:5D:7E:FF:43:86:5F:12:33:A8:2D:5B:9F:F2:49:4C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13522: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13523: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175780 (0x3cdde7e4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 18:04:16 2017
            Not After : Fri Oct 21 18:04:16 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:b8:71:28:68:0a:19:52:f2:a9:3e:90:e3:0a:56:77:
                    94:cb:ef:c1:88:93:46:df:de:fa:9c:43:9e:25:21:5b:
                    5e:14:cd:ed:b1:cb:1a:4e:9b:42:a1:6a:03:97:d1:22:
                    27:f8:7b:24:aa:f6:72:f8:66:05:c6:06:c1:c7:a9:e8:
                    72:01:f5:37:3e:04:3a:9f:9b:3e:f7:e1:0d:59:2b:a1:
                    7d:24:b5:c1:ee:c0:21:f8:0e:70:3b:26:3a:21:5a:9c:
                    10:05:f3:91:b1:10:6c:d6:d9:95:57:a4:16:8a:5e:2d:
                    e8:29:9a:5e:ea:96:95:58:5b:05:96:10:82:95:23:eb:
                    fa:2c:32:bb:b2:93:ca:c8:42:f1:a1:98:9e:98:57:e7:
                    05:6f:f3:52:d9:45:ae:7d:a6:f0:e7:31:4c:80:54:b2:
                    c1:d0:25:dc:2f:45:c6:ab:8a:8f:c5:c8:d6:84:15:84:
                    4e:0f:a2:52:18:31:23:98:7c:3a:a6:d3:a9:af:76:65:
                    18:61:8e:6d:18:8c:14:dd:f8:c8:31:b5:f4:db:c6:61:
                    4d:c7:b1:1b:0a:69:df:ff:fa:e0:b4:1a:98:53:23:99:
                    34:77:93:cb:b9:5b:d5:34:02:f4:65:fa:fa:f6:d0:e3:
                    02:a6:97:61:69:81:21:bc:9c:52:1f:64:67:60:da:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:ae:ca:ac:86:7b:7e:99:2e:d5:ee:fc:05:7b:d6:2d:
        32:e9:bf:4f:53:57:5e:38:2d:0e:47:c0:12:76:87:79:
        84:fa:9d:5d:b3:87:a7:96:8d:ae:a4:62:45:e7:5d:31:
        60:7b:21:89:e5:96:39:ee:7c:37:af:d2:b5:6e:9c:66:
        8a:29:b7:bf:b6:b9:13:6c:73:3a:01:b2:9e:31:2f:03:
        d6:39:f7:16:a4:aa:e5:d5:f1:57:0a:be:d0:0a:4f:97:
        4a:4e:32:9e:80:fc:ae:14:a0:98:61:87:e4:fd:42:f0:
        9b:a2:3a:23:e0:a3:cb:99:23:a6:45:54:07:5d:1a:a6:
        5e:f4:3f:8f:5c:87:a2:92:a6:45:49:e8:8f:38:81:98:
        41:f9:d0:a8:b9:58:08:e3:4e:79:a2:2c:cc:a7:03:b5:
        d5:f9:c9:21:3c:2c:62:07:5c:91:22:28:58:c8:b2:98:
        18:f0:05:b7:e7:cf:ce:5c:07:d1:4b:87:4a:91:27:6d:
        ea:54:d7:98:de:0c:b1:2d:44:6b:95:91:15:73:a5:65:
        06:c9:43:22:e5:63:53:d5:f2:0f:99:39:39:f0:c6:11:
        f0:1e:50:2c:c6:d8:e3:dd:c2:26:1e:ca:b4:26:f9:ca:
        ca:e2:af:bb:66:42:b2:43:23:2e:53:f9:e8:11:4a:49
    Fingerprint (SHA-256):
        F4:C6:F7:3E:41:D8:9B:CC:69:3E:DB:9E:13:BF:06:4A:92:1B:A7:3A:4A:B4:66:F3:DD:BA:57:6A:F8:AF:E0:FE
    Fingerprint (SHA1):
        B4:E8:2E:B4:E5:43:5A:1D:09:41:B1:C3:34:A0:3B:05:FE:EB:22:3A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13524: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13525: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #13526: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #13527: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #13528: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175778 (0x3cdde7e2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:04:02 2017
            Not After : Fri Oct 21 18:04:02 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:c6:20:0d:5e:62:fe:37:79:11:0d:27:02:79:df:a5:
                    9f:df:08:43:f9:ca:d4:00:5c:17:9a:d7:9b:7e:6d:5e:
                    e0:91:71:6a:95:aa:a3:14:52:0a:4d:fc:c4:67:39:50:
                    6d:cf:d8:57:63:7b:02:68:bd:97:4c:a9:c8:b7:d1:5c:
                    f5:2b:89:9f:73:6d:c7:dd:cb:5b:54:05:c0:c2:88:d3:
                    a6:d4:25:7d:17:16:4c:97:56:22:7a:c9:86:7f:ef:fe:
                    0f:78:67:eb:68:8b:f7:88:71:38:9b:32:00:1f:0c:ce:
                    7e:a9:d4:8a:c8:be:c0:96:b9:ae:91:89:52:42:a4:8f:
                    bf:1c:ea:de:7b:a2:95:72:3b:b0:76:d8:2b:5e:86:14:
                    bb:0c:07:bc:b3:3d:0c:5d:de:85:0e:25:0a:df:78:27:
                    f4:81:c9:9e:fa:d5:84:b3:ef:e5:12:57:68:6d:cb:60:
                    6b:55:c8:d2:cd:1b:02:d3:e3:d4:49:da:9c:97:f2:ce:
                    41:36:d6:f8:84:13:48:c3:44:58:60:67:7a:b8:78:a3:
                    37:67:07:0b:e0:bf:8a:a4:16:a2:5b:8d:ff:4c:52:32:
                    ee:62:c2:51:0e:1c:7c:5f:e4:11:44:d9:30:2e:48:b0:
                    17:aa:e6:36:bc:9c:94:55:c9:5c:d7:da:db:52:7b:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:8e:7d:41:00:44:97:18:80:08:90:55:67:ab:ac:be:
        83:0c:67:ef:c2:00:be:c4:69:fe:15:b7:cb:90:ed:d7:
        0e:0d:e7:31:82:8d:c7:45:ec:d7:e3:07:e0:8c:0c:da:
        31:68:8b:2d:91:0e:9b:c6:be:c2:00:a3:42:83:30:4b:
        47:bb:2f:4e:94:57:db:2a:44:7d:15:99:c7:5a:af:b9:
        17:d4:49:f0:2f:09:47:59:71:2d:cb:2d:a9:5a:58:36:
        f2:a4:42:90:58:21:b8:d8:52:7d:f7:d7:a7:85:2d:dd:
        f6:d1:d8:a5:1d:51:a5:75:74:7b:19:a2:ee:14:cd:33:
        30:d7:87:f6:43:84:52:a6:94:90:be:a6:26:b9:b5:a7:
        57:fd:c9:1c:a1:51:13:da:79:ee:40:06:63:bf:3f:6a:
        96:22:89:95:cd:a8:c4:bd:4e:40:ab:42:31:2a:6f:99:
        fa:5a:75:fe:46:88:0d:0a:15:d4:6d:50:92:8b:bc:54:
        68:d9:51:95:f9:09:a7:39:51:1f:e5:ba:ba:97:6e:50:
        03:ff:2e:8b:a6:73:39:12:95:76:c1:97:d1:25:2d:6c:
        df:d1:d7:4a:71:e2:95:c3:9e:8a:02:10:75:fe:4e:2b:
        30:ae:62:86:94:44:41:10:d4:d1:6d:ea:71:33:30:1e
    Fingerprint (SHA-256):
        26:35:CA:C7:72:43:A4:B8:10:22:0A:12:F9:48:56:FA:87:3B:51:DC:07:8F:D6:43:D8:A1:C1:39:DE:02:5E:75
    Fingerprint (SHA1):
        D4:43:E9:D6:13:60:AD:FF:AC:0E:1E:6A:7F:FC:57:7E:A2:D1:D1:29
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13529: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13530: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175779 (0x3cdde7e3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:04:10 2017
            Not After : Fri Oct 21 18:04:10 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:5f:e4:e5:29:65:30:11:5a:42:7c:bf:4c:ba:17:22:
                    06:ba:9b:02:8d:bb:d2:d6:35:fb:3e:a6:12:aa:fd:24:
                    d8:41:d6:97:87:0f:35:7b:73:d6:60:11:b8:69:2c:87:
                    2f:85:12:33:3d:36:74:cc:c4:8e:79:2c:82:c8:42:05:
                    89:ca:c4:e9:e2:d1:81:72:a1:2a:2b:10:68:7e:25:68:
                    36:50:2d:da:90:77:ef:39:d3:27:eb:3b:48:44:c9:47:
                    1a:2e:68:76:58:27:a1:59:1b:ea:02:25:88:8e:ad:77:
                    07:eb:a0:91:29:06:51:65:2e:95:5b:1e:d2:1b:3a:82:
                    a9:9f:a7:42:27:c7:ab:9f:f3:cc:4a:3f:ec:9e:51:c5:
                    c6:2f:f4:fd:4b:13:da:e4:ba:01:e7:6b:da:e8:1c:14:
                    f0:87:31:4b:dc:1c:b6:dc:e3:89:6e:55:b5:51:95:cc:
                    b8:2b:6b:8e:00:c1:b6:e7:4a:b1:7d:1c:eb:a6:b9:92:
                    23:3c:37:99:0a:f9:5f:7c:b6:ae:22:ac:18:c4:6b:25:
                    00:76:08:bd:ad:08:fe:ce:c6:18:b7:69:c3:ae:7d:fe:
                    ff:7f:81:1e:f6:55:e2:f5:93:74:6f:22:34:7b:27:f2:
                    b7:1c:e3:44:f9:bf:22:80:cb:cc:5b:7b:e0:9d:08:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1c:23:b3:d3:86:a1:bb:43:08:80:d1:6c:c3:a9:ca:7d:
        a8:72:11:e7:ca:b3:3d:43:75:b5:90:41:6c:8d:57:a8:
        99:b4:eb:a0:99:3a:a7:ea:57:4e:80:35:1a:2b:4e:2d:
        d1:64:55:0b:29:92:27:6d:4c:0a:d1:dd:61:46:6c:b2:
        64:72:04:81:16:55:e4:af:5a:98:fd:08:f5:32:c7:42:
        6a:df:ad:7d:d7:85:93:5d:71:14:e6:be:d2:63:93:0b:
        a0:d3:8f:50:2e:c6:01:6f:ef:d7:c0:83:12:f9:c2:9d:
        b4:27:e2:47:a0:96:a6:68:f4:09:83:0b:86:e7:86:f4:
        30:8e:92:9e:52:ce:1e:11:fe:c4:c2:38:5e:a6:99:18:
        15:bd:e0:88:1d:55:9c:b6:38:83:13:89:57:12:45:2d:
        93:81:ba:c0:db:b2:6d:5a:34:41:d0:34:4e:41:f8:81:
        81:bf:53:d8:1c:d6:58:79:ba:06:37:fc:7e:cd:8b:7c:
        43:23:a6:57:94:7f:64:ee:e4:f2:68:7b:9f:71:90:99:
        0f:89:ee:a9:8d:a6:c8:0a:ab:73:92:c4:c2:7f:64:fe:
        c2:cf:7d:a8:d3:e6:c7:86:41:d6:f4:46:f3:f6:6a:e4:
        52:5a:0d:a2:13:b4:95:1b:0c:b7:4f:e4:7c:7f:a2:46
    Fingerprint (SHA-256):
        99:84:48:71:B1:DA:69:F0:FF:57:32:0E:5C:BF:12:37:2C:6D:BC:22:BF:33:41:0A:65:C1:CC:B1:18:F0:82:48
    Fingerprint (SHA1):
        02:1B:F0:66:95:5D:7E:FF:43:86:5F:12:33:A8:2D:5B:9F:F2:49:4C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13531: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13532: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175780 (0x3cdde7e4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 18:04:16 2017
            Not After : Fri Oct 21 18:04:16 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:b8:71:28:68:0a:19:52:f2:a9:3e:90:e3:0a:56:77:
                    94:cb:ef:c1:88:93:46:df:de:fa:9c:43:9e:25:21:5b:
                    5e:14:cd:ed:b1:cb:1a:4e:9b:42:a1:6a:03:97:d1:22:
                    27:f8:7b:24:aa:f6:72:f8:66:05:c6:06:c1:c7:a9:e8:
                    72:01:f5:37:3e:04:3a:9f:9b:3e:f7:e1:0d:59:2b:a1:
                    7d:24:b5:c1:ee:c0:21:f8:0e:70:3b:26:3a:21:5a:9c:
                    10:05:f3:91:b1:10:6c:d6:d9:95:57:a4:16:8a:5e:2d:
                    e8:29:9a:5e:ea:96:95:58:5b:05:96:10:82:95:23:eb:
                    fa:2c:32:bb:b2:93:ca:c8:42:f1:a1:98:9e:98:57:e7:
                    05:6f:f3:52:d9:45:ae:7d:a6:f0:e7:31:4c:80:54:b2:
                    c1:d0:25:dc:2f:45:c6:ab:8a:8f:c5:c8:d6:84:15:84:
                    4e:0f:a2:52:18:31:23:98:7c:3a:a6:d3:a9:af:76:65:
                    18:61:8e:6d:18:8c:14:dd:f8:c8:31:b5:f4:db:c6:61:
                    4d:c7:b1:1b:0a:69:df:ff:fa:e0:b4:1a:98:53:23:99:
                    34:77:93:cb:b9:5b:d5:34:02:f4:65:fa:fa:f6:d0:e3:
                    02:a6:97:61:69:81:21:bc:9c:52:1f:64:67:60:da:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:ae:ca:ac:86:7b:7e:99:2e:d5:ee:fc:05:7b:d6:2d:
        32:e9:bf:4f:53:57:5e:38:2d:0e:47:c0:12:76:87:79:
        84:fa:9d:5d:b3:87:a7:96:8d:ae:a4:62:45:e7:5d:31:
        60:7b:21:89:e5:96:39:ee:7c:37:af:d2:b5:6e:9c:66:
        8a:29:b7:bf:b6:b9:13:6c:73:3a:01:b2:9e:31:2f:03:
        d6:39:f7:16:a4:aa:e5:d5:f1:57:0a:be:d0:0a:4f:97:
        4a:4e:32:9e:80:fc:ae:14:a0:98:61:87:e4:fd:42:f0:
        9b:a2:3a:23:e0:a3:cb:99:23:a6:45:54:07:5d:1a:a6:
        5e:f4:3f:8f:5c:87:a2:92:a6:45:49:e8:8f:38:81:98:
        41:f9:d0:a8:b9:58:08:e3:4e:79:a2:2c:cc:a7:03:b5:
        d5:f9:c9:21:3c:2c:62:07:5c:91:22:28:58:c8:b2:98:
        18:f0:05:b7:e7:cf:ce:5c:07:d1:4b:87:4a:91:27:6d:
        ea:54:d7:98:de:0c:b1:2d:44:6b:95:91:15:73:a5:65:
        06:c9:43:22:e5:63:53:d5:f2:0f:99:39:39:f0:c6:11:
        f0:1e:50:2c:c6:d8:e3:dd:c2:26:1e:ca:b4:26:f9:ca:
        ca:e2:af:bb:66:42:b2:43:23:2e:53:f9:e8:11:4a:49
    Fingerprint (SHA-256):
        F4:C6:F7:3E:41:D8:9B:CC:69:3E:DB:9E:13:BF:06:4A:92:1B:A7:3A:4A:B4:66:F3:DD:BA:57:6A:F8:AF:E0:FE
    Fingerprint (SHA1):
        B4:E8:2E:B4:E5:43:5A:1D:09:41:B1:C3:34:A0:3B:05:FE:EB:22:3A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13533: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13534: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175778 (0x3cdde7e2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:04:02 2017
            Not After : Fri Oct 21 18:04:02 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:c6:20:0d:5e:62:fe:37:79:11:0d:27:02:79:df:a5:
                    9f:df:08:43:f9:ca:d4:00:5c:17:9a:d7:9b:7e:6d:5e:
                    e0:91:71:6a:95:aa:a3:14:52:0a:4d:fc:c4:67:39:50:
                    6d:cf:d8:57:63:7b:02:68:bd:97:4c:a9:c8:b7:d1:5c:
                    f5:2b:89:9f:73:6d:c7:dd:cb:5b:54:05:c0:c2:88:d3:
                    a6:d4:25:7d:17:16:4c:97:56:22:7a:c9:86:7f:ef:fe:
                    0f:78:67:eb:68:8b:f7:88:71:38:9b:32:00:1f:0c:ce:
                    7e:a9:d4:8a:c8:be:c0:96:b9:ae:91:89:52:42:a4:8f:
                    bf:1c:ea:de:7b:a2:95:72:3b:b0:76:d8:2b:5e:86:14:
                    bb:0c:07:bc:b3:3d:0c:5d:de:85:0e:25:0a:df:78:27:
                    f4:81:c9:9e:fa:d5:84:b3:ef:e5:12:57:68:6d:cb:60:
                    6b:55:c8:d2:cd:1b:02:d3:e3:d4:49:da:9c:97:f2:ce:
                    41:36:d6:f8:84:13:48:c3:44:58:60:67:7a:b8:78:a3:
                    37:67:07:0b:e0:bf:8a:a4:16:a2:5b:8d:ff:4c:52:32:
                    ee:62:c2:51:0e:1c:7c:5f:e4:11:44:d9:30:2e:48:b0:
                    17:aa:e6:36:bc:9c:94:55:c9:5c:d7:da:db:52:7b:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:8e:7d:41:00:44:97:18:80:08:90:55:67:ab:ac:be:
        83:0c:67:ef:c2:00:be:c4:69:fe:15:b7:cb:90:ed:d7:
        0e:0d:e7:31:82:8d:c7:45:ec:d7:e3:07:e0:8c:0c:da:
        31:68:8b:2d:91:0e:9b:c6:be:c2:00:a3:42:83:30:4b:
        47:bb:2f:4e:94:57:db:2a:44:7d:15:99:c7:5a:af:b9:
        17:d4:49:f0:2f:09:47:59:71:2d:cb:2d:a9:5a:58:36:
        f2:a4:42:90:58:21:b8:d8:52:7d:f7:d7:a7:85:2d:dd:
        f6:d1:d8:a5:1d:51:a5:75:74:7b:19:a2:ee:14:cd:33:
        30:d7:87:f6:43:84:52:a6:94:90:be:a6:26:b9:b5:a7:
        57:fd:c9:1c:a1:51:13:da:79:ee:40:06:63:bf:3f:6a:
        96:22:89:95:cd:a8:c4:bd:4e:40:ab:42:31:2a:6f:99:
        fa:5a:75:fe:46:88:0d:0a:15:d4:6d:50:92:8b:bc:54:
        68:d9:51:95:f9:09:a7:39:51:1f:e5:ba:ba:97:6e:50:
        03:ff:2e:8b:a6:73:39:12:95:76:c1:97:d1:25:2d:6c:
        df:d1:d7:4a:71:e2:95:c3:9e:8a:02:10:75:fe:4e:2b:
        30:ae:62:86:94:44:41:10:d4:d1:6d:ea:71:33:30:1e
    Fingerprint (SHA-256):
        26:35:CA:C7:72:43:A4:B8:10:22:0A:12:F9:48:56:FA:87:3B:51:DC:07:8F:D6:43:D8:A1:C1:39:DE:02:5E:75
    Fingerprint (SHA1):
        D4:43:E9:D6:13:60:AD:FF:AC:0E:1E:6A:7F:FC:57:7E:A2:D1:D1:29
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13535: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175778 (0x3cdde7e2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:04:02 2017
            Not After : Fri Oct 21 18:04:02 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:c6:20:0d:5e:62:fe:37:79:11:0d:27:02:79:df:a5:
                    9f:df:08:43:f9:ca:d4:00:5c:17:9a:d7:9b:7e:6d:5e:
                    e0:91:71:6a:95:aa:a3:14:52:0a:4d:fc:c4:67:39:50:
                    6d:cf:d8:57:63:7b:02:68:bd:97:4c:a9:c8:b7:d1:5c:
                    f5:2b:89:9f:73:6d:c7:dd:cb:5b:54:05:c0:c2:88:d3:
                    a6:d4:25:7d:17:16:4c:97:56:22:7a:c9:86:7f:ef:fe:
                    0f:78:67:eb:68:8b:f7:88:71:38:9b:32:00:1f:0c:ce:
                    7e:a9:d4:8a:c8:be:c0:96:b9:ae:91:89:52:42:a4:8f:
                    bf:1c:ea:de:7b:a2:95:72:3b:b0:76:d8:2b:5e:86:14:
                    bb:0c:07:bc:b3:3d:0c:5d:de:85:0e:25:0a:df:78:27:
                    f4:81:c9:9e:fa:d5:84:b3:ef:e5:12:57:68:6d:cb:60:
                    6b:55:c8:d2:cd:1b:02:d3:e3:d4:49:da:9c:97:f2:ce:
                    41:36:d6:f8:84:13:48:c3:44:58:60:67:7a:b8:78:a3:
                    37:67:07:0b:e0:bf:8a:a4:16:a2:5b:8d:ff:4c:52:32:
                    ee:62:c2:51:0e:1c:7c:5f:e4:11:44:d9:30:2e:48:b0:
                    17:aa:e6:36:bc:9c:94:55:c9:5c:d7:da:db:52:7b:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:8e:7d:41:00:44:97:18:80:08:90:55:67:ab:ac:be:
        83:0c:67:ef:c2:00:be:c4:69:fe:15:b7:cb:90:ed:d7:
        0e:0d:e7:31:82:8d:c7:45:ec:d7:e3:07:e0:8c:0c:da:
        31:68:8b:2d:91:0e:9b:c6:be:c2:00:a3:42:83:30:4b:
        47:bb:2f:4e:94:57:db:2a:44:7d:15:99:c7:5a:af:b9:
        17:d4:49:f0:2f:09:47:59:71:2d:cb:2d:a9:5a:58:36:
        f2:a4:42:90:58:21:b8:d8:52:7d:f7:d7:a7:85:2d:dd:
        f6:d1:d8:a5:1d:51:a5:75:74:7b:19:a2:ee:14:cd:33:
        30:d7:87:f6:43:84:52:a6:94:90:be:a6:26:b9:b5:a7:
        57:fd:c9:1c:a1:51:13:da:79:ee:40:06:63:bf:3f:6a:
        96:22:89:95:cd:a8:c4:bd:4e:40:ab:42:31:2a:6f:99:
        fa:5a:75:fe:46:88:0d:0a:15:d4:6d:50:92:8b:bc:54:
        68:d9:51:95:f9:09:a7:39:51:1f:e5:ba:ba:97:6e:50:
        03:ff:2e:8b:a6:73:39:12:95:76:c1:97:d1:25:2d:6c:
        df:d1:d7:4a:71:e2:95:c3:9e:8a:02:10:75:fe:4e:2b:
        30:ae:62:86:94:44:41:10:d4:d1:6d:ea:71:33:30:1e
    Fingerprint (SHA-256):
        26:35:CA:C7:72:43:A4:B8:10:22:0A:12:F9:48:56:FA:87:3B:51:DC:07:8F:D6:43:D8:A1:C1:39:DE:02:5E:75
    Fingerprint (SHA1):
        D4:43:E9:D6:13:60:AD:FF:AC:0E:1E:6A:7F:FC:57:7E:A2:D1:D1:29
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13536: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175779 (0x3cdde7e3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:04:10 2017
            Not After : Fri Oct 21 18:04:10 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:5f:e4:e5:29:65:30:11:5a:42:7c:bf:4c:ba:17:22:
                    06:ba:9b:02:8d:bb:d2:d6:35:fb:3e:a6:12:aa:fd:24:
                    d8:41:d6:97:87:0f:35:7b:73:d6:60:11:b8:69:2c:87:
                    2f:85:12:33:3d:36:74:cc:c4:8e:79:2c:82:c8:42:05:
                    89:ca:c4:e9:e2:d1:81:72:a1:2a:2b:10:68:7e:25:68:
                    36:50:2d:da:90:77:ef:39:d3:27:eb:3b:48:44:c9:47:
                    1a:2e:68:76:58:27:a1:59:1b:ea:02:25:88:8e:ad:77:
                    07:eb:a0:91:29:06:51:65:2e:95:5b:1e:d2:1b:3a:82:
                    a9:9f:a7:42:27:c7:ab:9f:f3:cc:4a:3f:ec:9e:51:c5:
                    c6:2f:f4:fd:4b:13:da:e4:ba:01:e7:6b:da:e8:1c:14:
                    f0:87:31:4b:dc:1c:b6:dc:e3:89:6e:55:b5:51:95:cc:
                    b8:2b:6b:8e:00:c1:b6:e7:4a:b1:7d:1c:eb:a6:b9:92:
                    23:3c:37:99:0a:f9:5f:7c:b6:ae:22:ac:18:c4:6b:25:
                    00:76:08:bd:ad:08:fe:ce:c6:18:b7:69:c3:ae:7d:fe:
                    ff:7f:81:1e:f6:55:e2:f5:93:74:6f:22:34:7b:27:f2:
                    b7:1c:e3:44:f9:bf:22:80:cb:cc:5b:7b:e0:9d:08:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1c:23:b3:d3:86:a1:bb:43:08:80:d1:6c:c3:a9:ca:7d:
        a8:72:11:e7:ca:b3:3d:43:75:b5:90:41:6c:8d:57:a8:
        99:b4:eb:a0:99:3a:a7:ea:57:4e:80:35:1a:2b:4e:2d:
        d1:64:55:0b:29:92:27:6d:4c:0a:d1:dd:61:46:6c:b2:
        64:72:04:81:16:55:e4:af:5a:98:fd:08:f5:32:c7:42:
        6a:df:ad:7d:d7:85:93:5d:71:14:e6:be:d2:63:93:0b:
        a0:d3:8f:50:2e:c6:01:6f:ef:d7:c0:83:12:f9:c2:9d:
        b4:27:e2:47:a0:96:a6:68:f4:09:83:0b:86:e7:86:f4:
        30:8e:92:9e:52:ce:1e:11:fe:c4:c2:38:5e:a6:99:18:
        15:bd:e0:88:1d:55:9c:b6:38:83:13:89:57:12:45:2d:
        93:81:ba:c0:db:b2:6d:5a:34:41:d0:34:4e:41:f8:81:
        81:bf:53:d8:1c:d6:58:79:ba:06:37:fc:7e:cd:8b:7c:
        43:23:a6:57:94:7f:64:ee:e4:f2:68:7b:9f:71:90:99:
        0f:89:ee:a9:8d:a6:c8:0a:ab:73:92:c4:c2:7f:64:fe:
        c2:cf:7d:a8:d3:e6:c7:86:41:d6:f4:46:f3:f6:6a:e4:
        52:5a:0d:a2:13:b4:95:1b:0c:b7:4f:e4:7c:7f:a2:46
    Fingerprint (SHA-256):
        99:84:48:71:B1:DA:69:F0:FF:57:32:0E:5C:BF:12:37:2C:6D:BC:22:BF:33:41:0A:65:C1:CC:B1:18:F0:82:48
    Fingerprint (SHA1):
        02:1B:F0:66:95:5D:7E:FF:43:86:5F:12:33:A8:2D:5B:9F:F2:49:4C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13537: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175779 (0x3cdde7e3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:04:10 2017
            Not After : Fri Oct 21 18:04:10 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:5f:e4:e5:29:65:30:11:5a:42:7c:bf:4c:ba:17:22:
                    06:ba:9b:02:8d:bb:d2:d6:35:fb:3e:a6:12:aa:fd:24:
                    d8:41:d6:97:87:0f:35:7b:73:d6:60:11:b8:69:2c:87:
                    2f:85:12:33:3d:36:74:cc:c4:8e:79:2c:82:c8:42:05:
                    89:ca:c4:e9:e2:d1:81:72:a1:2a:2b:10:68:7e:25:68:
                    36:50:2d:da:90:77:ef:39:d3:27:eb:3b:48:44:c9:47:
                    1a:2e:68:76:58:27:a1:59:1b:ea:02:25:88:8e:ad:77:
                    07:eb:a0:91:29:06:51:65:2e:95:5b:1e:d2:1b:3a:82:
                    a9:9f:a7:42:27:c7:ab:9f:f3:cc:4a:3f:ec:9e:51:c5:
                    c6:2f:f4:fd:4b:13:da:e4:ba:01:e7:6b:da:e8:1c:14:
                    f0:87:31:4b:dc:1c:b6:dc:e3:89:6e:55:b5:51:95:cc:
                    b8:2b:6b:8e:00:c1:b6:e7:4a:b1:7d:1c:eb:a6:b9:92:
                    23:3c:37:99:0a:f9:5f:7c:b6:ae:22:ac:18:c4:6b:25:
                    00:76:08:bd:ad:08:fe:ce:c6:18:b7:69:c3:ae:7d:fe:
                    ff:7f:81:1e:f6:55:e2:f5:93:74:6f:22:34:7b:27:f2:
                    b7:1c:e3:44:f9:bf:22:80:cb:cc:5b:7b:e0:9d:08:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1c:23:b3:d3:86:a1:bb:43:08:80:d1:6c:c3:a9:ca:7d:
        a8:72:11:e7:ca:b3:3d:43:75:b5:90:41:6c:8d:57:a8:
        99:b4:eb:a0:99:3a:a7:ea:57:4e:80:35:1a:2b:4e:2d:
        d1:64:55:0b:29:92:27:6d:4c:0a:d1:dd:61:46:6c:b2:
        64:72:04:81:16:55:e4:af:5a:98:fd:08:f5:32:c7:42:
        6a:df:ad:7d:d7:85:93:5d:71:14:e6:be:d2:63:93:0b:
        a0:d3:8f:50:2e:c6:01:6f:ef:d7:c0:83:12:f9:c2:9d:
        b4:27:e2:47:a0:96:a6:68:f4:09:83:0b:86:e7:86:f4:
        30:8e:92:9e:52:ce:1e:11:fe:c4:c2:38:5e:a6:99:18:
        15:bd:e0:88:1d:55:9c:b6:38:83:13:89:57:12:45:2d:
        93:81:ba:c0:db:b2:6d:5a:34:41:d0:34:4e:41:f8:81:
        81:bf:53:d8:1c:d6:58:79:ba:06:37:fc:7e:cd:8b:7c:
        43:23:a6:57:94:7f:64:ee:e4:f2:68:7b:9f:71:90:99:
        0f:89:ee:a9:8d:a6:c8:0a:ab:73:92:c4:c2:7f:64:fe:
        c2:cf:7d:a8:d3:e6:c7:86:41:d6:f4:46:f3:f6:6a:e4:
        52:5a:0d:a2:13:b4:95:1b:0c:b7:4f:e4:7c:7f:a2:46
    Fingerprint (SHA-256):
        99:84:48:71:B1:DA:69:F0:FF:57:32:0E:5C:BF:12:37:2C:6D:BC:22:BF:33:41:0A:65:C1:CC:B1:18:F0:82:48
    Fingerprint (SHA1):
        02:1B:F0:66:95:5D:7E:FF:43:86:5F:12:33:A8:2D:5B:9F:F2:49:4C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13538: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175780 (0x3cdde7e4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 18:04:16 2017
            Not After : Fri Oct 21 18:04:16 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:b8:71:28:68:0a:19:52:f2:a9:3e:90:e3:0a:56:77:
                    94:cb:ef:c1:88:93:46:df:de:fa:9c:43:9e:25:21:5b:
                    5e:14:cd:ed:b1:cb:1a:4e:9b:42:a1:6a:03:97:d1:22:
                    27:f8:7b:24:aa:f6:72:f8:66:05:c6:06:c1:c7:a9:e8:
                    72:01:f5:37:3e:04:3a:9f:9b:3e:f7:e1:0d:59:2b:a1:
                    7d:24:b5:c1:ee:c0:21:f8:0e:70:3b:26:3a:21:5a:9c:
                    10:05:f3:91:b1:10:6c:d6:d9:95:57:a4:16:8a:5e:2d:
                    e8:29:9a:5e:ea:96:95:58:5b:05:96:10:82:95:23:eb:
                    fa:2c:32:bb:b2:93:ca:c8:42:f1:a1:98:9e:98:57:e7:
                    05:6f:f3:52:d9:45:ae:7d:a6:f0:e7:31:4c:80:54:b2:
                    c1:d0:25:dc:2f:45:c6:ab:8a:8f:c5:c8:d6:84:15:84:
                    4e:0f:a2:52:18:31:23:98:7c:3a:a6:d3:a9:af:76:65:
                    18:61:8e:6d:18:8c:14:dd:f8:c8:31:b5:f4:db:c6:61:
                    4d:c7:b1:1b:0a:69:df:ff:fa:e0:b4:1a:98:53:23:99:
                    34:77:93:cb:b9:5b:d5:34:02:f4:65:fa:fa:f6:d0:e3:
                    02:a6:97:61:69:81:21:bc:9c:52:1f:64:67:60:da:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:ae:ca:ac:86:7b:7e:99:2e:d5:ee:fc:05:7b:d6:2d:
        32:e9:bf:4f:53:57:5e:38:2d:0e:47:c0:12:76:87:79:
        84:fa:9d:5d:b3:87:a7:96:8d:ae:a4:62:45:e7:5d:31:
        60:7b:21:89:e5:96:39:ee:7c:37:af:d2:b5:6e:9c:66:
        8a:29:b7:bf:b6:b9:13:6c:73:3a:01:b2:9e:31:2f:03:
        d6:39:f7:16:a4:aa:e5:d5:f1:57:0a:be:d0:0a:4f:97:
        4a:4e:32:9e:80:fc:ae:14:a0:98:61:87:e4:fd:42:f0:
        9b:a2:3a:23:e0:a3:cb:99:23:a6:45:54:07:5d:1a:a6:
        5e:f4:3f:8f:5c:87:a2:92:a6:45:49:e8:8f:38:81:98:
        41:f9:d0:a8:b9:58:08:e3:4e:79:a2:2c:cc:a7:03:b5:
        d5:f9:c9:21:3c:2c:62:07:5c:91:22:28:58:c8:b2:98:
        18:f0:05:b7:e7:cf:ce:5c:07:d1:4b:87:4a:91:27:6d:
        ea:54:d7:98:de:0c:b1:2d:44:6b:95:91:15:73:a5:65:
        06:c9:43:22:e5:63:53:d5:f2:0f:99:39:39:f0:c6:11:
        f0:1e:50:2c:c6:d8:e3:dd:c2:26:1e:ca:b4:26:f9:ca:
        ca:e2:af:bb:66:42:b2:43:23:2e:53:f9:e8:11:4a:49
    Fingerprint (SHA-256):
        F4:C6:F7:3E:41:D8:9B:CC:69:3E:DB:9E:13:BF:06:4A:92:1B:A7:3A:4A:B4:66:F3:DD:BA:57:6A:F8:AF:E0:FE
    Fingerprint (SHA1):
        B4:E8:2E:B4:E5:43:5A:1D:09:41:B1:C3:34:A0:3B:05:FE:EB:22:3A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13539: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175780 (0x3cdde7e4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 18:04:16 2017
            Not After : Fri Oct 21 18:04:16 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:b8:71:28:68:0a:19:52:f2:a9:3e:90:e3:0a:56:77:
                    94:cb:ef:c1:88:93:46:df:de:fa:9c:43:9e:25:21:5b:
                    5e:14:cd:ed:b1:cb:1a:4e:9b:42:a1:6a:03:97:d1:22:
                    27:f8:7b:24:aa:f6:72:f8:66:05:c6:06:c1:c7:a9:e8:
                    72:01:f5:37:3e:04:3a:9f:9b:3e:f7:e1:0d:59:2b:a1:
                    7d:24:b5:c1:ee:c0:21:f8:0e:70:3b:26:3a:21:5a:9c:
                    10:05:f3:91:b1:10:6c:d6:d9:95:57:a4:16:8a:5e:2d:
                    e8:29:9a:5e:ea:96:95:58:5b:05:96:10:82:95:23:eb:
                    fa:2c:32:bb:b2:93:ca:c8:42:f1:a1:98:9e:98:57:e7:
                    05:6f:f3:52:d9:45:ae:7d:a6:f0:e7:31:4c:80:54:b2:
                    c1:d0:25:dc:2f:45:c6:ab:8a:8f:c5:c8:d6:84:15:84:
                    4e:0f:a2:52:18:31:23:98:7c:3a:a6:d3:a9:af:76:65:
                    18:61:8e:6d:18:8c:14:dd:f8:c8:31:b5:f4:db:c6:61:
                    4d:c7:b1:1b:0a:69:df:ff:fa:e0:b4:1a:98:53:23:99:
                    34:77:93:cb:b9:5b:d5:34:02:f4:65:fa:fa:f6:d0:e3:
                    02:a6:97:61:69:81:21:bc:9c:52:1f:64:67:60:da:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:ae:ca:ac:86:7b:7e:99:2e:d5:ee:fc:05:7b:d6:2d:
        32:e9:bf:4f:53:57:5e:38:2d:0e:47:c0:12:76:87:79:
        84:fa:9d:5d:b3:87:a7:96:8d:ae:a4:62:45:e7:5d:31:
        60:7b:21:89:e5:96:39:ee:7c:37:af:d2:b5:6e:9c:66:
        8a:29:b7:bf:b6:b9:13:6c:73:3a:01:b2:9e:31:2f:03:
        d6:39:f7:16:a4:aa:e5:d5:f1:57:0a:be:d0:0a:4f:97:
        4a:4e:32:9e:80:fc:ae:14:a0:98:61:87:e4:fd:42:f0:
        9b:a2:3a:23:e0:a3:cb:99:23:a6:45:54:07:5d:1a:a6:
        5e:f4:3f:8f:5c:87:a2:92:a6:45:49:e8:8f:38:81:98:
        41:f9:d0:a8:b9:58:08:e3:4e:79:a2:2c:cc:a7:03:b5:
        d5:f9:c9:21:3c:2c:62:07:5c:91:22:28:58:c8:b2:98:
        18:f0:05:b7:e7:cf:ce:5c:07:d1:4b:87:4a:91:27:6d:
        ea:54:d7:98:de:0c:b1:2d:44:6b:95:91:15:73:a5:65:
        06:c9:43:22:e5:63:53:d5:f2:0f:99:39:39:f0:c6:11:
        f0:1e:50:2c:c6:d8:e3:dd:c2:26:1e:ca:b4:26:f9:ca:
        ca:e2:af:bb:66:42:b2:43:23:2e:53:f9:e8:11:4a:49
    Fingerprint (SHA-256):
        F4:C6:F7:3E:41:D8:9B:CC:69:3E:DB:9E:13:BF:06:4A:92:1B:A7:3A:4A:B4:66:F3:DD:BA:57:6A:F8:AF:E0:FE
    Fingerprint (SHA1):
        B4:E8:2E:B4:E5:43:5A:1D:09:41:B1:C3:34:A0:3B:05:FE:EB:22:3A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13540: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #13541: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175783 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13542: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #13543: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13544: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13545: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 1021175784   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13546: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13547: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #13548: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13549: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021175785   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #13550: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13551: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #13552: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13553: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 1021175786   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13554: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13555: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #13556: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13557: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 1021175787   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13558: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13559: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #13560: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13561: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 1021175788   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13562: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13563: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #13564: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13565: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 1021175789   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13566: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13567: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13568: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #13569: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #13570: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #13571: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #13572: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175783 (0x3cdde7e7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:05:04 2017
            Not After : Fri Oct 21 18:05:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:83:b7:ff:03:e2:08:af:1b:96:1b:b0:89:a6:88:1f:
                    96:ba:26:e9:ec:c6:64:0f:a1:8b:32:c5:4a:d1:28:25:
                    4c:da:af:86:7e:f5:f9:c6:81:9b:7c:8a:0c:3d:6b:43:
                    bf:52:37:a7:a9:08:d1:de:c3:2d:5f:8e:d6:c7:0a:5e:
                    86:65:c2:f6:6b:89:12:50:0e:c9:cc:ac:f7:6d:df:03:
                    1a:22:8e:ee:d5:2c:41:69:d6:be:84:b7:1e:3f:15:38:
                    37:09:df:08:78:cd:0a:62:0b:a0:48:3c:e8:b7:bb:a0:
                    d7:2a:f8:94:71:1c:67:a3:f1:99:16:d5:6f:92:6b:29:
                    5b:9f:7e:84:c0:d1:94:96:13:db:4a:4a:b1:9f:0d:1c:
                    cd:ab:2b:d6:26:1b:dc:dc:7d:22:45:b2:9c:1e:5a:57:
                    0f:44:3c:47:70:2f:22:04:f4:dc:f7:f1:e5:7e:ed:ab:
                    a7:1b:32:bc:e6:fa:ce:ad:4a:8c:db:e0:23:5d:0b:51:
                    55:8b:03:85:9b:5b:27:a0:6d:0c:9e:c3:d3:d9:76:b5:
                    bd:7c:78:b0:2e:f0:cb:64:21:38:39:6a:d5:25:4e:4e:
                    85:a5:9e:15:95:a7:7e:17:ba:b6:6d:1b:06:e3:ce:0a:
                    d2:0f:a4:0a:ab:01:7c:10:ff:b2:3c:41:50:a5:e9:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7c:52:33:6b:c8:dd:6a:7a:72:00:ea:6d:a8:e5:84:16:
        83:7e:0a:6f:27:b5:72:7f:22:a0:51:c5:89:5f:45:c6:
        61:4f:f2:d5:42:19:45:af:e5:ab:a4:05:1b:83:3a:d5:
        6e:10:62:4e:3d:2a:38:3c:a6:e6:31:ea:ef:64:f8:31:
        0d:53:0a:55:9e:62:91:80:12:ee:cd:45:1c:07:9b:f0:
        99:f0:d3:41:05:39:e6:cb:27:65:a5:f9:d7:8c:45:41:
        50:30:89:07:c9:49:8b:64:d7:4c:f4:93:79:1f:37:cf:
        42:c7:92:ee:75:ff:8f:06:c7:ee:a5:f1:11:15:e7:9b:
        b1:64:6b:db:29:d5:ec:a2:59:58:5b:76:71:24:6e:51:
        f9:98:b7:d3:91:d3:b1:65:20:03:6e:21:8c:32:04:07:
        ab:86:f2:94:34:44:ae:82:64:e4:fd:48:2b:ff:9a:70:
        37:95:19:ad:6e:f1:4f:33:66:ff:b3:db:ce:65:83:9f:
        f9:0a:d5:31:43:94:8e:d4:06:ea:ff:05:2d:7e:8a:79:
        35:8c:7d:0a:82:fc:0b:b3:2e:68:a6:a1:cd:c2:f6:97:
        a2:e4:b0:7f:8e:36:db:b5:ec:21:20:45:e1:23:ef:3e:
        64:37:99:26:2d:dc:02:b8:8c:23:a2:9d:51:2b:de:cc
    Fingerprint (SHA-256):
        E2:25:F9:7B:8D:9A:48:AA:51:45:92:C2:C4:8D:54:7A:DF:FA:F9:D2:A5:A0:D1:E0:6A:75:37:38:5D:7E:BA:FD
    Fingerprint (SHA1):
        67:99:44:54:69:E0:B5:48:FA:23:45:29:56:4F:3E:75:EB:9F:2A:B4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13573: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13574: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13575: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13576: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175783 (0x3cdde7e7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:05:04 2017
            Not After : Fri Oct 21 18:05:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:83:b7:ff:03:e2:08:af:1b:96:1b:b0:89:a6:88:1f:
                    96:ba:26:e9:ec:c6:64:0f:a1:8b:32:c5:4a:d1:28:25:
                    4c:da:af:86:7e:f5:f9:c6:81:9b:7c:8a:0c:3d:6b:43:
                    bf:52:37:a7:a9:08:d1:de:c3:2d:5f:8e:d6:c7:0a:5e:
                    86:65:c2:f6:6b:89:12:50:0e:c9:cc:ac:f7:6d:df:03:
                    1a:22:8e:ee:d5:2c:41:69:d6:be:84:b7:1e:3f:15:38:
                    37:09:df:08:78:cd:0a:62:0b:a0:48:3c:e8:b7:bb:a0:
                    d7:2a:f8:94:71:1c:67:a3:f1:99:16:d5:6f:92:6b:29:
                    5b:9f:7e:84:c0:d1:94:96:13:db:4a:4a:b1:9f:0d:1c:
                    cd:ab:2b:d6:26:1b:dc:dc:7d:22:45:b2:9c:1e:5a:57:
                    0f:44:3c:47:70:2f:22:04:f4:dc:f7:f1:e5:7e:ed:ab:
                    a7:1b:32:bc:e6:fa:ce:ad:4a:8c:db:e0:23:5d:0b:51:
                    55:8b:03:85:9b:5b:27:a0:6d:0c:9e:c3:d3:d9:76:b5:
                    bd:7c:78:b0:2e:f0:cb:64:21:38:39:6a:d5:25:4e:4e:
                    85:a5:9e:15:95:a7:7e:17:ba:b6:6d:1b:06:e3:ce:0a:
                    d2:0f:a4:0a:ab:01:7c:10:ff:b2:3c:41:50:a5:e9:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7c:52:33:6b:c8:dd:6a:7a:72:00:ea:6d:a8:e5:84:16:
        83:7e:0a:6f:27:b5:72:7f:22:a0:51:c5:89:5f:45:c6:
        61:4f:f2:d5:42:19:45:af:e5:ab:a4:05:1b:83:3a:d5:
        6e:10:62:4e:3d:2a:38:3c:a6:e6:31:ea:ef:64:f8:31:
        0d:53:0a:55:9e:62:91:80:12:ee:cd:45:1c:07:9b:f0:
        99:f0:d3:41:05:39:e6:cb:27:65:a5:f9:d7:8c:45:41:
        50:30:89:07:c9:49:8b:64:d7:4c:f4:93:79:1f:37:cf:
        42:c7:92:ee:75:ff:8f:06:c7:ee:a5:f1:11:15:e7:9b:
        b1:64:6b:db:29:d5:ec:a2:59:58:5b:76:71:24:6e:51:
        f9:98:b7:d3:91:d3:b1:65:20:03:6e:21:8c:32:04:07:
        ab:86:f2:94:34:44:ae:82:64:e4:fd:48:2b:ff:9a:70:
        37:95:19:ad:6e:f1:4f:33:66:ff:b3:db:ce:65:83:9f:
        f9:0a:d5:31:43:94:8e:d4:06:ea:ff:05:2d:7e:8a:79:
        35:8c:7d:0a:82:fc:0b:b3:2e:68:a6:a1:cd:c2:f6:97:
        a2:e4:b0:7f:8e:36:db:b5:ec:21:20:45:e1:23:ef:3e:
        64:37:99:26:2d:dc:02:b8:8c:23:a2:9d:51:2b:de:cc
    Fingerprint (SHA-256):
        E2:25:F9:7B:8D:9A:48:AA:51:45:92:C2:C4:8D:54:7A:DF:FA:F9:D2:A5:A0:D1:E0:6A:75:37:38:5D:7E:BA:FD
    Fingerprint (SHA1):
        67:99:44:54:69:E0:B5:48:FA:23:45:29:56:4F:3E:75:EB:9F:2A:B4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13577: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13578: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #13579: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175790 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13580: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #13581: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13582: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13583: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 1021175791   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #13584: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13585: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #13586: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13587: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 1021175792   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13588: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13589: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #13590: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13591: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 1021175793   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13592: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13593: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #13594: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13595: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 1021175794   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13596: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13597: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #13598: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13599: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 1021175795   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13600: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13601: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #13602: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13603: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 1021175796   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13604: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13605: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #13606: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13607: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 1021175797   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13608: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13609: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #13610: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13611: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 1021175798   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #13612: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13613: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #13614: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13615: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 1021175799   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13616: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13617: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #13618: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13619: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 1021175800   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13620: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13621: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #13622: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13623: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 1021175801   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13624: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13625: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #13626: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13627: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 1021175802   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13628: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13629: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #13630: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13631: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 1021175803   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13632: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13633: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #13634: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13635: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 1021175804   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13636: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13637: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #13638: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13639: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 1021175805   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13640: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13641: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #13642: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13643: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 1021175806   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13644: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13645: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #13646: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13647: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 1021175807   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #13648: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13649: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #13650: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13651: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 1021175808   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13652: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13653: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #13654: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13655: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 1021175809   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13656: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13657: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #13658: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13659: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 1021175810   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13660: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13661: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #13662: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13663: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 1021175811   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13664: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13665: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #13666: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13667: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 1021175812   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13668: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13669: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #13670: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13671: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 1021175813   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13672: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13673: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #13674: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13675: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 1021175814   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13676: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13677: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #13678: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13679: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 1021175815   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13680: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13681: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #13682: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13683: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 1021175816   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13684: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13685: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #13686: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13687: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 1021175817   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13688: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13689: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #13690: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13691: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 1021175818   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13692: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13693: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #13694: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13695: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 1021175819   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13696: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13697: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13698: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175790 (0x3cdde7ee)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:06:00 2017
            Not After : Fri Oct 21 18:06:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f6:ba:88:65:67:0e:a3:35:e4:2e:9b:51:74:fe:02:86:
                    26:23:fa:b8:3c:5d:e6:7a:3e:8e:79:b3:85:89:73:75:
                    4b:60:c7:0d:fc:86:8a:d1:c1:f8:eb:37:e9:3e:88:a1:
                    bb:49:cb:47:ed:52:10:50:8f:dc:d5:a1:65:54:3e:4a:
                    7f:74:b7:30:d2:a8:fc:d3:1e:d5:b5:3d:5e:f5:3c:84:
                    3f:05:da:42:37:92:56:c3:aa:f5:ac:d3:97:19:f4:f1:
                    e1:58:b9:dc:17:cf:c6:d8:3d:ee:bd:62:d1:68:d6:57:
                    d1:d3:99:77:07:16:04:d3:8f:e2:20:ed:36:c8:d7:57:
                    d8:99:a1:fb:3f:6f:75:e2:09:6f:94:6d:12:c0:e4:cc:
                    38:f3:00:46:a3:d1:24:3e:2b:8f:ae:cc:0d:47:c8:b7:
                    02:ac:60:a0:e6:85:c6:69:d4:cc:fb:b9:37:c4:22:11:
                    1c:c8:cf:6f:2e:1f:08:d7:a7:96:b1:3f:2c:4a:83:6d:
                    04:f6:cc:4d:d3:04:5b:7a:af:25:23:9a:1a:b3:2c:4f:
                    b3:a1:ea:40:d5:c3:4d:66:99:e0:c8:5e:43:13:29:4d:
                    2f:de:b3:79:91:c9:00:06:d1:e8:20:e3:42:aa:d7:fe:
                    62:c1:fb:6b:5b:c4:24:cd:ec:60:28:6c:95:67:23:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:46:f5:d5:3a:0e:51:80:45:07:3b:d1:de:4e:cd:38:
        30:0a:9b:2b:be:26:79:33:46:07:3b:c8:7e:85:1d:5c:
        d1:b0:f6:77:b5:91:65:0a:ff:94:d6:e3:5f:da:9f:e4:
        4d:4c:34:76:de:61:a3:dd:f4:71:ca:f0:62:e6:c7:34:
        2b:ab:5e:99:26:ca:c4:ce:41:3c:14:86:a9:54:ee:51:
        3d:ff:79:27:68:a7:43:c5:63:70:cb:b8:63:fa:69:e7:
        74:9f:a1:50:f5:68:1a:42:08:8a:fe:31:58:7d:43:19:
        fe:24:00:d4:14:32:92:b2:15:23:f7:13:85:24:d4:99:
        27:22:d5:68:63:5f:23:18:c6:c5:3c:60:5f:30:61:32:
        6c:af:7a:cf:05:bd:e4:7e:6e:f6:ba:10:f2:af:d7:72:
        ff:60:ff:bc:c7:34:bb:34:3b:c1:45:e1:ac:a1:d0:d4:
        62:97:32:e6:34:df:96:84:92:c1:23:28:5a:f8:42:85:
        a1:c6:8b:c4:82:d7:f1:db:6a:ed:5d:dc:2b:e9:54:0c:
        e1:4d:18:94:02:39:e6:44:e6:87:66:47:43:93:98:b3:
        4b:18:c7:87:28:6e:a5:f9:d6:f6:98:de:5e:5f:41:1d:
        2b:a9:56:a4:20:59:d7:8f:74:ce:69:79:b2:d8:f2:00
    Fingerprint (SHA-256):
        16:04:3C:0E:B5:B8:17:20:90:F8:E5:2A:A7:64:E8:CF:2F:A6:DA:89:34:9D:73:D9:86:4A:27:5B:5F:85:A3:98
    Fingerprint (SHA1):
        A7:C7:EA:03:1A:C2:27:FD:11:9F:A8:6F:26:7F:DF:3D:E3:78:4A:C8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13699: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13700: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175790 (0x3cdde7ee)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:06:00 2017
            Not After : Fri Oct 21 18:06:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f6:ba:88:65:67:0e:a3:35:e4:2e:9b:51:74:fe:02:86:
                    26:23:fa:b8:3c:5d:e6:7a:3e:8e:79:b3:85:89:73:75:
                    4b:60:c7:0d:fc:86:8a:d1:c1:f8:eb:37:e9:3e:88:a1:
                    bb:49:cb:47:ed:52:10:50:8f:dc:d5:a1:65:54:3e:4a:
                    7f:74:b7:30:d2:a8:fc:d3:1e:d5:b5:3d:5e:f5:3c:84:
                    3f:05:da:42:37:92:56:c3:aa:f5:ac:d3:97:19:f4:f1:
                    e1:58:b9:dc:17:cf:c6:d8:3d:ee:bd:62:d1:68:d6:57:
                    d1:d3:99:77:07:16:04:d3:8f:e2:20:ed:36:c8:d7:57:
                    d8:99:a1:fb:3f:6f:75:e2:09:6f:94:6d:12:c0:e4:cc:
                    38:f3:00:46:a3:d1:24:3e:2b:8f:ae:cc:0d:47:c8:b7:
                    02:ac:60:a0:e6:85:c6:69:d4:cc:fb:b9:37:c4:22:11:
                    1c:c8:cf:6f:2e:1f:08:d7:a7:96:b1:3f:2c:4a:83:6d:
                    04:f6:cc:4d:d3:04:5b:7a:af:25:23:9a:1a:b3:2c:4f:
                    b3:a1:ea:40:d5:c3:4d:66:99:e0:c8:5e:43:13:29:4d:
                    2f:de:b3:79:91:c9:00:06:d1:e8:20:e3:42:aa:d7:fe:
                    62:c1:fb:6b:5b:c4:24:cd:ec:60:28:6c:95:67:23:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:46:f5:d5:3a:0e:51:80:45:07:3b:d1:de:4e:cd:38:
        30:0a:9b:2b:be:26:79:33:46:07:3b:c8:7e:85:1d:5c:
        d1:b0:f6:77:b5:91:65:0a:ff:94:d6:e3:5f:da:9f:e4:
        4d:4c:34:76:de:61:a3:dd:f4:71:ca:f0:62:e6:c7:34:
        2b:ab:5e:99:26:ca:c4:ce:41:3c:14:86:a9:54:ee:51:
        3d:ff:79:27:68:a7:43:c5:63:70:cb:b8:63:fa:69:e7:
        74:9f:a1:50:f5:68:1a:42:08:8a:fe:31:58:7d:43:19:
        fe:24:00:d4:14:32:92:b2:15:23:f7:13:85:24:d4:99:
        27:22:d5:68:63:5f:23:18:c6:c5:3c:60:5f:30:61:32:
        6c:af:7a:cf:05:bd:e4:7e:6e:f6:ba:10:f2:af:d7:72:
        ff:60:ff:bc:c7:34:bb:34:3b:c1:45:e1:ac:a1:d0:d4:
        62:97:32:e6:34:df:96:84:92:c1:23:28:5a:f8:42:85:
        a1:c6:8b:c4:82:d7:f1:db:6a:ed:5d:dc:2b:e9:54:0c:
        e1:4d:18:94:02:39:e6:44:e6:87:66:47:43:93:98:b3:
        4b:18:c7:87:28:6e:a5:f9:d6:f6:98:de:5e:5f:41:1d:
        2b:a9:56:a4:20:59:d7:8f:74:ce:69:79:b2:d8:f2:00
    Fingerprint (SHA-256):
        16:04:3C:0E:B5:B8:17:20:90:F8:E5:2A:A7:64:E8:CF:2F:A6:DA:89:34:9D:73:D9:86:4A:27:5B:5F:85:A3:98
    Fingerprint (SHA1):
        A7:C7:EA:03:1A:C2:27:FD:11:9F:A8:6F:26:7F:DF:3D:E3:78:4A:C8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13701: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13702: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13703: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13704: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175790 (0x3cdde7ee)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:06:00 2017
            Not After : Fri Oct 21 18:06:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f6:ba:88:65:67:0e:a3:35:e4:2e:9b:51:74:fe:02:86:
                    26:23:fa:b8:3c:5d:e6:7a:3e:8e:79:b3:85:89:73:75:
                    4b:60:c7:0d:fc:86:8a:d1:c1:f8:eb:37:e9:3e:88:a1:
                    bb:49:cb:47:ed:52:10:50:8f:dc:d5:a1:65:54:3e:4a:
                    7f:74:b7:30:d2:a8:fc:d3:1e:d5:b5:3d:5e:f5:3c:84:
                    3f:05:da:42:37:92:56:c3:aa:f5:ac:d3:97:19:f4:f1:
                    e1:58:b9:dc:17:cf:c6:d8:3d:ee:bd:62:d1:68:d6:57:
                    d1:d3:99:77:07:16:04:d3:8f:e2:20:ed:36:c8:d7:57:
                    d8:99:a1:fb:3f:6f:75:e2:09:6f:94:6d:12:c0:e4:cc:
                    38:f3:00:46:a3:d1:24:3e:2b:8f:ae:cc:0d:47:c8:b7:
                    02:ac:60:a0:e6:85:c6:69:d4:cc:fb:b9:37:c4:22:11:
                    1c:c8:cf:6f:2e:1f:08:d7:a7:96:b1:3f:2c:4a:83:6d:
                    04:f6:cc:4d:d3:04:5b:7a:af:25:23:9a:1a:b3:2c:4f:
                    b3:a1:ea:40:d5:c3:4d:66:99:e0:c8:5e:43:13:29:4d:
                    2f:de:b3:79:91:c9:00:06:d1:e8:20:e3:42:aa:d7:fe:
                    62:c1:fb:6b:5b:c4:24:cd:ec:60:28:6c:95:67:23:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:46:f5:d5:3a:0e:51:80:45:07:3b:d1:de:4e:cd:38:
        30:0a:9b:2b:be:26:79:33:46:07:3b:c8:7e:85:1d:5c:
        d1:b0:f6:77:b5:91:65:0a:ff:94:d6:e3:5f:da:9f:e4:
        4d:4c:34:76:de:61:a3:dd:f4:71:ca:f0:62:e6:c7:34:
        2b:ab:5e:99:26:ca:c4:ce:41:3c:14:86:a9:54:ee:51:
        3d:ff:79:27:68:a7:43:c5:63:70:cb:b8:63:fa:69:e7:
        74:9f:a1:50:f5:68:1a:42:08:8a:fe:31:58:7d:43:19:
        fe:24:00:d4:14:32:92:b2:15:23:f7:13:85:24:d4:99:
        27:22:d5:68:63:5f:23:18:c6:c5:3c:60:5f:30:61:32:
        6c:af:7a:cf:05:bd:e4:7e:6e:f6:ba:10:f2:af:d7:72:
        ff:60:ff:bc:c7:34:bb:34:3b:c1:45:e1:ac:a1:d0:d4:
        62:97:32:e6:34:df:96:84:92:c1:23:28:5a:f8:42:85:
        a1:c6:8b:c4:82:d7:f1:db:6a:ed:5d:dc:2b:e9:54:0c:
        e1:4d:18:94:02:39:e6:44:e6:87:66:47:43:93:98:b3:
        4b:18:c7:87:28:6e:a5:f9:d6:f6:98:de:5e:5f:41:1d:
        2b:a9:56:a4:20:59:d7:8f:74:ce:69:79:b2:d8:f2:00
    Fingerprint (SHA-256):
        16:04:3C:0E:B5:B8:17:20:90:F8:E5:2A:A7:64:E8:CF:2F:A6:DA:89:34:9D:73:D9:86:4A:27:5B:5F:85:A3:98
    Fingerprint (SHA1):
        A7:C7:EA:03:1A:C2:27:FD:11:9F:A8:6F:26:7F:DF:3D:E3:78:4A:C8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13705: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13706: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13707: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13708: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175790 (0x3cdde7ee)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:06:00 2017
            Not After : Fri Oct 21 18:06:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f6:ba:88:65:67:0e:a3:35:e4:2e:9b:51:74:fe:02:86:
                    26:23:fa:b8:3c:5d:e6:7a:3e:8e:79:b3:85:89:73:75:
                    4b:60:c7:0d:fc:86:8a:d1:c1:f8:eb:37:e9:3e:88:a1:
                    bb:49:cb:47:ed:52:10:50:8f:dc:d5:a1:65:54:3e:4a:
                    7f:74:b7:30:d2:a8:fc:d3:1e:d5:b5:3d:5e:f5:3c:84:
                    3f:05:da:42:37:92:56:c3:aa:f5:ac:d3:97:19:f4:f1:
                    e1:58:b9:dc:17:cf:c6:d8:3d:ee:bd:62:d1:68:d6:57:
                    d1:d3:99:77:07:16:04:d3:8f:e2:20:ed:36:c8:d7:57:
                    d8:99:a1:fb:3f:6f:75:e2:09:6f:94:6d:12:c0:e4:cc:
                    38:f3:00:46:a3:d1:24:3e:2b:8f:ae:cc:0d:47:c8:b7:
                    02:ac:60:a0:e6:85:c6:69:d4:cc:fb:b9:37:c4:22:11:
                    1c:c8:cf:6f:2e:1f:08:d7:a7:96:b1:3f:2c:4a:83:6d:
                    04:f6:cc:4d:d3:04:5b:7a:af:25:23:9a:1a:b3:2c:4f:
                    b3:a1:ea:40:d5:c3:4d:66:99:e0:c8:5e:43:13:29:4d:
                    2f:de:b3:79:91:c9:00:06:d1:e8:20:e3:42:aa:d7:fe:
                    62:c1:fb:6b:5b:c4:24:cd:ec:60:28:6c:95:67:23:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:46:f5:d5:3a:0e:51:80:45:07:3b:d1:de:4e:cd:38:
        30:0a:9b:2b:be:26:79:33:46:07:3b:c8:7e:85:1d:5c:
        d1:b0:f6:77:b5:91:65:0a:ff:94:d6:e3:5f:da:9f:e4:
        4d:4c:34:76:de:61:a3:dd:f4:71:ca:f0:62:e6:c7:34:
        2b:ab:5e:99:26:ca:c4:ce:41:3c:14:86:a9:54:ee:51:
        3d:ff:79:27:68:a7:43:c5:63:70:cb:b8:63:fa:69:e7:
        74:9f:a1:50:f5:68:1a:42:08:8a:fe:31:58:7d:43:19:
        fe:24:00:d4:14:32:92:b2:15:23:f7:13:85:24:d4:99:
        27:22:d5:68:63:5f:23:18:c6:c5:3c:60:5f:30:61:32:
        6c:af:7a:cf:05:bd:e4:7e:6e:f6:ba:10:f2:af:d7:72:
        ff:60:ff:bc:c7:34:bb:34:3b:c1:45:e1:ac:a1:d0:d4:
        62:97:32:e6:34:df:96:84:92:c1:23:28:5a:f8:42:85:
        a1:c6:8b:c4:82:d7:f1:db:6a:ed:5d:dc:2b:e9:54:0c:
        e1:4d:18:94:02:39:e6:44:e6:87:66:47:43:93:98:b3:
        4b:18:c7:87:28:6e:a5:f9:d6:f6:98:de:5e:5f:41:1d:
        2b:a9:56:a4:20:59:d7:8f:74:ce:69:79:b2:d8:f2:00
    Fingerprint (SHA-256):
        16:04:3C:0E:B5:B8:17:20:90:F8:E5:2A:A7:64:E8:CF:2F:A6:DA:89:34:9D:73:D9:86:4A:27:5B:5F:85:A3:98
    Fingerprint (SHA1):
        A7:C7:EA:03:1A:C2:27:FD:11:9F:A8:6F:26:7F:DF:3D:E3:78:4A:C8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13709: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175790 (0x3cdde7ee)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:06:00 2017
            Not After : Fri Oct 21 18:06:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f6:ba:88:65:67:0e:a3:35:e4:2e:9b:51:74:fe:02:86:
                    26:23:fa:b8:3c:5d:e6:7a:3e:8e:79:b3:85:89:73:75:
                    4b:60:c7:0d:fc:86:8a:d1:c1:f8:eb:37:e9:3e:88:a1:
                    bb:49:cb:47:ed:52:10:50:8f:dc:d5:a1:65:54:3e:4a:
                    7f:74:b7:30:d2:a8:fc:d3:1e:d5:b5:3d:5e:f5:3c:84:
                    3f:05:da:42:37:92:56:c3:aa:f5:ac:d3:97:19:f4:f1:
                    e1:58:b9:dc:17:cf:c6:d8:3d:ee:bd:62:d1:68:d6:57:
                    d1:d3:99:77:07:16:04:d3:8f:e2:20:ed:36:c8:d7:57:
                    d8:99:a1:fb:3f:6f:75:e2:09:6f:94:6d:12:c0:e4:cc:
                    38:f3:00:46:a3:d1:24:3e:2b:8f:ae:cc:0d:47:c8:b7:
                    02:ac:60:a0:e6:85:c6:69:d4:cc:fb:b9:37:c4:22:11:
                    1c:c8:cf:6f:2e:1f:08:d7:a7:96:b1:3f:2c:4a:83:6d:
                    04:f6:cc:4d:d3:04:5b:7a:af:25:23:9a:1a:b3:2c:4f:
                    b3:a1:ea:40:d5:c3:4d:66:99:e0:c8:5e:43:13:29:4d:
                    2f:de:b3:79:91:c9:00:06:d1:e8:20:e3:42:aa:d7:fe:
                    62:c1:fb:6b:5b:c4:24:cd:ec:60:28:6c:95:67:23:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:46:f5:d5:3a:0e:51:80:45:07:3b:d1:de:4e:cd:38:
        30:0a:9b:2b:be:26:79:33:46:07:3b:c8:7e:85:1d:5c:
        d1:b0:f6:77:b5:91:65:0a:ff:94:d6:e3:5f:da:9f:e4:
        4d:4c:34:76:de:61:a3:dd:f4:71:ca:f0:62:e6:c7:34:
        2b:ab:5e:99:26:ca:c4:ce:41:3c:14:86:a9:54:ee:51:
        3d:ff:79:27:68:a7:43:c5:63:70:cb:b8:63:fa:69:e7:
        74:9f:a1:50:f5:68:1a:42:08:8a:fe:31:58:7d:43:19:
        fe:24:00:d4:14:32:92:b2:15:23:f7:13:85:24:d4:99:
        27:22:d5:68:63:5f:23:18:c6:c5:3c:60:5f:30:61:32:
        6c:af:7a:cf:05:bd:e4:7e:6e:f6:ba:10:f2:af:d7:72:
        ff:60:ff:bc:c7:34:bb:34:3b:c1:45:e1:ac:a1:d0:d4:
        62:97:32:e6:34:df:96:84:92:c1:23:28:5a:f8:42:85:
        a1:c6:8b:c4:82:d7:f1:db:6a:ed:5d:dc:2b:e9:54:0c:
        e1:4d:18:94:02:39:e6:44:e6:87:66:47:43:93:98:b3:
        4b:18:c7:87:28:6e:a5:f9:d6:f6:98:de:5e:5f:41:1d:
        2b:a9:56:a4:20:59:d7:8f:74:ce:69:79:b2:d8:f2:00
    Fingerprint (SHA-256):
        16:04:3C:0E:B5:B8:17:20:90:F8:E5:2A:A7:64:E8:CF:2F:A6:DA:89:34:9D:73:D9:86:4A:27:5B:5F:85:A3:98
    Fingerprint (SHA1):
        A7:C7:EA:03:1A:C2:27:FD:11:9F:A8:6F:26:7F:DF:3D:E3:78:4A:C8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13710: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13711: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175790 (0x3cdde7ee)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:06:00 2017
            Not After : Fri Oct 21 18:06:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f6:ba:88:65:67:0e:a3:35:e4:2e:9b:51:74:fe:02:86:
                    26:23:fa:b8:3c:5d:e6:7a:3e:8e:79:b3:85:89:73:75:
                    4b:60:c7:0d:fc:86:8a:d1:c1:f8:eb:37:e9:3e:88:a1:
                    bb:49:cb:47:ed:52:10:50:8f:dc:d5:a1:65:54:3e:4a:
                    7f:74:b7:30:d2:a8:fc:d3:1e:d5:b5:3d:5e:f5:3c:84:
                    3f:05:da:42:37:92:56:c3:aa:f5:ac:d3:97:19:f4:f1:
                    e1:58:b9:dc:17:cf:c6:d8:3d:ee:bd:62:d1:68:d6:57:
                    d1:d3:99:77:07:16:04:d3:8f:e2:20:ed:36:c8:d7:57:
                    d8:99:a1:fb:3f:6f:75:e2:09:6f:94:6d:12:c0:e4:cc:
                    38:f3:00:46:a3:d1:24:3e:2b:8f:ae:cc:0d:47:c8:b7:
                    02:ac:60:a0:e6:85:c6:69:d4:cc:fb:b9:37:c4:22:11:
                    1c:c8:cf:6f:2e:1f:08:d7:a7:96:b1:3f:2c:4a:83:6d:
                    04:f6:cc:4d:d3:04:5b:7a:af:25:23:9a:1a:b3:2c:4f:
                    b3:a1:ea:40:d5:c3:4d:66:99:e0:c8:5e:43:13:29:4d:
                    2f:de:b3:79:91:c9:00:06:d1:e8:20:e3:42:aa:d7:fe:
                    62:c1:fb:6b:5b:c4:24:cd:ec:60:28:6c:95:67:23:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:46:f5:d5:3a:0e:51:80:45:07:3b:d1:de:4e:cd:38:
        30:0a:9b:2b:be:26:79:33:46:07:3b:c8:7e:85:1d:5c:
        d1:b0:f6:77:b5:91:65:0a:ff:94:d6:e3:5f:da:9f:e4:
        4d:4c:34:76:de:61:a3:dd:f4:71:ca:f0:62:e6:c7:34:
        2b:ab:5e:99:26:ca:c4:ce:41:3c:14:86:a9:54:ee:51:
        3d:ff:79:27:68:a7:43:c5:63:70:cb:b8:63:fa:69:e7:
        74:9f:a1:50:f5:68:1a:42:08:8a:fe:31:58:7d:43:19:
        fe:24:00:d4:14:32:92:b2:15:23:f7:13:85:24:d4:99:
        27:22:d5:68:63:5f:23:18:c6:c5:3c:60:5f:30:61:32:
        6c:af:7a:cf:05:bd:e4:7e:6e:f6:ba:10:f2:af:d7:72:
        ff:60:ff:bc:c7:34:bb:34:3b:c1:45:e1:ac:a1:d0:d4:
        62:97:32:e6:34:df:96:84:92:c1:23:28:5a:f8:42:85:
        a1:c6:8b:c4:82:d7:f1:db:6a:ed:5d:dc:2b:e9:54:0c:
        e1:4d:18:94:02:39:e6:44:e6:87:66:47:43:93:98:b3:
        4b:18:c7:87:28:6e:a5:f9:d6:f6:98:de:5e:5f:41:1d:
        2b:a9:56:a4:20:59:d7:8f:74:ce:69:79:b2:d8:f2:00
    Fingerprint (SHA-256):
        16:04:3C:0E:B5:B8:17:20:90:F8:E5:2A:A7:64:E8:CF:2F:A6:DA:89:34:9D:73:D9:86:4A:27:5B:5F:85:A3:98
    Fingerprint (SHA1):
        A7:C7:EA:03:1A:C2:27:FD:11:9F:A8:6F:26:7F:DF:3D:E3:78:4A:C8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13712: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13713: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13714: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13715: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175790 (0x3cdde7ee)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:06:00 2017
            Not After : Fri Oct 21 18:06:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f6:ba:88:65:67:0e:a3:35:e4:2e:9b:51:74:fe:02:86:
                    26:23:fa:b8:3c:5d:e6:7a:3e:8e:79:b3:85:89:73:75:
                    4b:60:c7:0d:fc:86:8a:d1:c1:f8:eb:37:e9:3e:88:a1:
                    bb:49:cb:47:ed:52:10:50:8f:dc:d5:a1:65:54:3e:4a:
                    7f:74:b7:30:d2:a8:fc:d3:1e:d5:b5:3d:5e:f5:3c:84:
                    3f:05:da:42:37:92:56:c3:aa:f5:ac:d3:97:19:f4:f1:
                    e1:58:b9:dc:17:cf:c6:d8:3d:ee:bd:62:d1:68:d6:57:
                    d1:d3:99:77:07:16:04:d3:8f:e2:20:ed:36:c8:d7:57:
                    d8:99:a1:fb:3f:6f:75:e2:09:6f:94:6d:12:c0:e4:cc:
                    38:f3:00:46:a3:d1:24:3e:2b:8f:ae:cc:0d:47:c8:b7:
                    02:ac:60:a0:e6:85:c6:69:d4:cc:fb:b9:37:c4:22:11:
                    1c:c8:cf:6f:2e:1f:08:d7:a7:96:b1:3f:2c:4a:83:6d:
                    04:f6:cc:4d:d3:04:5b:7a:af:25:23:9a:1a:b3:2c:4f:
                    b3:a1:ea:40:d5:c3:4d:66:99:e0:c8:5e:43:13:29:4d:
                    2f:de:b3:79:91:c9:00:06:d1:e8:20:e3:42:aa:d7:fe:
                    62:c1:fb:6b:5b:c4:24:cd:ec:60:28:6c:95:67:23:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:46:f5:d5:3a:0e:51:80:45:07:3b:d1:de:4e:cd:38:
        30:0a:9b:2b:be:26:79:33:46:07:3b:c8:7e:85:1d:5c:
        d1:b0:f6:77:b5:91:65:0a:ff:94:d6:e3:5f:da:9f:e4:
        4d:4c:34:76:de:61:a3:dd:f4:71:ca:f0:62:e6:c7:34:
        2b:ab:5e:99:26:ca:c4:ce:41:3c:14:86:a9:54:ee:51:
        3d:ff:79:27:68:a7:43:c5:63:70:cb:b8:63:fa:69:e7:
        74:9f:a1:50:f5:68:1a:42:08:8a:fe:31:58:7d:43:19:
        fe:24:00:d4:14:32:92:b2:15:23:f7:13:85:24:d4:99:
        27:22:d5:68:63:5f:23:18:c6:c5:3c:60:5f:30:61:32:
        6c:af:7a:cf:05:bd:e4:7e:6e:f6:ba:10:f2:af:d7:72:
        ff:60:ff:bc:c7:34:bb:34:3b:c1:45:e1:ac:a1:d0:d4:
        62:97:32:e6:34:df:96:84:92:c1:23:28:5a:f8:42:85:
        a1:c6:8b:c4:82:d7:f1:db:6a:ed:5d:dc:2b:e9:54:0c:
        e1:4d:18:94:02:39:e6:44:e6:87:66:47:43:93:98:b3:
        4b:18:c7:87:28:6e:a5:f9:d6:f6:98:de:5e:5f:41:1d:
        2b:a9:56:a4:20:59:d7:8f:74:ce:69:79:b2:d8:f2:00
    Fingerprint (SHA-256):
        16:04:3C:0E:B5:B8:17:20:90:F8:E5:2A:A7:64:E8:CF:2F:A6:DA:89:34:9D:73:D9:86:4A:27:5B:5F:85:A3:98
    Fingerprint (SHA1):
        A7:C7:EA:03:1A:C2:27:FD:11:9F:A8:6F:26:7F:DF:3D:E3:78:4A:C8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13716: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175790 (0x3cdde7ee)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:06:00 2017
            Not After : Fri Oct 21 18:06:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f6:ba:88:65:67:0e:a3:35:e4:2e:9b:51:74:fe:02:86:
                    26:23:fa:b8:3c:5d:e6:7a:3e:8e:79:b3:85:89:73:75:
                    4b:60:c7:0d:fc:86:8a:d1:c1:f8:eb:37:e9:3e:88:a1:
                    bb:49:cb:47:ed:52:10:50:8f:dc:d5:a1:65:54:3e:4a:
                    7f:74:b7:30:d2:a8:fc:d3:1e:d5:b5:3d:5e:f5:3c:84:
                    3f:05:da:42:37:92:56:c3:aa:f5:ac:d3:97:19:f4:f1:
                    e1:58:b9:dc:17:cf:c6:d8:3d:ee:bd:62:d1:68:d6:57:
                    d1:d3:99:77:07:16:04:d3:8f:e2:20:ed:36:c8:d7:57:
                    d8:99:a1:fb:3f:6f:75:e2:09:6f:94:6d:12:c0:e4:cc:
                    38:f3:00:46:a3:d1:24:3e:2b:8f:ae:cc:0d:47:c8:b7:
                    02:ac:60:a0:e6:85:c6:69:d4:cc:fb:b9:37:c4:22:11:
                    1c:c8:cf:6f:2e:1f:08:d7:a7:96:b1:3f:2c:4a:83:6d:
                    04:f6:cc:4d:d3:04:5b:7a:af:25:23:9a:1a:b3:2c:4f:
                    b3:a1:ea:40:d5:c3:4d:66:99:e0:c8:5e:43:13:29:4d:
                    2f:de:b3:79:91:c9:00:06:d1:e8:20:e3:42:aa:d7:fe:
                    62:c1:fb:6b:5b:c4:24:cd:ec:60:28:6c:95:67:23:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:46:f5:d5:3a:0e:51:80:45:07:3b:d1:de:4e:cd:38:
        30:0a:9b:2b:be:26:79:33:46:07:3b:c8:7e:85:1d:5c:
        d1:b0:f6:77:b5:91:65:0a:ff:94:d6:e3:5f:da:9f:e4:
        4d:4c:34:76:de:61:a3:dd:f4:71:ca:f0:62:e6:c7:34:
        2b:ab:5e:99:26:ca:c4:ce:41:3c:14:86:a9:54:ee:51:
        3d:ff:79:27:68:a7:43:c5:63:70:cb:b8:63:fa:69:e7:
        74:9f:a1:50:f5:68:1a:42:08:8a:fe:31:58:7d:43:19:
        fe:24:00:d4:14:32:92:b2:15:23:f7:13:85:24:d4:99:
        27:22:d5:68:63:5f:23:18:c6:c5:3c:60:5f:30:61:32:
        6c:af:7a:cf:05:bd:e4:7e:6e:f6:ba:10:f2:af:d7:72:
        ff:60:ff:bc:c7:34:bb:34:3b:c1:45:e1:ac:a1:d0:d4:
        62:97:32:e6:34:df:96:84:92:c1:23:28:5a:f8:42:85:
        a1:c6:8b:c4:82:d7:f1:db:6a:ed:5d:dc:2b:e9:54:0c:
        e1:4d:18:94:02:39:e6:44:e6:87:66:47:43:93:98:b3:
        4b:18:c7:87:28:6e:a5:f9:d6:f6:98:de:5e:5f:41:1d:
        2b:a9:56:a4:20:59:d7:8f:74:ce:69:79:b2:d8:f2:00
    Fingerprint (SHA-256):
        16:04:3C:0E:B5:B8:17:20:90:F8:E5:2A:A7:64:E8:CF:2F:A6:DA:89:34:9D:73:D9:86:4A:27:5B:5F:85:A3:98
    Fingerprint (SHA1):
        A7:C7:EA:03:1A:C2:27:FD:11:9F:A8:6F:26:7F:DF:3D:E3:78:4A:C8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #13717: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175790 (0x3cdde7ee)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:06:00 2017
            Not After : Fri Oct 21 18:06:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f6:ba:88:65:67:0e:a3:35:e4:2e:9b:51:74:fe:02:86:
                    26:23:fa:b8:3c:5d:e6:7a:3e:8e:79:b3:85:89:73:75:
                    4b:60:c7:0d:fc:86:8a:d1:c1:f8:eb:37:e9:3e:88:a1:
                    bb:49:cb:47:ed:52:10:50:8f:dc:d5:a1:65:54:3e:4a:
                    7f:74:b7:30:d2:a8:fc:d3:1e:d5:b5:3d:5e:f5:3c:84:
                    3f:05:da:42:37:92:56:c3:aa:f5:ac:d3:97:19:f4:f1:
                    e1:58:b9:dc:17:cf:c6:d8:3d:ee:bd:62:d1:68:d6:57:
                    d1:d3:99:77:07:16:04:d3:8f:e2:20:ed:36:c8:d7:57:
                    d8:99:a1:fb:3f:6f:75:e2:09:6f:94:6d:12:c0:e4:cc:
                    38:f3:00:46:a3:d1:24:3e:2b:8f:ae:cc:0d:47:c8:b7:
                    02:ac:60:a0:e6:85:c6:69:d4:cc:fb:b9:37:c4:22:11:
                    1c:c8:cf:6f:2e:1f:08:d7:a7:96:b1:3f:2c:4a:83:6d:
                    04:f6:cc:4d:d3:04:5b:7a:af:25:23:9a:1a:b3:2c:4f:
                    b3:a1:ea:40:d5:c3:4d:66:99:e0:c8:5e:43:13:29:4d:
                    2f:de:b3:79:91:c9:00:06:d1:e8:20:e3:42:aa:d7:fe:
                    62:c1:fb:6b:5b:c4:24:cd:ec:60:28:6c:95:67:23:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:46:f5:d5:3a:0e:51:80:45:07:3b:d1:de:4e:cd:38:
        30:0a:9b:2b:be:26:79:33:46:07:3b:c8:7e:85:1d:5c:
        d1:b0:f6:77:b5:91:65:0a:ff:94:d6:e3:5f:da:9f:e4:
        4d:4c:34:76:de:61:a3:dd:f4:71:ca:f0:62:e6:c7:34:
        2b:ab:5e:99:26:ca:c4:ce:41:3c:14:86:a9:54:ee:51:
        3d:ff:79:27:68:a7:43:c5:63:70:cb:b8:63:fa:69:e7:
        74:9f:a1:50:f5:68:1a:42:08:8a:fe:31:58:7d:43:19:
        fe:24:00:d4:14:32:92:b2:15:23:f7:13:85:24:d4:99:
        27:22:d5:68:63:5f:23:18:c6:c5:3c:60:5f:30:61:32:
        6c:af:7a:cf:05:bd:e4:7e:6e:f6:ba:10:f2:af:d7:72:
        ff:60:ff:bc:c7:34:bb:34:3b:c1:45:e1:ac:a1:d0:d4:
        62:97:32:e6:34:df:96:84:92:c1:23:28:5a:f8:42:85:
        a1:c6:8b:c4:82:d7:f1:db:6a:ed:5d:dc:2b:e9:54:0c:
        e1:4d:18:94:02:39:e6:44:e6:87:66:47:43:93:98:b3:
        4b:18:c7:87:28:6e:a5:f9:d6:f6:98:de:5e:5f:41:1d:
        2b:a9:56:a4:20:59:d7:8f:74:ce:69:79:b2:d8:f2:00
    Fingerprint (SHA-256):
        16:04:3C:0E:B5:B8:17:20:90:F8:E5:2A:A7:64:E8:CF:2F:A6:DA:89:34:9D:73:D9:86:4A:27:5B:5F:85:A3:98
    Fingerprint (SHA1):
        A7:C7:EA:03:1A:C2:27:FD:11:9F:A8:6F:26:7F:DF:3D:E3:78:4A:C8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #13718: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175790 (0x3cdde7ee)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:06:00 2017
            Not After : Fri Oct 21 18:06:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f6:ba:88:65:67:0e:a3:35:e4:2e:9b:51:74:fe:02:86:
                    26:23:fa:b8:3c:5d:e6:7a:3e:8e:79:b3:85:89:73:75:
                    4b:60:c7:0d:fc:86:8a:d1:c1:f8:eb:37:e9:3e:88:a1:
                    bb:49:cb:47:ed:52:10:50:8f:dc:d5:a1:65:54:3e:4a:
                    7f:74:b7:30:d2:a8:fc:d3:1e:d5:b5:3d:5e:f5:3c:84:
                    3f:05:da:42:37:92:56:c3:aa:f5:ac:d3:97:19:f4:f1:
                    e1:58:b9:dc:17:cf:c6:d8:3d:ee:bd:62:d1:68:d6:57:
                    d1:d3:99:77:07:16:04:d3:8f:e2:20:ed:36:c8:d7:57:
                    d8:99:a1:fb:3f:6f:75:e2:09:6f:94:6d:12:c0:e4:cc:
                    38:f3:00:46:a3:d1:24:3e:2b:8f:ae:cc:0d:47:c8:b7:
                    02:ac:60:a0:e6:85:c6:69:d4:cc:fb:b9:37:c4:22:11:
                    1c:c8:cf:6f:2e:1f:08:d7:a7:96:b1:3f:2c:4a:83:6d:
                    04:f6:cc:4d:d3:04:5b:7a:af:25:23:9a:1a:b3:2c:4f:
                    b3:a1:ea:40:d5:c3:4d:66:99:e0:c8:5e:43:13:29:4d:
                    2f:de:b3:79:91:c9:00:06:d1:e8:20:e3:42:aa:d7:fe:
                    62:c1:fb:6b:5b:c4:24:cd:ec:60:28:6c:95:67:23:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:46:f5:d5:3a:0e:51:80:45:07:3b:d1:de:4e:cd:38:
        30:0a:9b:2b:be:26:79:33:46:07:3b:c8:7e:85:1d:5c:
        d1:b0:f6:77:b5:91:65:0a:ff:94:d6:e3:5f:da:9f:e4:
        4d:4c:34:76:de:61:a3:dd:f4:71:ca:f0:62:e6:c7:34:
        2b:ab:5e:99:26:ca:c4:ce:41:3c:14:86:a9:54:ee:51:
        3d:ff:79:27:68:a7:43:c5:63:70:cb:b8:63:fa:69:e7:
        74:9f:a1:50:f5:68:1a:42:08:8a:fe:31:58:7d:43:19:
        fe:24:00:d4:14:32:92:b2:15:23:f7:13:85:24:d4:99:
        27:22:d5:68:63:5f:23:18:c6:c5:3c:60:5f:30:61:32:
        6c:af:7a:cf:05:bd:e4:7e:6e:f6:ba:10:f2:af:d7:72:
        ff:60:ff:bc:c7:34:bb:34:3b:c1:45:e1:ac:a1:d0:d4:
        62:97:32:e6:34:df:96:84:92:c1:23:28:5a:f8:42:85:
        a1:c6:8b:c4:82:d7:f1:db:6a:ed:5d:dc:2b:e9:54:0c:
        e1:4d:18:94:02:39:e6:44:e6:87:66:47:43:93:98:b3:
        4b:18:c7:87:28:6e:a5:f9:d6:f6:98:de:5e:5f:41:1d:
        2b:a9:56:a4:20:59:d7:8f:74:ce:69:79:b2:d8:f2:00
    Fingerprint (SHA-256):
        16:04:3C:0E:B5:B8:17:20:90:F8:E5:2A:A7:64:E8:CF:2F:A6:DA:89:34:9D:73:D9:86:4A:27:5B:5F:85:A3:98
    Fingerprint (SHA1):
        A7:C7:EA:03:1A:C2:27:FD:11:9F:A8:6F:26:7F:DF:3D:E3:78:4A:C8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #13719: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175790 (0x3cdde7ee)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:06:00 2017
            Not After : Fri Oct 21 18:06:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f6:ba:88:65:67:0e:a3:35:e4:2e:9b:51:74:fe:02:86:
                    26:23:fa:b8:3c:5d:e6:7a:3e:8e:79:b3:85:89:73:75:
                    4b:60:c7:0d:fc:86:8a:d1:c1:f8:eb:37:e9:3e:88:a1:
                    bb:49:cb:47:ed:52:10:50:8f:dc:d5:a1:65:54:3e:4a:
                    7f:74:b7:30:d2:a8:fc:d3:1e:d5:b5:3d:5e:f5:3c:84:
                    3f:05:da:42:37:92:56:c3:aa:f5:ac:d3:97:19:f4:f1:
                    e1:58:b9:dc:17:cf:c6:d8:3d:ee:bd:62:d1:68:d6:57:
                    d1:d3:99:77:07:16:04:d3:8f:e2:20:ed:36:c8:d7:57:
                    d8:99:a1:fb:3f:6f:75:e2:09:6f:94:6d:12:c0:e4:cc:
                    38:f3:00:46:a3:d1:24:3e:2b:8f:ae:cc:0d:47:c8:b7:
                    02:ac:60:a0:e6:85:c6:69:d4:cc:fb:b9:37:c4:22:11:
                    1c:c8:cf:6f:2e:1f:08:d7:a7:96:b1:3f:2c:4a:83:6d:
                    04:f6:cc:4d:d3:04:5b:7a:af:25:23:9a:1a:b3:2c:4f:
                    b3:a1:ea:40:d5:c3:4d:66:99:e0:c8:5e:43:13:29:4d:
                    2f:de:b3:79:91:c9:00:06:d1:e8:20:e3:42:aa:d7:fe:
                    62:c1:fb:6b:5b:c4:24:cd:ec:60:28:6c:95:67:23:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:46:f5:d5:3a:0e:51:80:45:07:3b:d1:de:4e:cd:38:
        30:0a:9b:2b:be:26:79:33:46:07:3b:c8:7e:85:1d:5c:
        d1:b0:f6:77:b5:91:65:0a:ff:94:d6:e3:5f:da:9f:e4:
        4d:4c:34:76:de:61:a3:dd:f4:71:ca:f0:62:e6:c7:34:
        2b:ab:5e:99:26:ca:c4:ce:41:3c:14:86:a9:54:ee:51:
        3d:ff:79:27:68:a7:43:c5:63:70:cb:b8:63:fa:69:e7:
        74:9f:a1:50:f5:68:1a:42:08:8a:fe:31:58:7d:43:19:
        fe:24:00:d4:14:32:92:b2:15:23:f7:13:85:24:d4:99:
        27:22:d5:68:63:5f:23:18:c6:c5:3c:60:5f:30:61:32:
        6c:af:7a:cf:05:bd:e4:7e:6e:f6:ba:10:f2:af:d7:72:
        ff:60:ff:bc:c7:34:bb:34:3b:c1:45:e1:ac:a1:d0:d4:
        62:97:32:e6:34:df:96:84:92:c1:23:28:5a:f8:42:85:
        a1:c6:8b:c4:82:d7:f1:db:6a:ed:5d:dc:2b:e9:54:0c:
        e1:4d:18:94:02:39:e6:44:e6:87:66:47:43:93:98:b3:
        4b:18:c7:87:28:6e:a5:f9:d6:f6:98:de:5e:5f:41:1d:
        2b:a9:56:a4:20:59:d7:8f:74:ce:69:79:b2:d8:f2:00
    Fingerprint (SHA-256):
        16:04:3C:0E:B5:B8:17:20:90:F8:E5:2A:A7:64:E8:CF:2F:A6:DA:89:34:9D:73:D9:86:4A:27:5B:5F:85:A3:98
    Fingerprint (SHA1):
        A7:C7:EA:03:1A:C2:27:FD:11:9F:A8:6F:26:7F:DF:3D:E3:78:4A:C8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #13720: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175790 (0x3cdde7ee)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:06:00 2017
            Not After : Fri Oct 21 18:06:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f6:ba:88:65:67:0e:a3:35:e4:2e:9b:51:74:fe:02:86:
                    26:23:fa:b8:3c:5d:e6:7a:3e:8e:79:b3:85:89:73:75:
                    4b:60:c7:0d:fc:86:8a:d1:c1:f8:eb:37:e9:3e:88:a1:
                    bb:49:cb:47:ed:52:10:50:8f:dc:d5:a1:65:54:3e:4a:
                    7f:74:b7:30:d2:a8:fc:d3:1e:d5:b5:3d:5e:f5:3c:84:
                    3f:05:da:42:37:92:56:c3:aa:f5:ac:d3:97:19:f4:f1:
                    e1:58:b9:dc:17:cf:c6:d8:3d:ee:bd:62:d1:68:d6:57:
                    d1:d3:99:77:07:16:04:d3:8f:e2:20:ed:36:c8:d7:57:
                    d8:99:a1:fb:3f:6f:75:e2:09:6f:94:6d:12:c0:e4:cc:
                    38:f3:00:46:a3:d1:24:3e:2b:8f:ae:cc:0d:47:c8:b7:
                    02:ac:60:a0:e6:85:c6:69:d4:cc:fb:b9:37:c4:22:11:
                    1c:c8:cf:6f:2e:1f:08:d7:a7:96:b1:3f:2c:4a:83:6d:
                    04:f6:cc:4d:d3:04:5b:7a:af:25:23:9a:1a:b3:2c:4f:
                    b3:a1:ea:40:d5:c3:4d:66:99:e0:c8:5e:43:13:29:4d:
                    2f:de:b3:79:91:c9:00:06:d1:e8:20:e3:42:aa:d7:fe:
                    62:c1:fb:6b:5b:c4:24:cd:ec:60:28:6c:95:67:23:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:46:f5:d5:3a:0e:51:80:45:07:3b:d1:de:4e:cd:38:
        30:0a:9b:2b:be:26:79:33:46:07:3b:c8:7e:85:1d:5c:
        d1:b0:f6:77:b5:91:65:0a:ff:94:d6:e3:5f:da:9f:e4:
        4d:4c:34:76:de:61:a3:dd:f4:71:ca:f0:62:e6:c7:34:
        2b:ab:5e:99:26:ca:c4:ce:41:3c:14:86:a9:54:ee:51:
        3d:ff:79:27:68:a7:43:c5:63:70:cb:b8:63:fa:69:e7:
        74:9f:a1:50:f5:68:1a:42:08:8a:fe:31:58:7d:43:19:
        fe:24:00:d4:14:32:92:b2:15:23:f7:13:85:24:d4:99:
        27:22:d5:68:63:5f:23:18:c6:c5:3c:60:5f:30:61:32:
        6c:af:7a:cf:05:bd:e4:7e:6e:f6:ba:10:f2:af:d7:72:
        ff:60:ff:bc:c7:34:bb:34:3b:c1:45:e1:ac:a1:d0:d4:
        62:97:32:e6:34:df:96:84:92:c1:23:28:5a:f8:42:85:
        a1:c6:8b:c4:82:d7:f1:db:6a:ed:5d:dc:2b:e9:54:0c:
        e1:4d:18:94:02:39:e6:44:e6:87:66:47:43:93:98:b3:
        4b:18:c7:87:28:6e:a5:f9:d6:f6:98:de:5e:5f:41:1d:
        2b:a9:56:a4:20:59:d7:8f:74:ce:69:79:b2:d8:f2:00
    Fingerprint (SHA-256):
        16:04:3C:0E:B5:B8:17:20:90:F8:E5:2A:A7:64:E8:CF:2F:A6:DA:89:34:9D:73:D9:86:4A:27:5B:5F:85:A3:98
    Fingerprint (SHA1):
        A7:C7:EA:03:1A:C2:27:FD:11:9F:A8:6F:26:7F:DF:3D:E3:78:4A:C8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #13721: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13722: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #13723: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175820 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13724: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #13725: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #13726: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13727: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 1021175821   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13728: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13729: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #13730: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13731: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 1021175822   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13732: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13733: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #13734: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13735: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 1021175823   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13736: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13737: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #13738: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13739: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 1021175824   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13740: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13741: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #13742: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13743: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 1021175825   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13744: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13745: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #13746: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13747: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 1021175826   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13748: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13749: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13750: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175820 (0x3cdde80c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:10:08 2017
            Not After : Fri Oct 21 18:10:08 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:1a:22:cc:27:f6:2d:a5:24:dc:9e:91:42:ac:8d:7c:
                    44:14:34:7e:cc:11:93:bb:2f:ea:f5:78:17:66:b7:69:
                    a3:ea:fc:6e:5c:d2:fb:d0:be:74:a5:c9:d3:c0:ac:52:
                    2b:10:b9:f1:a1:43:85:01:fe:45:6a:58:58:cc:78:c9:
                    7f:1c:5f:03:fe:1d:69:ca:88:d7:ec:68:43:0a:8e:92:
                    2a:14:8b:0a:21:73:81:91:aa:9f:46:65:bf:1e:c4:05:
                    b9:81:c5:f2:93:ce:ba:50:40:d9:9d:fa:18:47:5c:0d:
                    41:e3:5b:e8:06:3e:e9:55:30:3b:77:ea:3f:c1:59:8b:
                    ac:58:52:87:98:7d:ba:6a:cb:a5:7a:97:38:de:18:55:
                    db:7b:73:9f:d6:9f:cf:36:bc:03:1c:61:4d:6d:ab:68:
                    0d:81:1f:b7:6e:a3:bf:72:2f:66:a5:f5:c7:b7:96:08:
                    7b:e8:fe:bf:e7:b5:bf:ed:c6:61:4f:8c:40:74:02:d2:
                    23:96:97:8a:d4:9b:6f:20:46:59:e9:5f:2c:04:ab:5e:
                    59:c9:b3:c6:17:cd:2d:33:b2:8b:0d:85:85:fa:40:ed:
                    b1:38:bc:22:21:b5:0c:49:23:6c:b6:47:d3:4f:98:00:
                    18:9a:93:cd:a8:3a:78:d7:4c:3b:76:96:c3:83:ba:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0a:97:b2:5d:59:cf:bc:47:e0:90:20:42:62:02:6d:c9:
        de:06:52:f0:32:c6:a6:ab:05:a1:80:e8:81:77:04:fd:
        27:de:f2:31:ea:60:fa:dd:9c:d2:7e:dd:9e:d3:71:55:
        9b:67:b5:85:21:0f:57:c9:52:2d:ac:62:d9:bb:9c:1b:
        94:fa:39:56:bd:29:99:b3:8c:ab:11:05:df:a3:ef:3c:
        e3:39:11:c0:9d:e5:c7:15:8c:19:e9:58:dd:7e:06:f9:
        00:cb:4f:21:9d:26:38:98:c4:bc:80:2b:dc:e3:43:86:
        6b:13:a3:a9:8f:54:0b:8d:ce:e1:93:e2:9f:7d:97:1e:
        be:a0:ad:f6:12:18:79:91:d0:b7:72:71:f0:36:5a:54:
        16:18:2b:79:44:37:45:a2:d0:13:ba:67:aa:0e:16:8c:
        26:1f:bc:3d:df:39:df:fb:56:b6:2f:ee:cc:c9:03:fc:
        bf:f4:51:0e:b1:30:cc:72:e0:e2:ea:52:76:a3:19:15:
        a1:44:67:1d:e2:09:db:18:32:d6:32:ef:62:d8:5d:2f:
        f1:7b:a5:f1:25:50:53:16:a9:d4:d2:7c:a5:be:9a:37:
        6f:d6:89:39:7b:64:1c:78:78:85:d7:b4:67:27:fd:c3:
        6c:99:d9:6c:5b:81:59:23:ec:06:a8:71:e9:87:0c:05
    Fingerprint (SHA-256):
        8B:88:C1:B1:DC:71:06:BD:E0:4F:8B:AE:12:07:24:83:70:5A:19:75:C8:01:6E:5B:FD:EF:70:6B:8A:EF:1B:A8
    Fingerprint (SHA1):
        03:73:08:21:A4:D7:8A:02:59:B1:72:BB:B0:19:82:B6:07:F0:36:36
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #13751: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13752: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13753: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #13754: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175820 (0x3cdde80c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:10:08 2017
            Not After : Fri Oct 21 18:10:08 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:1a:22:cc:27:f6:2d:a5:24:dc:9e:91:42:ac:8d:7c:
                    44:14:34:7e:cc:11:93:bb:2f:ea:f5:78:17:66:b7:69:
                    a3:ea:fc:6e:5c:d2:fb:d0:be:74:a5:c9:d3:c0:ac:52:
                    2b:10:b9:f1:a1:43:85:01:fe:45:6a:58:58:cc:78:c9:
                    7f:1c:5f:03:fe:1d:69:ca:88:d7:ec:68:43:0a:8e:92:
                    2a:14:8b:0a:21:73:81:91:aa:9f:46:65:bf:1e:c4:05:
                    b9:81:c5:f2:93:ce:ba:50:40:d9:9d:fa:18:47:5c:0d:
                    41:e3:5b:e8:06:3e:e9:55:30:3b:77:ea:3f:c1:59:8b:
                    ac:58:52:87:98:7d:ba:6a:cb:a5:7a:97:38:de:18:55:
                    db:7b:73:9f:d6:9f:cf:36:bc:03:1c:61:4d:6d:ab:68:
                    0d:81:1f:b7:6e:a3:bf:72:2f:66:a5:f5:c7:b7:96:08:
                    7b:e8:fe:bf:e7:b5:bf:ed:c6:61:4f:8c:40:74:02:d2:
                    23:96:97:8a:d4:9b:6f:20:46:59:e9:5f:2c:04:ab:5e:
                    59:c9:b3:c6:17:cd:2d:33:b2:8b:0d:85:85:fa:40:ed:
                    b1:38:bc:22:21:b5:0c:49:23:6c:b6:47:d3:4f:98:00:
                    18:9a:93:cd:a8:3a:78:d7:4c:3b:76:96:c3:83:ba:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0a:97:b2:5d:59:cf:bc:47:e0:90:20:42:62:02:6d:c9:
        de:06:52:f0:32:c6:a6:ab:05:a1:80:e8:81:77:04:fd:
        27:de:f2:31:ea:60:fa:dd:9c:d2:7e:dd:9e:d3:71:55:
        9b:67:b5:85:21:0f:57:c9:52:2d:ac:62:d9:bb:9c:1b:
        94:fa:39:56:bd:29:99:b3:8c:ab:11:05:df:a3:ef:3c:
        e3:39:11:c0:9d:e5:c7:15:8c:19:e9:58:dd:7e:06:f9:
        00:cb:4f:21:9d:26:38:98:c4:bc:80:2b:dc:e3:43:86:
        6b:13:a3:a9:8f:54:0b:8d:ce:e1:93:e2:9f:7d:97:1e:
        be:a0:ad:f6:12:18:79:91:d0:b7:72:71:f0:36:5a:54:
        16:18:2b:79:44:37:45:a2:d0:13:ba:67:aa:0e:16:8c:
        26:1f:bc:3d:df:39:df:fb:56:b6:2f:ee:cc:c9:03:fc:
        bf:f4:51:0e:b1:30:cc:72:e0:e2:ea:52:76:a3:19:15:
        a1:44:67:1d:e2:09:db:18:32:d6:32:ef:62:d8:5d:2f:
        f1:7b:a5:f1:25:50:53:16:a9:d4:d2:7c:a5:be:9a:37:
        6f:d6:89:39:7b:64:1c:78:78:85:d7:b4:67:27:fd:c3:
        6c:99:d9:6c:5b:81:59:23:ec:06:a8:71:e9:87:0c:05
    Fingerprint (SHA-256):
        8B:88:C1:B1:DC:71:06:BD:E0:4F:8B:AE:12:07:24:83:70:5A:19:75:C8:01:6E:5B:FD:EF:70:6B:8A:EF:1B:A8
    Fingerprint (SHA1):
        03:73:08:21:A4:D7:8A:02:59:B1:72:BB:B0:19:82:B6:07:F0:36:36
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #13755: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13756: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13757: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #13758: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175827 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13759: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #13760: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13761: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13762: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021175828   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #13763: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13764: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #13765: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13766: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021175829   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13767: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13768: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #13769: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13770: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 1021175830   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13771: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13772: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13773: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #13774: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #13775: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #13776: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175827 (0x3cdde813)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:11:04 2017
            Not After : Fri Oct 21 18:11:04 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:67:a0:02:76:74:f4:b2:3b:7b:5a:d7:53:25:54:d6:
                    49:60:8a:da:df:2c:01:c2:49:29:47:28:4f:89:92:f4:
                    fb:9d:b0:5a:5c:ca:23:c0:33:0a:ed:67:b7:18:48:cc:
                    4f:9b:a1:bb:b8:76:38:ab:7f:2f:de:43:5e:b5:f7:3f:
                    9a:7e:96:7e:ee:35:f5:ec:a8:5f:8c:d8:30:fb:63:25:
                    3f:0f:6e:37:32:46:f8:2f:4a:f0:8d:6e:ee:99:e0:48:
                    7d:8c:95:ef:82:af:2f:1b:14:90:cb:40:52:c0:e3:f8:
                    87:11:d1:22:e1:90:36:f6:72:ef:50:66:7b:41:1d:d9:
                    af:a1:8c:3d:64:23:b5:04:ee:a2:d1:8b:0c:a4:a9:f0:
                    3c:90:4c:c0:fd:ec:32:30:ae:94:cf:da:5f:00:ab:e3:
                    ac:b9:83:3a:78:fc:9a:90:96:81:7b:a4:99:ae:de:a4:
                    2b:1b:90:d3:8e:12:9c:2b:c6:84:a9:e3:95:73:8f:4b:
                    3d:91:c8:28:7d:c2:7f:c8:12:20:0d:e1:0f:40:34:d8:
                    59:84:d1:32:a3:6f:c5:36:cb:0d:64:ec:b0:f0:54:0c:
                    c0:1f:cb:7a:f3:2e:9f:bc:98:4e:d3:d9:08:7a:a8:a0:
                    77:4d:9f:92:32:12:ff:e2:e8:4b:5f:aa:74:a0:fe:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d4:2d:3d:00:b9:6f:d7:9b:a9:3d:cc:67:47:57:93:5a:
        3f:a2:d3:d5:92:39:94:90:54:f9:33:f6:7e:a8:9f:e8:
        ed:31:6b:62:b0:22:a9:5d:b6:2d:36:c0:b7:c1:1c:46:
        e9:7f:62:a4:83:e5:f6:7b:36:e3:96:9e:78:49:18:70:
        39:52:cf:73:87:d0:09:25:be:d9:c7:67:28:a3:d1:00:
        f9:78:6f:b4:71:4a:4c:00:9b:d2:3b:42:35:a8:40:f6:
        92:05:57:61:65:c5:98:1f:04:47:36:c0:5b:72:a5:2a:
        a0:16:15:8c:59:43:2f:6a:5d:22:c5:ef:d2:81:75:1f:
        d5:2b:f5:81:56:ba:de:35:ba:ff:49:e6:e2:3c:4d:44:
        8f:f3:12:e4:c2:cb:91:bc:e6:bc:17:df:fd:7c:51:36:
        bb:2a:87:c1:fa:1a:ea:55:0b:56:42:8a:bd:a1:f3:c4:
        be:a2:37:dd:f6:23:75:d6:11:ed:96:76:42:23:a9:d8:
        d3:ce:10:21:24:54:f3:81:95:69:5e:80:75:61:1a:bb:
        0f:35:b6:ca:55:c8:1c:b1:cb:1d:87:ec:e7:07:69:9d:
        1d:0a:1c:f7:ed:1e:ab:0f:51:73:1b:58:df:17:7d:b1:
        2b:79:24:32:68:fe:85:fa:52:58:db:a1:e4:da:be:51
    Fingerprint (SHA-256):
        FC:1D:8C:BA:B1:64:34:B4:8A:FA:C3:8E:45:89:20:75:1C:5A:63:AB:12:B3:38:4D:3A:59:88:D1:7A:C4:3A:64
    Fingerprint (SHA1):
        84:14:E4:0B:F7:96:96:1D:EE:DC:DD:33:0F:60:EF:57:A9:08:1C:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13777: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13778: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13779: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175828 (0x3cdde814)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:11:14 2017
            Not After : Fri Oct 21 18:11:14 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:2b:24:ae:3c:70:26:cd:f4:e2:9f:9a:e4:a3:bb:55:
                    1a:db:30:48:d2:05:82:f8:15:5b:be:12:d2:bb:60:52:
                    8b:ea:92:2f:f0:bb:1a:48:63:f9:58:4c:f4:32:03:03:
                    dd:04:19:46:ce:89:d9:40:e1:27:41:56:15:9c:59:24:
                    1e:f3:8b:4e:aa:5d:89:05:44:1e:c6:04:64:9a:a9:75:
                    b2:d8:2f:f7:c5:1c:56:8e:a7:d2:bf:a6:9c:5b:f7:96:
                    50:81:79:90:80:49:0d:87:be:9e:95:11:26:28:f1:41:
                    dc:d1:99:63:7c:d3:35:da:ac:ed:86:0c:85:d4:c3:f2:
                    af:64:89:0f:87:6d:38:e0:df:a0:11:da:62:0d:b3:b0:
                    ca:5c:1a:6f:dc:b0:51:0c:d0:ff:7f:ec:76:e9:09:23:
                    4f:d6:38:7b:3f:10:9a:9e:f7:e6:2e:b5:5d:98:e5:3c:
                    01:88:19:cd:b6:f4:07:85:66:75:98:fe:5a:ab:d8:2d:
                    15:7b:20:5b:f4:cd:6d:66:9c:cf:7a:fc:2c:6c:0a:bb:
                    3b:5b:35:44:ad:9f:56:44:0d:89:58:2f:d2:b4:60:0d:
                    dc:58:55:7a:d0:63:b6:9a:da:b6:4d:8b:44:00:d2:fd:
                    a8:6f:83:7f:b2:1f:f1:d6:df:73:03:fb:3e:04:85:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b2:bb:cf:ca:5d:13:cb:c7:1b:28:ea:67:9c:5e:5d:ad:
        e8:27:3a:bf:6b:c3:ed:38:63:cf:c2:1f:10:a5:cb:05:
        62:a7:93:62:5c:70:bb:d6:7b:ae:34:52:89:4e:01:07:
        ce:ee:76:d9:bb:8d:29:97:91:82:dc:20:55:37:c7:f3:
        44:38:ad:55:65:2e:27:cb:3c:1e:4b:22:f2:4d:74:24:
        db:a4:af:15:9a:c9:f1:36:7a:4e:e5:59:92:75:e0:1d:
        5d:6e:63:a3:b5:cf:54:76:02:7a:62:d7:2d:34:04:70:
        1f:b7:da:f9:91:be:f8:82:23:8a:d0:ac:53:d1:75:a6:
        c7:54:a0:6e:9e:a3:e1:5d:ff:b0:62:5c:4e:44:b5:60:
        0c:9b:22:a6:9c:33:1b:9b:7c:67:5e:62:a0:62:4b:7d:
        32:c2:51:b3:1f:6e:22:8a:10:44:31:1e:00:55:55:b0:
        68:87:c0:8a:78:42:2e:0d:3c:c6:1a:0e:18:69:dd:e4:
        32:6b:f3:a2:75:91:fb:70:fe:f3:3f:e2:4e:f3:ca:21:
        70:ce:16:91:9d:3a:bf:50:a9:4a:91:cb:b5:e3:f9:18:
        11:77:8d:5b:e3:7e:aa:12:04:aa:9f:cb:b0:e1:3e:f0:
        49:eb:4c:15:0f:6d:e9:be:59:d4:a7:76:41:4a:04:93
    Fingerprint (SHA-256):
        CE:A9:E9:ED:D5:DA:B2:24:57:02:1D:3B:1C:0E:2C:A6:28:34:39:01:A7:D0:E6:25:DE:F7:5D:E2:15:60:44:6C
    Fingerprint (SHA1):
        F0:17:FD:E7:1C:1A:B7:2A:B4:C9:05:36:35:BF:4E:EB:B4:DE:13:73
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13780: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13781: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175829 (0x3cdde815)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 18:11:22 2017
            Not After : Fri Oct 21 18:11:22 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9b:68:53:c4:11:93:f9:39:1f:c8:9f:1d:a4:5a:b3:be:
                    9a:3d:c5:33:3d:54:1e:a1:0d:e1:17:da:88:cf:4f:eb:
                    19:bd:3d:1a:8a:68:9e:82:e9:53:9a:ba:66:bd:47:69:
                    77:95:48:58:a7:2f:57:1a:52:e7:2b:4e:44:43:ba:d8:
                    97:33:e2:7d:55:d5:f0:2c:16:ba:0d:1f:e5:e7:3d:1a:
                    6d:62:ce:4f:c1:0c:2c:4c:3b:2a:a0:58:ca:3b:2a:9d:
                    ee:67:83:88:69:01:8b:c7:2e:64:a0:55:77:bf:d4:71:
                    c1:2b:50:a7:25:34:64:d4:47:ef:cf:d7:3c:da:cf:d0:
                    85:57:6c:92:88:f1:07:2b:46:1a:26:07:8c:84:ae:1a:
                    1c:a7:c9:89:f7:e3:61:51:cc:c4:a8:cf:91:95:00:7f:
                    d9:98:c3:a3:fc:35:5e:57:b1:5c:09:39:65:be:a6:f2:
                    65:22:f4:cc:8a:db:e0:9f:7d:9d:63:70:bb:83:50:84:
                    2c:61:c7:65:84:9e:db:47:09:b7:1e:7b:66:c2:fd:c2:
                    df:4e:66:ae:5e:d0:f8:36:39:d4:ca:78:d4:8c:f6:68:
                    a9:26:6c:91:6b:4a:bd:3e:cd:93:96:a7:2c:e2:c3:58:
                    44:e3:05:49:98:cf:94:59:f8:d6:9b:64:6f:a7:ef:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        21:a1:ec:da:33:c8:6a:74:a1:73:5b:ad:1c:96:66:01:
        a9:f8:72:03:73:e8:d2:f7:42:d8:47:32:21:27:60:2d:
        6c:1d:ea:19:fc:d1:71:fe:26:62:7c:e2:d0:8e:6f:47:
        3b:0b:44:22:ed:3c:96:84:a3:3e:93:00:ec:3b:b5:7c:
        52:26:f8:37:4a:08:51:28:a3:6c:f8:6e:a6:46:cd:f6:
        5f:03:46:a2:25:a8:3f:1a:78:e6:12:d8:46:43:cf:10:
        30:ff:03:49:80:c2:e3:df:c8:c6:94:c2:04:6c:c2:75:
        81:65:18:1a:0a:95:73:b9:fc:c1:9d:b3:06:57:5b:81:
        10:c7:b6:a0:60:97:b8:10:40:a9:7b:12:30:98:d7:8b:
        7a:9d:87:82:c3:fe:ea:46:12:4b:c3:e1:ce:c9:47:2c:
        8d:4b:19:72:10:5c:26:af:40:29:5a:2d:ee:c7:1b:dd:
        f1:99:e1:88:0f:e1:f0:83:05:5d:02:9f:4b:bd:ec:ae:
        a6:6f:83:9b:b5:13:4c:b3:74:7c:3c:d5:cc:56:80:55:
        c2:db:d5:43:26:39:4b:20:61:07:64:c8:21:c7:66:2b:
        b2:a4:38:b9:a3:45:cb:72:0e:af:e4:88:2f:cc:db:c0:
        ff:2f:a2:6b:e2:0b:65:01:8a:f7:f7:34:ba:e2:6b:53
    Fingerprint (SHA-256):
        63:90:9D:A3:F6:80:7B:96:6F:B9:18:DF:35:0E:89:CD:10:39:B0:E5:B4:FC:8E:CD:62:C1:9F:7F:6C:F5:C3:7E
    Fingerprint (SHA1):
        68:9C:B6:1F:62:A3:2E:B7:78:BF:5D:80:27:66:61:AE:A3:F8:FB:FD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #13782: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #13783: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175831 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13784: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #13785: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13786: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13787: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021175832   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13788: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13789: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #13790: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13791: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021175833   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #13792: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13793: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #13794: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13795: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 1021175834   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13796: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13797: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #13798: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13799: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 1021175835   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13800: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13801: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13802: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #13803: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #13804: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #13805: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #13806: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175831 (0x3cdde817)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:11:44 2017
            Not After : Fri Oct 21 18:11:44 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:f9:65:7c:31:79:60:17:7d:b2:ce:8c:00:21:e0:8a:
                    c9:53:08:5d:16:a2:68:b7:36:c8:a8:65:3d:67:cd:94:
                    f8:14:bb:27:3e:17:9f:66:5f:8a:cf:b2:6c:cd:6b:51:
                    16:9e:fe:f0:93:57:aa:c8:1e:27:78:a6:85:05:b7:5c:
                    6f:e2:ab:42:16:b7:c0:ac:fd:09:4f:97:c0:de:43:aa:
                    c0:5f:f6:de:b5:1a:52:f0:e5:ca:53:7c:b5:3a:ef:2c:
                    50:71:52:08:a4:53:db:bf:e7:56:76:28:f0:82:34:6e:
                    39:36:d9:82:62:31:b8:70:60:b2:6f:a1:5c:ee:95:b1:
                    77:75:53:16:fe:9f:70:da:82:c2:47:63:8f:be:a7:1c:
                    df:31:8c:1d:94:39:8e:51:4e:04:c2:fc:79:47:5d:4d:
                    20:0e:90:be:67:a5:fe:c0:64:4b:2b:c2:c4:11:88:08:
                    6d:f5:b6:49:b1:b5:17:0b:d2:f6:35:18:87:bd:e3:fb:
                    74:a9:54:8d:7a:26:75:54:2d:42:98:1f:74:5b:fc:47:
                    26:88:97:60:fe:ce:9e:41:4e:33:09:ca:0d:ad:00:b9:
                    27:0a:18:16:33:51:95:51:0b:a0:10:68:3e:ce:35:16:
                    53:0e:b7:3e:02:b7:b4:1f:44:a6:5a:f4:e4:c4:c7:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:9c:c1:d1:c6:ff:cf:a3:f7:6c:22:38:f4:61:c7:ac:
        ff:2e:5c:55:a5:60:25:ad:53:aa:5e:a5:aa:a4:80:fd:
        64:0d:da:fe:06:57:3e:95:e4:fb:ba:5d:78:77:48:0e:
        0f:1d:e1:4a:f9:63:0c:7e:bd:28:c2:69:38:c4:1a:db:
        55:ba:df:1a:7a:c4:48:61:ba:ac:a6:ce:a1:92:34:ff:
        51:0d:7d:06:0b:aa:9a:c1:99:8f:df:bf:07:ec:35:d7:
        cc:71:91:be:58:84:cd:1b:92:92:30:f5:f9:e0:23:a0:
        a0:d5:cf:48:69:f2:6c:47:4b:2a:75:be:a1:a9:95:2c:
        0f:a7:03:ec:32:9f:b4:d2:f0:f1:21:97:b9:22:0d:47:
        1d:76:f4:33:64:6d:30:07:91:64:7d:fe:15:8d:4e:a5:
        e6:65:4b:7b:7b:18:ad:9c:cc:79:3e:d6:8a:4b:e0:47:
        81:b3:39:b8:69:94:86:b3:68:2b:0f:cd:31:27:69:67:
        6f:3e:71:cf:e0:24:62:7e:4a:4b:63:65:a7:1b:99:da:
        1b:ee:70:b5:fe:48:11:e0:1b:32:c5:fb:7e:dc:44:c3:
        eb:33:9f:09:0e:1c:47:f3:ae:27:a3:3f:86:d6:99:84:
        46:48:a7:ff:45:40:7a:f3:cc:66:d6:52:85:b3:9c:91
    Fingerprint (SHA-256):
        0B:A7:97:A8:55:C7:6E:18:00:AB:13:C8:6B:F7:0E:20:67:7D:1E:B4:4F:5E:87:6F:0E:43:A7:55:C8:D8:0F:AC
    Fingerprint (SHA1):
        2B:40:52:E1:8B:C7:28:7C:B7:4A:5D:B0:49:E7:7F:69:24:1E:49:B5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13807: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13808: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175832 (0x3cdde818)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:11:51 2017
            Not After : Fri Oct 21 18:11:51 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e8:67:d9:02:e2:ad:d5:6b:a9:98:ff:95:7d:dd:0c:08:
                    b6:27:d5:5b:9a:4a:40:be:b5:cf:70:49:a8:11:98:80:
                    b3:c3:44:a6:d8:bd:e4:d0:88:52:0f:1f:a1:52:f4:84:
                    0f:ec:a0:64:e4:31:30:b0:f3:9a:3d:96:f3:b9:5c:f2:
                    be:e7:f0:e9:6d:be:ec:30:23:c1:7c:de:22:ca:9a:1f:
                    4e:b7:27:62:2a:00:72:6f:68:ed:79:dc:cf:72:ad:bf:
                    c5:df:a6:ee:f0:5c:7d:97:25:fa:05:88:ec:a2:4b:e5:
                    10:4b:aa:fb:a8:6b:eb:be:b0:02:21:bf:04:79:9f:02:
                    e6:59:96:1d:93:79:71:35:ba:d6:dd:ef:24:fe:b7:2f:
                    57:9b:88:58:dc:54:41:de:f3:fd:65:5b:ba:82:7a:5d:
                    5b:18:79:7f:e5:49:d9:fe:b2:4e:98:ad:96:21:68:27:
                    b5:7d:99:0c:21:0a:ff:fc:fe:6e:69:06:97:eb:38:08:
                    a4:b8:89:26:a0:38:27:50:4c:84:4a:c1:10:87:5c:dc:
                    66:ec:20:a0:67:a6:80:13:6e:2f:70:bd:2a:e9:a8:96:
                    df:26:3b:9a:f2:de:e4:b4:e8:db:ee:c5:f6:00:8b:b7:
                    43:0b:b5:84:c5:b5:22:8d:25:dc:84:44:8f:02:68:73
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:67:9d:ba:a5:60:22:c5:5e:cc:ce:20:de:e5:44:6b:
        cb:2e:3d:2d:49:17:5b:8f:23:bc:c8:ff:4b:2e:93:84:
        8f:11:5a:2a:e6:43:00:ca:b1:8e:a8:11:8d:d6:b3:8d:
        23:33:01:fb:4b:45:3c:a5:b5:94:01:3b:dc:c5:ba:38:
        90:c5:08:50:fa:84:10:f9:8a:7b:59:62:af:a6:9d:61:
        9c:9c:9e:6d:95:42:a5:c3:64:71:bb:68:28:c9:5e:68:
        df:7f:73:e8:e0:de:fe:5b:85:9a:c2:0a:fa:9c:53:96:
        5c:f8:0a:fa:b6:d0:e2:1f:56:1a:b9:7a:2f:b0:ba:40:
        01:c9:7c:83:97:12:b0:4c:8b:e1:f2:7e:3c:57:af:f4:
        92:d9:55:9c:50:60:15:27:d0:d9:b5:c7:6c:77:fb:c6:
        d9:c9:15:91:3b:11:8d:1f:e9:61:74:41:a4:f3:8b:20:
        cf:c7:42:56:af:d5:42:37:e8:4f:f4:be:ee:ab:a0:33:
        93:ed:3c:a8:d6:a2:ec:f3:62:82:49:ac:50:66:dc:4b:
        a2:8a:01:5c:76:7e:a7:48:0b:d2:ce:ae:d3:87:10:74:
        41:bd:b9:43:a8:aa:e2:25:99:e4:72:ab:dd:f4:73:d7:
        7e:d4:c9:15:b6:24:2d:bd:be:a0:cf:21:27:11:a3:56
    Fingerprint (SHA-256):
        7C:AD:B9:D9:34:A5:14:82:67:69:39:8C:5E:6F:A5:26:B2:E9:84:95:58:91:89:6D:56:08:2C:CB:D4:BB:1F:EE
    Fingerprint (SHA1):
        21:CE:B9:F5:C3:C0:9D:B9:6A:EF:5A:A8:80:A5:CF:E5:02:12:09:17
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13809: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13810: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13811: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175833 (0x3cdde819)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 18:11:56 2017
            Not After : Fri Oct 21 18:11:56 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:ea:51:79:fa:c3:67:be:30:35:69:4d:2a:8b:77:a0:
                    20:75:48:d6:b5:ef:14:30:08:fa:86:20:eb:e9:af:84:
                    0a:cd:d3:d3:7a:c7:f7:6a:14:2e:71:6d:c7:54:4d:20:
                    1a:38:7c:b4:c7:af:b3:06:ed:0d:10:ca:37:b4:cc:d2:
                    ba:cd:7e:65:e4:9d:6a:d5:9b:8a:6f:72:25:9b:19:36:
                    c7:67:09:2d:a3:53:d5:af:91:ef:e2:15:70:d2:a2:2e:
                    2d:5c:67:59:a3:33:d3:4c:f8:ce:88:91:05:4d:c7:ca:
                    0a:a6:c6:a1:2b:ce:40:d7:23:4e:b8:af:12:a6:ae:f4:
                    6b:e2:b5:d7:50:b5:3e:7e:dc:f2:f0:2b:e0:e4:ba:2c:
                    9e:3a:55:bc:fa:03:e8:09:7d:15:07:d2:31:58:9a:a8:
                    d5:5f:e8:60:4e:97:8c:25:0c:e5:ec:b2:be:20:01:d2:
                    85:58:2c:fb:db:a4:37:5e:ae:0b:d4:d1:55:09:12:51:
                    5e:25:d5:37:6e:90:24:e4:b9:2b:1b:74:ee:4c:af:74:
                    7e:15:c0:90:44:7b:45:5e:f6:c5:73:42:59:b3:f2:ae:
                    07:bc:71:ea:1a:ab:0a:9d:11:f0:ef:d5:fc:ad:87:92:
                    6d:bc:0f:8d:60:b4:0c:8e:38:da:3e:8f:d3:56:bf:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:f6:64:28:a2:3d:ca:8a:c5:d5:98:e1:d1:0e:10:ef:
        9c:ec:c9:bf:e1:66:a6:60:3e:1b:e7:aa:70:44:71:f1:
        df:bb:6b:6b:b6:25:eb:b6:ec:8c:5f:5d:12:27:0c:9a:
        b6:ef:2f:54:5c:d2:87:5c:e5:04:7d:b8:b1:cc:d5:94:
        a8:81:6f:eb:62:02:e4:d8:c7:0a:b3:6c:dc:f6:2b:72:
        ba:5b:38:00:64:0a:31:d9:f1:66:7e:a1:f3:13:5d:52:
        e6:5e:ef:2d:5f:91:6c:46:cd:5f:f3:0e:40:03:2f:ec:
        d9:ae:57:1f:90:06:43:70:dd:8c:d3:e2:9d:0c:69:3e:
        ac:7a:5d:b6:cd:25:ca:0f:95:01:e1:67:b1:0f:4e:3e:
        0d:b3:bd:82:b1:44:3e:3c:a1:a1:10:d4:30:2f:73:21:
        a3:40:17:a0:dc:23:25:62:d4:1f:4e:36:83:0a:0c:8b:
        44:6f:93:66:18:c7:63:2d:38:31:0b:6c:03:f7:d3:a8:
        81:e4:6a:1f:69:f9:a7:84:92:65:4a:eb:e9:e5:92:b4:
        78:d7:08:62:72:b9:af:34:80:ad:b4:d6:0b:80:de:17:
        0d:8a:bd:30:75:f5:8a:45:51:58:45:d5:5c:de:56:08:
        7b:f5:04:4f:b5:c6:32:96:9e:3f:a3:a8:d1:27:d1:14
    Fingerprint (SHA-256):
        D0:1F:1E:40:70:22:C9:E9:F7:92:50:EF:6A:1A:AD:84:8A:58:9C:F9:0F:2A:22:D5:C3:A2:1A:7D:F5:FF:A8:CC
    Fingerprint (SHA1):
        61:D0:D5:59:5C:43:B6:E5:BC:12:37:8E:00:7A:93:10:E9:04:0C:2A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #13812: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #13813: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175836 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13814: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #13815: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13816: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13817: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021175837   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13818: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13819: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #13820: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13821: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021175838   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA1Root-1021175745.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13822: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13823: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #13824: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13825: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 1021175839   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13826: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13827: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #13828: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175836 (0x3cdde81c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:12:30 2017
            Not After : Fri Oct 21 18:12:30 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:41:32:93:b3:f5:b8:d8:72:cf:89:a2:6c:20:1b:be:
                    98:de:19:28:ab:d3:c2:a1:17:c2:3e:a3:97:bb:18:25:
                    a9:3f:66:50:6e:c3:a0:18:3d:16:86:f2:47:3a:42:10:
                    e9:0a:03:75:2e:bd:8a:a6:1a:c0:38:99:33:23:47:d7:
                    bc:70:35:5c:48:90:e7:99:78:03:86:c4:fd:50:05:5a:
                    bc:a2:e4:b8:2d:70:64:1b:e1:56:1a:57:60:3a:6a:40:
                    fb:d4:b1:14:96:a3:a0:22:51:55:d9:b8:b3:07:8f:73:
                    a4:f8:36:38:7a:51:f9:53:c4:be:a5:40:53:17:f5:09:
                    3d:15:d9:a9:48:bb:21:32:0f:a8:51:48:d2:ee:cd:d8:
                    a2:28:e9:c0:48:4b:e4:1b:ff:2e:33:d6:24:42:58:ef:
                    05:ea:46:37:8a:72:41:99:3b:6e:d7:18:ee:2e:59:1b:
                    71:e3:4c:d9:ac:ec:c9:62:2e:3e:da:28:b3:d3:5e:9d:
                    f3:77:f0:5e:9f:a8:6c:97:cf:bd:b2:22:dd:2e:6a:93:
                    a3:2b:4e:5d:64:7b:e0:bb:20:d6:45:7e:3b:b3:53:ff:
                    c9:11:12:dd:3f:91:67:c6:82:cd:23:e9:b9:b9:ee:ab:
                    c7:9e:af:00:34:b7:68:b7:3d:bc:8d:b4:2e:ae:0f:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:52:e8:6f:f2:94:16:91:6c:f3:59:6d:5c:e7:08:11:
        74:c9:c1:a2:f8:b8:a2:0c:b0:33:41:d1:31:2c:63:86:
        ec:8f:e0:57:d9:ef:84:5a:0e:69:b5:4b:86:f8:ff:5b:
        82:06:5b:4a:40:26:b9:8e:90:5a:57:c6:8d:65:c2:d4:
        bc:51:65:c9:07:31:cb:ae:ad:2c:01:9a:9e:de:00:28:
        9b:f0:9d:58:01:d2:60:49:e2:7c:5e:e6:67:f3:55:8c:
        97:ec:e6:c4:a9:f4:30:c4:c6:3d:9e:9b:e7:95:dd:87:
        16:10:fd:bc:ef:96:b8:90:d4:4a:0d:d1:53:74:7d:93:
        ed:ff:6d:99:a2:36:56:44:11:4a:79:7e:a1:ab:20:e6:
        e3:59:6a:f9:4f:89:ae:f7:ef:9d:2b:3a:2d:9e:d6:da:
        9d:82:93:46:6e:c0:4a:9f:13:29:c6:95:4b:b3:7f:eb:
        f2:81:0a:48:b6:f2:5c:87:fe:20:b2:da:c5:6b:ea:0b:
        a1:4c:ff:a9:80:83:ee:82:03:3b:b1:e3:e1:48:68:32:
        1b:28:50:f8:2b:79:27:0e:78:d4:7d:6c:39:18:1f:fc:
        3a:67:91:91:99:c3:34:61:3a:ed:c0:03:95:04:fa:b9:
        eb:28:85:9d:84:b9:1c:49:31:15:71:62:80:bb:de:49
    Fingerprint (SHA-256):
        25:20:E0:C0:91:BC:D9:80:A6:43:37:C1:A9:77:E3:EA:36:8C:AB:44:0D:59:A6:AA:D4:A3:B8:EF:40:25:07:08
    Fingerprint (SHA1):
        9A:39:15:75:C0:14:4B:8C:2E:BC:CA:63:09:28:C5:A6:F5:D0:7A:DB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13829: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #13830: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175840 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13831: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #13832: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #13833: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175841 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13834: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #13835: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #13836: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13837: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 1021175842 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13838: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13839: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 1021175843 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13840: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13841: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #13842: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13843: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13844: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 1021175844   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-Bridge-1021175746.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13845: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13846: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #13847: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13848: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021175845   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13849: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13850: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #13851: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175840 (0x3cdde820)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 18:13:03 2017
            Not After : Fri Oct 21 18:13:03 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:7a:d7:5a:00:10:59:64:14:7e:37:df:d2:20:02:89:
                    4f:08:30:7a:53:44:ee:38:b6:05:0a:e2:86:a9:63:a3:
                    e7:9d:f8:e1:96:66:30:6d:14:51:82:59:8c:9c:c1:84:
                    25:2b:57:c7:f3:1e:0d:f4:bb:09:7c:23:e4:e2:b6:71:
                    55:c3:4b:19:95:ba:6a:77:79:c8:2f:ce:6e:7b:1a:29:
                    4d:89:d4:20:89:eb:d6:81:b7:8c:3a:da:9e:87:ff:2a:
                    c9:8a:05:86:f0:1c:7e:9c:6e:4e:f6:18:d0:82:56:15:
                    0d:82:2b:17:53:6d:5b:81:c5:2d:67:6f:e7:a5:53:32:
                    e3:00:a2:f0:e8:04:d7:a0:f7:b1:2c:4a:e4:b9:84:e8:
                    56:6c:f4:cb:01:97:f9:7a:e0:82:4d:c6:f3:5e:38:77:
                    98:62:a9:d1:71:7e:1d:7c:98:bb:a4:04:4c:dd:94:8a:
                    1d:4b:c7:d5:41:c4:5c:13:af:fa:b7:5b:69:2f:88:77:
                    da:81:bd:b3:8d:51:48:4c:07:f4:1f:9e:a7:8c:15:1c:
                    67:1d:99:d7:21:25:5b:0c:f8:2c:f7:ee:a6:58:9f:f3:
                    97:6b:6b:38:ad:b1:f6:79:40:25:d9:8a:ea:e0:a3:c6:
                    b3:eb:93:e6:68:55:f5:5b:c0:af:7b:e0:4c:c4:4d:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:3d:38:3e:ee:43:7b:1c:19:b3:b2:1e:aa:c5:b2:be:
        64:5a:28:aa:06:a4:1a:0a:8b:b6:52:ed:a8:0a:b7:81:
        3c:18:ed:49:5a:d1:eb:d3:8b:16:5d:80:15:21:bc:ab:
        1c:3e:76:0f:ca:fb:65:fc:6c:32:dc:6c:62:b9:af:a7:
        33:b7:39:c1:8c:2c:9f:31:fa:4b:3f:80:ee:47:1f:03:
        46:44:36:01:eb:0a:77:01:e2:8a:9b:1e:94:e8:bc:04:
        9d:11:36:0f:63:d4:10:28:31:8b:16:6b:38:7b:84:fb:
        a5:9c:db:19:2f:53:4c:ae:76:d7:95:a9:73:ed:6b:d2:
        9f:e7:15:40:56:5f:31:ad:b6:de:ce:83:38:3f:97:f1:
        28:ce:a7:dd:13:5d:33:a3:8f:ab:98:1c:fc:c4:18:b6:
        ee:95:1f:fe:a7:d4:79:59:ed:a4:42:22:59:78:b6:8e:
        e0:a0:c6:b9:f2:12:62:8f:36:55:06:68:8b:cf:b2:9c:
        01:1b:d7:55:ec:9a:dc:1b:aa:10:ba:35:95:5b:f6:f2:
        e5:39:a5:c4:78:b6:6a:e0:19:16:4f:25:2e:fd:16:2a:
        b7:33:02:af:f5:73:13:22:89:85:3b:38:0f:96:2b:44:
        1c:b8:47:93:a8:20:66:c6:dc:ca:6b:97:7f:4c:89:4c
    Fingerprint (SHA-256):
        9D:58:DF:34:20:37:72:B1:1B:94:F5:F3:96:1A:9E:F2:62:E7:2B:4E:97:5D:0B:6C:BD:EC:26:D8:8E:E2:90:A5
    Fingerprint (SHA1):
        05:C5:2C:CF:36:9E:8E:3D:39:A8:CC:40:5F:52:D5:D3:4B:B2:03:E9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13852: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175841 (0x3cdde821)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 18:13:10 2017
            Not After : Fri Oct 21 18:13:10 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:82:cf:6e:df:cd:35:23:4c:71:1e:3f:ab:b7:c4:f3:
                    cb:3a:87:f3:6f:6b:4a:47:ad:02:32:d2:fb:f3:fd:74:
                    b6:a4:29:03:44:f4:bc:68:9d:08:b2:ce:19:7d:bf:a0:
                    8b:8e:ce:a5:d5:5d:b4:78:32:f7:5d:bb:47:06:25:2f:
                    ba:b5:0c:89:3d:b5:0c:60:e0:b5:28:fb:db:d9:2d:46:
                    14:43:8b:ab:e9:ed:2e:d4:f7:83:28:79:e2:be:ef:b1:
                    ee:a5:66:a8:c3:a4:36:2f:57:df:f9:36:73:37:b0:ee:
                    13:a0:5c:b5:3a:8e:95:eb:b8:be:19:9a:ce:94:d8:7f:
                    c9:ad:29:00:4f:bf:0a:05:0b:10:2a:f4:cd:82:02:82:
                    c6:50:2c:87:82:5d:05:3e:f7:93:b1:89:2b:31:bb:bc:
                    6e:83:1b:c0:a8:06:c0:cd:79:1b:45:29:b7:1c:7a:e1:
                    bb:c3:eb:1e:c3:5a:e9:c3:1a:da:c9:53:79:43:61:a2:
                    8f:c4:3b:23:be:73:33:b1:59:02:e4:23:fd:ad:21:b9:
                    53:3b:65:83:ab:79:60:2e:8f:c8:b6:6f:01:c4:57:68:
                    37:7a:53:cc:11:f2:72:7e:1d:a1:c5:08:a0:db:44:79:
                    0a:26:70:52:f7:36:f7:73:b5:8c:65:54:44:39:e0:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:b0:d7:2b:c6:e0:e4:d8:15:bd:59:32:3b:15:36:04:
        e2:40:df:e8:56:21:fc:56:3f:f0:db:56:6a:c3:4a:8f:
        b3:8f:82:70:a8:97:74:a4:3f:58:ea:5e:01:25:b8:4b:
        44:ff:76:38:20:62:c4:ee:45:13:e8:22:0b:cb:d3:8b:
        fb:06:f8:01:35:5b:da:29:aa:e6:fe:eb:f1:82:f0:90:
        0a:af:a4:01:d8:6f:57:3a:5a:69:12:02:7b:b1:61:14:
        4f:52:da:79:08:a5:c6:42:c1:c5:82:83:3a:33:77:de:
        e8:a7:c2:29:1b:2f:91:80:93:5c:a7:bc:6a:0f:f5:d8:
        82:1b:0a:3f:ba:3f:58:33:56:cf:af:86:ac:48:4f:19:
        3b:21:d1:67:7e:5e:6a:35:0d:da:42:ed:00:20:f0:5d:
        a1:2a:86:97:76:fb:9c:6c:a6:d7:74:12:72:4e:8a:af:
        1c:26:53:3f:b7:1b:36:f9:f4:aa:8a:29:3e:c9:1c:83:
        44:42:87:9f:7c:e8:d5:44:3b:f7:bb:cf:fc:09:2d:90:
        2f:6d:9a:dc:03:07:ab:6e:44:fe:c6:20:98:99:4a:73:
        25:c1:fd:d6:41:7f:6b:9d:d6:91:ba:cb:3f:d7:a9:23:
        ec:3f:46:c2:0c:a6:39:18:bf:98:5d:1f:e1:a1:28:91
    Fingerprint (SHA-256):
        36:01:4D:EF:3E:6D:E0:8E:4D:BF:24:04:A7:58:C1:FF:D4:35:1B:FB:4F:45:18:7A:AD:2C:CF:4D:3D:55:48:99
    Fingerprint (SHA1):
        11:2D:68:9E:DB:06:33:2A:21:3E:4E:FA:AB:27:70:F0:24:56:D9:FE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13853: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175841 (0x3cdde821)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 18:13:10 2017
            Not After : Fri Oct 21 18:13:10 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:82:cf:6e:df:cd:35:23:4c:71:1e:3f:ab:b7:c4:f3:
                    cb:3a:87:f3:6f:6b:4a:47:ad:02:32:d2:fb:f3:fd:74:
                    b6:a4:29:03:44:f4:bc:68:9d:08:b2:ce:19:7d:bf:a0:
                    8b:8e:ce:a5:d5:5d:b4:78:32:f7:5d:bb:47:06:25:2f:
                    ba:b5:0c:89:3d:b5:0c:60:e0:b5:28:fb:db:d9:2d:46:
                    14:43:8b:ab:e9:ed:2e:d4:f7:83:28:79:e2:be:ef:b1:
                    ee:a5:66:a8:c3:a4:36:2f:57:df:f9:36:73:37:b0:ee:
                    13:a0:5c:b5:3a:8e:95:eb:b8:be:19:9a:ce:94:d8:7f:
                    c9:ad:29:00:4f:bf:0a:05:0b:10:2a:f4:cd:82:02:82:
                    c6:50:2c:87:82:5d:05:3e:f7:93:b1:89:2b:31:bb:bc:
                    6e:83:1b:c0:a8:06:c0:cd:79:1b:45:29:b7:1c:7a:e1:
                    bb:c3:eb:1e:c3:5a:e9:c3:1a:da:c9:53:79:43:61:a2:
                    8f:c4:3b:23:be:73:33:b1:59:02:e4:23:fd:ad:21:b9:
                    53:3b:65:83:ab:79:60:2e:8f:c8:b6:6f:01:c4:57:68:
                    37:7a:53:cc:11:f2:72:7e:1d:a1:c5:08:a0:db:44:79:
                    0a:26:70:52:f7:36:f7:73:b5:8c:65:54:44:39:e0:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:b0:d7:2b:c6:e0:e4:d8:15:bd:59:32:3b:15:36:04:
        e2:40:df:e8:56:21:fc:56:3f:f0:db:56:6a:c3:4a:8f:
        b3:8f:82:70:a8:97:74:a4:3f:58:ea:5e:01:25:b8:4b:
        44:ff:76:38:20:62:c4:ee:45:13:e8:22:0b:cb:d3:8b:
        fb:06:f8:01:35:5b:da:29:aa:e6:fe:eb:f1:82:f0:90:
        0a:af:a4:01:d8:6f:57:3a:5a:69:12:02:7b:b1:61:14:
        4f:52:da:79:08:a5:c6:42:c1:c5:82:83:3a:33:77:de:
        e8:a7:c2:29:1b:2f:91:80:93:5c:a7:bc:6a:0f:f5:d8:
        82:1b:0a:3f:ba:3f:58:33:56:cf:af:86:ac:48:4f:19:
        3b:21:d1:67:7e:5e:6a:35:0d:da:42:ed:00:20:f0:5d:
        a1:2a:86:97:76:fb:9c:6c:a6:d7:74:12:72:4e:8a:af:
        1c:26:53:3f:b7:1b:36:f9:f4:aa:8a:29:3e:c9:1c:83:
        44:42:87:9f:7c:e8:d5:44:3b:f7:bb:cf:fc:09:2d:90:
        2f:6d:9a:dc:03:07:ab:6e:44:fe:c6:20:98:99:4a:73:
        25:c1:fd:d6:41:7f:6b:9d:d6:91:ba:cb:3f:d7:a9:23:
        ec:3f:46:c2:0c:a6:39:18:bf:98:5d:1f:e1:a1:28:91
    Fingerprint (SHA-256):
        36:01:4D:EF:3E:6D:E0:8E:4D:BF:24:04:A7:58:C1:FF:D4:35:1B:FB:4F:45:18:7A:AD:2C:CF:4D:3D:55:48:99
    Fingerprint (SHA1):
        11:2D:68:9E:DB:06:33:2A:21:3E:4E:FA:AB:27:70:F0:24:56:D9:FE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13854: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #13855: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175846 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13856: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #13857: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #13858: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175847 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13859: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #13860: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #13861: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13862: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 1021175848 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13863: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13864: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 1021175849 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13865: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13866: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #13867: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13868: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13869: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 1021175850   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-Bridge-1021175747.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13870: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13871: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #13872: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13873: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021175851   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13874: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13875: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #13876: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13877: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 1021175852   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-BridgeNavy-1021175748.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #13878: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13879: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #13880: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13881: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 1021175853   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13882: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13883: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #13884: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175846 (0x3cdde826)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 18:13:43 2017
            Not After : Fri Oct 21 18:13:43 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:e7:78:4b:f0:8b:6d:88:cc:55:54:32:c6:16:ec:88:
                    96:03:43:cf:c1:73:2c:eb:ad:34:3a:00:cd:db:72:35:
                    c0:50:5a:34:8f:a5:ab:b1:49:1f:b9:9e:97:26:97:95:
                    38:0a:70:c1:5f:33:da:39:d6:b0:ef:d0:d7:c5:22:aa:
                    2e:2c:21:76:72:b6:f2:81:c7:d6:80:45:f9:61:b5:de:
                    b7:e6:f5:8b:1e:9b:aa:2c:84:0f:e1:ac:36:13:bd:3c:
                    bd:b6:ba:9e:cc:74:f5:3c:df:da:16:b3:aa:b2:11:7e:
                    a5:8a:03:e8:df:f7:6c:b5:17:9a:74:34:3d:a9:7b:96:
                    e7:25:61:43:1f:45:cd:fa:22:9d:b7:86:bc:1a:7e:b3:
                    4a:ee:c5:4a:72:a5:2d:b6:41:65:61:61:21:e0:72:80:
                    ba:4c:5d:4e:18:4e:dc:65:72:9d:a8:ae:86:f4:97:c4:
                    93:90:2f:8b:91:c8:5a:0f:36:be:50:45:69:34:79:a8:
                    40:b7:74:9f:c1:ba:2c:df:56:56:b5:2a:65:78:40:a6:
                    70:f8:36:ce:60:52:99:f0:c0:f6:ab:01:13:de:e0:f0:
                    3c:61:4d:49:57:a2:6f:bd:ef:78:b1:63:e6:ce:b1:7c:
                    97:3b:e3:61:c6:96:c2:5d:ae:85:e4:d7:57:fb:c5:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b8:35:9a:87:40:1f:24:3a:f8:92:ac:2c:97:21:06:cc:
        ab:a5:1e:11:03:35:08:15:30:9c:fd:18:95:7e:1d:67:
        a7:26:24:50:bf:ed:8a:1a:b4:3e:8c:19:b0:a1:fe:95:
        8e:d6:b0:c5:cb:d8:9f:0d:1c:c4:05:52:ec:1a:58:12:
        7f:60:2e:84:9a:e1:fb:25:95:4c:0c:e2:3b:1c:1a:60:
        6c:32:7c:ff:fc:ac:92:9b:23:57:3c:ed:6d:c3:46:e6:
        a6:c3:fb:db:08:3d:fd:c6:d7:97:48:97:14:27:e1:ea:
        0a:2f:e2:83:77:3d:77:fa:74:4c:67:96:ba:d8:39:cb:
        23:ff:cc:de:68:12:4a:36:b0:b8:1f:e9:32:aa:e2:6b:
        e9:c5:fb:55:03:d6:8e:eb:2f:b2:7a:05:93:11:98:c5:
        4d:04:71:1e:2e:59:3e:7a:1e:5a:d5:bc:de:3a:1d:c8:
        5e:6a:29:3f:44:fc:03:a4:72:43:31:48:e4:8c:07:5e:
        27:6e:62:4c:89:61:42:2d:7d:7d:73:61:61:90:ff:ae:
        97:6a:9c:37:5e:b5:7e:45:ff:b4:93:45:0a:97:5b:1b:
        3e:52:31:1a:fb:16:93:5f:d4:d3:e2:90:e8:1b:ab:d1:
        e9:f1:22:75:8e:93:c3:ac:ca:33:14:25:a9:20:83:15
    Fingerprint (SHA-256):
        9A:23:F3:63:D3:68:20:0D:8F:C0:B0:C7:0E:B5:F4:A6:AE:D0:9A:70:48:50:E9:3D:C7:3E:D0:CB:2A:17:99:F9
    Fingerprint (SHA1):
        D7:8F:F0:7F:2F:38:1F:6B:CA:C8:3B:B6:CD:8D:04:8E:36:46:19:AE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13885: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175847 (0x3cdde827)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 18:13:50 2017
            Not After : Fri Oct 21 18:13:50 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:31:fc:b8:b4:14:af:3d:ac:4b:6e:10:d0:5e:44:f7:
                    34:d1:17:ea:a6:20:6e:64:33:ab:81:52:be:5b:d1:e7:
                    8c:2a:d9:3b:4a:6d:b6:27:0e:4e:94:a0:3b:86:9f:d4:
                    6e:a9:62:12:c4:8d:a6:fb:eb:80:5e:4e:d0:33:71:e5:
                    5d:93:3d:60:28:27:68:5a:1b:40:51:9f:33:f9:04:96:
                    a0:76:83:17:22:17:28:f0:d3:aa:53:7b:01:fd:ea:a1:
                    92:4e:b2:16:98:3b:99:f7:b0:92:1f:c0:29:cc:29:e0:
                    17:64:98:de:f9:9e:6e:82:1f:ee:68:2b:e9:7a:8d:21:
                    b4:84:a8:09:5e:6d:27:8f:29:d3:37:9f:57:b4:82:c3:
                    ac:88:13:b4:7c:62:68:e2:5b:dd:f6:ba:f4:b3:89:c9:
                    9c:17:28:cb:14:52:f5:71:2e:49:a8:03:a8:5e:a0:36:
                    7d:02:71:1f:31:6e:2c:b8:6f:25:33:77:d5:b0:71:f7:
                    48:d8:43:c0:3d:e0:37:b2:10:dc:39:e3:bf:26:60:46:
                    86:bf:9f:8e:61:82:34:05:ad:1e:c5:cc:90:08:73:5c:
                    0e:02:6b:db:21:34:c4:05:d0:b0:86:85:32:30:64:f4:
                    4c:2d:60:cb:fb:cb:f1:88:42:10:61:3c:8d:06:33:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:4a:3f:fc:ce:6f:65:39:df:c3:26:be:36:20:df:8f:
        af:a2:f2:b0:d3:fe:91:4d:56:f4:a1:4d:21:51:00:ec:
        51:8b:db:78:af:91:31:97:48:50:e0:a9:e0:e2:7b:d2:
        cc:1b:91:4b:6d:fe:e7:85:1c:09:30:52:14:43:ee:65:
        13:ea:0c:a4:31:e8:22:e2:73:ef:1d:04:65:ef:fa:29:
        59:62:da:07:f9:b9:10:25:3f:95:c5:b9:ec:58:66:ad:
        c0:28:af:11:f9:46:cc:83:68:fa:19:c8:dc:c9:92:3b:
        bf:a8:26:69:81:2f:7f:20:f5:d0:4a:d5:d6:59:60:33:
        54:41:47:7c:68:89:a8:2d:b6:a2:37:7e:d1:6d:3e:33:
        d6:91:e9:72:6f:3f:cb:bc:ed:c0:35:85:9d:a0:b8:b6:
        12:90:e9:65:84:04:ba:6f:7b:85:68:24:0e:08:d5:0a:
        b1:b2:54:91:30:fe:e5:3e:f9:75:05:47:a3:0c:41:3c:
        6d:91:27:c4:2a:0f:dd:43:89:c4:8f:af:bd:60:d3:1e:
        dd:5a:85:d9:cd:a4:bb:1e:f3:90:b4:68:80:32:97:a7:
        a1:f9:d7:b0:ec:61:73:b0:7e:12:0f:44:b9:b2:a5:e5:
        ad:b7:af:48:b6:a2:9f:1f:e7:f2:9f:f6:62:26:53:2c
    Fingerprint (SHA-256):
        54:EF:8B:67:15:23:31:C4:A4:DE:50:EF:9C:FC:BB:6D:72:BE:CE:23:D6:6C:7A:FD:2D:A8:7C:D7:3F:BB:1C:4D
    Fingerprint (SHA1):
        90:FB:90:66:3F:2C:54:3E:D4:DD:52:F9:D9:DA:75:1B:9B:4B:6B:CD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13886: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175847 (0x3cdde827)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 18:13:50 2017
            Not After : Fri Oct 21 18:13:50 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:31:fc:b8:b4:14:af:3d:ac:4b:6e:10:d0:5e:44:f7:
                    34:d1:17:ea:a6:20:6e:64:33:ab:81:52:be:5b:d1:e7:
                    8c:2a:d9:3b:4a:6d:b6:27:0e:4e:94:a0:3b:86:9f:d4:
                    6e:a9:62:12:c4:8d:a6:fb:eb:80:5e:4e:d0:33:71:e5:
                    5d:93:3d:60:28:27:68:5a:1b:40:51:9f:33:f9:04:96:
                    a0:76:83:17:22:17:28:f0:d3:aa:53:7b:01:fd:ea:a1:
                    92:4e:b2:16:98:3b:99:f7:b0:92:1f:c0:29:cc:29:e0:
                    17:64:98:de:f9:9e:6e:82:1f:ee:68:2b:e9:7a:8d:21:
                    b4:84:a8:09:5e:6d:27:8f:29:d3:37:9f:57:b4:82:c3:
                    ac:88:13:b4:7c:62:68:e2:5b:dd:f6:ba:f4:b3:89:c9:
                    9c:17:28:cb:14:52:f5:71:2e:49:a8:03:a8:5e:a0:36:
                    7d:02:71:1f:31:6e:2c:b8:6f:25:33:77:d5:b0:71:f7:
                    48:d8:43:c0:3d:e0:37:b2:10:dc:39:e3:bf:26:60:46:
                    86:bf:9f:8e:61:82:34:05:ad:1e:c5:cc:90:08:73:5c:
                    0e:02:6b:db:21:34:c4:05:d0:b0:86:85:32:30:64:f4:
                    4c:2d:60:cb:fb:cb:f1:88:42:10:61:3c:8d:06:33:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:4a:3f:fc:ce:6f:65:39:df:c3:26:be:36:20:df:8f:
        af:a2:f2:b0:d3:fe:91:4d:56:f4:a1:4d:21:51:00:ec:
        51:8b:db:78:af:91:31:97:48:50:e0:a9:e0:e2:7b:d2:
        cc:1b:91:4b:6d:fe:e7:85:1c:09:30:52:14:43:ee:65:
        13:ea:0c:a4:31:e8:22:e2:73:ef:1d:04:65:ef:fa:29:
        59:62:da:07:f9:b9:10:25:3f:95:c5:b9:ec:58:66:ad:
        c0:28:af:11:f9:46:cc:83:68:fa:19:c8:dc:c9:92:3b:
        bf:a8:26:69:81:2f:7f:20:f5:d0:4a:d5:d6:59:60:33:
        54:41:47:7c:68:89:a8:2d:b6:a2:37:7e:d1:6d:3e:33:
        d6:91:e9:72:6f:3f:cb:bc:ed:c0:35:85:9d:a0:b8:b6:
        12:90:e9:65:84:04:ba:6f:7b:85:68:24:0e:08:d5:0a:
        b1:b2:54:91:30:fe:e5:3e:f9:75:05:47:a3:0c:41:3c:
        6d:91:27:c4:2a:0f:dd:43:89:c4:8f:af:bd:60:d3:1e:
        dd:5a:85:d9:cd:a4:bb:1e:f3:90:b4:68:80:32:97:a7:
        a1:f9:d7:b0:ec:61:73:b0:7e:12:0f:44:b9:b2:a5:e5:
        ad:b7:af:48:b6:a2:9f:1f:e7:f2:9f:f6:62:26:53:2c
    Fingerprint (SHA-256):
        54:EF:8B:67:15:23:31:C4:A4:DE:50:EF:9C:FC:BB:6D:72:BE:CE:23:D6:6C:7A:FD:2D:A8:7C:D7:3F:BB:1C:4D
    Fingerprint (SHA1):
        90:FB:90:66:3F:2C:54:3E:D4:DD:52:F9:D9:DA:75:1B:9B:4B:6B:CD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13887: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #13888: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175846 (0x3cdde826)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 18:13:43 2017
            Not After : Fri Oct 21 18:13:43 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:e7:78:4b:f0:8b:6d:88:cc:55:54:32:c6:16:ec:88:
                    96:03:43:cf:c1:73:2c:eb:ad:34:3a:00:cd:db:72:35:
                    c0:50:5a:34:8f:a5:ab:b1:49:1f:b9:9e:97:26:97:95:
                    38:0a:70:c1:5f:33:da:39:d6:b0:ef:d0:d7:c5:22:aa:
                    2e:2c:21:76:72:b6:f2:81:c7:d6:80:45:f9:61:b5:de:
                    b7:e6:f5:8b:1e:9b:aa:2c:84:0f:e1:ac:36:13:bd:3c:
                    bd:b6:ba:9e:cc:74:f5:3c:df:da:16:b3:aa:b2:11:7e:
                    a5:8a:03:e8:df:f7:6c:b5:17:9a:74:34:3d:a9:7b:96:
                    e7:25:61:43:1f:45:cd:fa:22:9d:b7:86:bc:1a:7e:b3:
                    4a:ee:c5:4a:72:a5:2d:b6:41:65:61:61:21:e0:72:80:
                    ba:4c:5d:4e:18:4e:dc:65:72:9d:a8:ae:86:f4:97:c4:
                    93:90:2f:8b:91:c8:5a:0f:36:be:50:45:69:34:79:a8:
                    40:b7:74:9f:c1:ba:2c:df:56:56:b5:2a:65:78:40:a6:
                    70:f8:36:ce:60:52:99:f0:c0:f6:ab:01:13:de:e0:f0:
                    3c:61:4d:49:57:a2:6f:bd:ef:78:b1:63:e6:ce:b1:7c:
                    97:3b:e3:61:c6:96:c2:5d:ae:85:e4:d7:57:fb:c5:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b8:35:9a:87:40:1f:24:3a:f8:92:ac:2c:97:21:06:cc:
        ab:a5:1e:11:03:35:08:15:30:9c:fd:18:95:7e:1d:67:
        a7:26:24:50:bf:ed:8a:1a:b4:3e:8c:19:b0:a1:fe:95:
        8e:d6:b0:c5:cb:d8:9f:0d:1c:c4:05:52:ec:1a:58:12:
        7f:60:2e:84:9a:e1:fb:25:95:4c:0c:e2:3b:1c:1a:60:
        6c:32:7c:ff:fc:ac:92:9b:23:57:3c:ed:6d:c3:46:e6:
        a6:c3:fb:db:08:3d:fd:c6:d7:97:48:97:14:27:e1:ea:
        0a:2f:e2:83:77:3d:77:fa:74:4c:67:96:ba:d8:39:cb:
        23:ff:cc:de:68:12:4a:36:b0:b8:1f:e9:32:aa:e2:6b:
        e9:c5:fb:55:03:d6:8e:eb:2f:b2:7a:05:93:11:98:c5:
        4d:04:71:1e:2e:59:3e:7a:1e:5a:d5:bc:de:3a:1d:c8:
        5e:6a:29:3f:44:fc:03:a4:72:43:31:48:e4:8c:07:5e:
        27:6e:62:4c:89:61:42:2d:7d:7d:73:61:61:90:ff:ae:
        97:6a:9c:37:5e:b5:7e:45:ff:b4:93:45:0a:97:5b:1b:
        3e:52:31:1a:fb:16:93:5f:d4:d3:e2:90:e8:1b:ab:d1:
        e9:f1:22:75:8e:93:c3:ac:ca:33:14:25:a9:20:83:15
    Fingerprint (SHA-256):
        9A:23:F3:63:D3:68:20:0D:8F:C0:B0:C7:0E:B5:F4:A6:AE:D0:9A:70:48:50:E9:3D:C7:3E:D0:CB:2A:17:99:F9
    Fingerprint (SHA1):
        D7:8F:F0:7F:2F:38:1F:6B:CA:C8:3B:B6:CD:8D:04:8E:36:46:19:AE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13889: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175847 (0x3cdde827)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 18:13:50 2017
            Not After : Fri Oct 21 18:13:50 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:31:fc:b8:b4:14:af:3d:ac:4b:6e:10:d0:5e:44:f7:
                    34:d1:17:ea:a6:20:6e:64:33:ab:81:52:be:5b:d1:e7:
                    8c:2a:d9:3b:4a:6d:b6:27:0e:4e:94:a0:3b:86:9f:d4:
                    6e:a9:62:12:c4:8d:a6:fb:eb:80:5e:4e:d0:33:71:e5:
                    5d:93:3d:60:28:27:68:5a:1b:40:51:9f:33:f9:04:96:
                    a0:76:83:17:22:17:28:f0:d3:aa:53:7b:01:fd:ea:a1:
                    92:4e:b2:16:98:3b:99:f7:b0:92:1f:c0:29:cc:29:e0:
                    17:64:98:de:f9:9e:6e:82:1f:ee:68:2b:e9:7a:8d:21:
                    b4:84:a8:09:5e:6d:27:8f:29:d3:37:9f:57:b4:82:c3:
                    ac:88:13:b4:7c:62:68:e2:5b:dd:f6:ba:f4:b3:89:c9:
                    9c:17:28:cb:14:52:f5:71:2e:49:a8:03:a8:5e:a0:36:
                    7d:02:71:1f:31:6e:2c:b8:6f:25:33:77:d5:b0:71:f7:
                    48:d8:43:c0:3d:e0:37:b2:10:dc:39:e3:bf:26:60:46:
                    86:bf:9f:8e:61:82:34:05:ad:1e:c5:cc:90:08:73:5c:
                    0e:02:6b:db:21:34:c4:05:d0:b0:86:85:32:30:64:f4:
                    4c:2d:60:cb:fb:cb:f1:88:42:10:61:3c:8d:06:33:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:4a:3f:fc:ce:6f:65:39:df:c3:26:be:36:20:df:8f:
        af:a2:f2:b0:d3:fe:91:4d:56:f4:a1:4d:21:51:00:ec:
        51:8b:db:78:af:91:31:97:48:50:e0:a9:e0:e2:7b:d2:
        cc:1b:91:4b:6d:fe:e7:85:1c:09:30:52:14:43:ee:65:
        13:ea:0c:a4:31:e8:22:e2:73:ef:1d:04:65:ef:fa:29:
        59:62:da:07:f9:b9:10:25:3f:95:c5:b9:ec:58:66:ad:
        c0:28:af:11:f9:46:cc:83:68:fa:19:c8:dc:c9:92:3b:
        bf:a8:26:69:81:2f:7f:20:f5:d0:4a:d5:d6:59:60:33:
        54:41:47:7c:68:89:a8:2d:b6:a2:37:7e:d1:6d:3e:33:
        d6:91:e9:72:6f:3f:cb:bc:ed:c0:35:85:9d:a0:b8:b6:
        12:90:e9:65:84:04:ba:6f:7b:85:68:24:0e:08:d5:0a:
        b1:b2:54:91:30:fe:e5:3e:f9:75:05:47:a3:0c:41:3c:
        6d:91:27:c4:2a:0f:dd:43:89:c4:8f:af:bd:60:d3:1e:
        dd:5a:85:d9:cd:a4:bb:1e:f3:90:b4:68:80:32:97:a7:
        a1:f9:d7:b0:ec:61:73:b0:7e:12:0f:44:b9:b2:a5:e5:
        ad:b7:af:48:b6:a2:9f:1f:e7:f2:9f:f6:62:26:53:2c
    Fingerprint (SHA-256):
        54:EF:8B:67:15:23:31:C4:A4:DE:50:EF:9C:FC:BB:6D:72:BE:CE:23:D6:6C:7A:FD:2D:A8:7C:D7:3F:BB:1C:4D
    Fingerprint (SHA1):
        90:FB:90:66:3F:2C:54:3E:D4:DD:52:F9:D9:DA:75:1B:9B:4B:6B:CD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13890: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175847 (0x3cdde827)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 18:13:50 2017
            Not After : Fri Oct 21 18:13:50 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:31:fc:b8:b4:14:af:3d:ac:4b:6e:10:d0:5e:44:f7:
                    34:d1:17:ea:a6:20:6e:64:33:ab:81:52:be:5b:d1:e7:
                    8c:2a:d9:3b:4a:6d:b6:27:0e:4e:94:a0:3b:86:9f:d4:
                    6e:a9:62:12:c4:8d:a6:fb:eb:80:5e:4e:d0:33:71:e5:
                    5d:93:3d:60:28:27:68:5a:1b:40:51:9f:33:f9:04:96:
                    a0:76:83:17:22:17:28:f0:d3:aa:53:7b:01:fd:ea:a1:
                    92:4e:b2:16:98:3b:99:f7:b0:92:1f:c0:29:cc:29:e0:
                    17:64:98:de:f9:9e:6e:82:1f:ee:68:2b:e9:7a:8d:21:
                    b4:84:a8:09:5e:6d:27:8f:29:d3:37:9f:57:b4:82:c3:
                    ac:88:13:b4:7c:62:68:e2:5b:dd:f6:ba:f4:b3:89:c9:
                    9c:17:28:cb:14:52:f5:71:2e:49:a8:03:a8:5e:a0:36:
                    7d:02:71:1f:31:6e:2c:b8:6f:25:33:77:d5:b0:71:f7:
                    48:d8:43:c0:3d:e0:37:b2:10:dc:39:e3:bf:26:60:46:
                    86:bf:9f:8e:61:82:34:05:ad:1e:c5:cc:90:08:73:5c:
                    0e:02:6b:db:21:34:c4:05:d0:b0:86:85:32:30:64:f4:
                    4c:2d:60:cb:fb:cb:f1:88:42:10:61:3c:8d:06:33:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:4a:3f:fc:ce:6f:65:39:df:c3:26:be:36:20:df:8f:
        af:a2:f2:b0:d3:fe:91:4d:56:f4:a1:4d:21:51:00:ec:
        51:8b:db:78:af:91:31:97:48:50:e0:a9:e0:e2:7b:d2:
        cc:1b:91:4b:6d:fe:e7:85:1c:09:30:52:14:43:ee:65:
        13:ea:0c:a4:31:e8:22:e2:73:ef:1d:04:65:ef:fa:29:
        59:62:da:07:f9:b9:10:25:3f:95:c5:b9:ec:58:66:ad:
        c0:28:af:11:f9:46:cc:83:68:fa:19:c8:dc:c9:92:3b:
        bf:a8:26:69:81:2f:7f:20:f5:d0:4a:d5:d6:59:60:33:
        54:41:47:7c:68:89:a8:2d:b6:a2:37:7e:d1:6d:3e:33:
        d6:91:e9:72:6f:3f:cb:bc:ed:c0:35:85:9d:a0:b8:b6:
        12:90:e9:65:84:04:ba:6f:7b:85:68:24:0e:08:d5:0a:
        b1:b2:54:91:30:fe:e5:3e:f9:75:05:47:a3:0c:41:3c:
        6d:91:27:c4:2a:0f:dd:43:89:c4:8f:af:bd:60:d3:1e:
        dd:5a:85:d9:cd:a4:bb:1e:f3:90:b4:68:80:32:97:a7:
        a1:f9:d7:b0:ec:61:73:b0:7e:12:0f:44:b9:b2:a5:e5:
        ad:b7:af:48:b6:a2:9f:1f:e7:f2:9f:f6:62:26:53:2c
    Fingerprint (SHA-256):
        54:EF:8B:67:15:23:31:C4:A4:DE:50:EF:9C:FC:BB:6D:72:BE:CE:23:D6:6C:7A:FD:2D:A8:7C:D7:3F:BB:1C:4D
    Fingerprint (SHA1):
        90:FB:90:66:3F:2C:54:3E:D4:DD:52:F9:D9:DA:75:1B:9B:4B:6B:CD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #13891: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #13892: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175854 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13893: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #13894: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #13895: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175855 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13896: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #13897: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #13898: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13899: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 1021175856   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13900: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13901: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #13902: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13903: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 1021175857   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13904: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13905: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #13906: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13907: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 1021175858 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #13908: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13909: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 1021175859 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #13910: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13911: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #13912: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13913: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13914: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 1021175860   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13915: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13916: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #13917: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13918: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 1021175861   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13919: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13920: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #13921: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13922: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021175862   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13923: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13924: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #13925: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13926: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 1021175863   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #13927: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13928: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13929: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175854 (0x3cdde82e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 18:14:40 2017
            Not After : Fri Oct 21 18:14:40 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f8:24:3c:71:97:49:e6:11:78:89:53:43:ea:88:0e:c1:
                    14:8a:b5:1d:54:ca:89:9a:70:e9:e9:05:b2:df:1d:c6:
                    29:32:13:37:5b:bd:22:22:51:bd:6a:5e:1b:79:fc:49:
                    d5:21:11:19:ce:8c:41:d0:4a:08:2d:c1:a0:3a:b2:b6:
                    f1:25:bc:ae:3e:2f:76:f0:90:e0:83:30:d5:d0:1c:62:
                    74:ef:e9:aa:e3:4a:9e:7f:21:94:84:b8:88:a3:90:3f:
                    32:3d:74:4a:c0:9f:1b:ac:48:0f:ae:74:b9:0f:2e:30:
                    c7:23:d2:2e:e2:0b:fd:1f:3b:11:b1:68:e6:82:0f:80:
                    95:0e:9b:2e:de:7e:d0:21:0f:e2:36:a6:f7:9f:cd:bd:
                    df:1c:91:99:f6:60:1e:81:e0:98:ae:30:ff:f6:af:f9:
                    0d:45:a3:71:56:1b:0c:4f:8e:3c:85:8d:81:23:03:bc:
                    4c:6a:f9:29:c0:ab:bc:0b:3b:8d:34:a3:d5:72:f8:5c:
                    00:0a:f6:fc:e3:04:9b:c2:d5:77:ce:67:4f:6a:bc:56:
                    1c:05:b9:c7:ec:0f:34:8e:ac:5d:60:a7:ed:d1:b4:ce:
                    c2:50:f8:ab:8b:93:36:1f:cd:92:0b:24:9c:62:0a:5e:
                    2e:6e:82:8c:c1:85:2f:df:0a:f4:4d:f0:5a:2b:8e:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6f:27:20:88:cd:32:59:f7:51:5d:9f:e8:b3:df:03:80:
        0e:83:c4:cb:c1:a9:2a:44:e5:49:57:fc:f5:36:67:51:
        4a:73:2b:7b:1e:71:c3:15:9b:be:4b:18:c8:da:14:f5:
        77:a4:64:fe:77:f9:6c:68:14:a2:2c:22:2f:3c:7c:01:
        8a:0a:ee:61:b8:a0:9a:56:e2:1c:6f:f5:b9:93:ed:0b:
        3c:1e:53:f9:57:04:e4:0e:6d:81:68:3b:d2:98:b9:49:
        02:20:e0:11:99:b9:af:59:b0:24:d0:3a:8b:4a:1b:83:
        e0:9e:07:12:d6:f8:9d:49:8b:1d:8d:81:f8:e2:d4:e4:
        0f:d7:ef:6b:57:24:2a:5f:16:8b:94:40:a5:c9:96:2d:
        06:12:6d:dc:41:98:f1:3e:73:b0:28:9a:a3:9e:59:0e:
        c4:7f:c6:c5:19:c3:95:59:43:f8:e7:b3:ef:ec:43:cd:
        8a:d0:77:50:12:35:9f:70:4a:82:70:09:eb:0e:2f:da:
        db:90:a5:2e:25:a9:56:61:0e:12:fa:c5:e5:c2:cb:04:
        f5:a4:bf:09:a8:26:83:c9:85:f1:a1:b6:26:3d:99:55:
        70:d4:3f:09:c6:1f:68:c2:5d:5e:63:4a:f0:89:d6:29:
        ea:fa:87:eb:ad:88:9a:7c:5b:41:11:f4:70:9f:af:ec
    Fingerprint (SHA-256):
        40:2B:BB:A0:C4:64:A8:23:62:15:F0:19:2B:C6:40:A5:B1:90:49:4E:A0:9E:14:3F:56:90:FD:42:11:85:C9:64
    Fingerprint (SHA1):
        46:1E:7B:8E:AD:8C:21:9C:48:66:5C:3D:D0:01:83:67:B3:7A:E4:F5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #13930: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13931: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13932: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13933: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13934: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13935: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13936: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13937: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13938: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175855 (0x3cdde82f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 18:14:49 2017
            Not After : Fri Oct 21 18:14:49 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:ed:33:56:7c:d0:66:64:5b:97:c4:28:56:e2:1f:ef:
                    74:9c:54:82:67:4c:aa:c9:af:09:4b:11:a7:10:fc:d5:
                    3b:7a:62:65:79:ab:9e:78:60:99:2c:08:c8:94:80:2b:
                    52:79:92:6c:bc:cd:53:c5:f6:e8:61:c3:34:be:84:49:
                    bf:3a:ad:02:1f:ac:8e:f3:f0:a9:0d:1a:32:f6:20:a4:
                    10:bf:f6:75:7a:bd:e8:38:44:6d:e7:d5:eb:59:3c:e2:
                    23:94:cf:a7:2a:d0:2d:78:95:b3:da:81:af:aa:6d:98:
                    fa:30:c1:16:68:0b:9c:02:2d:a6:2e:5a:08:21:9b:af:
                    49:b5:05:48:5e:44:cd:6d:f7:df:bc:fd:9d:53:a3:42:
                    4a:2f:16:28:b0:9e:94:c5:18:3c:ed:cf:d1:4c:e7:5d:
                    b2:a6:6f:cb:e3:73:bd:56:da:cc:8e:48:cb:bf:fb:b5:
                    ea:50:ff:f1:61:98:15:af:3e:f2:7d:0d:05:75:a8:b8:
                    39:07:b2:7b:3e:f0:00:66:a5:7d:eb:7c:94:40:aa:13:
                    c6:12:85:04:96:db:96:02:0d:ab:60:a2:7a:82:42:da:
                    bd:6b:59:4f:32:2b:c1:d2:10:c0:95:c1:be:5f:06:4b:
                    1d:d5:19:cc:30:16:02:9a:ac:93:9c:c1:72:92:f4:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        57:d2:56:be:89:f2:ef:39:a4:38:e6:0d:1c:6b:73:8b:
        cc:6b:b1:78:4a:c6:ab:79:cb:3f:b4:3b:2b:ae:b9:b7:
        7e:0e:db:95:6d:39:c0:f2:1f:6b:13:a5:54:66:96:c4:
        4f:9c:8d:e7:c5:c8:c9:ac:b9:ee:31:94:14:2a:01:73:
        1d:1a:62:d3:35:60:9a:36:3a:57:3c:86:8e:14:75:4d:
        8f:fb:b4:6a:0d:23:70:63:87:eb:ce:23:45:ac:c0:5f:
        d8:0d:3e:fa:b5:0f:bf:e1:a2:cf:2a:84:69:68:2c:d9:
        06:4c:91:12:41:ee:ab:8b:22:ed:be:42:29:d4:82:dc:
        21:b2:97:4a:bd:de:43:7e:3b:93:27:dc:4e:53:dd:e3:
        bc:8d:b6:56:b6:44:79:7d:a5:23:69:fa:1d:35:ca:1b:
        4a:49:f6:1d:18:df:e2:df:ec:5a:36:25:16:cc:d1:94:
        f0:15:b4:ae:24:f8:df:0a:0c:eb:fd:2a:b8:7c:ee:96:
        bb:bd:37:2e:fa:5c:94:1a:81:44:07:f3:39:bf:1d:ac:
        08:b4:f1:48:c0:ce:62:69:33:f3:47:72:75:f9:74:8d:
        5f:94:8e:0c:ac:e6:c0:d9:b0:a1:53:35:23:91:50:b3:
        9e:df:8f:e8:cf:b9:c7:5d:1b:d7:bb:5f:c6:80:d8:b1
    Fingerprint (SHA-256):
        69:C0:44:D3:51:B6:6D:19:80:11:61:82:3A:45:ED:66:08:91:98:A7:3D:64:F2:1E:44:92:36:26:CB:53:33:81
    Fingerprint (SHA1):
        EE:67:7D:C1:49:9B:68:F0:58:82:84:CE:38:C1:90:20:97:7E:36:F5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #13939: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13940: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13941: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13942: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13943: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #13944: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13945: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #13946: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #13947: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #13948: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #13949: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #13950: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #13951: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #13952: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #13953: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #13954: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #13955: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #13956: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #13957: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175864 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13958: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #13959: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #13960: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13961: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021175865   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13962: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13963: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #13964: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13965: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021175866   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13966: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13967: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #13968: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13969: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 1021175867   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13970: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13971: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #13972: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13973: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 1021175868   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13974: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13975: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #13976: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13977: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 1021175869   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13978: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13979: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #13980: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13981: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 1021175870   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13982: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13983: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #13984: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #13985: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 1021175871   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13986: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13987: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #13988: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #13989: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 1021175872   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #13990: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #13991: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #13992: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175864 (0x3cdde838)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:16:06 2017
            Not After : Fri Oct 21 18:16:06 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    46:10:1a:8c:a3:cf:fa:c1:8c:28:7f:0a:ad:77:73:09:
                    7b:88:83:e0:f1:c2:0c:5a:75:6b:fb:96:2c:2e:07:bd:
                    c1:0c:2b:ac:6b:ab:fc:25:d9:98:49:c6:52:d2:f0:dc:
                    7f:47:91:f2:c3:83:dc:53:d2:20:b7:46:a0:e7:b1:40:
                    7f:ac:bc:19:3f:b5:cd:0c:10:48:4b:39:35:9b:55:f3:
                    73:8e:f7:77:64:9b:0d:b9:0d:e1:73:96:82:b0:60:bb:
                    8e:a6:ce:01:6e:2f:99:a7:86:a1:1e:92:04:80:23:9d:
                    60:c1:d2:cd:bb:bb:42:02:3f:46:0b:99:79:3e:8d:d2:
                    c0:0b:fa:eb:32:cf:1f:50:6a:4f:d5:6f:96:b2:6c:20:
                    6e:3c:83:1e:8f:dd:60:7a:a9:54:62:21:06:0c:70:0c:
                    49:f9:4b:eb:99:d4:8c:f0:bf:99:fe:97:c5:22:90:1d:
                    b3:20:9c:09:ca:b3:f1:84:25:24:fc:03:72:0f:cb:2f:
                    26:1a:58:d3:42:90:40:ec:02:b4:35:d3:5f:12:15:ba:
                    db:fb:3b:9a:48:78:ee:7a:ad:2a:e1:e1:1f:9b:59:f9:
                    6d:72:b3:d0:84:8f:53:01:02:fc:32:0f:75:49:93:67:
                    8e:26:05:cd:e8:6f:bc:cd:c5:47:74:65:9b:76:5f:0f
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1d:00:94:e3:6f:7b:9c:ec:9e:75:f0:f0:ec:
        80:42:13:68:88:8c:66:fd:1d:67:67:74:8d:93:13:bd:
        e0:02:1c:09:20:20:33:ce:c0:d9:9f:97:1a:95:3e:f3:
        73:d2:82:6d:3e:b1:1a:8d:1c:7a:a6:99:40:a8:7c
    Fingerprint (SHA-256):
        5A:6C:86:EF:B7:74:1B:C2:BD:C5:20:BB:E6:39:C8:94:22:C3:7B:82:C4:4C:7F:EB:A4:BB:C2:D1:EA:F6:EB:5F
    Fingerprint (SHA1):
        32:E3:36:B7:F3:F4:7B:34:E6:EE:64:0A:65:F3:41:20:1F:07:57:EB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #13993: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175864 (0x3cdde838)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:16:06 2017
            Not After : Fri Oct 21 18:16:06 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    46:10:1a:8c:a3:cf:fa:c1:8c:28:7f:0a:ad:77:73:09:
                    7b:88:83:e0:f1:c2:0c:5a:75:6b:fb:96:2c:2e:07:bd:
                    c1:0c:2b:ac:6b:ab:fc:25:d9:98:49:c6:52:d2:f0:dc:
                    7f:47:91:f2:c3:83:dc:53:d2:20:b7:46:a0:e7:b1:40:
                    7f:ac:bc:19:3f:b5:cd:0c:10:48:4b:39:35:9b:55:f3:
                    73:8e:f7:77:64:9b:0d:b9:0d:e1:73:96:82:b0:60:bb:
                    8e:a6:ce:01:6e:2f:99:a7:86:a1:1e:92:04:80:23:9d:
                    60:c1:d2:cd:bb:bb:42:02:3f:46:0b:99:79:3e:8d:d2:
                    c0:0b:fa:eb:32:cf:1f:50:6a:4f:d5:6f:96:b2:6c:20:
                    6e:3c:83:1e:8f:dd:60:7a:a9:54:62:21:06:0c:70:0c:
                    49:f9:4b:eb:99:d4:8c:f0:bf:99:fe:97:c5:22:90:1d:
                    b3:20:9c:09:ca:b3:f1:84:25:24:fc:03:72:0f:cb:2f:
                    26:1a:58:d3:42:90:40:ec:02:b4:35:d3:5f:12:15:ba:
                    db:fb:3b:9a:48:78:ee:7a:ad:2a:e1:e1:1f:9b:59:f9:
                    6d:72:b3:d0:84:8f:53:01:02:fc:32:0f:75:49:93:67:
                    8e:26:05:cd:e8:6f:bc:cd:c5:47:74:65:9b:76:5f:0f
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1d:00:94:e3:6f:7b:9c:ec:9e:75:f0:f0:ec:
        80:42:13:68:88:8c:66:fd:1d:67:67:74:8d:93:13:bd:
        e0:02:1c:09:20:20:33:ce:c0:d9:9f:97:1a:95:3e:f3:
        73:d2:82:6d:3e:b1:1a:8d:1c:7a:a6:99:40:a8:7c
    Fingerprint (SHA-256):
        5A:6C:86:EF:B7:74:1B:C2:BD:C5:20:BB:E6:39:C8:94:22:C3:7B:82:C4:4C:7F:EB:A4:BB:C2:D1:EA:F6:EB:5F
    Fingerprint (SHA1):
        32:E3:36:B7:F3:F4:7B:34:E6:EE:64:0A:65:F3:41:20:1F:07:57:EB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #13994: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175864 (0x3cdde838)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:16:06 2017
            Not After : Fri Oct 21 18:16:06 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    46:10:1a:8c:a3:cf:fa:c1:8c:28:7f:0a:ad:77:73:09:
                    7b:88:83:e0:f1:c2:0c:5a:75:6b:fb:96:2c:2e:07:bd:
                    c1:0c:2b:ac:6b:ab:fc:25:d9:98:49:c6:52:d2:f0:dc:
                    7f:47:91:f2:c3:83:dc:53:d2:20:b7:46:a0:e7:b1:40:
                    7f:ac:bc:19:3f:b5:cd:0c:10:48:4b:39:35:9b:55:f3:
                    73:8e:f7:77:64:9b:0d:b9:0d:e1:73:96:82:b0:60:bb:
                    8e:a6:ce:01:6e:2f:99:a7:86:a1:1e:92:04:80:23:9d:
                    60:c1:d2:cd:bb:bb:42:02:3f:46:0b:99:79:3e:8d:d2:
                    c0:0b:fa:eb:32:cf:1f:50:6a:4f:d5:6f:96:b2:6c:20:
                    6e:3c:83:1e:8f:dd:60:7a:a9:54:62:21:06:0c:70:0c:
                    49:f9:4b:eb:99:d4:8c:f0:bf:99:fe:97:c5:22:90:1d:
                    b3:20:9c:09:ca:b3:f1:84:25:24:fc:03:72:0f:cb:2f:
                    26:1a:58:d3:42:90:40:ec:02:b4:35:d3:5f:12:15:ba:
                    db:fb:3b:9a:48:78:ee:7a:ad:2a:e1:e1:1f:9b:59:f9:
                    6d:72:b3:d0:84:8f:53:01:02:fc:32:0f:75:49:93:67:
                    8e:26:05:cd:e8:6f:bc:cd:c5:47:74:65:9b:76:5f:0f
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1d:00:94:e3:6f:7b:9c:ec:9e:75:f0:f0:ec:
        80:42:13:68:88:8c:66:fd:1d:67:67:74:8d:93:13:bd:
        e0:02:1c:09:20:20:33:ce:c0:d9:9f:97:1a:95:3e:f3:
        73:d2:82:6d:3e:b1:1a:8d:1c:7a:a6:99:40:a8:7c
    Fingerprint (SHA-256):
        5A:6C:86:EF:B7:74:1B:C2:BD:C5:20:BB:E6:39:C8:94:22:C3:7B:82:C4:4C:7F:EB:A4:BB:C2:D1:EA:F6:EB:5F
    Fingerprint (SHA1):
        32:E3:36:B7:F3:F4:7B:34:E6:EE:64:0A:65:F3:41:20:1F:07:57:EB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #13995: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175864 (0x3cdde838)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:16:06 2017
            Not After : Fri Oct 21 18:16:06 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    46:10:1a:8c:a3:cf:fa:c1:8c:28:7f:0a:ad:77:73:09:
                    7b:88:83:e0:f1:c2:0c:5a:75:6b:fb:96:2c:2e:07:bd:
                    c1:0c:2b:ac:6b:ab:fc:25:d9:98:49:c6:52:d2:f0:dc:
                    7f:47:91:f2:c3:83:dc:53:d2:20:b7:46:a0:e7:b1:40:
                    7f:ac:bc:19:3f:b5:cd:0c:10:48:4b:39:35:9b:55:f3:
                    73:8e:f7:77:64:9b:0d:b9:0d:e1:73:96:82:b0:60:bb:
                    8e:a6:ce:01:6e:2f:99:a7:86:a1:1e:92:04:80:23:9d:
                    60:c1:d2:cd:bb:bb:42:02:3f:46:0b:99:79:3e:8d:d2:
                    c0:0b:fa:eb:32:cf:1f:50:6a:4f:d5:6f:96:b2:6c:20:
                    6e:3c:83:1e:8f:dd:60:7a:a9:54:62:21:06:0c:70:0c:
                    49:f9:4b:eb:99:d4:8c:f0:bf:99:fe:97:c5:22:90:1d:
                    b3:20:9c:09:ca:b3:f1:84:25:24:fc:03:72:0f:cb:2f:
                    26:1a:58:d3:42:90:40:ec:02:b4:35:d3:5f:12:15:ba:
                    db:fb:3b:9a:48:78:ee:7a:ad:2a:e1:e1:1f:9b:59:f9:
                    6d:72:b3:d0:84:8f:53:01:02:fc:32:0f:75:49:93:67:
                    8e:26:05:cd:e8:6f:bc:cd:c5:47:74:65:9b:76:5f:0f
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3d:02:1d:00:94:e3:6f:7b:9c:ec:9e:75:f0:f0:ec:
        80:42:13:68:88:8c:66:fd:1d:67:67:74:8d:93:13:bd:
        e0:02:1c:09:20:20:33:ce:c0:d9:9f:97:1a:95:3e:f3:
        73:d2:82:6d:3e:b1:1a:8d:1c:7a:a6:99:40:a8:7c
    Fingerprint (SHA-256):
        5A:6C:86:EF:B7:74:1B:C2:BD:C5:20:BB:E6:39:C8:94:22:C3:7B:82:C4:4C:7F:EB:A4:BB:C2:D1:EA:F6:EB:5F
    Fingerprint (SHA1):
        32:E3:36:B7:F3:F4:7B:34:E6:EE:64:0A:65:F3:41:20:1F:07:57:EB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #13996: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #13997: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 10 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #13998: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #13999: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #14000: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14001: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14002: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14003: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14004: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14005: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14006: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14007: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #14008: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14009: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14010: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14011: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #14012: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14013: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14014: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14015: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14016: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14017: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14018: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14019: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #14020: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14021: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14022: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14023: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20171021181801Z
nextupdate=20181021181801Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Sat Oct 21 18:18:01 2017
    Next Update: Sun Oct 21 18:18:01 2018
    CRL Extensions:
chains.sh: #14024: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021181802Z
nextupdate=20181021181802Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 18:18:02 2017
    Next Update: Sun Oct 21 18:18:02 2018
    CRL Extensions:
chains.sh: #14025: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20171021181803Z
nextupdate=20181021181803Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Sat Oct 21 18:18:03 2017
    Next Update: Sun Oct 21 18:18:03 2018
    CRL Extensions:
chains.sh: #14026: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20171021181804Z
nextupdate=20181021181804Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Sat Oct 21 18:18:04 2017
    Next Update: Sun Oct 21 18:18:04 2018
    CRL Extensions:
chains.sh: #14027: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20171021181805Z
addcert 14 20171021181805Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Sat Oct 21 18:18:05 2017
    Next Update: Sun Oct 21 18:18:03 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Sat Oct 21 18:18:05 2017
    CRL Extensions:
chains.sh: #14028: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021181806Z
addcert 15 20171021181806Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 18:18:06 2017
    Next Update: Sun Oct 21 18:18:02 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Sat Oct 21 18:18:06 2017
    CRL Extensions:
chains.sh: #14029: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14030: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14031: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #14032: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #14033: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #14034: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #14035: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #14036: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #14037: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #14038: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:17:07 2017
            Not After : Fri Oct 21 18:17:07 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:2c:97:f8:eb:cf:90:7f:2f:c1:b0:17:37:a4:f6:ca:
                    bb:68:25:35:d0:2b:b8:16:0c:1c:7c:5a:0a:ef:d7:f7:
                    06:40:2a:51:e4:bc:82:1a:0c:ac:24:f8:47:18:80:8c:
                    3d:25:67:82:9a:a4:54:86:c5:57:6f:c6:7e:3d:40:43:
                    f6:e0:2c:57:c8:95:46:52:26:fb:85:8a:7d:09:4a:b7:
                    85:a2:b0:59:2c:cd:af:8d:d4:74:28:6b:08:88:15:dd:
                    3e:8b:43:83:e9:45:f2:7e:6e:9d:b3:d7:00:7e:5b:26:
                    21:82:87:63:32:0d:d1:7b:61:30:5b:9d:42:16:d1:cb:
                    4f:fe:2a:63:f3:76:6f:09:ca:b8:ce:41:43:23:cd:35:
                    3e:20:ec:f2:81:ab:1a:04:af:ee:ff:20:40:f6:9f:eb:
                    ec:18:07:cf:bc:8c:4a:cd:76:f5:d9:a3:3d:0c:8f:11:
                    86:cc:d6:96:8c:b4:3a:dc:06:7f:fe:a7:01:fa:04:6f:
                    a6:83:9a:de:e1:d2:2d:87:b4:cd:3e:5d:26:07:05:d3:
                    1d:13:d6:eb:af:5c:9b:43:88:cb:94:ac:2a:1c:ed:69:
                    10:31:4f:ac:6f:df:b1:70:d4:e1:b7:05:a7:68:24:f7:
                    ce:a9:d9:48:10:b2:64:2c:aa:41:13:c2:c3:98:82:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:f6:76:9f:1e:48:12:66:c9:4d:dd:dc:c9:16:57:c9:
        31:8d:e0:9c:81:b3:14:38:50:e4:4d:4f:99:18:d9:b0:
        5c:d7:10:be:b4:d0:63:1c:fa:de:c9:51:b4:81:a7:5c:
        05:3f:44:2e:cc:94:cb:63:fb:e8:e3:b7:6c:25:a5:be:
        40:37:3b:fb:c0:3f:86:ba:5f:71:06:79:04:35:85:82:
        48:30:d3:ef:d7:29:62:c6:e0:a1:ad:d2:ca:1a:d9:01:
        85:b0:73:42:eb:61:29:5b:26:e8:83:aa:1d:71:77:14:
        be:88:03:fe:5c:82:8e:58:05:62:38:33:89:8e:b0:f0:
        22:7a:dd:22:e9:63:1f:9d:6e:85:e6:b0:7d:37:7a:e1:
        a6:2e:a2:82:e5:08:a9:e8:98:0b:a3:48:5a:d4:1b:f3:
        3a:23:b7:dc:4a:a7:bc:73:4e:58:02:89:f3:67:dc:a4:
        c4:96:c8:7e:b1:98:10:56:9e:1e:b9:f2:92:e0:a8:c9:
        46:7a:7b:af:da:3e:17:ee:d2:1a:67:f0:07:49:8f:67:
        a3:c4:ff:18:60:1a:03:dc:cc:3b:db:70:ca:d3:d1:6d:
        00:ce:e7:0e:4a:d1:92:ad:87:b3:60:43:c6:dd:c5:97:
        94:3c:db:a4:88:66:ad:3e:69:17:2b:ae:3b:54:e3:e2
    Fingerprint (SHA-256):
        E6:BB:4B:47:24:AC:11:F2:C6:55:C7:3A:FA:CC:FD:27:B4:B7:0E:ED:91:9B:A0:5B:5F:E4:04:68:F4:8F:DE:CD
    Fingerprint (SHA1):
        A2:21:4D:6D:9A:E8:E8:59:2A:E4:F8:91:B9:35:56:FD:DE:0F:BC:6B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #14039: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #14040: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:17:07 2017
            Not After : Fri Oct 21 18:17:07 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:2c:97:f8:eb:cf:90:7f:2f:c1:b0:17:37:a4:f6:ca:
                    bb:68:25:35:d0:2b:b8:16:0c:1c:7c:5a:0a:ef:d7:f7:
                    06:40:2a:51:e4:bc:82:1a:0c:ac:24:f8:47:18:80:8c:
                    3d:25:67:82:9a:a4:54:86:c5:57:6f:c6:7e:3d:40:43:
                    f6:e0:2c:57:c8:95:46:52:26:fb:85:8a:7d:09:4a:b7:
                    85:a2:b0:59:2c:cd:af:8d:d4:74:28:6b:08:88:15:dd:
                    3e:8b:43:83:e9:45:f2:7e:6e:9d:b3:d7:00:7e:5b:26:
                    21:82:87:63:32:0d:d1:7b:61:30:5b:9d:42:16:d1:cb:
                    4f:fe:2a:63:f3:76:6f:09:ca:b8:ce:41:43:23:cd:35:
                    3e:20:ec:f2:81:ab:1a:04:af:ee:ff:20:40:f6:9f:eb:
                    ec:18:07:cf:bc:8c:4a:cd:76:f5:d9:a3:3d:0c:8f:11:
                    86:cc:d6:96:8c:b4:3a:dc:06:7f:fe:a7:01:fa:04:6f:
                    a6:83:9a:de:e1:d2:2d:87:b4:cd:3e:5d:26:07:05:d3:
                    1d:13:d6:eb:af:5c:9b:43:88:cb:94:ac:2a:1c:ed:69:
                    10:31:4f:ac:6f:df:b1:70:d4:e1:b7:05:a7:68:24:f7:
                    ce:a9:d9:48:10:b2:64:2c:aa:41:13:c2:c3:98:82:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:f6:76:9f:1e:48:12:66:c9:4d:dd:dc:c9:16:57:c9:
        31:8d:e0:9c:81:b3:14:38:50:e4:4d:4f:99:18:d9:b0:
        5c:d7:10:be:b4:d0:63:1c:fa:de:c9:51:b4:81:a7:5c:
        05:3f:44:2e:cc:94:cb:63:fb:e8:e3:b7:6c:25:a5:be:
        40:37:3b:fb:c0:3f:86:ba:5f:71:06:79:04:35:85:82:
        48:30:d3:ef:d7:29:62:c6:e0:a1:ad:d2:ca:1a:d9:01:
        85:b0:73:42:eb:61:29:5b:26:e8:83:aa:1d:71:77:14:
        be:88:03:fe:5c:82:8e:58:05:62:38:33:89:8e:b0:f0:
        22:7a:dd:22:e9:63:1f:9d:6e:85:e6:b0:7d:37:7a:e1:
        a6:2e:a2:82:e5:08:a9:e8:98:0b:a3:48:5a:d4:1b:f3:
        3a:23:b7:dc:4a:a7:bc:73:4e:58:02:89:f3:67:dc:a4:
        c4:96:c8:7e:b1:98:10:56:9e:1e:b9:f2:92:e0:a8:c9:
        46:7a:7b:af:da:3e:17:ee:d2:1a:67:f0:07:49:8f:67:
        a3:c4:ff:18:60:1a:03:dc:cc:3b:db:70:ca:d3:d1:6d:
        00:ce:e7:0e:4a:d1:92:ad:87:b3:60:43:c6:dd:c5:97:
        94:3c:db:a4:88:66:ad:3e:69:17:2b:ae:3b:54:e3:e2
    Fingerprint (SHA-256):
        E6:BB:4B:47:24:AC:11:F2:C6:55:C7:3A:FA:CC:FD:27:B4:B7:0E:ED:91:9B:A0:5B:5F:E4:04:68:F4:8F:DE:CD
    Fingerprint (SHA1):
        A2:21:4D:6D:9A:E8:E8:59:2A:E4:F8:91:B9:35:56:FD:DE:0F:BC:6B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #14041: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #14042: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14043: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175873 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14044: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14045: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #14046: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14047: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 1021175874   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14048: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14049: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14050: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021175764.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14051: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0Root-1021175749.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14052: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14053: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #14054: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021175764.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14055: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 1021175875   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14056: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14057: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14058: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021175764.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14059: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0Root-1021175750.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14060: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14061: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #14062: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14063: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 1021175876   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14064: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14065: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14066: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021175764.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14067: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0Root-1021175751.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14068: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14069: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #14070: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021175764.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14071: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0Root-1021175752.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14072: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14073: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20171021181914Z
nextupdate=20181021181914Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Sat Oct 21 18:19:14 2017
    Next Update: Sun Oct 21 18:19:14 2018
    CRL Extensions:
chains.sh: #14074: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021181916Z
nextupdate=20181021181916Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 18:19:16 2017
    Next Update: Sun Oct 21 18:19:16 2018
    CRL Extensions:
chains.sh: #14075: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20171021181916Z
nextupdate=20181021181916Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Sat Oct 21 18:19:16 2017
    Next Update: Sun Oct 21 18:19:16 2018
    CRL Extensions:
chains.sh: #14076: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20171021181917Z
nextupdate=20181021181917Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Sat Oct 21 18:19:17 2017
    Next Update: Sun Oct 21 18:19:17 2018
    CRL Extensions:
chains.sh: #14077: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021181918Z
addcert 20 20171021181918Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 18:19:18 2017
    Next Update: Sun Oct 21 18:19:16 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Sat Oct 21 18:19:18 2017
    CRL Extensions:
chains.sh: #14078: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021181919Z
addcert 40 20171021181919Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 18:19:19 2017
    Next Update: Sun Oct 21 18:19:16 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Sat Oct 21 18:19:18 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Sat Oct 21 18:19:19 2017
    CRL Extensions:
chains.sh: #14079: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14080: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14081: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #14082: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175873 (0x3cdde841)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:18:27 2017
            Not After : Fri Oct 21 18:18:27 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:9d:96:bb:f0:62:48:13:86:d8:d4:7c:f7:f8:06:ab:
                    3d:5a:f3:d3:9c:dc:e5:c5:e2:14:61:e8:cb:72:e6:ff:
                    68:d0:24:0b:dd:74:63:74:14:41:49:18:ab:28:d4:11:
                    b9:11:75:a8:5c:a7:c2:a9:c7:f5:4b:8c:1a:e4:70:0a:
                    76:eb:b6:2b:09:a9:46:48:38:8f:b2:d6:04:38:3e:cc:
                    84:61:d0:9a:30:ee:28:61:09:45:a2:7a:c1:40:40:9b:
                    5d:f6:ae:d2:2a:30:fd:83:57:f4:df:09:18:e2:ae:3c:
                    10:10:cf:3e:57:e3:7e:3c:91:10:ad:41:eb:ee:d1:76:
                    84:ae:fe:18:6b:8f:bf:9c:cd:ea:17:83:09:76:9b:3d:
                    6b:43:d1:71:1b:49:ba:20:14:17:f6:1c:a0:98:12:24:
                    d7:b9:74:2c:97:02:a2:6c:76:f5:0f:4a:80:0d:6d:95:
                    50:f8:07:2b:64:52:b9:2b:c2:6b:21:e9:49:c2:1c:50:
                    58:94:e0:87:01:96:4c:43:3e:08:ed:87:53:bb:63:93:
                    a3:ce:33:7d:17:ca:c6:0f:f8:c8:74:b6:48:c5:41:6d:
                    e8:a2:68:8a:96:98:35:7f:95:af:7f:16:63:39:e2:f6:
                    0e:5e:3f:81:7b:97:a4:f5:be:b5:5a:26:3b:3c:6e:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        47:65:a0:95:2d:a2:6d:2f:c6:73:95:76:7c:25:62:1f:
        c6:1d:97:d2:d6:8f:3c:bd:c4:29:c4:d8:1c:c8:b1:e7:
        63:38:97:0f:85:b9:23:fd:a6:57:39:73:e8:2c:d6:66:
        a5:db:b2:8f:72:ff:e6:be:3f:6a:1c:61:d1:da:2e:49:
        34:48:65:da:e7:6a:bd:9a:55:07:65:cc:19:c9:05:8f:
        3c:cb:c7:f9:f8:4a:8e:7c:d2:6c:5b:eb:36:41:c1:0b:
        bc:ef:d0:28:10:a4:e1:e0:bb:63:1f:2f:d7:64:51:d1:
        57:22:b6:16:f8:41:b0:69:62:1b:34:f9:f8:ee:74:2d:
        37:12:42:c9:d3:4b:c5:e8:d6:36:08:43:f8:f2:a9:54:
        42:53:0e:95:9c:94:fe:16:19:56:ae:40:b4:06:94:de:
        85:36:19:b4:32:e0:52:71:98:38:14:6a:93:f2:59:27:
        35:81:cb:ea:e9:3b:e1:48:be:ee:cb:ad:f3:7b:5d:7e:
        4a:ee:6c:77:25:a9:16:70:3c:79:9b:fb:a9:53:e3:1b:
        1b:4a:15:17:6f:de:e3:e1:24:c0:0e:34:d5:83:e0:ba:
        21:e2:29:c4:57:e0:96:09:ba:47:41:23:09:88:ac:56:
        fc:db:2d:0d:d7:2c:3f:cf:e3:14:17:95:cb:98:a3:cf
    Fingerprint (SHA-256):
        96:66:74:3A:B0:3F:0F:A8:54:12:1E:E0:B7:4C:17:EB:09:68:1C:CF:94:63:BA:85:7B:F3:E1:F5:84:C8:5A:9C
    Fingerprint (SHA1):
        93:6C:CF:A3:46:B5:15:4E:54:AE:A0:63:68:22:08:44:DE:D2:5B:88
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #14083: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #14084: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175873 (0x3cdde841)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:18:27 2017
            Not After : Fri Oct 21 18:18:27 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:9d:96:bb:f0:62:48:13:86:d8:d4:7c:f7:f8:06:ab:
                    3d:5a:f3:d3:9c:dc:e5:c5:e2:14:61:e8:cb:72:e6:ff:
                    68:d0:24:0b:dd:74:63:74:14:41:49:18:ab:28:d4:11:
                    b9:11:75:a8:5c:a7:c2:a9:c7:f5:4b:8c:1a:e4:70:0a:
                    76:eb:b6:2b:09:a9:46:48:38:8f:b2:d6:04:38:3e:cc:
                    84:61:d0:9a:30:ee:28:61:09:45:a2:7a:c1:40:40:9b:
                    5d:f6:ae:d2:2a:30:fd:83:57:f4:df:09:18:e2:ae:3c:
                    10:10:cf:3e:57:e3:7e:3c:91:10:ad:41:eb:ee:d1:76:
                    84:ae:fe:18:6b:8f:bf:9c:cd:ea:17:83:09:76:9b:3d:
                    6b:43:d1:71:1b:49:ba:20:14:17:f6:1c:a0:98:12:24:
                    d7:b9:74:2c:97:02:a2:6c:76:f5:0f:4a:80:0d:6d:95:
                    50:f8:07:2b:64:52:b9:2b:c2:6b:21:e9:49:c2:1c:50:
                    58:94:e0:87:01:96:4c:43:3e:08:ed:87:53:bb:63:93:
                    a3:ce:33:7d:17:ca:c6:0f:f8:c8:74:b6:48:c5:41:6d:
                    e8:a2:68:8a:96:98:35:7f:95:af:7f:16:63:39:e2:f6:
                    0e:5e:3f:81:7b:97:a4:f5:be:b5:5a:26:3b:3c:6e:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        47:65:a0:95:2d:a2:6d:2f:c6:73:95:76:7c:25:62:1f:
        c6:1d:97:d2:d6:8f:3c:bd:c4:29:c4:d8:1c:c8:b1:e7:
        63:38:97:0f:85:b9:23:fd:a6:57:39:73:e8:2c:d6:66:
        a5:db:b2:8f:72:ff:e6:be:3f:6a:1c:61:d1:da:2e:49:
        34:48:65:da:e7:6a:bd:9a:55:07:65:cc:19:c9:05:8f:
        3c:cb:c7:f9:f8:4a:8e:7c:d2:6c:5b:eb:36:41:c1:0b:
        bc:ef:d0:28:10:a4:e1:e0:bb:63:1f:2f:d7:64:51:d1:
        57:22:b6:16:f8:41:b0:69:62:1b:34:f9:f8:ee:74:2d:
        37:12:42:c9:d3:4b:c5:e8:d6:36:08:43:f8:f2:a9:54:
        42:53:0e:95:9c:94:fe:16:19:56:ae:40:b4:06:94:de:
        85:36:19:b4:32:e0:52:71:98:38:14:6a:93:f2:59:27:
        35:81:cb:ea:e9:3b:e1:48:be:ee:cb:ad:f3:7b:5d:7e:
        4a:ee:6c:77:25:a9:16:70:3c:79:9b:fb:a9:53:e3:1b:
        1b:4a:15:17:6f:de:e3:e1:24:c0:0e:34:d5:83:e0:ba:
        21:e2:29:c4:57:e0:96:09:ba:47:41:23:09:88:ac:56:
        fc:db:2d:0d:d7:2c:3f:cf:e3:14:17:95:cb:98:a3:cf
    Fingerprint (SHA-256):
        96:66:74:3A:B0:3F:0F:A8:54:12:1E:E0:B7:4C:17:EB:09:68:1C:CF:94:63:BA:85:7B:F3:E1:F5:84:C8:5A:9C
    Fingerprint (SHA1):
        93:6C:CF:A3:46:B5:15:4E:54:AE:A0:63:68:22:08:44:DE:D2:5B:88
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #14085: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #14086: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #14087: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175877 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14088: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #14089: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14090: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14091: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 1021175878   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14092: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14093: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14094: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14095: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021175879   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14096: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14097: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14098: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14099: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 1021175880   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14100: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14101: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #14102: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175881 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14103: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #14104: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #14105: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14106: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 1021175882   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14107: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14108: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #14109: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14110: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 1021175883   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14111: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14112: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #14113: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #14114: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #14115: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175877 (0x3cdde845)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:19:34 2017
            Not After : Fri Oct 21 18:19:34 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:c0:ae:db:a6:f6:5e:77:bf:fc:38:fd:73:d4:6a:0e:
                    f7:9b:ad:5e:6e:48:b3:95:3d:23:16:32:ed:b5:0a:de:
                    4d:fc:55:bf:c6:b7:ef:bf:12:74:62:c9:ca:b9:a9:41:
                    23:94:ec:45:d9:1b:93:78:49:ad:b8:32:cd:9f:65:90:
                    83:1d:c9:a3:94:43:4f:d2:6b:0b:46:68:69:f0:e5:aa:
                    65:4b:83:35:fd:27:3a:50:b4:05:3c:d6:32:ce:54:1b:
                    ef:4f:cb:88:f1:a4:41:9f:47:01:be:c6:f2:3c:4d:bf:
                    9f:92:a6:47:66:1b:82:e3:00:a1:62:bd:e6:2d:8b:30:
                    18:ba:47:2d:65:31:88:f1:36:32:c5:1b:d2:a2:a1:76:
                    17:a9:5f:6e:51:d8:82:03:de:8f:5c:56:18:da:41:57:
                    17:d6:d1:91:bb:43:ed:35:fe:dc:37:eb:a0:41:21:5b:
                    68:0d:92:f4:53:5a:3a:25:99:2d:47:a6:1a:8b:0b:71:
                    33:18:91:b2:99:7c:aa:29:4a:6d:a7:0a:a2:31:7a:16:
                    19:31:7c:88:c4:14:2a:27:3a:f2:ce:10:b6:61:bb:78:
                    00:fb:7a:ba:87:87:6b:63:b2:ea:57:37:8b:10:ec:0d:
                    ab:ac:d7:3b:bf:5d:1a:3b:98:e4:e8:11:b0:6e:64:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        32:b7:a9:0c:78:11:9f:1f:cb:3a:f6:0e:2e:79:43:f4:
        fd:ea:81:e8:f9:74:c7:68:55:e9:5a:ae:e4:a4:8a:91:
        f7:eb:5a:b5:9a:31:37:83:5a:46:20:b6:ce:13:43:d8:
        53:0a:02:14:ef:6d:8e:29:2e:04:04:a6:21:6f:0a:02:
        d0:36:82:ee:7d:c5:be:7d:d0:f0:bb:13:f7:50:36:91:
        24:ff:67:30:11:e3:ce:89:e4:f7:f2:dd:dc:9d:b5:f5:
        bd:dc:b9:07:25:40:c9:2f:df:74:07:7a:a8:84:1b:f9:
        a7:aa:9d:77:67:10:76:c3:47:51:e5:8b:99:4f:81:50:
        6e:fa:1c:e6:98:ce:54:f7:39:15:14:95:11:1b:24:11:
        69:da:8a:e4:70:f4:25:72:cb:79:37:11:fa:50:1f:04:
        5c:a6:6e:61:e7:5a:1b:7d:0b:e3:27:12:c7:1b:6a:e2:
        7c:9d:de:4a:50:16:01:08:29:00:ad:a2:16:55:0a:50:
        34:ea:2f:db:62:e9:d2:8b:a9:95:bc:53:80:88:e4:13:
        52:f8:0c:c1:59:8c:0e:3a:63:08:76:05:36:b5:8b:55:
        63:ab:b7:85:48:fe:1e:86:cf:0d:ea:8f:2a:65:5d:96:
        0a:04:a8:c6:b5:3f:ac:6c:6a:63:b5:14:40:fb:38:3a
    Fingerprint (SHA-256):
        23:B1:23:C7:DE:BC:E5:E3:68:6E:4B:86:EC:08:98:0E:E7:F9:47:97:79:0F:35:61:73:83:6A:35:8A:98:E7:78
    Fingerprint (SHA1):
        C1:D2:B2:70:CC:71:C5:55:B5:0F:05:B7:7E:F4:3E:CF:30:64:61:32
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14116: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175879 (0x3cdde847)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 18:19:47 2017
            Not After : Fri Oct 21 18:19:47 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:5b:3f:e7:2a:29:2f:0b:14:99:a4:6f:c8:ee:bd:12:
                    2e:39:bd:42:67:dc:72:6c:2b:e4:dd:e2:5e:7b:fc:4d:
                    af:61:ea:75:32:a2:e3:90:a9:91:f7:b1:34:7b:e0:1b:
                    db:01:a2:c9:ab:2b:c1:83:95:82:ae:cf:cd:0c:17:9d:
                    6f:c2:02:3c:da:1b:0b:13:25:41:6c:8c:1a:f4:55:f7:
                    13:dd:76:42:a0:53:2c:0b:59:1e:92:75:0f:91:be:17:
                    4b:a6:e4:93:b0:27:67:c5:69:66:d0:ce:b6:9f:c6:ea:
                    00:ca:d4:37:be:b0:08:1a:23:23:c6:8e:e1:eb:c7:bd:
                    7a:69:07:f0:b9:f4:a7:e3:44:68:1c:3a:02:28:ab:41:
                    ee:3d:4d:f9:50:6c:07:b2:d3:2f:73:84:cd:64:20:1b:
                    f9:a9:08:07:61:84:9b:ed:e9:26:8e:fd:7b:c4:5d:59:
                    23:cb:91:0f:78:7f:2b:f3:cf:05:0e:81:bc:2a:7d:09:
                    7b:4a:bc:c3:77:95:fd:47:e1:fd:d4:40:fd:0a:36:e0:
                    ea:ee:68:91:d1:b1:f6:d5:e2:92:8e:55:94:97:f8:43:
                    09:17:39:9e:1f:99:1e:21:c7:49:76:d9:f3:44:03:11:
                    75:65:8d:06:70:93:d0:8f:34:e4:e2:6c:51:0d:82:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:50:53:e6:f4:12:0c:e5:a8:9b:73:49:d3:d9:02:f3:
        24:9a:f1:40:ae:c2:c6:27:0b:b6:9d:a4:64:7d:8d:c1:
        cd:32:45:04:26:06:fc:9d:63:d4:77:f8:3b:2b:96:3f:
        18:e0:cb:fc:a1:bd:61:e5:ac:cc:80:6d:a9:1a:f5:86:
        d4:b0:2c:f3:35:4a:70:84:8b:a1:7d:0f:ee:97:26:64:
        e6:1d:db:2c:a7:ec:cc:a8:86:e7:ea:94:13:d6:5f:bf:
        cf:22:88:61:5e:7c:f3:14:e7:8f:99:58:6f:83:0a:f1:
        47:0f:aa:25:b5:03:18:39:b8:e9:76:2e:6b:c8:44:08:
        34:6b:19:75:52:f5:89:ff:98:ad:95:29:7e:42:46:8c:
        4b:0a:13:69:9e:59:90:e8:dc:07:6b:9d:e5:4c:66:e8:
        6a:88:51:a5:21:60:18:2a:26:a0:83:78:c8:79:4b:4e:
        04:f9:5a:24:93:0a:ca:d9:a8:e7:4c:82:1c:72:87:22:
        09:96:6d:6a:bb:95:21:71:6c:4c:c3:73:54:ff:d6:ef:
        04:8d:76:ae:cb:06:f2:32:7e:1c:b0:fd:8f:6c:50:0d:
        02:e9:1a:49:08:93:25:e3:61:01:9b:e9:6c:82:fc:64:
        b9:ca:df:c5:c2:61:e4:7a:50:4d:17:36:60:b0:6e:ab
    Fingerprint (SHA-256):
        8C:AB:B9:22:3E:76:60:C8:37:18:E0:D6:04:5B:41:BE:89:7B:70:65:90:29:42:E6:C2:8E:58:82:18:D9:13:0A
    Fingerprint (SHA1):
        3F:12:D4:4B:DF:5B:3D:2B:DC:75:61:AC:25:65:24:B1:EE:35:91:60
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14117: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175877 (0x3cdde845)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:19:34 2017
            Not After : Fri Oct 21 18:19:34 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:c0:ae:db:a6:f6:5e:77:bf:fc:38:fd:73:d4:6a:0e:
                    f7:9b:ad:5e:6e:48:b3:95:3d:23:16:32:ed:b5:0a:de:
                    4d:fc:55:bf:c6:b7:ef:bf:12:74:62:c9:ca:b9:a9:41:
                    23:94:ec:45:d9:1b:93:78:49:ad:b8:32:cd:9f:65:90:
                    83:1d:c9:a3:94:43:4f:d2:6b:0b:46:68:69:f0:e5:aa:
                    65:4b:83:35:fd:27:3a:50:b4:05:3c:d6:32:ce:54:1b:
                    ef:4f:cb:88:f1:a4:41:9f:47:01:be:c6:f2:3c:4d:bf:
                    9f:92:a6:47:66:1b:82:e3:00:a1:62:bd:e6:2d:8b:30:
                    18:ba:47:2d:65:31:88:f1:36:32:c5:1b:d2:a2:a1:76:
                    17:a9:5f:6e:51:d8:82:03:de:8f:5c:56:18:da:41:57:
                    17:d6:d1:91:bb:43:ed:35:fe:dc:37:eb:a0:41:21:5b:
                    68:0d:92:f4:53:5a:3a:25:99:2d:47:a6:1a:8b:0b:71:
                    33:18:91:b2:99:7c:aa:29:4a:6d:a7:0a:a2:31:7a:16:
                    19:31:7c:88:c4:14:2a:27:3a:f2:ce:10:b6:61:bb:78:
                    00:fb:7a:ba:87:87:6b:63:b2:ea:57:37:8b:10:ec:0d:
                    ab:ac:d7:3b:bf:5d:1a:3b:98:e4:e8:11:b0:6e:64:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        32:b7:a9:0c:78:11:9f:1f:cb:3a:f6:0e:2e:79:43:f4:
        fd:ea:81:e8:f9:74:c7:68:55:e9:5a:ae:e4:a4:8a:91:
        f7:eb:5a:b5:9a:31:37:83:5a:46:20:b6:ce:13:43:d8:
        53:0a:02:14:ef:6d:8e:29:2e:04:04:a6:21:6f:0a:02:
        d0:36:82:ee:7d:c5:be:7d:d0:f0:bb:13:f7:50:36:91:
        24:ff:67:30:11:e3:ce:89:e4:f7:f2:dd:dc:9d:b5:f5:
        bd:dc:b9:07:25:40:c9:2f:df:74:07:7a:a8:84:1b:f9:
        a7:aa:9d:77:67:10:76:c3:47:51:e5:8b:99:4f:81:50:
        6e:fa:1c:e6:98:ce:54:f7:39:15:14:95:11:1b:24:11:
        69:da:8a:e4:70:f4:25:72:cb:79:37:11:fa:50:1f:04:
        5c:a6:6e:61:e7:5a:1b:7d:0b:e3:27:12:c7:1b:6a:e2:
        7c:9d:de:4a:50:16:01:08:29:00:ad:a2:16:55:0a:50:
        34:ea:2f:db:62:e9:d2:8b:a9:95:bc:53:80:88:e4:13:
        52:f8:0c:c1:59:8c:0e:3a:63:08:76:05:36:b5:8b:55:
        63:ab:b7:85:48:fe:1e:86:cf:0d:ea:8f:2a:65:5d:96:
        0a:04:a8:c6:b5:3f:ac:6c:6a:63:b5:14:40:fb:38:3a
    Fingerprint (SHA-256):
        23:B1:23:C7:DE:BC:E5:E3:68:6E:4B:86:EC:08:98:0E:E7:F9:47:97:79:0F:35:61:73:83:6A:35:8A:98:E7:78
    Fingerprint (SHA1):
        C1:D2:B2:70:CC:71:C5:55:B5:0F:05:B7:7E:F4:3E:CF:30:64:61:32
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14118: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #14119: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175877 (0x3cdde845)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:19:34 2017
            Not After : Fri Oct 21 18:19:34 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:c0:ae:db:a6:f6:5e:77:bf:fc:38:fd:73:d4:6a:0e:
                    f7:9b:ad:5e:6e:48:b3:95:3d:23:16:32:ed:b5:0a:de:
                    4d:fc:55:bf:c6:b7:ef:bf:12:74:62:c9:ca:b9:a9:41:
                    23:94:ec:45:d9:1b:93:78:49:ad:b8:32:cd:9f:65:90:
                    83:1d:c9:a3:94:43:4f:d2:6b:0b:46:68:69:f0:e5:aa:
                    65:4b:83:35:fd:27:3a:50:b4:05:3c:d6:32:ce:54:1b:
                    ef:4f:cb:88:f1:a4:41:9f:47:01:be:c6:f2:3c:4d:bf:
                    9f:92:a6:47:66:1b:82:e3:00:a1:62:bd:e6:2d:8b:30:
                    18:ba:47:2d:65:31:88:f1:36:32:c5:1b:d2:a2:a1:76:
                    17:a9:5f:6e:51:d8:82:03:de:8f:5c:56:18:da:41:57:
                    17:d6:d1:91:bb:43:ed:35:fe:dc:37:eb:a0:41:21:5b:
                    68:0d:92:f4:53:5a:3a:25:99:2d:47:a6:1a:8b:0b:71:
                    33:18:91:b2:99:7c:aa:29:4a:6d:a7:0a:a2:31:7a:16:
                    19:31:7c:88:c4:14:2a:27:3a:f2:ce:10:b6:61:bb:78:
                    00:fb:7a:ba:87:87:6b:63:b2:ea:57:37:8b:10:ec:0d:
                    ab:ac:d7:3b:bf:5d:1a:3b:98:e4:e8:11:b0:6e:64:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        32:b7:a9:0c:78:11:9f:1f:cb:3a:f6:0e:2e:79:43:f4:
        fd:ea:81:e8:f9:74:c7:68:55:e9:5a:ae:e4:a4:8a:91:
        f7:eb:5a:b5:9a:31:37:83:5a:46:20:b6:ce:13:43:d8:
        53:0a:02:14:ef:6d:8e:29:2e:04:04:a6:21:6f:0a:02:
        d0:36:82:ee:7d:c5:be:7d:d0:f0:bb:13:f7:50:36:91:
        24:ff:67:30:11:e3:ce:89:e4:f7:f2:dd:dc:9d:b5:f5:
        bd:dc:b9:07:25:40:c9:2f:df:74:07:7a:a8:84:1b:f9:
        a7:aa:9d:77:67:10:76:c3:47:51:e5:8b:99:4f:81:50:
        6e:fa:1c:e6:98:ce:54:f7:39:15:14:95:11:1b:24:11:
        69:da:8a:e4:70:f4:25:72:cb:79:37:11:fa:50:1f:04:
        5c:a6:6e:61:e7:5a:1b:7d:0b:e3:27:12:c7:1b:6a:e2:
        7c:9d:de:4a:50:16:01:08:29:00:ad:a2:16:55:0a:50:
        34:ea:2f:db:62:e9:d2:8b:a9:95:bc:53:80:88:e4:13:
        52:f8:0c:c1:59:8c:0e:3a:63:08:76:05:36:b5:8b:55:
        63:ab:b7:85:48:fe:1e:86:cf:0d:ea:8f:2a:65:5d:96:
        0a:04:a8:c6:b5:3f:ac:6c:6a:63:b5:14:40:fb:38:3a
    Fingerprint (SHA-256):
        23:B1:23:C7:DE:BC:E5:E3:68:6E:4B:86:EC:08:98:0E:E7:F9:47:97:79:0F:35:61:73:83:6A:35:8A:98:E7:78
    Fingerprint (SHA1):
        C1:D2:B2:70:CC:71:C5:55:B5:0F:05:B7:7E:F4:3E:CF:30:64:61:32
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14120: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175879 (0x3cdde847)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 18:19:47 2017
            Not After : Fri Oct 21 18:19:47 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:5b:3f:e7:2a:29:2f:0b:14:99:a4:6f:c8:ee:bd:12:
                    2e:39:bd:42:67:dc:72:6c:2b:e4:dd:e2:5e:7b:fc:4d:
                    af:61:ea:75:32:a2:e3:90:a9:91:f7:b1:34:7b:e0:1b:
                    db:01:a2:c9:ab:2b:c1:83:95:82:ae:cf:cd:0c:17:9d:
                    6f:c2:02:3c:da:1b:0b:13:25:41:6c:8c:1a:f4:55:f7:
                    13:dd:76:42:a0:53:2c:0b:59:1e:92:75:0f:91:be:17:
                    4b:a6:e4:93:b0:27:67:c5:69:66:d0:ce:b6:9f:c6:ea:
                    00:ca:d4:37:be:b0:08:1a:23:23:c6:8e:e1:eb:c7:bd:
                    7a:69:07:f0:b9:f4:a7:e3:44:68:1c:3a:02:28:ab:41:
                    ee:3d:4d:f9:50:6c:07:b2:d3:2f:73:84:cd:64:20:1b:
                    f9:a9:08:07:61:84:9b:ed:e9:26:8e:fd:7b:c4:5d:59:
                    23:cb:91:0f:78:7f:2b:f3:cf:05:0e:81:bc:2a:7d:09:
                    7b:4a:bc:c3:77:95:fd:47:e1:fd:d4:40:fd:0a:36:e0:
                    ea:ee:68:91:d1:b1:f6:d5:e2:92:8e:55:94:97:f8:43:
                    09:17:39:9e:1f:99:1e:21:c7:49:76:d9:f3:44:03:11:
                    75:65:8d:06:70:93:d0:8f:34:e4:e2:6c:51:0d:82:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:50:53:e6:f4:12:0c:e5:a8:9b:73:49:d3:d9:02:f3:
        24:9a:f1:40:ae:c2:c6:27:0b:b6:9d:a4:64:7d:8d:c1:
        cd:32:45:04:26:06:fc:9d:63:d4:77:f8:3b:2b:96:3f:
        18:e0:cb:fc:a1:bd:61:e5:ac:cc:80:6d:a9:1a:f5:86:
        d4:b0:2c:f3:35:4a:70:84:8b:a1:7d:0f:ee:97:26:64:
        e6:1d:db:2c:a7:ec:cc:a8:86:e7:ea:94:13:d6:5f:bf:
        cf:22:88:61:5e:7c:f3:14:e7:8f:99:58:6f:83:0a:f1:
        47:0f:aa:25:b5:03:18:39:b8:e9:76:2e:6b:c8:44:08:
        34:6b:19:75:52:f5:89:ff:98:ad:95:29:7e:42:46:8c:
        4b:0a:13:69:9e:59:90:e8:dc:07:6b:9d:e5:4c:66:e8:
        6a:88:51:a5:21:60:18:2a:26:a0:83:78:c8:79:4b:4e:
        04:f9:5a:24:93:0a:ca:d9:a8:e7:4c:82:1c:72:87:22:
        09:96:6d:6a:bb:95:21:71:6c:4c:c3:73:54:ff:d6:ef:
        04:8d:76:ae:cb:06:f2:32:7e:1c:b0:fd:8f:6c:50:0d:
        02:e9:1a:49:08:93:25:e3:61:01:9b:e9:6c:82:fc:64:
        b9:ca:df:c5:c2:61:e4:7a:50:4d:17:36:60:b0:6e:ab
    Fingerprint (SHA-256):
        8C:AB:B9:22:3E:76:60:C8:37:18:E0:D6:04:5B:41:BE:89:7B:70:65:90:29:42:E6:C2:8E:58:82:18:D9:13:0A
    Fingerprint (SHA1):
        3F:12:D4:4B:DF:5B:3D:2B:DC:75:61:AC:25:65:24:B1:EE:35:91:60
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14121: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #14122: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #14123: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #14124: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175877 (0x3cdde845)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:19:34 2017
            Not After : Fri Oct 21 18:19:34 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:c0:ae:db:a6:f6:5e:77:bf:fc:38:fd:73:d4:6a:0e:
                    f7:9b:ad:5e:6e:48:b3:95:3d:23:16:32:ed:b5:0a:de:
                    4d:fc:55:bf:c6:b7:ef:bf:12:74:62:c9:ca:b9:a9:41:
                    23:94:ec:45:d9:1b:93:78:49:ad:b8:32:cd:9f:65:90:
                    83:1d:c9:a3:94:43:4f:d2:6b:0b:46:68:69:f0:e5:aa:
                    65:4b:83:35:fd:27:3a:50:b4:05:3c:d6:32:ce:54:1b:
                    ef:4f:cb:88:f1:a4:41:9f:47:01:be:c6:f2:3c:4d:bf:
                    9f:92:a6:47:66:1b:82:e3:00:a1:62:bd:e6:2d:8b:30:
                    18:ba:47:2d:65:31:88:f1:36:32:c5:1b:d2:a2:a1:76:
                    17:a9:5f:6e:51:d8:82:03:de:8f:5c:56:18:da:41:57:
                    17:d6:d1:91:bb:43:ed:35:fe:dc:37:eb:a0:41:21:5b:
                    68:0d:92:f4:53:5a:3a:25:99:2d:47:a6:1a:8b:0b:71:
                    33:18:91:b2:99:7c:aa:29:4a:6d:a7:0a:a2:31:7a:16:
                    19:31:7c:88:c4:14:2a:27:3a:f2:ce:10:b6:61:bb:78:
                    00:fb:7a:ba:87:87:6b:63:b2:ea:57:37:8b:10:ec:0d:
                    ab:ac:d7:3b:bf:5d:1a:3b:98:e4:e8:11:b0:6e:64:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        32:b7:a9:0c:78:11:9f:1f:cb:3a:f6:0e:2e:79:43:f4:
        fd:ea:81:e8:f9:74:c7:68:55:e9:5a:ae:e4:a4:8a:91:
        f7:eb:5a:b5:9a:31:37:83:5a:46:20:b6:ce:13:43:d8:
        53:0a:02:14:ef:6d:8e:29:2e:04:04:a6:21:6f:0a:02:
        d0:36:82:ee:7d:c5:be:7d:d0:f0:bb:13:f7:50:36:91:
        24:ff:67:30:11:e3:ce:89:e4:f7:f2:dd:dc:9d:b5:f5:
        bd:dc:b9:07:25:40:c9:2f:df:74:07:7a:a8:84:1b:f9:
        a7:aa:9d:77:67:10:76:c3:47:51:e5:8b:99:4f:81:50:
        6e:fa:1c:e6:98:ce:54:f7:39:15:14:95:11:1b:24:11:
        69:da:8a:e4:70:f4:25:72:cb:79:37:11:fa:50:1f:04:
        5c:a6:6e:61:e7:5a:1b:7d:0b:e3:27:12:c7:1b:6a:e2:
        7c:9d:de:4a:50:16:01:08:29:00:ad:a2:16:55:0a:50:
        34:ea:2f:db:62:e9:d2:8b:a9:95:bc:53:80:88:e4:13:
        52:f8:0c:c1:59:8c:0e:3a:63:08:76:05:36:b5:8b:55:
        63:ab:b7:85:48:fe:1e:86:cf:0d:ea:8f:2a:65:5d:96:
        0a:04:a8:c6:b5:3f:ac:6c:6a:63:b5:14:40:fb:38:3a
    Fingerprint (SHA-256):
        23:B1:23:C7:DE:BC:E5:E3:68:6E:4B:86:EC:08:98:0E:E7:F9:47:97:79:0F:35:61:73:83:6A:35:8A:98:E7:78
    Fingerprint (SHA1):
        C1:D2:B2:70:CC:71:C5:55:B5:0F:05:B7:7E:F4:3E:CF:30:64:61:32
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14125: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175881 (0x3cdde849)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Sat Oct 21 18:20:00 2017
            Not After : Fri Oct 21 18:20:00 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:af:94:22:ce:46:74:dd:b3:d8:0a:87:22:1d:73:c6:
                    73:e3:1f:b7:03:2f:2d:2f:8c:e1:c3:b1:be:2e:00:68:
                    11:27:7b:db:ca:91:04:f3:42:b9:73:74:da:12:c2:79:
                    50:4a:78:6b:15:16:55:7d:9d:1a:21:2a:39:4b:d7:a7:
                    e5:79:f8:97:13:03:27:a1:cc:aa:5c:5c:d6:57:50:fb:
                    c5:bd:f6:12:14:ef:55:1a:b1:14:38:a5:34:69:45:75:
                    0c:f7:97:e4:c6:0c:6e:81:86:83:ab:3f:58:59:e4:b5:
                    9f:3c:e4:64:db:c8:8c:0b:d1:43:9d:e7:52:d4:f9:ce:
                    ee:34:ba:60:73:9d:6e:9c:f8:f4:77:25:1e:2b:a3:e8:
                    88:95:0a:84:83:4e:59:37:49:6b:9d:f8:54:82:5b:91:
                    bf:99:b6:04:72:24:6a:17:a0:17:4f:e0:99:a8:11:5c:
                    ad:c0:c7:a9:ec:a3:b7:a0:20:ce:9f:56:12:92:21:21:
                    71:2a:96:d7:fe:61:db:7d:0d:23:c2:af:02:33:2f:e5:
                    81:68:c7:27:ba:b1:30:8d:35:aa:6a:d3:e7:1c:ea:e4:
                    cb:f5:78:74:a6:f4:9e:3a:dc:19:f9:82:b0:a7:3c:45:
                    5b:0f:00:16:50:4f:7e:d8:b6:af:5b:c9:e8:ef:cb:bd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:d3:eb:78:80:93:b3:5f:62:9c:ce:e4:94:88:59:c3:
        aa:e5:c4:87:76:95:71:ae:1b:43:e3:a8:51:81:4c:a5:
        19:b4:a5:59:8b:ad:bc:4a:74:51:90:f7:d1:49:ae:47:
        d9:ac:d8:01:09:6c:42:1b:c6:28:03:f0:b0:2c:7e:5f:
        99:46:71:8b:01:26:43:4a:cf:e4:78:be:fd:0d:dd:bd:
        30:f6:76:c2:d3:df:38:4f:c3:88:a5:95:09:34:a0:6e:
        58:41:f4:42:70:e6:20:b3:f7:44:21:63:e5:f2:34:43:
        cc:0e:66:35:3b:0b:77:a1:65:5c:59:3b:96:2d:3f:ab:
        0c:2d:90:55:ab:00:8e:db:92:0c:01:98:ba:02:1b:6a:
        60:13:c4:7b:ab:d9:55:80:b8:b1:c7:ad:10:3c:4c:e6:
        29:50:79:78:fc:15:aa:d1:9e:bc:56:74:95:68:6f:4b:
        25:bb:01:a7:58:91:e2:b9:7d:09:dd:d0:1f:45:a4:c5:
        a8:d7:c2:1d:1e:ef:7e:ec:95:65:82:45:65:b0:a1:8a:
        3a:4a:e4:3f:9a:02:ce:44:b2:25:5f:ce:df:db:b2:06:
        62:eb:b8:55:a0:eb:6e:58:a3:ce:b5:9f:e3:6b:af:af:
        97:48:cb:14:95:7f:e9:4e:bf:b8:60:55:b8:9d:f0:53
    Fingerprint (SHA-256):
        7B:82:2E:B6:C7:DC:0C:F7:24:19:33:E5:6F:76:E3:53:89:BE:53:96:5F:DF:4D:7E:C0:EE:D3:A8:EE:B7:24:95
    Fingerprint (SHA1):
        85:E2:BD:86:82:B2:1A:66:E9:24:50:86:0C:0D:C6:19:0E:49:D0:2D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #14126: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175877 (0x3cdde845)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:19:34 2017
            Not After : Fri Oct 21 18:19:34 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:c0:ae:db:a6:f6:5e:77:bf:fc:38:fd:73:d4:6a:0e:
                    f7:9b:ad:5e:6e:48:b3:95:3d:23:16:32:ed:b5:0a:de:
                    4d:fc:55:bf:c6:b7:ef:bf:12:74:62:c9:ca:b9:a9:41:
                    23:94:ec:45:d9:1b:93:78:49:ad:b8:32:cd:9f:65:90:
                    83:1d:c9:a3:94:43:4f:d2:6b:0b:46:68:69:f0:e5:aa:
                    65:4b:83:35:fd:27:3a:50:b4:05:3c:d6:32:ce:54:1b:
                    ef:4f:cb:88:f1:a4:41:9f:47:01:be:c6:f2:3c:4d:bf:
                    9f:92:a6:47:66:1b:82:e3:00:a1:62:bd:e6:2d:8b:30:
                    18:ba:47:2d:65:31:88:f1:36:32:c5:1b:d2:a2:a1:76:
                    17:a9:5f:6e:51:d8:82:03:de:8f:5c:56:18:da:41:57:
                    17:d6:d1:91:bb:43:ed:35:fe:dc:37:eb:a0:41:21:5b:
                    68:0d:92:f4:53:5a:3a:25:99:2d:47:a6:1a:8b:0b:71:
                    33:18:91:b2:99:7c:aa:29:4a:6d:a7:0a:a2:31:7a:16:
                    19:31:7c:88:c4:14:2a:27:3a:f2:ce:10:b6:61:bb:78:
                    00:fb:7a:ba:87:87:6b:63:b2:ea:57:37:8b:10:ec:0d:
                    ab:ac:d7:3b:bf:5d:1a:3b:98:e4:e8:11:b0:6e:64:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        32:b7:a9:0c:78:11:9f:1f:cb:3a:f6:0e:2e:79:43:f4:
        fd:ea:81:e8:f9:74:c7:68:55:e9:5a:ae:e4:a4:8a:91:
        f7:eb:5a:b5:9a:31:37:83:5a:46:20:b6:ce:13:43:d8:
        53:0a:02:14:ef:6d:8e:29:2e:04:04:a6:21:6f:0a:02:
        d0:36:82:ee:7d:c5:be:7d:d0:f0:bb:13:f7:50:36:91:
        24:ff:67:30:11:e3:ce:89:e4:f7:f2:dd:dc:9d:b5:f5:
        bd:dc:b9:07:25:40:c9:2f:df:74:07:7a:a8:84:1b:f9:
        a7:aa:9d:77:67:10:76:c3:47:51:e5:8b:99:4f:81:50:
        6e:fa:1c:e6:98:ce:54:f7:39:15:14:95:11:1b:24:11:
        69:da:8a:e4:70:f4:25:72:cb:79:37:11:fa:50:1f:04:
        5c:a6:6e:61:e7:5a:1b:7d:0b:e3:27:12:c7:1b:6a:e2:
        7c:9d:de:4a:50:16:01:08:29:00:ad:a2:16:55:0a:50:
        34:ea:2f:db:62:e9:d2:8b:a9:95:bc:53:80:88:e4:13:
        52:f8:0c:c1:59:8c:0e:3a:63:08:76:05:36:b5:8b:55:
        63:ab:b7:85:48:fe:1e:86:cf:0d:ea:8f:2a:65:5d:96:
        0a:04:a8:c6:b5:3f:ac:6c:6a:63:b5:14:40:fb:38:3a
    Fingerprint (SHA-256):
        23:B1:23:C7:DE:BC:E5:E3:68:6E:4B:86:EC:08:98:0E:E7:F9:47:97:79:0F:35:61:73:83:6A:35:8A:98:E7:78
    Fingerprint (SHA1):
        C1:D2:B2:70:CC:71:C5:55:B5:0F:05:B7:7E:F4:3E:CF:30:64:61:32
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14127: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #14128: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #14129: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #14130: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #14131: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #14132: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175882 (0x3cdde84a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Sat Oct 21 18:20:07 2017
            Not After : Fri Oct 21 18:20:07 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:68:85:4d:f3:f4:90:73:f9:c5:38:ac:e9:ba:2c:79:
                    62:65:50:a2:02:97:56:f6:23:3b:e4:bb:c1:31:6b:c0:
                    f4:97:fb:a1:7c:d4:c5:1b:c2:a2:6e:14:98:71:5a:b2:
                    80:a1:14:e4:8d:e3:0d:d2:7e:f2:c6:ac:8a:a0:27:de:
                    2a:af:c5:9e:ff:53:1f:44:43:16:4b:f9:d4:a1:12:e6:
                    85:63:b8:fc:e1:3c:1d:54:3f:7e:7b:95:73:90:91:ad:
                    1b:44:9b:bd:34:77:1c:e1:af:18:65:f8:be:28:c7:c0:
                    75:45:f0:9d:f5:12:e5:27:e8:37:79:e9:ec:1f:08:f4:
                    9c:4a:24:81:d1:72:17:40:ec:17:b1:c7:f1:72:71:0c:
                    bc:4a:35:72:07:85:fb:80:ac:ea:da:3a:c6:c3:69:c7:
                    b5:94:1f:15:e0:63:c1:db:53:b1:b0:26:c3:ed:05:c2:
                    c3:73:f7:40:d1:77:bb:56:d5:83:bf:0b:22:43:dd:d2:
                    8d:39:30:94:e6:87:68:bd:ad:4a:97:af:3e:eb:00:30:
                    29:02:2e:f4:d5:1c:f7:2c:a9:08:af:27:77:12:04:98:
                    96:4e:33:76:8d:15:5b:34:94:86:e8:7d:6c:d1:c0:95:
                    76:6d:c4:25:2d:8c:12:c6:4c:4d:31:9a:0b:9f:0d:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4d:f2:8c:e0:a1:4f:4b:61:76:cb:83:3c:e8:e2:51:aa:
        e4:a6:af:e3:a7:fe:ee:1d:7b:c0:cb:1e:41:72:e3:2b:
        38:5c:79:fc:3c:f2:52:e0:46:02:f8:0a:bd:87:7e:2a:
        de:9e:b0:34:f9:66:09:e0:f4:32:13:07:2f:bc:4b:ed:
        df:28:94:a3:5f:87:e9:d6:c4:39:73:15:fd:2f:b2:ca:
        77:99:ab:79:35:3e:6f:f9:52:d9:6e:25:61:2f:d8:33:
        9d:12:6d:15:9e:d1:9b:a8:ea:c2:e6:a8:51:66:d2:ac:
        a1:e4:47:c3:4d:e3:59:a7:b7:53:6a:0c:6c:5b:ec:85:
        20:5f:7c:56:0f:1d:15:3d:cb:e6:a5:50:48:0a:5d:33:
        01:a7:19:58:98:d9:38:fa:62:60:27:98:c9:07:45:81:
        67:12:0e:ba:9e:11:cb:c3:8a:59:02:9d:e4:f7:3e:fc:
        20:26:74:58:01:e0:14:36:50:8d:ae:09:81:d8:a0:df:
        24:39:68:2b:1d:34:21:47:56:6f:c7:76:f6:f2:b2:11:
        dd:67:65:b4:d8:08:5f:51:87:42:17:8e:2f:3f:23:96:
        cd:8d:50:95:e2:59:da:5c:ad:1c:14:c4:23:60:be:36:
        75:47:b6:ef:62:22:db:08:23:21:cf:e7:d3:23:9c:84
    Fingerprint (SHA-256):
        28:60:C7:C7:CA:69:15:B6:12:F5:3A:C2:F3:DB:63:9C:36:03:A7:74:B8:D3:2D:56:02:BC:2F:AA:80:E0:84:BC
    Fingerprint (SHA1):
        95:F0:D1:08:0A:97:A2:61:AF:3B:9D:9D:E7:93:20:3D:5F:57:52:40
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14133: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #14134: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #14135: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #14136: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #14137: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14138: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14139: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14140: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14141: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14142: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14143: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14144: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14145: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14146: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14147: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14148: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14149: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14150: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14151: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14152: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14153: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #14154: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14155: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #14156: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 19691 at Sat Oct 21 18:21:04 UTC 2017
kill -USR1 19691
httpserv: normal termination
httpserv -b -p 9193 2>/dev/null;
httpserv with PID 19691 killed at Sat Oct 21 18:21:05 UTC 2017
httpserv starting at Sat Oct 21 18:21:05 UTC 2017
httpserv -D -p 9193  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O get-unknown -d /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.3868  &
trying to connect to httpserv at Sat Oct 21 18:21:05 UTC 2017
tstclnt -p 9193 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9193 (address=127.0.0.1)
tstclnt: exiting with return code 0
kill -0 3072 >/dev/null 2>/dev/null
httpserv with PID 3072 found at Sat Oct 21 18:21:05 UTC 2017
httpserv with PID 3072 started at Sat Oct 21 18:21:05 UTC 2017
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #14157: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175884 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14158: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #14159: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #14160: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175885 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14161: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #14162: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #14163: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14164: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 1021175886 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14165: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14166: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 1021175887 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14167: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14168: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #14169: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #14170: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14171: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 1021175888   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14172: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14173: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14174: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #14175: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #14176: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175885 (0x3cdde84d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 18:21:16 2017
            Not After : Fri Oct 21 18:21:16 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:98:15:4f:b5:9c:aa:c1:ff:70:1d:4a:16:24:71:1f:
                    5b:48:85:fb:75:01:31:20:2b:02:c4:b7:ce:36:4d:e7:
                    89:ce:f9:3b:ca:d1:9a:50:39:2d:3f:cf:0a:53:b6:0f:
                    37:1b:5c:27:14:80:2f:25:b4:4f:6d:a3:a0:e4:c7:f5:
                    c9:c4:e5:dc:d2:ce:67:12:7f:46:a0:d5:67:c9:02:18:
                    dc:05:ee:1d:fb:aa:45:b9:25:91:35:49:20:54:5d:3d:
                    b9:86:22:d3:06:85:6f:d0:83:4c:81:ed:73:ca:68:b1:
                    4e:2d:6c:39:52:46:4a:5a:8c:ff:07:f0:07:1f:98:fb:
                    76:0a:86:9e:a1:de:28:76:60:6d:50:e9:5b:6d:2b:33:
                    a5:c1:e9:66:bc:e7:c2:39:6f:d2:18:ec:d8:2b:5f:f2:
                    bb:a1:21:34:98:0c:ae:52:2b:05:0e:00:2d:b0:52:2a:
                    40:16:ac:ba:42:2f:98:d8:3c:71:cc:79:e3:47:c3:d1:
                    5b:8d:46:08:f3:c6:7c:f7:ad:f8:42:7a:2d:45:02:af:
                    41:b4:04:e3:0a:e7:d4:4a:bc:bb:b3:ff:05:71:fa:26:
                    5a:0a:21:f8:dc:06:b0:9c:64:cc:d4:a0:c1:65:34:61:
                    11:6c:a4:96:6b:5f:b3:41:36:f3:23:dd:74:9a:f7:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:bd:67:2c:fa:d1:3d:6e:74:75:74:fd:c6:69:f0:7d:
        99:97:3a:23:85:2b:df:dd:c9:31:84:cf:f3:7e:f2:58:
        c2:fb:75:82:f9:8d:29:d7:92:25:c7:f3:4c:56:e2:75:
        40:6b:93:33:8f:9e:87:66:db:13:ee:e4:a3:ca:f3:f5:
        e4:54:30:ea:bb:ff:ba:6e:ec:77:80:73:bd:c1:28:22:
        f9:3b:47:85:ec:4b:af:c7:c7:b9:78:56:e9:a3:ab:d8:
        f3:94:36:36:01:c8:8e:84:b8:4f:23:b7:77:d5:d9:7e:
        4e:7c:19:fd:a6:d5:30:de:90:62:1e:59:eb:6f:78:77:
        42:1b:57:b7:ea:07:28:f3:d4:f1:e0:76:99:30:cb:1c:
        cf:b4:5b:55:cc:f7:75:49:e2:2e:6c:06:f3:80:c2:32:
        05:8a:e4:47:8f:23:17:37:41:0b:7a:a9:e5:bf:a0:19:
        8d:34:89:46:d3:d8:19:d0:74:61:f0:c9:38:21:39:09:
        39:b5:7d:b7:fe:26:eb:58:b3:c8:e3:08:83:11:c4:ac:
        1e:b6:a4:c8:f8:88:84:d7:f4:b9:cb:ba:b0:7d:cb:c8:
        3f:5c:b3:0f:73:ae:db:42:fb:1a:b2:c7:77:25:2b:3d:
        ef:40:65:b8:9b:07:f2:f6:90:5e:17:be:ea:9c:f0:82
    Fingerprint (SHA-256):
        CD:C3:82:D6:7F:CC:75:76:2A:95:D9:6B:58:3D:58:BA:08:76:F7:1A:7C:E1:A3:16:70:B8:D8:FF:8F:B7:51:D8
    Fingerprint (SHA1):
        27:1E:CC:12:00:40:02:DB:F6:C9:67:D6:33:05:0B:A3:1E:E8:24:76
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14177: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175884 (0x3cdde84c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 18:21:10 2017
            Not After : Fri Oct 21 18:21:10 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:81:46:c5:d9:f8:ef:4d:9a:b3:65:34:7f:75:6e:d4:
                    ad:4a:27:71:2d:85:17:1d:16:72:fc:13:01:49:ad:0f:
                    f9:7b:54:bf:9f:8c:c8:b3:fa:0e:ee:2a:cd:0c:41:af:
                    43:ea:0e:5e:f5:1c:b7:ce:2c:1b:a6:1d:5d:8c:d6:4c:
                    a2:89:e3:52:0d:20:7a:99:7d:bc:73:e0:25:8a:15:f4:
                    37:b0:e6:d4:2b:50:61:c2:a8:b3:01:e7:e4:0e:9b:60:
                    db:9b:d8:a2:dd:47:28:00:58:a4:df:51:79:6e:44:08:
                    30:86:27:9d:e3:dc:bc:d6:39:84:3c:23:71:d0:ee:fe:
                    f2:19:2b:7e:76:b2:df:b3:bc:07:61:f4:58:42:ff:71:
                    a8:05:86:82:72:bb:40:51:25:83:89:9e:f5:8f:e7:17:
                    59:0d:6a:9e:9b:3f:86:c8:8b:a8:91:71:7a:d5:89:67:
                    12:08:12:30:3b:56:af:cc:f8:e0:d2:db:a6:0b:38:86:
                    f8:07:32:73:fa:35:5d:bf:8e:1e:62:07:c1:d1:06:fd:
                    a3:66:61:b8:fb:e5:c3:ca:22:17:fe:fa:27:90:b3:6e:
                    9b:e0:0e:0f:e8:a6:d6:dd:ba:cf:05:ca:ea:04:28:57:
                    83:a1:4c:4c:b9:e0:b3:ad:29:ed:a7:e2:f1:1d:34:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e9:12:8f:7f:e4:9e:f4:6c:74:a4:df:3e:c9:44:fa:ea:
        d7:78:28:ca:1f:95:9f:d3:f2:b0:ff:80:f4:d1:f7:16:
        22:91:04:62:4a:c2:f0:73:08:6c:51:e9:66:0a:cd:79:
        fc:a2:eb:ee:a2:65:b2:66:c9:96:ba:1c:98:b5:52:ae:
        ea:b7:01:94:ff:e9:df:8d:36:2a:37:d4:6c:64:5a:8a:
        d6:ff:23:cb:84:e2:fd:98:7b:24:f9:52:16:11:f5:5c:
        2c:5b:b0:83:17:12:6f:a0:cf:ef:90:ec:19:2d:23:42:
        f0:c6:36:37:22:45:c2:b6:6a:14:52:a3:43:75:4b:41:
        f5:f2:58:9c:c4:6f:27:a8:4a:ae:1f:c1:09:e1:88:ef:
        55:5a:22:4f:d6:a0:ee:38:77:fd:4a:35:63:4d:c0:1b:
        a6:51:b8:07:f5:5b:76:8b:4b:ef:55:b4:1e:7f:a0:7b:
        36:21:73:06:7e:e6:31:c7:7f:55:d2:33:45:79:14:32:
        34:b1:26:0d:9c:0d:30:6b:bb:9c:0c:d1:c4:44:6f:7c:
        5f:5e:80:ab:c2:b0:ae:24:a1:a4:0b:e7:17:ad:c6:63:
        da:79:44:2a:95:c0:27:1e:67:7c:a5:28:4c:01:a5:dd:
        6b:ef:dc:c7:85:51:3c:6e:76:2c:70:d0:62:be:de:b1
    Fingerprint (SHA-256):
        C7:F9:32:86:60:54:3D:96:4D:1F:FD:B4:C8:1F:4E:E7:91:4F:6D:DB:87:B2:33:36:67:8C:76:6A:C7:F2:9C:A1
    Fingerprint (SHA1):
        84:F2:EB:FC:0F:8C:2C:F1:EE:E6:DE:49:F8:2B:F7:99:CE:D2:68:A6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14178: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #14179: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #14180: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #14181: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175884 (0x3cdde84c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 18:21:10 2017
            Not After : Fri Oct 21 18:21:10 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:81:46:c5:d9:f8:ef:4d:9a:b3:65:34:7f:75:6e:d4:
                    ad:4a:27:71:2d:85:17:1d:16:72:fc:13:01:49:ad:0f:
                    f9:7b:54:bf:9f:8c:c8:b3:fa:0e:ee:2a:cd:0c:41:af:
                    43:ea:0e:5e:f5:1c:b7:ce:2c:1b:a6:1d:5d:8c:d6:4c:
                    a2:89:e3:52:0d:20:7a:99:7d:bc:73:e0:25:8a:15:f4:
                    37:b0:e6:d4:2b:50:61:c2:a8:b3:01:e7:e4:0e:9b:60:
                    db:9b:d8:a2:dd:47:28:00:58:a4:df:51:79:6e:44:08:
                    30:86:27:9d:e3:dc:bc:d6:39:84:3c:23:71:d0:ee:fe:
                    f2:19:2b:7e:76:b2:df:b3:bc:07:61:f4:58:42:ff:71:
                    a8:05:86:82:72:bb:40:51:25:83:89:9e:f5:8f:e7:17:
                    59:0d:6a:9e:9b:3f:86:c8:8b:a8:91:71:7a:d5:89:67:
                    12:08:12:30:3b:56:af:cc:f8:e0:d2:db:a6:0b:38:86:
                    f8:07:32:73:fa:35:5d:bf:8e:1e:62:07:c1:d1:06:fd:
                    a3:66:61:b8:fb:e5:c3:ca:22:17:fe:fa:27:90:b3:6e:
                    9b:e0:0e:0f:e8:a6:d6:dd:ba:cf:05:ca:ea:04:28:57:
                    83:a1:4c:4c:b9:e0:b3:ad:29:ed:a7:e2:f1:1d:34:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e9:12:8f:7f:e4:9e:f4:6c:74:a4:df:3e:c9:44:fa:ea:
        d7:78:28:ca:1f:95:9f:d3:f2:b0:ff:80:f4:d1:f7:16:
        22:91:04:62:4a:c2:f0:73:08:6c:51:e9:66:0a:cd:79:
        fc:a2:eb:ee:a2:65:b2:66:c9:96:ba:1c:98:b5:52:ae:
        ea:b7:01:94:ff:e9:df:8d:36:2a:37:d4:6c:64:5a:8a:
        d6:ff:23:cb:84:e2:fd:98:7b:24:f9:52:16:11:f5:5c:
        2c:5b:b0:83:17:12:6f:a0:cf:ef:90:ec:19:2d:23:42:
        f0:c6:36:37:22:45:c2:b6:6a:14:52:a3:43:75:4b:41:
        f5:f2:58:9c:c4:6f:27:a8:4a:ae:1f:c1:09:e1:88:ef:
        55:5a:22:4f:d6:a0:ee:38:77:fd:4a:35:63:4d:c0:1b:
        a6:51:b8:07:f5:5b:76:8b:4b:ef:55:b4:1e:7f:a0:7b:
        36:21:73:06:7e:e6:31:c7:7f:55:d2:33:45:79:14:32:
        34:b1:26:0d:9c:0d:30:6b:bb:9c:0c:d1:c4:44:6f:7c:
        5f:5e:80:ab:c2:b0:ae:24:a1:a4:0b:e7:17:ad:c6:63:
        da:79:44:2a:95:c0:27:1e:67:7c:a5:28:4c:01:a5:dd:
        6b:ef:dc:c7:85:51:3c:6e:76:2c:70:d0:62:be:de:b1
    Fingerprint (SHA-256):
        C7:F9:32:86:60:54:3D:96:4D:1F:FD:B4:C8:1F:4E:E7:91:4F:6D:DB:87:B2:33:36:67:8C:76:6A:C7:F2:9C:A1
    Fingerprint (SHA1):
        84:F2:EB:FC:0F:8C:2C:F1:EE:E6:DE:49:F8:2B:F7:99:CE:D2:68:A6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14182: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175885 (0x3cdde84d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 18:21:16 2017
            Not After : Fri Oct 21 18:21:16 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:98:15:4f:b5:9c:aa:c1:ff:70:1d:4a:16:24:71:1f:
                    5b:48:85:fb:75:01:31:20:2b:02:c4:b7:ce:36:4d:e7:
                    89:ce:f9:3b:ca:d1:9a:50:39:2d:3f:cf:0a:53:b6:0f:
                    37:1b:5c:27:14:80:2f:25:b4:4f:6d:a3:a0:e4:c7:f5:
                    c9:c4:e5:dc:d2:ce:67:12:7f:46:a0:d5:67:c9:02:18:
                    dc:05:ee:1d:fb:aa:45:b9:25:91:35:49:20:54:5d:3d:
                    b9:86:22:d3:06:85:6f:d0:83:4c:81:ed:73:ca:68:b1:
                    4e:2d:6c:39:52:46:4a:5a:8c:ff:07:f0:07:1f:98:fb:
                    76:0a:86:9e:a1:de:28:76:60:6d:50:e9:5b:6d:2b:33:
                    a5:c1:e9:66:bc:e7:c2:39:6f:d2:18:ec:d8:2b:5f:f2:
                    bb:a1:21:34:98:0c:ae:52:2b:05:0e:00:2d:b0:52:2a:
                    40:16:ac:ba:42:2f:98:d8:3c:71:cc:79:e3:47:c3:d1:
                    5b:8d:46:08:f3:c6:7c:f7:ad:f8:42:7a:2d:45:02:af:
                    41:b4:04:e3:0a:e7:d4:4a:bc:bb:b3:ff:05:71:fa:26:
                    5a:0a:21:f8:dc:06:b0:9c:64:cc:d4:a0:c1:65:34:61:
                    11:6c:a4:96:6b:5f:b3:41:36:f3:23:dd:74:9a:f7:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:bd:67:2c:fa:d1:3d:6e:74:75:74:fd:c6:69:f0:7d:
        99:97:3a:23:85:2b:df:dd:c9:31:84:cf:f3:7e:f2:58:
        c2:fb:75:82:f9:8d:29:d7:92:25:c7:f3:4c:56:e2:75:
        40:6b:93:33:8f:9e:87:66:db:13:ee:e4:a3:ca:f3:f5:
        e4:54:30:ea:bb:ff:ba:6e:ec:77:80:73:bd:c1:28:22:
        f9:3b:47:85:ec:4b:af:c7:c7:b9:78:56:e9:a3:ab:d8:
        f3:94:36:36:01:c8:8e:84:b8:4f:23:b7:77:d5:d9:7e:
        4e:7c:19:fd:a6:d5:30:de:90:62:1e:59:eb:6f:78:77:
        42:1b:57:b7:ea:07:28:f3:d4:f1:e0:76:99:30:cb:1c:
        cf:b4:5b:55:cc:f7:75:49:e2:2e:6c:06:f3:80:c2:32:
        05:8a:e4:47:8f:23:17:37:41:0b:7a:a9:e5:bf:a0:19:
        8d:34:89:46:d3:d8:19:d0:74:61:f0:c9:38:21:39:09:
        39:b5:7d:b7:fe:26:eb:58:b3:c8:e3:08:83:11:c4:ac:
        1e:b6:a4:c8:f8:88:84:d7:f4:b9:cb:ba:b0:7d:cb:c8:
        3f:5c:b3:0f:73:ae:db:42:fb:1a:b2:c7:77:25:2b:3d:
        ef:40:65:b8:9b:07:f2:f6:90:5e:17:be:ea:9c:f0:82
    Fingerprint (SHA-256):
        CD:C3:82:D6:7F:CC:75:76:2A:95:D9:6B:58:3D:58:BA:08:76:F7:1A:7C:E1:A3:16:70:B8:D8:FF:8F:B7:51:D8
    Fingerprint (SHA1):
        27:1E:CC:12:00:40:02:DB:F6:C9:67:D6:33:05:0B:A3:1E:E8:24:76
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14183: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #14184: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #14185: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #14186: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #14187: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #14188: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175885 (0x3cdde84d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 18:21:16 2017
            Not After : Fri Oct 21 18:21:16 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:98:15:4f:b5:9c:aa:c1:ff:70:1d:4a:16:24:71:1f:
                    5b:48:85:fb:75:01:31:20:2b:02:c4:b7:ce:36:4d:e7:
                    89:ce:f9:3b:ca:d1:9a:50:39:2d:3f:cf:0a:53:b6:0f:
                    37:1b:5c:27:14:80:2f:25:b4:4f:6d:a3:a0:e4:c7:f5:
                    c9:c4:e5:dc:d2:ce:67:12:7f:46:a0:d5:67:c9:02:18:
                    dc:05:ee:1d:fb:aa:45:b9:25:91:35:49:20:54:5d:3d:
                    b9:86:22:d3:06:85:6f:d0:83:4c:81:ed:73:ca:68:b1:
                    4e:2d:6c:39:52:46:4a:5a:8c:ff:07:f0:07:1f:98:fb:
                    76:0a:86:9e:a1:de:28:76:60:6d:50:e9:5b:6d:2b:33:
                    a5:c1:e9:66:bc:e7:c2:39:6f:d2:18:ec:d8:2b:5f:f2:
                    bb:a1:21:34:98:0c:ae:52:2b:05:0e:00:2d:b0:52:2a:
                    40:16:ac:ba:42:2f:98:d8:3c:71:cc:79:e3:47:c3:d1:
                    5b:8d:46:08:f3:c6:7c:f7:ad:f8:42:7a:2d:45:02:af:
                    41:b4:04:e3:0a:e7:d4:4a:bc:bb:b3:ff:05:71:fa:26:
                    5a:0a:21:f8:dc:06:b0:9c:64:cc:d4:a0:c1:65:34:61:
                    11:6c:a4:96:6b:5f:b3:41:36:f3:23:dd:74:9a:f7:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:bd:67:2c:fa:d1:3d:6e:74:75:74:fd:c6:69:f0:7d:
        99:97:3a:23:85:2b:df:dd:c9:31:84:cf:f3:7e:f2:58:
        c2:fb:75:82:f9:8d:29:d7:92:25:c7:f3:4c:56:e2:75:
        40:6b:93:33:8f:9e:87:66:db:13:ee:e4:a3:ca:f3:f5:
        e4:54:30:ea:bb:ff:ba:6e:ec:77:80:73:bd:c1:28:22:
        f9:3b:47:85:ec:4b:af:c7:c7:b9:78:56:e9:a3:ab:d8:
        f3:94:36:36:01:c8:8e:84:b8:4f:23:b7:77:d5:d9:7e:
        4e:7c:19:fd:a6:d5:30:de:90:62:1e:59:eb:6f:78:77:
        42:1b:57:b7:ea:07:28:f3:d4:f1:e0:76:99:30:cb:1c:
        cf:b4:5b:55:cc:f7:75:49:e2:2e:6c:06:f3:80:c2:32:
        05:8a:e4:47:8f:23:17:37:41:0b:7a:a9:e5:bf:a0:19:
        8d:34:89:46:d3:d8:19:d0:74:61:f0:c9:38:21:39:09:
        39:b5:7d:b7:fe:26:eb:58:b3:c8:e3:08:83:11:c4:ac:
        1e:b6:a4:c8:f8:88:84:d7:f4:b9:cb:ba:b0:7d:cb:c8:
        3f:5c:b3:0f:73:ae:db:42:fb:1a:b2:c7:77:25:2b:3d:
        ef:40:65:b8:9b:07:f2:f6:90:5e:17:be:ea:9c:f0:82
    Fingerprint (SHA-256):
        CD:C3:82:D6:7F:CC:75:76:2A:95:D9:6B:58:3D:58:BA:08:76:F7:1A:7C:E1:A3:16:70:B8:D8:FF:8F:B7:51:D8
    Fingerprint (SHA1):
        27:1E:CC:12:00:40:02:DB:F6:C9:67:D6:33:05:0B:A3:1E:E8:24:76
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14189: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175885 (0x3cdde84d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 18:21:16 2017
            Not After : Fri Oct 21 18:21:16 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:98:15:4f:b5:9c:aa:c1:ff:70:1d:4a:16:24:71:1f:
                    5b:48:85:fb:75:01:31:20:2b:02:c4:b7:ce:36:4d:e7:
                    89:ce:f9:3b:ca:d1:9a:50:39:2d:3f:cf:0a:53:b6:0f:
                    37:1b:5c:27:14:80:2f:25:b4:4f:6d:a3:a0:e4:c7:f5:
                    c9:c4:e5:dc:d2:ce:67:12:7f:46:a0:d5:67:c9:02:18:
                    dc:05:ee:1d:fb:aa:45:b9:25:91:35:49:20:54:5d:3d:
                    b9:86:22:d3:06:85:6f:d0:83:4c:81:ed:73:ca:68:b1:
                    4e:2d:6c:39:52:46:4a:5a:8c:ff:07:f0:07:1f:98:fb:
                    76:0a:86:9e:a1:de:28:76:60:6d:50:e9:5b:6d:2b:33:
                    a5:c1:e9:66:bc:e7:c2:39:6f:d2:18:ec:d8:2b:5f:f2:
                    bb:a1:21:34:98:0c:ae:52:2b:05:0e:00:2d:b0:52:2a:
                    40:16:ac:ba:42:2f:98:d8:3c:71:cc:79:e3:47:c3:d1:
                    5b:8d:46:08:f3:c6:7c:f7:ad:f8:42:7a:2d:45:02:af:
                    41:b4:04:e3:0a:e7:d4:4a:bc:bb:b3:ff:05:71:fa:26:
                    5a:0a:21:f8:dc:06:b0:9c:64:cc:d4:a0:c1:65:34:61:
                    11:6c:a4:96:6b:5f:b3:41:36:f3:23:dd:74:9a:f7:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:bd:67:2c:fa:d1:3d:6e:74:75:74:fd:c6:69:f0:7d:
        99:97:3a:23:85:2b:df:dd:c9:31:84:cf:f3:7e:f2:58:
        c2:fb:75:82:f9:8d:29:d7:92:25:c7:f3:4c:56:e2:75:
        40:6b:93:33:8f:9e:87:66:db:13:ee:e4:a3:ca:f3:f5:
        e4:54:30:ea:bb:ff:ba:6e:ec:77:80:73:bd:c1:28:22:
        f9:3b:47:85:ec:4b:af:c7:c7:b9:78:56:e9:a3:ab:d8:
        f3:94:36:36:01:c8:8e:84:b8:4f:23:b7:77:d5:d9:7e:
        4e:7c:19:fd:a6:d5:30:de:90:62:1e:59:eb:6f:78:77:
        42:1b:57:b7:ea:07:28:f3:d4:f1:e0:76:99:30:cb:1c:
        cf:b4:5b:55:cc:f7:75:49:e2:2e:6c:06:f3:80:c2:32:
        05:8a:e4:47:8f:23:17:37:41:0b:7a:a9:e5:bf:a0:19:
        8d:34:89:46:d3:d8:19:d0:74:61:f0:c9:38:21:39:09:
        39:b5:7d:b7:fe:26:eb:58:b3:c8:e3:08:83:11:c4:ac:
        1e:b6:a4:c8:f8:88:84:d7:f4:b9:cb:ba:b0:7d:cb:c8:
        3f:5c:b3:0f:73:ae:db:42:fb:1a:b2:c7:77:25:2b:3d:
        ef:40:65:b8:9b:07:f2:f6:90:5e:17:be:ea:9c:f0:82
    Fingerprint (SHA-256):
        CD:C3:82:D6:7F:CC:75:76:2A:95:D9:6B:58:3D:58:BA:08:76:F7:1A:7C:E1:A3:16:70:B8:D8:FF:8F:B7:51:D8
    Fingerprint (SHA1):
        27:1E:CC:12:00:40:02:DB:F6:C9:67:D6:33:05:0B:A3:1E:E8:24:76
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14190: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #14191: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #14192: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #14193: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #14194: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #14195: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175884 (0x3cdde84c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 18:21:10 2017
            Not After : Fri Oct 21 18:21:10 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:81:46:c5:d9:f8:ef:4d:9a:b3:65:34:7f:75:6e:d4:
                    ad:4a:27:71:2d:85:17:1d:16:72:fc:13:01:49:ad:0f:
                    f9:7b:54:bf:9f:8c:c8:b3:fa:0e:ee:2a:cd:0c:41:af:
                    43:ea:0e:5e:f5:1c:b7:ce:2c:1b:a6:1d:5d:8c:d6:4c:
                    a2:89:e3:52:0d:20:7a:99:7d:bc:73:e0:25:8a:15:f4:
                    37:b0:e6:d4:2b:50:61:c2:a8:b3:01:e7:e4:0e:9b:60:
                    db:9b:d8:a2:dd:47:28:00:58:a4:df:51:79:6e:44:08:
                    30:86:27:9d:e3:dc:bc:d6:39:84:3c:23:71:d0:ee:fe:
                    f2:19:2b:7e:76:b2:df:b3:bc:07:61:f4:58:42:ff:71:
                    a8:05:86:82:72:bb:40:51:25:83:89:9e:f5:8f:e7:17:
                    59:0d:6a:9e:9b:3f:86:c8:8b:a8:91:71:7a:d5:89:67:
                    12:08:12:30:3b:56:af:cc:f8:e0:d2:db:a6:0b:38:86:
                    f8:07:32:73:fa:35:5d:bf:8e:1e:62:07:c1:d1:06:fd:
                    a3:66:61:b8:fb:e5:c3:ca:22:17:fe:fa:27:90:b3:6e:
                    9b:e0:0e:0f:e8:a6:d6:dd:ba:cf:05:ca:ea:04:28:57:
                    83:a1:4c:4c:b9:e0:b3:ad:29:ed:a7:e2:f1:1d:34:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e9:12:8f:7f:e4:9e:f4:6c:74:a4:df:3e:c9:44:fa:ea:
        d7:78:28:ca:1f:95:9f:d3:f2:b0:ff:80:f4:d1:f7:16:
        22:91:04:62:4a:c2:f0:73:08:6c:51:e9:66:0a:cd:79:
        fc:a2:eb:ee:a2:65:b2:66:c9:96:ba:1c:98:b5:52:ae:
        ea:b7:01:94:ff:e9:df:8d:36:2a:37:d4:6c:64:5a:8a:
        d6:ff:23:cb:84:e2:fd:98:7b:24:f9:52:16:11:f5:5c:
        2c:5b:b0:83:17:12:6f:a0:cf:ef:90:ec:19:2d:23:42:
        f0:c6:36:37:22:45:c2:b6:6a:14:52:a3:43:75:4b:41:
        f5:f2:58:9c:c4:6f:27:a8:4a:ae:1f:c1:09:e1:88:ef:
        55:5a:22:4f:d6:a0:ee:38:77:fd:4a:35:63:4d:c0:1b:
        a6:51:b8:07:f5:5b:76:8b:4b:ef:55:b4:1e:7f:a0:7b:
        36:21:73:06:7e:e6:31:c7:7f:55:d2:33:45:79:14:32:
        34:b1:26:0d:9c:0d:30:6b:bb:9c:0c:d1:c4:44:6f:7c:
        5f:5e:80:ab:c2:b0:ae:24:a1:a4:0b:e7:17:ad:c6:63:
        da:79:44:2a:95:c0:27:1e:67:7c:a5:28:4c:01:a5:dd:
        6b:ef:dc:c7:85:51:3c:6e:76:2c:70:d0:62:be:de:b1
    Fingerprint (SHA-256):
        C7:F9:32:86:60:54:3D:96:4D:1F:FD:B4:C8:1F:4E:E7:91:4F:6D:DB:87:B2:33:36:67:8C:76:6A:C7:F2:9C:A1
    Fingerprint (SHA1):
        84:F2:EB:FC:0F:8C:2C:F1:EE:E6:DE:49:F8:2B:F7:99:CE:D2:68:A6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14196: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175884 (0x3cdde84c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 18:21:10 2017
            Not After : Fri Oct 21 18:21:10 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:81:46:c5:d9:f8:ef:4d:9a:b3:65:34:7f:75:6e:d4:
                    ad:4a:27:71:2d:85:17:1d:16:72:fc:13:01:49:ad:0f:
                    f9:7b:54:bf:9f:8c:c8:b3:fa:0e:ee:2a:cd:0c:41:af:
                    43:ea:0e:5e:f5:1c:b7:ce:2c:1b:a6:1d:5d:8c:d6:4c:
                    a2:89:e3:52:0d:20:7a:99:7d:bc:73:e0:25:8a:15:f4:
                    37:b0:e6:d4:2b:50:61:c2:a8:b3:01:e7:e4:0e:9b:60:
                    db:9b:d8:a2:dd:47:28:00:58:a4:df:51:79:6e:44:08:
                    30:86:27:9d:e3:dc:bc:d6:39:84:3c:23:71:d0:ee:fe:
                    f2:19:2b:7e:76:b2:df:b3:bc:07:61:f4:58:42:ff:71:
                    a8:05:86:82:72:bb:40:51:25:83:89:9e:f5:8f:e7:17:
                    59:0d:6a:9e:9b:3f:86:c8:8b:a8:91:71:7a:d5:89:67:
                    12:08:12:30:3b:56:af:cc:f8:e0:d2:db:a6:0b:38:86:
                    f8:07:32:73:fa:35:5d:bf:8e:1e:62:07:c1:d1:06:fd:
                    a3:66:61:b8:fb:e5:c3:ca:22:17:fe:fa:27:90:b3:6e:
                    9b:e0:0e:0f:e8:a6:d6:dd:ba:cf:05:ca:ea:04:28:57:
                    83:a1:4c:4c:b9:e0:b3:ad:29:ed:a7:e2:f1:1d:34:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e9:12:8f:7f:e4:9e:f4:6c:74:a4:df:3e:c9:44:fa:ea:
        d7:78:28:ca:1f:95:9f:d3:f2:b0:ff:80:f4:d1:f7:16:
        22:91:04:62:4a:c2:f0:73:08:6c:51:e9:66:0a:cd:79:
        fc:a2:eb:ee:a2:65:b2:66:c9:96:ba:1c:98:b5:52:ae:
        ea:b7:01:94:ff:e9:df:8d:36:2a:37:d4:6c:64:5a:8a:
        d6:ff:23:cb:84:e2:fd:98:7b:24:f9:52:16:11:f5:5c:
        2c:5b:b0:83:17:12:6f:a0:cf:ef:90:ec:19:2d:23:42:
        f0:c6:36:37:22:45:c2:b6:6a:14:52:a3:43:75:4b:41:
        f5:f2:58:9c:c4:6f:27:a8:4a:ae:1f:c1:09:e1:88:ef:
        55:5a:22:4f:d6:a0:ee:38:77:fd:4a:35:63:4d:c0:1b:
        a6:51:b8:07:f5:5b:76:8b:4b:ef:55:b4:1e:7f:a0:7b:
        36:21:73:06:7e:e6:31:c7:7f:55:d2:33:45:79:14:32:
        34:b1:26:0d:9c:0d:30:6b:bb:9c:0c:d1:c4:44:6f:7c:
        5f:5e:80:ab:c2:b0:ae:24:a1:a4:0b:e7:17:ad:c6:63:
        da:79:44:2a:95:c0:27:1e:67:7c:a5:28:4c:01:a5:dd:
        6b:ef:dc:c7:85:51:3c:6e:76:2c:70:d0:62:be:de:b1
    Fingerprint (SHA-256):
        C7:F9:32:86:60:54:3D:96:4D:1F:FD:B4:C8:1F:4E:E7:91:4F:6D:DB:87:B2:33:36:67:8C:76:6A:C7:F2:9C:A1
    Fingerprint (SHA1):
        84:F2:EB:FC:0F:8C:2C:F1:EE:E6:DE:49:F8:2B:F7:99:CE:D2:68:A6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14197: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #14198: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175889 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14199: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #14200: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #14201: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175890 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14202: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #14203: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #14204: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175891 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14205: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #14206: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #14207: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175892 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14208: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #14209: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #14210: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175893 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14211: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #14212: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #14213: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175894 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14214: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #14215: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #14216: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175895 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14217: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #14218: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #14219: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175896 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14220: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #14221: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #14222: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175897 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14223: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #14224: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #14225: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14226: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 1021175898 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14227: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14228: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 1021175899 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14229: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14230: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 1021175900 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14231: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14232: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #14233: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #14234: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14235: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 1021175901 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14236: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14237: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 1021175902 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14238: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14239: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 1021175903 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14240: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14241: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #14242: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #14243: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14244: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 1021175904 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14245: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14246: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 1021175905 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14247: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14248: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 1021175906 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14249: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14250: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #14251: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #14252: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14253: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 1021175907 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14254: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14255: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 1021175908 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14256: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14257: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 1021175909 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14258: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14259: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #14260: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14261: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14262: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 1021175910   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14263: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14264: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14265: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14266: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021175911   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14267: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14268: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175889 (0x3cdde851)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Sat Oct 21 18:22:07 2017
            Not After : Fri Oct 21 18:22:07 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e8:09:3d:42:53:10:2e:c0:21:5a:42:af:8e:c2:28:00:
                    73:a7:47:28:b7:96:bf:ca:f6:f3:bc:29:60:25:c2:e1:
                    3b:23:7e:68:d3:49:84:d9:ef:b6:58:d2:7a:db:8c:ad:
                    8a:e3:25:b6:70:92:92:09:8f:66:31:25:9f:a5:77:d4:
                    a8:7b:f4:97:ac:d4:9d:25:b9:b7:a5:78:75:e0:5a:25:
                    01:67:db:e5:71:c1:03:2d:bd:15:6b:c8:a0:96:42:e3:
                    f4:01:eb:3e:1c:85:ee:9a:eb:9b:a1:13:0d:9a:6e:6b:
                    79:65:b0:e3:8a:ef:5a:33:bf:03:c9:8b:f6:0d:63:25:
                    30:7d:4d:c5:70:44:ab:e0:f7:0c:19:26:2d:29:8d:bd:
                    07:30:39:2c:cd:9c:42:32:77:f4:fe:fb:03:54:ee:5a:
                    80:6c:3e:d3:9a:11:17:95:72:fb:41:ff:33:83:0e:36:
                    db:ea:18:ea:8a:06:ef:16:04:d1:30:22:41:75:64:89:
                    22:14:ad:51:86:0b:d7:0b:dc:0e:bf:cf:b7:f7:f9:36:
                    72:bb:07:6a:dc:0a:2c:ee:a8:3f:6c:37:cd:a0:88:b7:
                    b0:41:54:07:25:8f:dd:fc:26:e7:c8:8f:cb:29:e5:a9:
                    4d:c4:b8:75:c9:0f:b7:02:23:9f:3f:49:d1:0c:60:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        07:19:22:36:0c:c5:8e:d2:fe:be:cf:cb:b9:34:7a:42:
        2e:2d:3c:07:08:06:1d:01:92:e4:ce:ff:76:75:c1:df:
        d7:df:1b:f9:59:96:79:0d:c9:b5:57:e3:67:bd:a6:5b:
        54:16:29:7b:1d:0b:57:73:ae:0e:cf:9d:07:b9:0a:5f:
        25:df:1a:ea:e1:d3:68:93:d2:1e:de:35:ee:15:f9:40:
        50:15:74:6c:39:4c:bb:0e:da:d5:02:07:38:15:ed:95:
        f0:56:dc:d7:0b:62:e8:d0:13:6a:3a:6c:a4:54:76:6e:
        52:6d:bd:5f:98:23:36:c2:bc:9d:98:c5:80:d0:78:0b:
        06:27:87:6e:85:a4:8f:82:98:ed:59:42:1a:e7:8a:45:
        41:6d:1b:92:1d:a2:b8:05:77:1e:c9:90:0a:94:36:80:
        8b:b7:f1:21:ba:3f:5b:e2:5a:94:ea:7b:51:eb:b4:90:
        67:17:d0:79:7a:dd:4b:59:77:ae:40:07:e0:6e:d6:57:
        7e:48:73:7d:86:8d:7c:51:8b:48:2f:ee:92:71:5e:f6:
        18:09:b7:be:2c:20:91:ab:62:27:21:63:48:27:9a:2d:
        59:ff:91:6d:70:82:47:95:8e:25:71:e8:72:12:ea:54:
        62:3c:c8:1c:2e:fc:c3:63:dc:06:11:14:0a:0d:60:99
    Fingerprint (SHA-256):
        F8:F7:5F:4A:2A:1B:64:63:8E:70:D8:E9:FF:CC:D0:DE:F1:31:C0:66:98:D3:0C:8E:CA:29:6D:3A:9F:84:06:48
    Fingerprint (SHA1):
        8F:94:0C:78:88:F3:EE:DD:65:F2:F1:4A:14:BF:9D:6C:15:86:E8:BD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #14269: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175890 (0x3cdde852)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Sat Oct 21 18:22:13 2017
            Not After : Fri Oct 21 18:22:13 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:d8:20:bf:39:85:3b:f3:85:c3:1d:87:f4:59:af:5c:
                    90:53:9f:99:9f:2b:bd:38:92:14:4f:1c:4c:62:ac:6c:
                    b7:fa:86:ba:0b:15:2b:0c:c9:99:66:50:05:45:fb:8b:
                    59:de:9c:f6:ee:cb:1e:56:3d:58:87:45:67:47:09:11:
                    c9:2c:6c:f6:a0:1a:af:a2:27:ed:71:0e:31:0a:50:1c:
                    3e:d2:b6:38:f5:34:70:52:3c:8a:40:d9:d0:94:83:1f:
                    bf:df:d2:30:64:35:1c:85:67:c0:45:dd:47:9c:3f:f9:
                    2b:7d:cd:b2:f0:55:80:fe:ee:44:9b:b7:75:fb:9c:a9:
                    15:db:71:c7:c3:33:fd:72:ba:da:85:f8:a5:10:3b:d7:
                    eb:ae:f8:50:4c:cd:0b:1e:4b:77:b8:9e:bd:9b:2e:a5:
                    62:09:cd:44:31:12:98:52:06:e5:ec:e0:d7:47:3e:8a:
                    07:b8:d3:f6:2b:2c:38:3f:43:66:d0:ed:3b:d7:65:e3:
                    a7:83:0f:d4:11:52:d1:b3:58:3e:03:d5:ba:fe:1d:4f:
                    16:a4:4f:50:93:d9:d1:87:bf:c3:0d:28:d0:c2:8c:71:
                    6f:ff:53:d2:7c:2f:e7:48:75:31:b7:04:42:b3:a7:e4:
                    bd:b5:e2:f9:d6:86:29:87:29:65:39:5d:39:71:1b:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8a:da:8f:32:9b:09:2b:b5:4e:22:2d:1e:2f:ad:b1:55:
        6b:42:22:42:ba:81:cd:73:83:1b:f5:0f:02:68:28:bb:
        6e:64:f1:24:32:1d:d4:dd:7c:ae:bd:b9:c3:1e:69:47:
        d9:25:69:88:7d:da:21:3c:63:10:ed:86:e0:fa:28:0e:
        83:a1:71:f6:b0:ae:61:9f:f1:86:44:f9:0c:b8:ff:c8:
        4f:31:fa:1d:62:1d:5f:a5:cc:0e:c1:54:b5:2c:33:d6:
        7f:80:5d:e7:00:ae:b9:cf:6a:d7:20:0c:3e:fa:eb:d1:
        61:6b:c0:b7:bd:68:9b:b5:0a:ba:4c:37:b2:bc:65:5e:
        51:a6:b3:9f:b0:57:8c:56:32:f1:ab:40:33:a4:10:18:
        31:a9:72:25:c1:7c:6c:17:0c:bf:6f:31:0e:7d:2c:b2:
        67:6a:6c:c1:9b:db:39:dc:a3:6e:12:88:9f:41:01:7f:
        a6:81:c1:a3:50:cb:45:a6:91:30:40:46:aa:79:4b:cc:
        8b:ed:bf:54:f5:70:75:63:87:55:8b:08:e8:84:0d:57:
        78:30:2c:df:f8:ce:78:32:97:0e:c8:f5:c9:00:a4:6b:
        6a:72:49:ba:fc:f0:a7:de:c1:8d:02:f6:4c:c0:1e:d9:
        7b:2b:11:87:60:39:f5:df:73:f2:1f:ce:06:8c:24:ee
    Fingerprint (SHA-256):
        4C:8E:8B:4B:B3:AC:F8:57:A7:8B:A9:19:5E:88:CB:69:EA:80:E5:81:7A:6C:1E:49:C9:AC:C8:9C:C4:EB:59:65
    Fingerprint (SHA1):
        CB:ED:B0:B2:FD:D9:2C:77:27:5E:69:24:35:42:98:C8:9D:01:40:96
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #14270: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175891 (0x3cdde853)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Sat Oct 21 18:22:24 2017
            Not After : Fri Oct 21 18:22:24 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:69:72:4b:bc:4c:77:d1:a0:80:b6:1a:d6:01:5b:7a:
                    86:d7:4d:b8:35:f2:f8:7f:ac:bd:fa:d2:ae:9a:c5:05:
                    47:e8:86:ca:f9:cd:58:2a:c1:12:94:bd:ee:5d:1c:a0:
                    48:dc:c7:03:b6:4c:98:f8:1c:4d:d8:0f:45:1a:d3:6b:
                    61:79:8d:97:26:d1:1a:5c:0f:f6:99:0e:b2:90:3c:75:
                    aa:a1:26:23:32:db:eb:e9:06:dd:f9:4b:95:6b:c7:95:
                    f5:e4:38:fc:b1:57:d0:fe:46:bc:aa:5c:aa:08:6c:dc:
                    df:da:3e:b8:d9:70:a4:3e:62:e6:de:7c:e6:71:05:70:
                    c2:6f:f4:0c:27:a3:69:0d:09:7c:4a:47:05:bc:42:9f:
                    67:93:ff:6e:0b:a9:7f:69:e6:e9:a4:de:8b:45:ad:3d:
                    ee:fa:af:f4:83:8c:86:18:f4:e4:5d:a6:d9:1f:4d:75:
                    be:8f:e1:b4:c7:64:7e:ed:41:b4:1e:e3:26:8e:f9:e2:
                    86:55:8c:94:3d:bc:4a:43:92:4b:72:99:e6:63:a2:7a:
                    b2:c0:fa:e5:b8:26:f2:49:46:56:ad:e9:95:ca:c9:5e:
                    a3:0e:4b:09:b9:44:b1:9b:c3:61:6b:18:fb:44:b1:26:
                    db:a3:c0:65:78:e6:81:a3:00:ba:43:99:03:7d:2e:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:4b:cb:c7:8a:0c:3a:e3:89:b7:6c:be:ab:5b:15:10:
        8b:c5:aa:34:f1:99:2c:41:52:c1:97:26:72:2b:e6:87:
        30:6f:79:bf:83:7e:a0:db:9c:ec:76:d9:c2:74:8e:b4:
        31:32:f6:2b:d9:07:f9:53:11:71:b6:db:68:af:57:2d:
        3b:ce:0e:37:1f:48:15:1a:e3:5a:ba:54:3a:7a:b0:7a:
        25:12:e8:53:9c:3a:13:4f:9e:a2:50:73:27:19:64:61:
        02:88:fa:de:c1:25:92:f3:89:3a:58:1b:1c:a2:5f:03:
        91:07:a4:d4:cc:19:4f:6d:0f:69:af:1c:5e:9c:a7:f4:
        d2:ae:a9:7e:a4:99:19:67:b8:e9:3e:26:3d:6b:5d:8b:
        24:8e:e0:75:ad:4d:85:09:cd:50:9a:62:80:3d:af:48:
        04:c1:cb:c1:17:d8:b5:d4:3b:57:12:b0:61:58:68:37:
        51:71:dd:9c:e1:33:52:ca:d8:0f:bf:e7:15:4e:81:84:
        67:48:a4:20:22:7b:cb:09:b7:1f:83:84:13:07:f7:f3:
        23:1a:56:58:1b:bb:be:df:9a:7b:e7:45:7f:e4:d3:87:
        21:8d:92:ec:e1:1d:57:3a:57:6d:33:b5:2f:8f:d0:e0:
        e8:dd:e2:66:2e:0b:d1:f0:cc:d4:3b:b2:a6:43:8d:95
    Fingerprint (SHA-256):
        11:48:CF:D3:16:F0:A2:1E:52:44:5A:43:2F:F1:B0:E0:F9:3A:0F:91:1B:7A:55:B6:ED:3C:A4:B7:FA:F7:17:72
    Fingerprint (SHA1):
        0E:D1:8E:40:1D:28:A4:8C:1B:0B:7C:B5:7C:17:0E:CE:36:A1:19:1F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #14271: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175892 (0x3cdde854)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Sat Oct 21 18:22:31 2017
            Not After : Fri Oct 21 18:22:31 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:bd:fb:9f:42:90:b9:57:3b:2d:4f:0a:0c:b4:9a:63:
                    d3:90:67:13:fa:ce:1f:6e:12:62:15:b2:85:9b:2c:d4:
                    c9:f6:60:4d:51:b6:0c:9e:9c:e3:b5:d7:5c:f7:f3:78:
                    9d:34:a3:11:7f:c8:5e:82:bd:d9:54:bf:6c:4c:68:76:
                    01:a4:52:84:18:fa:61:87:32:13:85:84:a3:ef:cb:62:
                    cd:91:b2:eb:a1:b5:49:e5:8e:a4:75:0b:6a:82:cd:a3:
                    db:54:e2:89:e4:d4:11:54:59:38:34:e4:61:fb:b5:19:
                    3d:37:94:1f:ad:4c:90:ff:e1:2c:99:71:87:7b:1c:9b:
                    64:de:e8:43:3e:cf:4d:bc:a9:f6:38:2e:df:b1:90:ea:
                    79:ce:59:e6:a9:aa:1e:d6:67:57:85:fc:ea:28:03:53:
                    63:3f:ad:48:ec:5e:22:35:86:f8:16:85:9c:4c:38:73:
                    0d:91:b3:d2:12:e1:ec:48:67:70:70:97:33:88:4c:40:
                    63:81:95:2d:36:7e:52:69:59:49:a7:4c:e8:a6:09:2f:
                    ec:71:b3:f8:c9:cd:3b:1f:62:04:94:27:9e:70:a8:5c:
                    45:dc:03:fb:02:2a:75:93:ab:3c:55:d4:fc:1a:6f:dc:
                    19:2a:7c:30:33:ca:45:4c:c5:ec:7b:b9:69:d7:ed:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:a1:a1:86:d8:bf:50:ec:c8:db:e0:a9:b5:28:00:c7:
        f8:82:96:c8:db:fd:1f:26:3d:a3:97:4f:fa:18:3b:de:
        f8:3a:12:61:bc:83:f8:2d:16:f1:9c:53:6a:2b:fe:d4:
        fa:e6:be:b6:ff:55:b3:73:ee:c7:65:6b:70:67:e6:82:
        fc:d7:3b:da:eb:46:d3:04:80:61:57:71:0d:48:d3:5a:
        4f:54:d0:c8:dc:b1:2e:89:4e:ee:f7:1e:60:7a:0c:e4:
        23:5b:bc:99:40:3d:6f:60:ad:8d:e1:1f:dd:2b:fb:a8:
        23:03:25:a7:22:9b:04:eb:17:40:bc:94:28:8d:b3:d0:
        a1:86:d3:36:27:96:92:c5:76:db:27:e5:a8:01:d7:96:
        b7:89:ea:4a:36:67:ad:ab:26:7b:2a:50:7f:3a:06:c5:
        07:7f:39:c1:e7:62:90:83:0f:7f:7f:20:b9:8e:52:7b:
        e3:17:85:4d:70:cc:58:2e:75:01:ae:37:68:db:22:81:
        88:23:cc:b6:e1:dd:e6:48:2a:c3:e0:f7:14:69:25:d5:
        7b:dc:37:58:32:a7:28:33:6d:66:91:b5:42:c2:74:e2:
        98:18:0d:7f:e8:a6:d5:76:1e:da:8a:85:48:81:3d:03:
        07:c7:0a:a3:1d:43:29:5d:c6:2e:54:79:d6:cc:b2:5f
    Fingerprint (SHA-256):
        9B:0B:FF:97:BC:3D:D4:C2:67:FD:50:29:76:87:13:83:1D:74:2F:70:5B:86:C4:6D:98:6A:0D:E1:99:57:EB:1E
    Fingerprint (SHA1):
        1B:C1:B8:70:8C:4C:DE:53:03:3C:29:4E:12:0B:A3:04:5C:05:B7:B0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #14272: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175893 (0x3cdde855)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Sat Oct 21 18:22:37 2017
            Not After : Fri Oct 21 18:22:37 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:16:99:a1:10:46:f1:89:a2:83:df:da:8b:f2:1c:0a:
                    38:39:55:60:4b:2e:e9:a4:83:37:6e:3a:62:43:c7:1f:
                    32:dc:c1:d1:06:eb:54:5d:1d:ab:4e:b8:d3:26:79:47:
                    44:12:e9:38:29:52:ef:d0:c5:c0:86:1e:7f:c9:eb:ce:
                    b8:db:c5:f0:02:95:4e:98:32:49:e2:fc:ec:a2:3c:90:
                    a6:cd:4e:1e:23:07:2a:80:f2:ea:0d:07:6a:a2:d9:d6:
                    65:f2:94:1d:8b:72:c6:d2:2d:6d:62:ce:69:5e:12:07:
                    31:31:56:e7:72:a5:d8:d1:d1:cd:70:f7:0b:36:01:a1:
                    28:ea:aa:a5:8d:87:e4:3d:24:96:a1:dd:3b:04:0b:20:
                    f7:2b:6e:b8:6f:18:2e:f8:73:84:ba:2d:7e:91:ef:f0:
                    89:6f:b5:e9:39:e6:14:37:d5:a5:bd:b2:75:ec:8b:14:
                    66:9b:f9:50:a7:ca:d6:48:01:b8:70:c8:8d:ce:04:3b:
                    1c:51:2e:88:a9:52:82:46:cc:ea:f2:c8:ec:8b:ab:ac:
                    b1:4d:9f:ac:11:10:bf:43:6c:75:ae:91:ae:fd:b7:96:
                    ea:bf:60:5e:30:97:80:ee:27:b0:d9:1d:18:54:74:76:
                    2d:02:18:9e:50:50:87:30:1e:c7:61:df:d4:22:0d:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        05:02:69:f5:97:68:69:19:da:0a:70:77:c0:ba:ed:9e:
        32:60:60:fb:d1:84:bf:34:ea:70:2a:fb:7c:71:0e:73:
        16:32:8e:f8:5a:43:72:ce:55:64:51:48:ec:ec:0d:1b:
        e4:dd:f4:a9:81:a1:a8:f7:fe:5e:b0:12:2d:2b:85:17:
        9d:91:8d:fc:57:0d:1f:62:75:8c:1d:9e:86:db:98:5d:
        fe:ed:70:f8:bc:8f:b9:24:27:bf:5f:ee:3e:9f:b2:ce:
        41:7e:7e:51:e9:36:f6:cc:68:49:ee:82:a9:3c:03:f2:
        66:1d:ca:19:f1:31:7e:a8:f6:22:e8:fc:c8:d3:83:98:
        26:3e:12:36:4b:05:9c:9b:ee:f2:d3:73:bd:a7:47:05:
        53:f1:91:05:7d:c0:33:e4:20:4e:c8:12:96:12:8c:0a:
        9a:84:88:90:6a:e4:0a:2c:4b:df:56:f4:6a:90:59:26:
        aa:a0:8e:4e:22:fd:9e:b9:91:cd:89:5f:83:b8:2c:51:
        70:a6:84:17:91:10:3f:a7:45:2e:f5:eb:ef:4f:84:f5:
        b3:bc:d6:09:be:81:29:ac:e9:fa:7c:49:61:64:29:6a:
        6e:a8:58:d4:e9:a3:85:7c:52:d7:e8:25:95:e7:9f:11:
        e8:ad:b7:78:88:21:29:f2:99:0e:76:e5:5c:bd:5e:57
    Fingerprint (SHA-256):
        29:CE:FD:32:BC:07:55:F7:7A:AD:87:1D:CF:EC:33:4E:8A:37:C0:E6:20:D6:07:6A:9A:39:7D:F0:A0:0A:6E:8A
    Fingerprint (SHA1):
        CE:34:C2:69:E0:A0:21:1D:AD:4E:CE:17:C5:E7:11:72:54:9E:C5:B0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #14273: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175894 (0x3cdde856)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Sat Oct 21 18:22:45 2017
            Not After : Fri Oct 21 18:22:45 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e8:0f:c3:26:67:12:78:d3:54:aa:a1:66:46:b7:5b:17:
                    a6:b7:cf:84:35:e0:cb:24:df:2b:fc:4e:a8:30:a1:e0:
                    b1:07:65:b8:54:bf:6f:c5:b8:6e:a8:f1:8d:72:e8:32:
                    a7:c3:ff:71:d7:7a:8b:48:40:b6:4f:93:53:af:71:be:
                    31:ff:ab:3d:3a:30:c9:27:82:a2:fc:7e:01:19:a7:44:
                    c0:57:de:3b:06:59:bb:df:c1:1e:55:9d:49:4d:c5:a8:
                    2b:93:74:25:3b:4b:65:29:48:ba:d4:1f:c9:ea:f3:6f:
                    1f:3f:12:f5:87:7e:48:04:bc:ee:1e:ca:a5:77:2b:e2:
                    2f:89:76:cf:de:50:4b:9f:50:5e:d5:43:c6:17:17:44:
                    dd:49:b6:d1:60:d3:88:d5:0a:48:e1:94:0f:19:7a:0f:
                    75:1d:54:7e:e7:67:d9:e7:15:b9:f2:bc:03:96:a3:f3:
                    c5:aa:25:32:59:f7:f3:3e:d2:cd:26:de:35:04:c7:58:
                    50:9a:50:5a:bc:77:d3:ff:39:a4:4d:ae:63:56:f5:ec:
                    bd:92:cb:ed:26:5b:a2:05:c5:2f:80:4d:9b:38:cc:4a:
                    18:6d:04:6d:92:5c:9a:25:fd:ec:f6:d8:27:8b:2f:d3:
                    8b:12:4a:53:09:7d:fa:69:9d:30:6b:e4:c6:27:6f:2b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e5:e1:fe:59:7e:39:8b:44:90:2a:e9:01:bb:6a:01:55:
        82:6e:ea:6b:ae:ae:c3:20:fe:73:58:15:27:e9:87:fa:
        7f:8e:8b:3f:bb:29:72:c9:98:f2:d0:e6:4a:bf:a2:87:
        e8:cc:f6:3b:e4:9a:83:57:db:cd:0d:e0:1e:c8:0a:4b:
        86:94:2c:fc:7a:c2:6f:c6:60:b7:dd:58:47:fa:c9:4d:
        e0:a4:56:31:85:4b:17:2e:91:00:7e:48:c0:56:c1:78:
        63:fd:61:aa:88:ae:d7:ce:13:69:b2:f8:9b:d7:88:d9:
        6a:61:10:93:fd:b4:33:14:3f:57:e4:5b:70:47:fa:7a:
        a0:00:aa:4b:66:34:34:01:e0:23:42:fd:2d:43:a6:44:
        0d:24:2a:21:55:a8:95:71:ad:dd:99:35:70:6b:c8:15:
        c9:06:b2:fd:93:2a:83:75:77:a4:d3:73:4e:88:ec:b8:
        09:18:be:92:17:16:5c:05:2e:b1:0f:90:5a:9e:6f:b4:
        78:13:db:b1:91:30:87:d8:c7:61:cd:0a:76:3a:f5:8c:
        22:eb:9e:77:31:50:f6:fd:94:bd:95:dc:5e:af:03:52:
        81:6f:30:4f:e5:44:16:59:2b:a9:0b:86:5d:67:7a:96:
        88:ce:de:96:63:c6:fa:e0:0f:81:1e:a0:3b:9c:7d:f5
    Fingerprint (SHA-256):
        84:DE:2F:47:33:19:3C:36:81:76:62:21:12:AB:93:06:77:F0:45:14:94:6B:70:12:C1:A0:E6:37:76:60:D6:CE
    Fingerprint (SHA1):
        29:64:2F:97:90:6A:E1:C1:3A:B9:2C:4F:B7:06:73:02:43:DB:05:6C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #14274: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175895 (0x3cdde857)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Sat Oct 21 18:22:51 2017
            Not After : Fri Oct 21 18:22:51 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:19:a3:93:7f:e6:2b:a5:6a:1b:9e:73:ff:a3:88:0d:
                    63:de:d3:5b:ee:59:ed:1e:a6:26:98:7e:9b:bf:c5:2f:
                    4b:d0:30:b3:c8:48:84:e7:60:f2:e0:00:65:3b:1b:a7:
                    e9:00:da:a0:87:5b:bf:35:31:2a:e9:15:f9:35:e4:5d:
                    8c:12:62:60:11:e2:61:ae:d3:18:ee:5b:9d:92:b1:7f:
                    e9:b9:74:9b:8e:7c:5e:d5:12:05:79:db:df:83:bd:f7:
                    17:45:51:ac:0a:4e:cc:e6:87:d1:86:f4:ef:a9:44:04:
                    8f:b8:c8:86:0b:ac:23:8f:9f:59:cb:60:8e:2e:e9:25:
                    81:51:e7:c0:06:51:c7:cc:66:b7:0a:e7:65:6a:a7:00:
                    58:70:35:8d:a1:d6:dc:64:af:ac:e5:93:f7:77:d2:75:
                    6d:db:ef:df:38:df:6f:45:63:a5:78:6d:b4:bf:43:fa:
                    67:f1:29:67:ce:9c:33:2b:7c:ae:aa:e2:47:98:54:a5:
                    9e:f0:1e:d5:80:0d:c4:74:36:04:77:30:86:30:b4:29:
                    61:dc:87:b9:20:d4:11:ba:eb:f5:9f:40:b7:23:bb:60:
                    04:9d:87:b3:8e:37:87:cd:d2:59:72:b7:69:07:a8:eb:
                    17:ff:83:60:a9:43:1e:fc:98:1a:d3:70:80:1c:f4:0f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        89:9e:4a:9e:51:7a:36:4d:a1:e9:99:dc:fa:20:ce:b5:
        c3:6e:b1:15:31:af:e1:69:f9:e9:b8:ab:7e:8c:1d:80:
        83:58:1e:8d:f6:bf:72:32:19:ec:1b:ab:18:2f:23:42:
        22:3c:7e:3d:20:e4:25:03:79:2c:cc:ad:3a:15:2c:25:
        98:07:fb:e3:60:3b:57:4a:dd:40:35:d8:ce:25:59:2f:
        fc:1e:6c:28:b0:7f:d3:03:67:32:88:5f:a8:f5:fc:be:
        42:48:8b:41:c5:1a:ad:42:5b:94:6f:9e:c3:80:5d:e1:
        4e:43:63:da:33:3c:66:f3:40:00:0e:cc:b6:eb:1f:65:
        81:81:f2:ae:9e:6a:7c:69:15:e6:76:fe:48:5f:de:7f:
        17:45:8b:42:c8:e0:7a:61:f3:b7:23:da:eb:7e:f7:d7:
        f5:b7:24:03:72:cf:95:9c:ab:84:b9:b4:c7:81:58:4e:
        08:02:c9:e8:9d:4a:b2:66:4b:5f:31:97:be:cb:a6:9e:
        12:e6:a8:e2:64:8c:18:91:8c:50:e5:8b:f7:8a:e1:b9:
        5d:3a:9f:4a:47:2c:35:a9:6c:46:9e:8c:66:fd:98:fc:
        20:53:8b:0e:86:c2:4a:a3:84:cc:c7:22:5c:be:58:f2:
        42:b5:ff:7b:e0:82:81:bc:c9:95:b3:82:e7:3b:d4:e9
    Fingerprint (SHA-256):
        1F:C9:4B:62:0C:BC:4A:05:12:6F:05:F0:58:9C:63:87:6C:54:2F:DD:17:49:FE:15:F5:E6:22:23:58:34:34:A2
    Fingerprint (SHA1):
        77:78:70:78:DF:C4:29:17:DF:06:2A:22:0C:2B:73:71:FA:A1:7A:8B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #14275: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175896 (0x3cdde858)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Sat Oct 21 18:22:56 2017
            Not After : Fri Oct 21 18:22:56 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:2a:59:43:3c:e3:e3:17:20:d7:2a:63:da:a0:f8:cf:
                    94:73:30:34:ad:0e:da:86:1c:45:8d:dc:e6:da:8f:1d:
                    42:0c:13:fe:77:08:07:e0:96:fe:bf:72:4e:53:0d:f8:
                    3a:de:36:c0:4a:dd:69:66:ef:b3:15:89:c9:54:e7:57:
                    a5:94:b5:e8:19:39:c8:f2:2e:fc:df:f1:f6:d0:bc:ad:
                    09:55:c9:c6:c6:61:6e:0f:22:12:38:96:fa:f3:d4:55:
                    41:5d:53:b6:a9:cd:a8:25:d5:a8:a4:4a:7c:f3:b5:c2:
                    43:c4:6b:3c:09:8f:42:40:2c:94:d5:b1:c9:77:09:4c:
                    61:1c:e5:79:05:83:bc:15:47:7c:cc:0a:f2:bc:54:89:
                    18:bb:b0:8c:4e:e9:6a:06:c0:de:6a:a6:75:3d:c6:a3:
                    a8:12:99:f6:26:c2:be:4a:5e:0c:a2:4e:3b:97:bc:de:
                    0e:ff:fe:18:a4:d0:03:48:af:6c:6a:95:91:3d:6b:11:
                    da:46:48:ad:d6:2a:95:99:c4:bc:b1:ea:fa:c3:ad:fd:
                    6d:b4:18:df:b3:c5:db:29:fe:7b:90:0d:ce:9e:59:29:
                    82:8e:7e:b9:fc:d5:fe:b0:5f:3d:8d:8c:4f:41:ae:75:
                    70:73:7b:1a:e6:61:96:fa:70:a7:08:56:c3:c0:2c:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:a1:f3:90:50:61:e6:69:b8:cc:8b:b4:7c:ef:1e:f4:
        3b:ec:50:43:0e:5d:29:02:c3:2d:72:76:6d:05:ba:33:
        ec:3d:fe:8a:8e:fb:e2:b5:c0:61:75:fb:c0:22:7b:b4:
        fc:b8:26:a5:7b:45:7f:5c:d2:1c:fe:7d:7c:85:9e:64:
        16:cf:76:76:32:16:a5:fb:ed:89:e0:f0:f3:0e:59:bd:
        81:0c:0e:74:61:da:0c:25:06:09:8e:7e:9c:c9:65:81:
        2b:d8:af:9b:c1:03:38:85:4c:4e:f7:27:0a:66:dd:dc:
        64:76:ea:79:d3:65:03:03:c3:bf:07:ab:57:a7:02:20:
        37:10:ad:33:ae:d0:e9:b7:96:25:9d:03:00:e6:02:23:
        b7:ba:cd:fc:61:b5:96:3c:2a:fd:ad:25:24:bf:a1:ba:
        f1:31:16:76:15:45:16:12:0c:5f:ba:d7:93:62:4f:28:
        e0:f1:25:4e:8f:0a:38:24:47:5c:bf:0b:ff:50:0d:80:
        9b:46:08:e6:ee:ba:46:dc:8e:b3:80:8d:17:60:4c:bc:
        f1:b0:7f:f3:1a:85:16:51:d2:35:2a:4d:c7:5f:d7:32:
        1e:87:a2:5c:95:a8:b0:86:7a:98:dc:5a:c0:cb:c6:1d:
        ea:61:7b:76:54:a7:20:a2:5a:cf:f5:7a:28:53:86:f8
    Fingerprint (SHA-256):
        38:19:DB:35:55:B0:12:67:F5:67:24:1C:89:25:CB:AE:F1:87:52:87:2E:74:17:05:48:B0:08:E4:B9:CE:E0:2A
    Fingerprint (SHA1):
        B5:1C:D2:02:96:3D:4C:7D:4F:E1:EF:D5:8B:C3:14:BF:AA:81:07:D2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #14276: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175897 (0x3cdde859)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Sat Oct 21 18:23:02 2017
            Not After : Fri Oct 21 18:23:02 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9a:b1:79:41:9a:52:c6:a5:7a:1c:2b:e4:0b:ed:8f:62:
                    f0:b6:e5:bd:17:c8:91:5c:15:6b:e5:ab:23:48:cd:12:
                    c7:af:5e:fa:71:d4:46:6b:ae:7d:bd:32:c4:2e:9d:d3:
                    a4:b6:43:7c:15:64:68:7b:78:22:3b:b6:c9:9a:6f:60:
                    d2:57:a6:39:cd:0f:57:42:fd:b4:f6:e5:dd:fa:e9:da:
                    17:27:e2:ad:a8:50:89:22:30:90:c0:63:5e:e3:2d:87:
                    b8:ce:33:57:2e:26:68:f1:1c:00:9c:fb:d8:09:1f:81:
                    9e:19:98:ed:83:97:76:31:cc:cc:ee:78:38:f2:bb:e7:
                    3f:65:31:b9:54:11:f1:10:65:6e:48:06:04:3d:71:77:
                    00:b7:64:c7:0c:80:7c:92:ac:db:33:87:5d:53:f1:f5:
                    75:35:14:db:41:b7:b5:8c:15:3b:17:55:55:7f:a9:03:
                    6e:50:ad:48:fe:4c:1e:32:4f:d8:3d:66:eb:93:7a:41:
                    88:c0:f0:8b:d8:76:0f:0d:ae:fd:24:72:4b:fb:f9:f6:
                    47:0e:84:de:cd:49:cb:80:08:d5:50:6b:bd:bd:7b:e4:
                    67:2e:41:86:2e:38:c5:32:d0:4e:d0:e2:05:20:ac:32:
                    57:51:8d:61:a3:57:27:ed:21:a8:33:47:bd:a1:7a:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        13:a0:83:09:96:f3:50:a7:5f:51:0b:27:01:c7:62:a6:
        1a:e6:96:1f:94:8a:ff:27:55:08:1e:91:95:da:51:bf:
        cc:60:f3:48:a5:ef:4d:8d:3c:3c:bf:aa:9c:0c:5a:ca:
        a7:f7:ff:f8:0d:34:14:7b:2a:c3:91:5b:7e:6d:ef:5e:
        8d:c4:ad:d1:10:e1:22:d9:74:12:b4:2b:18:5e:bc:3b:
        a3:b1:87:a8:68:e6:6f:0c:70:4a:a7:3f:ba:16:86:47:
        52:b7:a9:78:3f:fa:17:fa:a4:d9:a4:68:1e:4e:93:de:
        9e:cb:4d:c2:c6:af:f1:30:bf:c5:42:2f:8e:96:6f:8f:
        9c:21:87:1b:f3:eb:48:a2:09:fb:6b:70:db:96:27:ee:
        f6:ab:7d:40:2f:1b:22:2a:7f:c6:39:3f:bc:e9:37:7f:
        db:14:53:f9:13:84:97:12:15:cb:90:c1:9e:ff:80:37:
        de:18:5e:c7:3f:3a:df:d7:d1:2c:5e:35:71:8e:0f:b0:
        7c:43:07:b6:9e:45:41:14:c5:c6:b9:8d:8f:30:ed:5e:
        62:bb:fc:29:6e:74:3b:31:94:2e:4c:41:0e:9b:08:43:
        17:3f:57:d4:af:11:fd:5f:67:f4:d5:8a:45:c8:fb:23:
        93:c6:e7:5c:c1:10:7e:85:db:80:9a:b0:89:58:70:c6
    Fingerprint (SHA-256):
        8D:0C:CA:41:56:7C:33:C3:08:70:A7:CD:A3:B1:AC:EB:74:82:75:2C:2B:41:C6:6B:EE:F1:CD:DF:56:2A:21:B3
    Fingerprint (SHA1):
        88:B2:05:FE:61:C3:74:B6:1D:76:31:FF:D4:26:6B:C5:F1:68:9E:70
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #14277: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14278: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175912 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14279: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14280: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14281: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14282: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021175913   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14283: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14284: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14285: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14286: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021175914   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14287: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14288: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #14289: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14290: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 1021175915   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14291: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14292: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14293: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175912 (0x3cdde868)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:24:23 2017
            Not After : Fri Oct 21 18:24:23 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:ce:d7:11:56:b1:2d:fe:9f:92:e8:d9:12:3f:33:84:
                    32:6f:98:93:6c:ff:ad:97:4f:da:c8:31:4e:23:50:c9:
                    a8:a6:b5:fe:40:54:78:0e:74:9e:99:e7:5e:9e:8f:43:
                    bf:d4:4f:94:7b:55:3b:61:ef:fb:a4:49:8d:e9:c4:aa:
                    38:bd:57:63:23:ae:80:6e:01:19:9c:be:6d:61:59:98:
                    68:10:82:c5:f7:02:68:29:06:ca:44:57:b2:db:73:5c:
                    9a:75:b2:c7:8b:46:4e:5e:3d:de:ca:c5:6d:b8:0a:f7:
                    fe:fe:ad:1c:df:9e:fe:e9:e8:56:4e:94:98:08:5b:26:
                    5a:13:90:10:d7:d9:2d:c5:7c:0e:59:c1:9c:35:cb:9f:
                    b8:bf:67:c5:3d:32:1e:6f:3a:6f:e9:28:95:96:8a:6e:
                    a8:fc:7e:d8:8b:6e:3d:6a:f8:4e:5d:cb:9f:65:6b:d8:
                    c6:05:c0:f8:0f:9a:0b:48:f4:04:e1:b9:5d:93:11:c2:
                    26:69:d3:d7:1e:18:2d:13:2a:fb:be:72:d5:19:99:1b:
                    e1:a6:a3:cb:48:ca:14:2d:6f:59:90:dc:4a:27:39:c1:
                    58:74:cf:22:81:72:fb:e6:3b:b4:7f:7a:19:ff:c2:c6:
                    00:8e:c4:b4:40:fd:62:62:07:99:e3:ec:89:02:af:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:a8:bc:96:72:e8:e9:f0:2f:64:c4:27:41:27:8e:bb:
        13:e1:cf:4b:71:d9:47:dd:08:eb:2e:64:e2:8f:b3:ad:
        5a:4b:ba:e9:ee:25:7c:f9:d6:a2:45:97:6d:60:70:d0:
        8a:fb:d4:18:88:7d:92:3f:37:9a:bf:26:36:a6:76:d7:
        ad:3f:97:19:c8:2f:55:cd:73:ca:b0:26:ad:d7:bd:16:
        35:b1:4d:9e:18:0f:f7:35:b0:d2:a4:0c:14:23:60:c4:
        d9:98:8c:de:00:d8:91:a2:16:55:b6:57:09:50:ae:24:
        c1:dc:88:8a:83:a8:1a:35:e4:19:4c:22:27:73:77:98:
        c6:39:9e:ca:4e:cd:e5:42:28:05:e9:3c:10:68:5d:62:
        39:4f:99:80:19:eb:d9:3d:57:7c:a2:59:ba:7b:1c:d3:
        b0:5c:3c:ea:80:e1:99:a6:33:10:d5:18:3f:45:eb:41:
        75:8f:5e:a2:c7:fe:c2:de:93:8c:d3:ec:83:9b:e3:4a:
        28:b4:b9:e8:79:ef:04:8a:04:89:1e:fe:4c:74:7b:3e:
        40:33:69:9f:d6:7b:ce:9a:c4:de:be:07:83:31:2f:a7:
        77:46:24:9c:e1:59:dd:6f:53:9d:ec:53:7f:70:4b:0c:
        11:43:51:c0:9f:ed:aa:58:f7:37:61:5c:ee:65:98:f9
    Fingerprint (SHA-256):
        A1:10:E0:4B:72:C2:A6:FF:41:17:3B:DD:E4:D4:4F:8F:65:9B:35:C0:7C:5B:53:43:50:5F:0B:87:52:9D:1A:BE
    Fingerprint (SHA1):
        58:E5:72:F7:47:0E:BF:8A:A7:E4:A1:4A:0F:47:F9:99:1D:E9:B6:F6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14294: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14295: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175913 (0x3cdde869)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:24:32 2017
            Not After : Fri Oct 21 18:24:32 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:74:c3:e3:22:f4:00:2d:0b:81:95:8c:3d:f1:f0:63:
                    c7:ea:a6:5d:22:a0:5d:87:17:04:53:e4:c1:27:6e:13:
                    2e:98:d4:59:11:29:37:1b:8d:51:9d:ec:69:66:43:a4:
                    d5:0a:74:12:f2:bf:0d:37:7c:09:d3:00:53:c1:53:61:
                    82:2a:2d:c9:4e:f1:e0:9d:13:73:f3:ef:88:57:01:52:
                    f2:a0:39:36:66:38:8e:ce:4e:12:03:5c:c7:71:cc:44:
                    e8:e6:c8:e3:23:4b:28:24:01:f7:c4:7e:b0:cf:cf:8c:
                    04:31:0a:81:7f:92:37:24:d1:75:31:d0:4d:c3:0b:e0:
                    e7:94:ea:40:bb:35:4d:16:34:fd:83:ee:d9:2c:8c:0e:
                    96:40:df:98:48:97:cb:ad:c3:6a:c0:84:3b:f4:d7:b4:
                    d2:23:e1:b4:d0:d0:89:eb:70:9d:60:f2:d4:cb:b1:b3:
                    fa:33:b8:9a:c5:0d:9d:1b:64:49:d4:a1:07:38:05:2a:
                    31:50:87:28:96:53:c0:2e:b8:d2:99:e0:a5:15:2f:7d:
                    27:85:ca:6d:0b:47:44:78:bd:34:c6:5c:26:b7:c5:84:
                    46:53:ab:41:02:fa:5b:4d:02:5b:5c:25:27:e5:ae:7d:
                    ec:ed:60:1b:19:59:6b:d2:0b:a1:c9:22:2e:86:bc:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:dc:b3:87:34:3c:dd:ec:18:24:16:ca:7f:06:3f:5b:
        9c:db:dc:aa:71:99:77:32:3d:d2:c4:e5:3a:c1:e7:a2:
        16:95:0e:86:eb:df:52:66:33:f9:f8:24:05:bd:7a:79:
        37:de:5c:2b:61:a8:5f:3f:f9:d1:79:04:98:5d:fe:33:
        61:31:d7:e6:0f:e3:5e:65:21:a3:9a:c4:46:c4:59:01:
        d5:04:28:05:1e:e5:4e:26:44:44:dd:e2:77:cd:47:3a:
        3d:2b:2d:7c:0f:87:a6:69:38:9b:23:75:a9:8c:cf:77:
        fb:27:95:8b:af:22:db:45:e6:94:dd:1b:ff:e0:21:c7:
        48:e9:69:22:75:4f:fc:b9:0c:15:2a:cb:76:8b:8d:2a:
        96:5f:e2:6c:51:6d:b8:8b:7b:35:46:8a:cd:ca:f7:2d:
        e4:ff:e4:6d:39:1a:3c:2d:32:2b:25:52:63:aa:cf:b6:
        d8:df:a0:8a:64:7e:82:af:46:0d:a6:e8:8d:19:9b:ad:
        50:52:17:55:1f:be:69:74:aa:43:e7:e8:b2:c3:ef:c7:
        11:01:38:c9:26:04:6d:36:ac:63:53:f2:7c:51:5d:b9:
        d4:43:b2:84:4e:63:e6:b1:31:3c:c7:01:17:61:26:b9:
        44:46:01:c6:1f:b8:2a:84:49:c0:9b:af:62:cb:94:07
    Fingerprint (SHA-256):
        35:C8:16:87:E5:1D:65:A0:C6:2C:05:6A:18:78:81:34:1D:2F:34:55:D3:87:0D:D1:3C:34:A0:18:3C:F7:D8:32
    Fingerprint (SHA1):
        14:48:16:2B:C2:73:12:C6:55:D3:5F:E3:B9:51:38:90:3D:CA:A1:FD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14296: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14297: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175914 (0x3cdde86a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 18:24:40 2017
            Not After : Fri Oct 21 18:24:40 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:74:08:49:4b:d8:92:3d:c3:f5:94:4c:20:c0:5c:69:
                    ab:8e:31:aa:b8:01:4e:19:d2:af:3e:64:a9:c2:06:68:
                    5b:71:ac:98:fa:0d:0f:7b:1e:7b:c0:91:65:bf:7d:5a:
                    5b:5f:2c:48:32:20:d1:61:42:4c:d0:1e:32:b1:2a:5d:
                    d8:3d:b4:d7:00:4b:71:44:73:4f:29:14:aa:69:74:3d:
                    e5:83:7f:0e:26:07:90:7e:e9:93:f6:77:01:bb:21:8a:
                    8d:35:65:8e:c3:92:90:37:e0:32:f6:4c:ef:ad:02:eb:
                    b4:f0:03:1c:3a:5c:ac:5a:47:3f:14:5b:3a:06:7e:12:
                    93:93:d4:fe:ae:82:a0:85:93:c1:90:98:a8:15:20:52:
                    a1:fb:0f:ac:e4:c9:17:2c:b3:8c:a3:28:7e:c4:85:a3:
                    10:27:68:6b:4a:04:d1:8b:c9:e9:45:0b:af:60:fb:05:
                    b3:7e:7e:70:f1:22:94:70:06:6a:a3:da:8b:bd:6a:c3:
                    ba:33:4c:22:fb:fb:81:54:6f:9c:c3:6d:c0:c4:70:34:
                    7e:32:55:02:9b:e4:00:6c:f5:b3:9b:a6:2d:3c:bf:67:
                    50:80:7d:8a:df:0d:7c:6c:3e:e4:47:f3:34:b8:ae:fd:
                    ed:b9:da:d2:c4:94:08:9b:f9:43:dc:12:28:ee:f4:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        11:a9:58:da:2e:72:d2:a4:ea:96:30:ac:19:97:44:33:
        37:16:b8:b3:8a:84:f5:4f:a1:88:e1:42:0a:78:88:43:
        75:30:3f:6c:d5:1d:95:ce:e6:05:d0:2a:9c:1c:f9:db:
        35:f4:53:f1:30:89:c6:23:3a:aa:6c:5d:08:17:60:c7:
        13:e5:bd:c0:ba:a6:2c:d3:10:fc:3e:67:74:0c:22:21:
        5e:c6:11:59:21:cc:33:1d:3c:b6:93:0e:e6:f1:12:e5:
        cc:dc:b1:d8:f6:67:0a:9a:b9:9e:c5:ec:d2:94:1c:6f:
        f5:3d:ae:f5:39:00:ae:1e:17:26:a1:79:cf:f8:12:a6:
        66:19:f1:dd:9a:9d:6a:b7:50:7c:c9:ec:73:6a:b7:6b:
        1f:79:a3:35:d0:87:cc:5d:70:ff:b5:6f:aa:23:54:77:
        08:c2:26:72:26:2b:6f:37:97:96:db:9a:9a:38:71:e9:
        87:7b:29:d5:43:86:79:d1:23:15:d2:e4:f0:ac:4e:71:
        08:7e:7c:d7:39:87:bf:8e:5e:f9:c5:b1:2b:4e:d9:43:
        d2:d1:b2:87:df:9a:ce:f6:a7:00:63:87:2c:cc:26:c6:
        a7:4a:ff:00:b7:6c:df:41:6f:7a:a6:93:3c:8c:ec:4a:
        66:9e:1a:1e:c7:0c:19:a3:d6:aa:7c:3b:90:bb:6e:41
    Fingerprint (SHA-256):
        C8:9F:84:03:33:1E:DD:EC:EE:90:40:06:6A:0B:8F:45:30:74:19:11:8E:1F:2F:26:47:87:9D:E6:70:74:EA:EB
    Fingerprint (SHA1):
        A5:BB:5A:72:A8:FE:79:ED:AB:3F:CD:EA:F2:09:29:1E:90:FE:12:40
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #14298: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14299: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #14300: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #14301: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #14302: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175912 (0x3cdde868)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:24:23 2017
            Not After : Fri Oct 21 18:24:23 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:ce:d7:11:56:b1:2d:fe:9f:92:e8:d9:12:3f:33:84:
                    32:6f:98:93:6c:ff:ad:97:4f:da:c8:31:4e:23:50:c9:
                    a8:a6:b5:fe:40:54:78:0e:74:9e:99:e7:5e:9e:8f:43:
                    bf:d4:4f:94:7b:55:3b:61:ef:fb:a4:49:8d:e9:c4:aa:
                    38:bd:57:63:23:ae:80:6e:01:19:9c:be:6d:61:59:98:
                    68:10:82:c5:f7:02:68:29:06:ca:44:57:b2:db:73:5c:
                    9a:75:b2:c7:8b:46:4e:5e:3d:de:ca:c5:6d:b8:0a:f7:
                    fe:fe:ad:1c:df:9e:fe:e9:e8:56:4e:94:98:08:5b:26:
                    5a:13:90:10:d7:d9:2d:c5:7c:0e:59:c1:9c:35:cb:9f:
                    b8:bf:67:c5:3d:32:1e:6f:3a:6f:e9:28:95:96:8a:6e:
                    a8:fc:7e:d8:8b:6e:3d:6a:f8:4e:5d:cb:9f:65:6b:d8:
                    c6:05:c0:f8:0f:9a:0b:48:f4:04:e1:b9:5d:93:11:c2:
                    26:69:d3:d7:1e:18:2d:13:2a:fb:be:72:d5:19:99:1b:
                    e1:a6:a3:cb:48:ca:14:2d:6f:59:90:dc:4a:27:39:c1:
                    58:74:cf:22:81:72:fb:e6:3b:b4:7f:7a:19:ff:c2:c6:
                    00:8e:c4:b4:40:fd:62:62:07:99:e3:ec:89:02:af:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:a8:bc:96:72:e8:e9:f0:2f:64:c4:27:41:27:8e:bb:
        13:e1:cf:4b:71:d9:47:dd:08:eb:2e:64:e2:8f:b3:ad:
        5a:4b:ba:e9:ee:25:7c:f9:d6:a2:45:97:6d:60:70:d0:
        8a:fb:d4:18:88:7d:92:3f:37:9a:bf:26:36:a6:76:d7:
        ad:3f:97:19:c8:2f:55:cd:73:ca:b0:26:ad:d7:bd:16:
        35:b1:4d:9e:18:0f:f7:35:b0:d2:a4:0c:14:23:60:c4:
        d9:98:8c:de:00:d8:91:a2:16:55:b6:57:09:50:ae:24:
        c1:dc:88:8a:83:a8:1a:35:e4:19:4c:22:27:73:77:98:
        c6:39:9e:ca:4e:cd:e5:42:28:05:e9:3c:10:68:5d:62:
        39:4f:99:80:19:eb:d9:3d:57:7c:a2:59:ba:7b:1c:d3:
        b0:5c:3c:ea:80:e1:99:a6:33:10:d5:18:3f:45:eb:41:
        75:8f:5e:a2:c7:fe:c2:de:93:8c:d3:ec:83:9b:e3:4a:
        28:b4:b9:e8:79:ef:04:8a:04:89:1e:fe:4c:74:7b:3e:
        40:33:69:9f:d6:7b:ce:9a:c4:de:be:07:83:31:2f:a7:
        77:46:24:9c:e1:59:dd:6f:53:9d:ec:53:7f:70:4b:0c:
        11:43:51:c0:9f:ed:aa:58:f7:37:61:5c:ee:65:98:f9
    Fingerprint (SHA-256):
        A1:10:E0:4B:72:C2:A6:FF:41:17:3B:DD:E4:D4:4F:8F:65:9B:35:C0:7C:5B:53:43:50:5F:0B:87:52:9D:1A:BE
    Fingerprint (SHA1):
        58:E5:72:F7:47:0E:BF:8A:A7:E4:A1:4A:0F:47:F9:99:1D:E9:B6:F6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14303: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14304: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175913 (0x3cdde869)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:24:32 2017
            Not After : Fri Oct 21 18:24:32 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:74:c3:e3:22:f4:00:2d:0b:81:95:8c:3d:f1:f0:63:
                    c7:ea:a6:5d:22:a0:5d:87:17:04:53:e4:c1:27:6e:13:
                    2e:98:d4:59:11:29:37:1b:8d:51:9d:ec:69:66:43:a4:
                    d5:0a:74:12:f2:bf:0d:37:7c:09:d3:00:53:c1:53:61:
                    82:2a:2d:c9:4e:f1:e0:9d:13:73:f3:ef:88:57:01:52:
                    f2:a0:39:36:66:38:8e:ce:4e:12:03:5c:c7:71:cc:44:
                    e8:e6:c8:e3:23:4b:28:24:01:f7:c4:7e:b0:cf:cf:8c:
                    04:31:0a:81:7f:92:37:24:d1:75:31:d0:4d:c3:0b:e0:
                    e7:94:ea:40:bb:35:4d:16:34:fd:83:ee:d9:2c:8c:0e:
                    96:40:df:98:48:97:cb:ad:c3:6a:c0:84:3b:f4:d7:b4:
                    d2:23:e1:b4:d0:d0:89:eb:70:9d:60:f2:d4:cb:b1:b3:
                    fa:33:b8:9a:c5:0d:9d:1b:64:49:d4:a1:07:38:05:2a:
                    31:50:87:28:96:53:c0:2e:b8:d2:99:e0:a5:15:2f:7d:
                    27:85:ca:6d:0b:47:44:78:bd:34:c6:5c:26:b7:c5:84:
                    46:53:ab:41:02:fa:5b:4d:02:5b:5c:25:27:e5:ae:7d:
                    ec:ed:60:1b:19:59:6b:d2:0b:a1:c9:22:2e:86:bc:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:dc:b3:87:34:3c:dd:ec:18:24:16:ca:7f:06:3f:5b:
        9c:db:dc:aa:71:99:77:32:3d:d2:c4:e5:3a:c1:e7:a2:
        16:95:0e:86:eb:df:52:66:33:f9:f8:24:05:bd:7a:79:
        37:de:5c:2b:61:a8:5f:3f:f9:d1:79:04:98:5d:fe:33:
        61:31:d7:e6:0f:e3:5e:65:21:a3:9a:c4:46:c4:59:01:
        d5:04:28:05:1e:e5:4e:26:44:44:dd:e2:77:cd:47:3a:
        3d:2b:2d:7c:0f:87:a6:69:38:9b:23:75:a9:8c:cf:77:
        fb:27:95:8b:af:22:db:45:e6:94:dd:1b:ff:e0:21:c7:
        48:e9:69:22:75:4f:fc:b9:0c:15:2a:cb:76:8b:8d:2a:
        96:5f:e2:6c:51:6d:b8:8b:7b:35:46:8a:cd:ca:f7:2d:
        e4:ff:e4:6d:39:1a:3c:2d:32:2b:25:52:63:aa:cf:b6:
        d8:df:a0:8a:64:7e:82:af:46:0d:a6:e8:8d:19:9b:ad:
        50:52:17:55:1f:be:69:74:aa:43:e7:e8:b2:c3:ef:c7:
        11:01:38:c9:26:04:6d:36:ac:63:53:f2:7c:51:5d:b9:
        d4:43:b2:84:4e:63:e6:b1:31:3c:c7:01:17:61:26:b9:
        44:46:01:c6:1f:b8:2a:84:49:c0:9b:af:62:cb:94:07
    Fingerprint (SHA-256):
        35:C8:16:87:E5:1D:65:A0:C6:2C:05:6A:18:78:81:34:1D:2F:34:55:D3:87:0D:D1:3C:34:A0:18:3C:F7:D8:32
    Fingerprint (SHA1):
        14:48:16:2B:C2:73:12:C6:55:D3:5F:E3:B9:51:38:90:3D:CA:A1:FD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14305: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14306: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175914 (0x3cdde86a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 18:24:40 2017
            Not After : Fri Oct 21 18:24:40 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:74:08:49:4b:d8:92:3d:c3:f5:94:4c:20:c0:5c:69:
                    ab:8e:31:aa:b8:01:4e:19:d2:af:3e:64:a9:c2:06:68:
                    5b:71:ac:98:fa:0d:0f:7b:1e:7b:c0:91:65:bf:7d:5a:
                    5b:5f:2c:48:32:20:d1:61:42:4c:d0:1e:32:b1:2a:5d:
                    d8:3d:b4:d7:00:4b:71:44:73:4f:29:14:aa:69:74:3d:
                    e5:83:7f:0e:26:07:90:7e:e9:93:f6:77:01:bb:21:8a:
                    8d:35:65:8e:c3:92:90:37:e0:32:f6:4c:ef:ad:02:eb:
                    b4:f0:03:1c:3a:5c:ac:5a:47:3f:14:5b:3a:06:7e:12:
                    93:93:d4:fe:ae:82:a0:85:93:c1:90:98:a8:15:20:52:
                    a1:fb:0f:ac:e4:c9:17:2c:b3:8c:a3:28:7e:c4:85:a3:
                    10:27:68:6b:4a:04:d1:8b:c9:e9:45:0b:af:60:fb:05:
                    b3:7e:7e:70:f1:22:94:70:06:6a:a3:da:8b:bd:6a:c3:
                    ba:33:4c:22:fb:fb:81:54:6f:9c:c3:6d:c0:c4:70:34:
                    7e:32:55:02:9b:e4:00:6c:f5:b3:9b:a6:2d:3c:bf:67:
                    50:80:7d:8a:df:0d:7c:6c:3e:e4:47:f3:34:b8:ae:fd:
                    ed:b9:da:d2:c4:94:08:9b:f9:43:dc:12:28:ee:f4:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        11:a9:58:da:2e:72:d2:a4:ea:96:30:ac:19:97:44:33:
        37:16:b8:b3:8a:84:f5:4f:a1:88:e1:42:0a:78:88:43:
        75:30:3f:6c:d5:1d:95:ce:e6:05:d0:2a:9c:1c:f9:db:
        35:f4:53:f1:30:89:c6:23:3a:aa:6c:5d:08:17:60:c7:
        13:e5:bd:c0:ba:a6:2c:d3:10:fc:3e:67:74:0c:22:21:
        5e:c6:11:59:21:cc:33:1d:3c:b6:93:0e:e6:f1:12:e5:
        cc:dc:b1:d8:f6:67:0a:9a:b9:9e:c5:ec:d2:94:1c:6f:
        f5:3d:ae:f5:39:00:ae:1e:17:26:a1:79:cf:f8:12:a6:
        66:19:f1:dd:9a:9d:6a:b7:50:7c:c9:ec:73:6a:b7:6b:
        1f:79:a3:35:d0:87:cc:5d:70:ff:b5:6f:aa:23:54:77:
        08:c2:26:72:26:2b:6f:37:97:96:db:9a:9a:38:71:e9:
        87:7b:29:d5:43:86:79:d1:23:15:d2:e4:f0:ac:4e:71:
        08:7e:7c:d7:39:87:bf:8e:5e:f9:c5:b1:2b:4e:d9:43:
        d2:d1:b2:87:df:9a:ce:f6:a7:00:63:87:2c:cc:26:c6:
        a7:4a:ff:00:b7:6c:df:41:6f:7a:a6:93:3c:8c:ec:4a:
        66:9e:1a:1e:c7:0c:19:a3:d6:aa:7c:3b:90:bb:6e:41
    Fingerprint (SHA-256):
        C8:9F:84:03:33:1E:DD:EC:EE:90:40:06:6A:0B:8F:45:30:74:19:11:8E:1F:2F:26:47:87:9D:E6:70:74:EA:EB
    Fingerprint (SHA1):
        A5:BB:5A:72:A8:FE:79:ED:AB:3F:CD:EA:F2:09:29:1E:90:FE:12:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #14307: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14308: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14309: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175916 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14310: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14311: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14312: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14313: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021175917   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14314: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14315: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14316: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14317: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021175918   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14318: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14319: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #14320: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14321: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 1021175919   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14322: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14323: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #14324: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14325: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 1021175920   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14326: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14327: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14328: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175916 (0x3cdde86c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:25:06 2017
            Not After : Fri Oct 21 18:25:06 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:58:46:9b:89:5a:b5:9d:70:f4:04:6b:a5:1e:50:3d:
                    b7:ba:1e:ad:fb:cc:37:67:78:97:23:48:27:dd:47:bc:
                    6d:9a:91:49:b1:d0:73:b1:34:91:98:13:5e:50:41:8f:
                    31:31:a3:e7:f0:c6:0e:4c:64:9e:e1:0b:37:e6:24:73:
                    d7:0b:25:f6:44:c7:b7:c5:96:02:c0:ab:ac:97:1c:a9:
                    99:61:7f:4c:c3:99:51:31:ef:3c:31:df:ae:b4:58:27:
                    c9:62:81:df:a9:03:d3:16:5a:e3:d7:89:d3:56:a6:cd:
                    0d:07:7e:1a:56:7f:70:5a:d1:ea:85:6b:0a:b7:ae:f7:
                    20:fa:58:a1:d6:d9:90:27:81:3e:a7:d2:43:27:d3:ad:
                    bf:90:dd:e0:42:96:f1:aa:36:ad:a4:c8:d1:99:42:7b:
                    5d:0e:a4:9c:4d:94:2f:3a:b2:4d:51:32:ae:16:9d:7c:
                    7b:8b:fe:7d:e8:df:97:e1:a8:98:28:7b:0c:42:39:06:
                    69:5b:69:3f:68:7b:59:84:db:0f:e5:e9:ad:3b:13:ac:
                    f9:d6:1e:5f:28:80:72:69:1b:9f:2e:fe:28:2f:ba:15:
                    4c:1b:73:75:88:49:4a:00:41:44:20:a9:04:00:66:61:
                    94:4f:c8:07:ad:79:c7:bd:2a:b9:12:6f:59:34:74:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        76:da:d4:1a:1b:01:77:da:fc:1f:79:31:78:57:e7:bd:
        bb:09:17:3d:f9:3c:3b:3d:0d:01:55:c6:d4:d7:ba:0d:
        54:61:6e:64:e1:2d:2c:51:8c:b7:68:00:5e:bc:a4:a0:
        18:1c:d3:65:33:62:9d:82:71:26:37:da:25:33:69:70:
        60:6e:d9:fd:4f:56:1f:b9:33:20:d7:e9:59:8f:80:7d:
        ce:b1:32:9b:c6:67:ca:c7:0a:f6:60:78:0e:c0:9a:dc:
        14:39:2f:79:37:69:8f:f9:8d:1f:86:96:33:b6:bd:a0:
        b3:63:a5:89:12:7c:61:20:fe:75:1b:38:8e:79:b6:df:
        15:6f:84:5a:35:7c:e5:ee:d4:ce:34:20:2d:6c:4d:82:
        84:28:14:e5:96:b9:a8:2a:19:1a:0f:6d:cb:42:9a:86:
        00:c1:25:63:7e:df:40:6a:61:a5:b7:d2:c7:07:bd:4a:
        ce:af:e1:cf:c9:5f:a1:4b:7f:be:6e:2a:32:d5:32:01:
        ab:48:7e:43:5e:1f:1a:d2:de:17:ee:bf:f5:b7:4b:80:
        8b:6c:b8:ef:bc:a4:d0:32:52:5b:3b:5d:e8:ff:62:ff:
        07:30:00:91:fc:92:a4:07:d5:8f:e6:f4:8c:8b:06:85:
        22:a7:60:49:be:b6:62:01:1c:c3:c8:c7:0d:aa:d3:ce
    Fingerprint (SHA-256):
        DF:AE:EB:A6:D3:45:63:0A:6F:FB:15:3A:C4:96:13:4A:14:46:7D:72:74:BF:CF:E6:D0:11:07:AA:7F:DD:F5:77
    Fingerprint (SHA1):
        5A:6B:D7:A1:68:98:B9:3D:ED:94:40:38:41:7A:B1:6C:65:83:81:1A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14329: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14330: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175917 (0x3cdde86d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:25:13 2017
            Not After : Fri Oct 21 18:25:13 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:f9:d7:79:21:10:8e:66:48:a2:75:fd:b5:df:1d:cb:
                    30:7a:46:49:90:ff:51:c8:99:8c:9c:a1:59:2e:60:cc:
                    8a:5e:43:09:ed:5c:f6:46:6a:99:6c:35:de:1d:70:ba:
                    64:cb:fa:b6:30:e4:1e:e6:fa:7e:70:74:5f:a0:3c:40:
                    b0:a9:49:c8:16:95:36:05:74:0a:86:29:5c:fd:0f:a2:
                    47:bb:4a:82:5e:28:29:4b:d6:b3:da:50:7d:5a:68:f3:
                    0d:02:e0:b4:75:57:91:d0:94:71:7b:82:b4:3d:fc:0c:
                    40:dd:7c:5c:01:1f:7f:1c:01:5e:4f:51:e9:96:01:82:
                    28:86:6c:e2:bb:7e:e8:48:15:09:28:44:7e:19:b7:5d:
                    84:3b:9c:a4:a5:25:67:54:ca:bb:4d:82:5b:a5:f5:8e:
                    14:f5:85:68:bb:49:02:a4:2d:09:63:56:00:64:8b:91:
                    83:14:93:c4:aa:2e:64:ec:1f:b5:d6:c6:9c:10:0c:ae:
                    c3:93:09:2d:46:7e:70:2d:f0:1e:fd:14:93:64:d0:a1:
                    42:9e:78:74:11:a1:c3:13:b8:3f:2c:27:d9:a8:e4:96:
                    c7:04:f7:90:d2:4c:14:b2:c1:33:d8:b9:c6:99:a0:03:
                    8d:54:0f:9f:c3:71:3c:76:fe:4d:9e:6e:c7:ac:a5:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:34:db:00:11:64:72:ec:9b:4f:89:23:bd:82:93:d1:
        66:97:57:06:1e:92:cf:bb:da:38:51:19:7c:be:31:2c:
        f4:14:07:c6:a0:a4:2e:95:2f:57:01:cd:f7:99:66:54:
        42:34:a5:cc:d3:e2:43:74:4d:d7:2f:58:26:e8:02:e3:
        b4:1f:97:92:a5:97:b2:87:f0:62:8c:77:db:2b:13:5c:
        f8:a3:d3:33:04:f9:42:17:5c:fa:25:c3:1b:39:eb:4c:
        46:22:f0:d0:50:8a:e5:a4:71:11:44:ed:9e:6a:f0:8c:
        b9:c4:14:6d:11:34:c1:43:e5:ff:93:c0:bb:a4:bd:c0:
        0d:0b:e6:89:e9:69:ef:fe:05:b5:9d:24:f5:db:95:50:
        13:17:a6:7c:03:e3:d1:6c:a3:dd:21:10:bc:f4:d2:15:
        1a:95:90:a1:dc:33:2e:8b:ba:d4:1b:bb:4c:94:8f:4c:
        ce:0e:aa:dc:e0:37:89:52:2d:43:52:a6:a9:c2:81:06:
        79:01:35:1b:19:d8:ad:44:5c:22:69:2d:cf:cc:7d:b4:
        b6:fb:8b:7d:a5:41:c7:7c:41:29:cc:77:fb:d3:23:ca:
        6e:be:6d:89:e3:ce:c2:ef:7d:5e:b3:c6:0d:4c:52:7f:
        98:13:a0:33:56:3d:52:6d:5c:c6:be:2e:a7:1d:49:0f
    Fingerprint (SHA-256):
        C1:D0:0A:2D:A2:04:DD:3A:4E:ED:45:E4:AB:37:7F:F8:FF:3A:0C:E1:02:E5:5D:A7:C9:45:FA:E1:3A:1B:5F:EF
    Fingerprint (SHA1):
        D8:C4:A2:93:D1:C6:75:B1:00:5A:04:16:5D:C5:D8:23:20:7D:B4:E8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14331: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14332: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175918 (0x3cdde86e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 18:25:19 2017
            Not After : Fri Oct 21 18:25:19 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:f1:a2:1a:58:22:33:1c:23:10:73:54:ff:16:24:9b:
                    af:2a:af:1e:a3:d1:29:b1:8c:85:fd:4d:d9:9d:d4:cb:
                    5e:f0:88:41:f7:a0:06:c6:6a:83:38:41:8f:72:09:b2:
                    32:71:0e:22:3a:f9:a7:68:c6:1a:18:ba:b4:0d:fa:9d:
                    7c:7c:ee:dc:15:b1:1d:b0:ab:11:05:18:34:6f:2b:35:
                    00:b4:e8:8d:1d:00:62:50:97:5a:36:47:51:75:2f:08:
                    20:6f:c2:36:c4:9a:9e:7f:86:3a:c5:61:d9:c5:d7:a4:
                    b2:ad:2a:10:02:fe:49:79:1d:f3:92:3b:75:f5:fa:0b:
                    bd:57:46:62:3b:05:3c:55:ec:10:01:9e:84:81:76:04:
                    48:aa:4a:65:3a:6a:6e:0a:f2:5a:9f:74:99:cf:79:ec:
                    15:76:5a:9e:2f:67:28:d3:68:20:c7:e8:d4:e3:58:be:
                    a7:7e:0c:60:a0:47:36:41:e1:b6:17:e7:18:20:e8:4d:
                    40:29:a6:2d:89:f2:0c:3d:71:89:00:ff:16:42:89:02:
                    b4:0f:29:41:5b:0a:b4:61:fd:72:b3:75:1d:21:d2:a1:
                    d4:d3:69:46:8a:60:69:9a:60:5f:5d:50:8e:e2:6b:eb:
                    c0:b1:f2:cc:25:3f:62:9f:0b:9c:16:7a:43:b1:8e:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        61:89:63:43:54:65:0e:d2:bd:e3:ee:e2:ad:01:37:47:
        62:0b:f8:b2:49:4b:2d:c5:c7:bc:90:9b:98:be:80:a2:
        ad:4f:74:74:f4:22:b4:ee:f4:d8:4a:89:07:e4:87:e4:
        23:4d:6b:78:aa:10:83:a8:11:ea:dd:20:27:d9:db:b1:
        90:fd:d6:ff:7c:34:16:bf:26:9b:38:7a:46:f6:4e:fb:
        ff:8e:29:65:7b:36:3a:13:66:7a:40:38:4e:b5:4f:27:
        f4:0b:79:fc:ce:d7:ba:57:db:87:53:39:b6:13:83:97:
        bf:c8:f4:95:de:5d:90:43:02:65:7e:8a:60:09:12:24:
        4c:44:15:af:ea:6c:58:61:53:d4:2e:ed:ec:6d:09:94:
        90:c3:ca:81:ad:a0:de:e8:0b:fb:e5:9c:f6:5b:65:31:
        eb:53:c0:18:d8:5e:95:45:cf:e8:70:2f:56:82:04:5d:
        ca:20:46:81:80:ec:c6:d9:37:b3:d2:f3:cc:a6:4b:31:
        16:6c:ea:60:02:3f:45:04:85:ad:c2:6c:08:49:ea:ee:
        5b:94:4f:10:c1:5f:a6:a2:39:cb:a4:97:12:02:77:ca:
        25:42:2e:bf:fd:b2:af:2c:43:09:13:02:3b:45:18:85:
        bd:d1:d3:9b:cd:d7:6f:be:37:2d:33:dd:15:f8:de:7e
    Fingerprint (SHA-256):
        7A:7B:9A:89:5A:61:55:45:83:8D:18:35:46:B2:B1:23:92:A9:5C:59:A5:85:D6:08:3D:D0:50:EF:9A:A1:FB:5A
    Fingerprint (SHA1):
        2D:7D:BD:3E:6C:3C:23:68:AC:44:C5:D4:19:2D:1F:1F:A2:C9:A0:71
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14333: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14334: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #14335: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #14336: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #14337: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175916 (0x3cdde86c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:25:06 2017
            Not After : Fri Oct 21 18:25:06 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:58:46:9b:89:5a:b5:9d:70:f4:04:6b:a5:1e:50:3d:
                    b7:ba:1e:ad:fb:cc:37:67:78:97:23:48:27:dd:47:bc:
                    6d:9a:91:49:b1:d0:73:b1:34:91:98:13:5e:50:41:8f:
                    31:31:a3:e7:f0:c6:0e:4c:64:9e:e1:0b:37:e6:24:73:
                    d7:0b:25:f6:44:c7:b7:c5:96:02:c0:ab:ac:97:1c:a9:
                    99:61:7f:4c:c3:99:51:31:ef:3c:31:df:ae:b4:58:27:
                    c9:62:81:df:a9:03:d3:16:5a:e3:d7:89:d3:56:a6:cd:
                    0d:07:7e:1a:56:7f:70:5a:d1:ea:85:6b:0a:b7:ae:f7:
                    20:fa:58:a1:d6:d9:90:27:81:3e:a7:d2:43:27:d3:ad:
                    bf:90:dd:e0:42:96:f1:aa:36:ad:a4:c8:d1:99:42:7b:
                    5d:0e:a4:9c:4d:94:2f:3a:b2:4d:51:32:ae:16:9d:7c:
                    7b:8b:fe:7d:e8:df:97:e1:a8:98:28:7b:0c:42:39:06:
                    69:5b:69:3f:68:7b:59:84:db:0f:e5:e9:ad:3b:13:ac:
                    f9:d6:1e:5f:28:80:72:69:1b:9f:2e:fe:28:2f:ba:15:
                    4c:1b:73:75:88:49:4a:00:41:44:20:a9:04:00:66:61:
                    94:4f:c8:07:ad:79:c7:bd:2a:b9:12:6f:59:34:74:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        76:da:d4:1a:1b:01:77:da:fc:1f:79:31:78:57:e7:bd:
        bb:09:17:3d:f9:3c:3b:3d:0d:01:55:c6:d4:d7:ba:0d:
        54:61:6e:64:e1:2d:2c:51:8c:b7:68:00:5e:bc:a4:a0:
        18:1c:d3:65:33:62:9d:82:71:26:37:da:25:33:69:70:
        60:6e:d9:fd:4f:56:1f:b9:33:20:d7:e9:59:8f:80:7d:
        ce:b1:32:9b:c6:67:ca:c7:0a:f6:60:78:0e:c0:9a:dc:
        14:39:2f:79:37:69:8f:f9:8d:1f:86:96:33:b6:bd:a0:
        b3:63:a5:89:12:7c:61:20:fe:75:1b:38:8e:79:b6:df:
        15:6f:84:5a:35:7c:e5:ee:d4:ce:34:20:2d:6c:4d:82:
        84:28:14:e5:96:b9:a8:2a:19:1a:0f:6d:cb:42:9a:86:
        00:c1:25:63:7e:df:40:6a:61:a5:b7:d2:c7:07:bd:4a:
        ce:af:e1:cf:c9:5f:a1:4b:7f:be:6e:2a:32:d5:32:01:
        ab:48:7e:43:5e:1f:1a:d2:de:17:ee:bf:f5:b7:4b:80:
        8b:6c:b8:ef:bc:a4:d0:32:52:5b:3b:5d:e8:ff:62:ff:
        07:30:00:91:fc:92:a4:07:d5:8f:e6:f4:8c:8b:06:85:
        22:a7:60:49:be:b6:62:01:1c:c3:c8:c7:0d:aa:d3:ce
    Fingerprint (SHA-256):
        DF:AE:EB:A6:D3:45:63:0A:6F:FB:15:3A:C4:96:13:4A:14:46:7D:72:74:BF:CF:E6:D0:11:07:AA:7F:DD:F5:77
    Fingerprint (SHA1):
        5A:6B:D7:A1:68:98:B9:3D:ED:94:40:38:41:7A:B1:6C:65:83:81:1A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14338: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14339: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175917 (0x3cdde86d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:25:13 2017
            Not After : Fri Oct 21 18:25:13 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:f9:d7:79:21:10:8e:66:48:a2:75:fd:b5:df:1d:cb:
                    30:7a:46:49:90:ff:51:c8:99:8c:9c:a1:59:2e:60:cc:
                    8a:5e:43:09:ed:5c:f6:46:6a:99:6c:35:de:1d:70:ba:
                    64:cb:fa:b6:30:e4:1e:e6:fa:7e:70:74:5f:a0:3c:40:
                    b0:a9:49:c8:16:95:36:05:74:0a:86:29:5c:fd:0f:a2:
                    47:bb:4a:82:5e:28:29:4b:d6:b3:da:50:7d:5a:68:f3:
                    0d:02:e0:b4:75:57:91:d0:94:71:7b:82:b4:3d:fc:0c:
                    40:dd:7c:5c:01:1f:7f:1c:01:5e:4f:51:e9:96:01:82:
                    28:86:6c:e2:bb:7e:e8:48:15:09:28:44:7e:19:b7:5d:
                    84:3b:9c:a4:a5:25:67:54:ca:bb:4d:82:5b:a5:f5:8e:
                    14:f5:85:68:bb:49:02:a4:2d:09:63:56:00:64:8b:91:
                    83:14:93:c4:aa:2e:64:ec:1f:b5:d6:c6:9c:10:0c:ae:
                    c3:93:09:2d:46:7e:70:2d:f0:1e:fd:14:93:64:d0:a1:
                    42:9e:78:74:11:a1:c3:13:b8:3f:2c:27:d9:a8:e4:96:
                    c7:04:f7:90:d2:4c:14:b2:c1:33:d8:b9:c6:99:a0:03:
                    8d:54:0f:9f:c3:71:3c:76:fe:4d:9e:6e:c7:ac:a5:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:34:db:00:11:64:72:ec:9b:4f:89:23:bd:82:93:d1:
        66:97:57:06:1e:92:cf:bb:da:38:51:19:7c:be:31:2c:
        f4:14:07:c6:a0:a4:2e:95:2f:57:01:cd:f7:99:66:54:
        42:34:a5:cc:d3:e2:43:74:4d:d7:2f:58:26:e8:02:e3:
        b4:1f:97:92:a5:97:b2:87:f0:62:8c:77:db:2b:13:5c:
        f8:a3:d3:33:04:f9:42:17:5c:fa:25:c3:1b:39:eb:4c:
        46:22:f0:d0:50:8a:e5:a4:71:11:44:ed:9e:6a:f0:8c:
        b9:c4:14:6d:11:34:c1:43:e5:ff:93:c0:bb:a4:bd:c0:
        0d:0b:e6:89:e9:69:ef:fe:05:b5:9d:24:f5:db:95:50:
        13:17:a6:7c:03:e3:d1:6c:a3:dd:21:10:bc:f4:d2:15:
        1a:95:90:a1:dc:33:2e:8b:ba:d4:1b:bb:4c:94:8f:4c:
        ce:0e:aa:dc:e0:37:89:52:2d:43:52:a6:a9:c2:81:06:
        79:01:35:1b:19:d8:ad:44:5c:22:69:2d:cf:cc:7d:b4:
        b6:fb:8b:7d:a5:41:c7:7c:41:29:cc:77:fb:d3:23:ca:
        6e:be:6d:89:e3:ce:c2:ef:7d:5e:b3:c6:0d:4c:52:7f:
        98:13:a0:33:56:3d:52:6d:5c:c6:be:2e:a7:1d:49:0f
    Fingerprint (SHA-256):
        C1:D0:0A:2D:A2:04:DD:3A:4E:ED:45:E4:AB:37:7F:F8:FF:3A:0C:E1:02:E5:5D:A7:C9:45:FA:E1:3A:1B:5F:EF
    Fingerprint (SHA1):
        D8:C4:A2:93:D1:C6:75:B1:00:5A:04:16:5D:C5:D8:23:20:7D:B4:E8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14340: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14341: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175918 (0x3cdde86e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 18:25:19 2017
            Not After : Fri Oct 21 18:25:19 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:f1:a2:1a:58:22:33:1c:23:10:73:54:ff:16:24:9b:
                    af:2a:af:1e:a3:d1:29:b1:8c:85:fd:4d:d9:9d:d4:cb:
                    5e:f0:88:41:f7:a0:06:c6:6a:83:38:41:8f:72:09:b2:
                    32:71:0e:22:3a:f9:a7:68:c6:1a:18:ba:b4:0d:fa:9d:
                    7c:7c:ee:dc:15:b1:1d:b0:ab:11:05:18:34:6f:2b:35:
                    00:b4:e8:8d:1d:00:62:50:97:5a:36:47:51:75:2f:08:
                    20:6f:c2:36:c4:9a:9e:7f:86:3a:c5:61:d9:c5:d7:a4:
                    b2:ad:2a:10:02:fe:49:79:1d:f3:92:3b:75:f5:fa:0b:
                    bd:57:46:62:3b:05:3c:55:ec:10:01:9e:84:81:76:04:
                    48:aa:4a:65:3a:6a:6e:0a:f2:5a:9f:74:99:cf:79:ec:
                    15:76:5a:9e:2f:67:28:d3:68:20:c7:e8:d4:e3:58:be:
                    a7:7e:0c:60:a0:47:36:41:e1:b6:17:e7:18:20:e8:4d:
                    40:29:a6:2d:89:f2:0c:3d:71:89:00:ff:16:42:89:02:
                    b4:0f:29:41:5b:0a:b4:61:fd:72:b3:75:1d:21:d2:a1:
                    d4:d3:69:46:8a:60:69:9a:60:5f:5d:50:8e:e2:6b:eb:
                    c0:b1:f2:cc:25:3f:62:9f:0b:9c:16:7a:43:b1:8e:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        61:89:63:43:54:65:0e:d2:bd:e3:ee:e2:ad:01:37:47:
        62:0b:f8:b2:49:4b:2d:c5:c7:bc:90:9b:98:be:80:a2:
        ad:4f:74:74:f4:22:b4:ee:f4:d8:4a:89:07:e4:87:e4:
        23:4d:6b:78:aa:10:83:a8:11:ea:dd:20:27:d9:db:b1:
        90:fd:d6:ff:7c:34:16:bf:26:9b:38:7a:46:f6:4e:fb:
        ff:8e:29:65:7b:36:3a:13:66:7a:40:38:4e:b5:4f:27:
        f4:0b:79:fc:ce:d7:ba:57:db:87:53:39:b6:13:83:97:
        bf:c8:f4:95:de:5d:90:43:02:65:7e:8a:60:09:12:24:
        4c:44:15:af:ea:6c:58:61:53:d4:2e:ed:ec:6d:09:94:
        90:c3:ca:81:ad:a0:de:e8:0b:fb:e5:9c:f6:5b:65:31:
        eb:53:c0:18:d8:5e:95:45:cf:e8:70:2f:56:82:04:5d:
        ca:20:46:81:80:ec:c6:d9:37:b3:d2:f3:cc:a6:4b:31:
        16:6c:ea:60:02:3f:45:04:85:ad:c2:6c:08:49:ea:ee:
        5b:94:4f:10:c1:5f:a6:a2:39:cb:a4:97:12:02:77:ca:
        25:42:2e:bf:fd:b2:af:2c:43:09:13:02:3b:45:18:85:
        bd:d1:d3:9b:cd:d7:6f:be:37:2d:33:dd:15:f8:de:7e
    Fingerprint (SHA-256):
        7A:7B:9A:89:5A:61:55:45:83:8D:18:35:46:B2:B1:23:92:A9:5C:59:A5:85:D6:08:3D:D0:50:EF:9A:A1:FB:5A
    Fingerprint (SHA1):
        2D:7D:BD:3E:6C:3C:23:68:AC:44:C5:D4:19:2D:1F:1F:A2:C9:A0:71
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14342: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14343: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175916 (0x3cdde86c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:25:06 2017
            Not After : Fri Oct 21 18:25:06 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:58:46:9b:89:5a:b5:9d:70:f4:04:6b:a5:1e:50:3d:
                    b7:ba:1e:ad:fb:cc:37:67:78:97:23:48:27:dd:47:bc:
                    6d:9a:91:49:b1:d0:73:b1:34:91:98:13:5e:50:41:8f:
                    31:31:a3:e7:f0:c6:0e:4c:64:9e:e1:0b:37:e6:24:73:
                    d7:0b:25:f6:44:c7:b7:c5:96:02:c0:ab:ac:97:1c:a9:
                    99:61:7f:4c:c3:99:51:31:ef:3c:31:df:ae:b4:58:27:
                    c9:62:81:df:a9:03:d3:16:5a:e3:d7:89:d3:56:a6:cd:
                    0d:07:7e:1a:56:7f:70:5a:d1:ea:85:6b:0a:b7:ae:f7:
                    20:fa:58:a1:d6:d9:90:27:81:3e:a7:d2:43:27:d3:ad:
                    bf:90:dd:e0:42:96:f1:aa:36:ad:a4:c8:d1:99:42:7b:
                    5d:0e:a4:9c:4d:94:2f:3a:b2:4d:51:32:ae:16:9d:7c:
                    7b:8b:fe:7d:e8:df:97:e1:a8:98:28:7b:0c:42:39:06:
                    69:5b:69:3f:68:7b:59:84:db:0f:e5:e9:ad:3b:13:ac:
                    f9:d6:1e:5f:28:80:72:69:1b:9f:2e:fe:28:2f:ba:15:
                    4c:1b:73:75:88:49:4a:00:41:44:20:a9:04:00:66:61:
                    94:4f:c8:07:ad:79:c7:bd:2a:b9:12:6f:59:34:74:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        76:da:d4:1a:1b:01:77:da:fc:1f:79:31:78:57:e7:bd:
        bb:09:17:3d:f9:3c:3b:3d:0d:01:55:c6:d4:d7:ba:0d:
        54:61:6e:64:e1:2d:2c:51:8c:b7:68:00:5e:bc:a4:a0:
        18:1c:d3:65:33:62:9d:82:71:26:37:da:25:33:69:70:
        60:6e:d9:fd:4f:56:1f:b9:33:20:d7:e9:59:8f:80:7d:
        ce:b1:32:9b:c6:67:ca:c7:0a:f6:60:78:0e:c0:9a:dc:
        14:39:2f:79:37:69:8f:f9:8d:1f:86:96:33:b6:bd:a0:
        b3:63:a5:89:12:7c:61:20:fe:75:1b:38:8e:79:b6:df:
        15:6f:84:5a:35:7c:e5:ee:d4:ce:34:20:2d:6c:4d:82:
        84:28:14:e5:96:b9:a8:2a:19:1a:0f:6d:cb:42:9a:86:
        00:c1:25:63:7e:df:40:6a:61:a5:b7:d2:c7:07:bd:4a:
        ce:af:e1:cf:c9:5f:a1:4b:7f:be:6e:2a:32:d5:32:01:
        ab:48:7e:43:5e:1f:1a:d2:de:17:ee:bf:f5:b7:4b:80:
        8b:6c:b8:ef:bc:a4:d0:32:52:5b:3b:5d:e8:ff:62:ff:
        07:30:00:91:fc:92:a4:07:d5:8f:e6:f4:8c:8b:06:85:
        22:a7:60:49:be:b6:62:01:1c:c3:c8:c7:0d:aa:d3:ce
    Fingerprint (SHA-256):
        DF:AE:EB:A6:D3:45:63:0A:6F:FB:15:3A:C4:96:13:4A:14:46:7D:72:74:BF:CF:E6:D0:11:07:AA:7F:DD:F5:77
    Fingerprint (SHA1):
        5A:6B:D7:A1:68:98:B9:3D:ED:94:40:38:41:7A:B1:6C:65:83:81:1A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14344: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175916 (0x3cdde86c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:25:06 2017
            Not After : Fri Oct 21 18:25:06 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:58:46:9b:89:5a:b5:9d:70:f4:04:6b:a5:1e:50:3d:
                    b7:ba:1e:ad:fb:cc:37:67:78:97:23:48:27:dd:47:bc:
                    6d:9a:91:49:b1:d0:73:b1:34:91:98:13:5e:50:41:8f:
                    31:31:a3:e7:f0:c6:0e:4c:64:9e:e1:0b:37:e6:24:73:
                    d7:0b:25:f6:44:c7:b7:c5:96:02:c0:ab:ac:97:1c:a9:
                    99:61:7f:4c:c3:99:51:31:ef:3c:31:df:ae:b4:58:27:
                    c9:62:81:df:a9:03:d3:16:5a:e3:d7:89:d3:56:a6:cd:
                    0d:07:7e:1a:56:7f:70:5a:d1:ea:85:6b:0a:b7:ae:f7:
                    20:fa:58:a1:d6:d9:90:27:81:3e:a7:d2:43:27:d3:ad:
                    bf:90:dd:e0:42:96:f1:aa:36:ad:a4:c8:d1:99:42:7b:
                    5d:0e:a4:9c:4d:94:2f:3a:b2:4d:51:32:ae:16:9d:7c:
                    7b:8b:fe:7d:e8:df:97:e1:a8:98:28:7b:0c:42:39:06:
                    69:5b:69:3f:68:7b:59:84:db:0f:e5:e9:ad:3b:13:ac:
                    f9:d6:1e:5f:28:80:72:69:1b:9f:2e:fe:28:2f:ba:15:
                    4c:1b:73:75:88:49:4a:00:41:44:20:a9:04:00:66:61:
                    94:4f:c8:07:ad:79:c7:bd:2a:b9:12:6f:59:34:74:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        76:da:d4:1a:1b:01:77:da:fc:1f:79:31:78:57:e7:bd:
        bb:09:17:3d:f9:3c:3b:3d:0d:01:55:c6:d4:d7:ba:0d:
        54:61:6e:64:e1:2d:2c:51:8c:b7:68:00:5e:bc:a4:a0:
        18:1c:d3:65:33:62:9d:82:71:26:37:da:25:33:69:70:
        60:6e:d9:fd:4f:56:1f:b9:33:20:d7:e9:59:8f:80:7d:
        ce:b1:32:9b:c6:67:ca:c7:0a:f6:60:78:0e:c0:9a:dc:
        14:39:2f:79:37:69:8f:f9:8d:1f:86:96:33:b6:bd:a0:
        b3:63:a5:89:12:7c:61:20:fe:75:1b:38:8e:79:b6:df:
        15:6f:84:5a:35:7c:e5:ee:d4:ce:34:20:2d:6c:4d:82:
        84:28:14:e5:96:b9:a8:2a:19:1a:0f:6d:cb:42:9a:86:
        00:c1:25:63:7e:df:40:6a:61:a5:b7:d2:c7:07:bd:4a:
        ce:af:e1:cf:c9:5f:a1:4b:7f:be:6e:2a:32:d5:32:01:
        ab:48:7e:43:5e:1f:1a:d2:de:17:ee:bf:f5:b7:4b:80:
        8b:6c:b8:ef:bc:a4:d0:32:52:5b:3b:5d:e8:ff:62:ff:
        07:30:00:91:fc:92:a4:07:d5:8f:e6:f4:8c:8b:06:85:
        22:a7:60:49:be:b6:62:01:1c:c3:c8:c7:0d:aa:d3:ce
    Fingerprint (SHA-256):
        DF:AE:EB:A6:D3:45:63:0A:6F:FB:15:3A:C4:96:13:4A:14:46:7D:72:74:BF:CF:E6:D0:11:07:AA:7F:DD:F5:77
    Fingerprint (SHA1):
        5A:6B:D7:A1:68:98:B9:3D:ED:94:40:38:41:7A:B1:6C:65:83:81:1A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14345: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175917 (0x3cdde86d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:25:13 2017
            Not After : Fri Oct 21 18:25:13 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:f9:d7:79:21:10:8e:66:48:a2:75:fd:b5:df:1d:cb:
                    30:7a:46:49:90:ff:51:c8:99:8c:9c:a1:59:2e:60:cc:
                    8a:5e:43:09:ed:5c:f6:46:6a:99:6c:35:de:1d:70:ba:
                    64:cb:fa:b6:30:e4:1e:e6:fa:7e:70:74:5f:a0:3c:40:
                    b0:a9:49:c8:16:95:36:05:74:0a:86:29:5c:fd:0f:a2:
                    47:bb:4a:82:5e:28:29:4b:d6:b3:da:50:7d:5a:68:f3:
                    0d:02:e0:b4:75:57:91:d0:94:71:7b:82:b4:3d:fc:0c:
                    40:dd:7c:5c:01:1f:7f:1c:01:5e:4f:51:e9:96:01:82:
                    28:86:6c:e2:bb:7e:e8:48:15:09:28:44:7e:19:b7:5d:
                    84:3b:9c:a4:a5:25:67:54:ca:bb:4d:82:5b:a5:f5:8e:
                    14:f5:85:68:bb:49:02:a4:2d:09:63:56:00:64:8b:91:
                    83:14:93:c4:aa:2e:64:ec:1f:b5:d6:c6:9c:10:0c:ae:
                    c3:93:09:2d:46:7e:70:2d:f0:1e:fd:14:93:64:d0:a1:
                    42:9e:78:74:11:a1:c3:13:b8:3f:2c:27:d9:a8:e4:96:
                    c7:04:f7:90:d2:4c:14:b2:c1:33:d8:b9:c6:99:a0:03:
                    8d:54:0f:9f:c3:71:3c:76:fe:4d:9e:6e:c7:ac:a5:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:34:db:00:11:64:72:ec:9b:4f:89:23:bd:82:93:d1:
        66:97:57:06:1e:92:cf:bb:da:38:51:19:7c:be:31:2c:
        f4:14:07:c6:a0:a4:2e:95:2f:57:01:cd:f7:99:66:54:
        42:34:a5:cc:d3:e2:43:74:4d:d7:2f:58:26:e8:02:e3:
        b4:1f:97:92:a5:97:b2:87:f0:62:8c:77:db:2b:13:5c:
        f8:a3:d3:33:04:f9:42:17:5c:fa:25:c3:1b:39:eb:4c:
        46:22:f0:d0:50:8a:e5:a4:71:11:44:ed:9e:6a:f0:8c:
        b9:c4:14:6d:11:34:c1:43:e5:ff:93:c0:bb:a4:bd:c0:
        0d:0b:e6:89:e9:69:ef:fe:05:b5:9d:24:f5:db:95:50:
        13:17:a6:7c:03:e3:d1:6c:a3:dd:21:10:bc:f4:d2:15:
        1a:95:90:a1:dc:33:2e:8b:ba:d4:1b:bb:4c:94:8f:4c:
        ce:0e:aa:dc:e0:37:89:52:2d:43:52:a6:a9:c2:81:06:
        79:01:35:1b:19:d8:ad:44:5c:22:69:2d:cf:cc:7d:b4:
        b6:fb:8b:7d:a5:41:c7:7c:41:29:cc:77:fb:d3:23:ca:
        6e:be:6d:89:e3:ce:c2:ef:7d:5e:b3:c6:0d:4c:52:7f:
        98:13:a0:33:56:3d:52:6d:5c:c6:be:2e:a7:1d:49:0f
    Fingerprint (SHA-256):
        C1:D0:0A:2D:A2:04:DD:3A:4E:ED:45:E4:AB:37:7F:F8:FF:3A:0C:E1:02:E5:5D:A7:C9:45:FA:E1:3A:1B:5F:EF
    Fingerprint (SHA1):
        D8:C4:A2:93:D1:C6:75:B1:00:5A:04:16:5D:C5:D8:23:20:7D:B4:E8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14346: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175917 (0x3cdde86d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:25:13 2017
            Not After : Fri Oct 21 18:25:13 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:f9:d7:79:21:10:8e:66:48:a2:75:fd:b5:df:1d:cb:
                    30:7a:46:49:90:ff:51:c8:99:8c:9c:a1:59:2e:60:cc:
                    8a:5e:43:09:ed:5c:f6:46:6a:99:6c:35:de:1d:70:ba:
                    64:cb:fa:b6:30:e4:1e:e6:fa:7e:70:74:5f:a0:3c:40:
                    b0:a9:49:c8:16:95:36:05:74:0a:86:29:5c:fd:0f:a2:
                    47:bb:4a:82:5e:28:29:4b:d6:b3:da:50:7d:5a:68:f3:
                    0d:02:e0:b4:75:57:91:d0:94:71:7b:82:b4:3d:fc:0c:
                    40:dd:7c:5c:01:1f:7f:1c:01:5e:4f:51:e9:96:01:82:
                    28:86:6c:e2:bb:7e:e8:48:15:09:28:44:7e:19:b7:5d:
                    84:3b:9c:a4:a5:25:67:54:ca:bb:4d:82:5b:a5:f5:8e:
                    14:f5:85:68:bb:49:02:a4:2d:09:63:56:00:64:8b:91:
                    83:14:93:c4:aa:2e:64:ec:1f:b5:d6:c6:9c:10:0c:ae:
                    c3:93:09:2d:46:7e:70:2d:f0:1e:fd:14:93:64:d0:a1:
                    42:9e:78:74:11:a1:c3:13:b8:3f:2c:27:d9:a8:e4:96:
                    c7:04:f7:90:d2:4c:14:b2:c1:33:d8:b9:c6:99:a0:03:
                    8d:54:0f:9f:c3:71:3c:76:fe:4d:9e:6e:c7:ac:a5:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:34:db:00:11:64:72:ec:9b:4f:89:23:bd:82:93:d1:
        66:97:57:06:1e:92:cf:bb:da:38:51:19:7c:be:31:2c:
        f4:14:07:c6:a0:a4:2e:95:2f:57:01:cd:f7:99:66:54:
        42:34:a5:cc:d3:e2:43:74:4d:d7:2f:58:26:e8:02:e3:
        b4:1f:97:92:a5:97:b2:87:f0:62:8c:77:db:2b:13:5c:
        f8:a3:d3:33:04:f9:42:17:5c:fa:25:c3:1b:39:eb:4c:
        46:22:f0:d0:50:8a:e5:a4:71:11:44:ed:9e:6a:f0:8c:
        b9:c4:14:6d:11:34:c1:43:e5:ff:93:c0:bb:a4:bd:c0:
        0d:0b:e6:89:e9:69:ef:fe:05:b5:9d:24:f5:db:95:50:
        13:17:a6:7c:03:e3:d1:6c:a3:dd:21:10:bc:f4:d2:15:
        1a:95:90:a1:dc:33:2e:8b:ba:d4:1b:bb:4c:94:8f:4c:
        ce:0e:aa:dc:e0:37:89:52:2d:43:52:a6:a9:c2:81:06:
        79:01:35:1b:19:d8:ad:44:5c:22:69:2d:cf:cc:7d:b4:
        b6:fb:8b:7d:a5:41:c7:7c:41:29:cc:77:fb:d3:23:ca:
        6e:be:6d:89:e3:ce:c2:ef:7d:5e:b3:c6:0d:4c:52:7f:
        98:13:a0:33:56:3d:52:6d:5c:c6:be:2e:a7:1d:49:0f
    Fingerprint (SHA-256):
        C1:D0:0A:2D:A2:04:DD:3A:4E:ED:45:E4:AB:37:7F:F8:FF:3A:0C:E1:02:E5:5D:A7:C9:45:FA:E1:3A:1B:5F:EF
    Fingerprint (SHA1):
        D8:C4:A2:93:D1:C6:75:B1:00:5A:04:16:5D:C5:D8:23:20:7D:B4:E8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14347: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175918 (0x3cdde86e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 18:25:19 2017
            Not After : Fri Oct 21 18:25:19 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:f1:a2:1a:58:22:33:1c:23:10:73:54:ff:16:24:9b:
                    af:2a:af:1e:a3:d1:29:b1:8c:85:fd:4d:d9:9d:d4:cb:
                    5e:f0:88:41:f7:a0:06:c6:6a:83:38:41:8f:72:09:b2:
                    32:71:0e:22:3a:f9:a7:68:c6:1a:18:ba:b4:0d:fa:9d:
                    7c:7c:ee:dc:15:b1:1d:b0:ab:11:05:18:34:6f:2b:35:
                    00:b4:e8:8d:1d:00:62:50:97:5a:36:47:51:75:2f:08:
                    20:6f:c2:36:c4:9a:9e:7f:86:3a:c5:61:d9:c5:d7:a4:
                    b2:ad:2a:10:02:fe:49:79:1d:f3:92:3b:75:f5:fa:0b:
                    bd:57:46:62:3b:05:3c:55:ec:10:01:9e:84:81:76:04:
                    48:aa:4a:65:3a:6a:6e:0a:f2:5a:9f:74:99:cf:79:ec:
                    15:76:5a:9e:2f:67:28:d3:68:20:c7:e8:d4:e3:58:be:
                    a7:7e:0c:60:a0:47:36:41:e1:b6:17:e7:18:20:e8:4d:
                    40:29:a6:2d:89:f2:0c:3d:71:89:00:ff:16:42:89:02:
                    b4:0f:29:41:5b:0a:b4:61:fd:72:b3:75:1d:21:d2:a1:
                    d4:d3:69:46:8a:60:69:9a:60:5f:5d:50:8e:e2:6b:eb:
                    c0:b1:f2:cc:25:3f:62:9f:0b:9c:16:7a:43:b1:8e:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        61:89:63:43:54:65:0e:d2:bd:e3:ee:e2:ad:01:37:47:
        62:0b:f8:b2:49:4b:2d:c5:c7:bc:90:9b:98:be:80:a2:
        ad:4f:74:74:f4:22:b4:ee:f4:d8:4a:89:07:e4:87:e4:
        23:4d:6b:78:aa:10:83:a8:11:ea:dd:20:27:d9:db:b1:
        90:fd:d6:ff:7c:34:16:bf:26:9b:38:7a:46:f6:4e:fb:
        ff:8e:29:65:7b:36:3a:13:66:7a:40:38:4e:b5:4f:27:
        f4:0b:79:fc:ce:d7:ba:57:db:87:53:39:b6:13:83:97:
        bf:c8:f4:95:de:5d:90:43:02:65:7e:8a:60:09:12:24:
        4c:44:15:af:ea:6c:58:61:53:d4:2e:ed:ec:6d:09:94:
        90:c3:ca:81:ad:a0:de:e8:0b:fb:e5:9c:f6:5b:65:31:
        eb:53:c0:18:d8:5e:95:45:cf:e8:70:2f:56:82:04:5d:
        ca:20:46:81:80:ec:c6:d9:37:b3:d2:f3:cc:a6:4b:31:
        16:6c:ea:60:02:3f:45:04:85:ad:c2:6c:08:49:ea:ee:
        5b:94:4f:10:c1:5f:a6:a2:39:cb:a4:97:12:02:77:ca:
        25:42:2e:bf:fd:b2:af:2c:43:09:13:02:3b:45:18:85:
        bd:d1:d3:9b:cd:d7:6f:be:37:2d:33:dd:15:f8:de:7e
    Fingerprint (SHA-256):
        7A:7B:9A:89:5A:61:55:45:83:8D:18:35:46:B2:B1:23:92:A9:5C:59:A5:85:D6:08:3D:D0:50:EF:9A:A1:FB:5A
    Fingerprint (SHA1):
        2D:7D:BD:3E:6C:3C:23:68:AC:44:C5:D4:19:2D:1F:1F:A2:C9:A0:71
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14348: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175918 (0x3cdde86e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 18:25:19 2017
            Not After : Fri Oct 21 18:25:19 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:f1:a2:1a:58:22:33:1c:23:10:73:54:ff:16:24:9b:
                    af:2a:af:1e:a3:d1:29:b1:8c:85:fd:4d:d9:9d:d4:cb:
                    5e:f0:88:41:f7:a0:06:c6:6a:83:38:41:8f:72:09:b2:
                    32:71:0e:22:3a:f9:a7:68:c6:1a:18:ba:b4:0d:fa:9d:
                    7c:7c:ee:dc:15:b1:1d:b0:ab:11:05:18:34:6f:2b:35:
                    00:b4:e8:8d:1d:00:62:50:97:5a:36:47:51:75:2f:08:
                    20:6f:c2:36:c4:9a:9e:7f:86:3a:c5:61:d9:c5:d7:a4:
                    b2:ad:2a:10:02:fe:49:79:1d:f3:92:3b:75:f5:fa:0b:
                    bd:57:46:62:3b:05:3c:55:ec:10:01:9e:84:81:76:04:
                    48:aa:4a:65:3a:6a:6e:0a:f2:5a:9f:74:99:cf:79:ec:
                    15:76:5a:9e:2f:67:28:d3:68:20:c7:e8:d4:e3:58:be:
                    a7:7e:0c:60:a0:47:36:41:e1:b6:17:e7:18:20:e8:4d:
                    40:29:a6:2d:89:f2:0c:3d:71:89:00:ff:16:42:89:02:
                    b4:0f:29:41:5b:0a:b4:61:fd:72:b3:75:1d:21:d2:a1:
                    d4:d3:69:46:8a:60:69:9a:60:5f:5d:50:8e:e2:6b:eb:
                    c0:b1:f2:cc:25:3f:62:9f:0b:9c:16:7a:43:b1:8e:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        61:89:63:43:54:65:0e:d2:bd:e3:ee:e2:ad:01:37:47:
        62:0b:f8:b2:49:4b:2d:c5:c7:bc:90:9b:98:be:80:a2:
        ad:4f:74:74:f4:22:b4:ee:f4:d8:4a:89:07:e4:87:e4:
        23:4d:6b:78:aa:10:83:a8:11:ea:dd:20:27:d9:db:b1:
        90:fd:d6:ff:7c:34:16:bf:26:9b:38:7a:46:f6:4e:fb:
        ff:8e:29:65:7b:36:3a:13:66:7a:40:38:4e:b5:4f:27:
        f4:0b:79:fc:ce:d7:ba:57:db:87:53:39:b6:13:83:97:
        bf:c8:f4:95:de:5d:90:43:02:65:7e:8a:60:09:12:24:
        4c:44:15:af:ea:6c:58:61:53:d4:2e:ed:ec:6d:09:94:
        90:c3:ca:81:ad:a0:de:e8:0b:fb:e5:9c:f6:5b:65:31:
        eb:53:c0:18:d8:5e:95:45:cf:e8:70:2f:56:82:04:5d:
        ca:20:46:81:80:ec:c6:d9:37:b3:d2:f3:cc:a6:4b:31:
        16:6c:ea:60:02:3f:45:04:85:ad:c2:6c:08:49:ea:ee:
        5b:94:4f:10:c1:5f:a6:a2:39:cb:a4:97:12:02:77:ca:
        25:42:2e:bf:fd:b2:af:2c:43:09:13:02:3b:45:18:85:
        bd:d1:d3:9b:cd:d7:6f:be:37:2d:33:dd:15:f8:de:7e
    Fingerprint (SHA-256):
        7A:7B:9A:89:5A:61:55:45:83:8D:18:35:46:B2:B1:23:92:A9:5C:59:A5:85:D6:08:3D:D0:50:EF:9A:A1:FB:5A
    Fingerprint (SHA1):
        2D:7D:BD:3E:6C:3C:23:68:AC:44:C5:D4:19:2D:1F:1F:A2:C9:A0:71
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14349: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #14350: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175921 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14351: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #14352: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14353: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14354: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 1021175922   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14355: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14356: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14357: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14358: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021175923   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #14359: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14360: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #14361: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14362: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 1021175924   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14363: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14364: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #14365: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14366: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 1021175925   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14367: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14368: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #14369: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14370: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 1021175926   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14371: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14372: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #14373: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14374: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 1021175927   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14375: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14376: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14377: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #14378: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #14379: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #14380: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #14381: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175921 (0x3cdde871)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:25:56 2017
            Not After : Fri Oct 21 18:25:56 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:35:7b:03:da:2d:62:88:b4:4a:32:27:b2:c2:82:0f:
                    e3:a7:5b:af:61:fa:34:1f:61:9c:1d:9c:b9:8c:99:36:
                    d5:34:53:4d:7a:e4:f1:de:83:de:dc:fe:dc:db:56:74:
                    04:64:2a:1d:2e:bf:73:3b:97:e5:c7:25:82:3b:72:a7:
                    ad:c0:29:18:ac:03:1d:68:6b:78:33:9d:0d:79:a7:fc:
                    c7:76:be:bb:3e:16:c1:99:af:b0:15:60:87:01:54:7e:
                    cf:5d:e1:76:3c:28:e1:e7:fc:6a:d2:a4:3f:52:8a:66:
                    af:29:ed:a8:45:5c:3c:76:41:74:59:76:d8:7f:5f:9c:
                    be:7f:55:c4:dd:dd:7e:69:57:a0:72:ef:4b:25:4d:14:
                    24:88:aa:1c:62:5e:34:3f:8a:e8:04:55:f1:02:2d:d4:
                    88:25:2b:b6:70:e8:8e:34:52:85:df:35:fc:46:4f:4d:
                    92:b2:cc:88:8a:bd:43:c5:73:21:37:5f:f7:11:36:5d:
                    78:b3:79:92:33:6f:3d:2c:b5:68:49:37:3a:7f:d2:a0:
                    59:71:3f:24:f9:61:50:69:ad:99:88:3c:83:b3:73:78:
                    1f:a6:90:13:be:cb:b8:0e:23:7e:1b:fe:72:ee:3f:8f:
                    ef:70:ef:8f:4b:90:1c:4a:84:1f:cf:25:67:ae:47:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        69:a6:5b:47:c9:38:4a:11:14:a3:4f:9d:f5:6c:cc:17:
        dc:e8:3d:8a:43:8a:bf:f3:fd:87:60:9c:37:e9:98:ae:
        f5:ab:26:8e:fc:50:b0:50:3a:9f:33:52:70:ec:83:5b:
        16:59:f0:54:b7:22:03:be:78:90:10:ea:f9:e8:00:da:
        6d:49:85:8a:c4:c1:59:5e:54:90:a4:d7:87:5f:a6:31:
        de:fe:7c:c4:4a:12:63:d1:8b:b4:44:54:65:68:a2:b0:
        0a:f0:ac:fb:7e:ba:87:4d:89:b8:56:6b:82:5e:f3:1f:
        15:6e:42:73:b1:dd:9e:c2:77:74:91:02:8e:56:1f:09:
        f8:46:aa:15:00:5f:f5:1a:14:3b:c9:e2:d3:f9:28:17:
        a0:ba:18:86:bb:41:71:e9:c0:db:b7:f8:e8:de:cf:c9:
        4b:57:9e:93:2b:44:f9:0d:13:53:08:e1:15:a6:bd:23:
        bf:6a:d7:e5:2e:a0:63:22:3c:7e:5a:10:9c:ff:bb:94:
        6d:ea:a7:cc:e6:eb:99:56:52:73:9a:40:67:fc:fb:b7:
        2f:8c:17:8c:09:13:9b:2c:6e:f9:fb:92:3a:05:9f:75:
        94:31:31:cd:ed:1a:89:d7:73:14:0e:0a:ad:40:64:d5:
        ef:9a:67:e0:e9:0d:17:03:03:e0:49:a4:54:01:25:c1
    Fingerprint (SHA-256):
        3F:9C:A6:B3:41:A1:BD:16:28:1A:F6:2B:74:C6:80:E7:DD:4A:BD:CD:5B:B1:2E:22:68:5B:EE:4E:D2:C4:96:F9
    Fingerprint (SHA1):
        21:EA:51:07:C0:A7:24:45:F2:C5:EB:AC:15:5A:AB:D1:14:62:61:C8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14382: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14383: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14384: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14385: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175921 (0x3cdde871)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:25:56 2017
            Not After : Fri Oct 21 18:25:56 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:35:7b:03:da:2d:62:88:b4:4a:32:27:b2:c2:82:0f:
                    e3:a7:5b:af:61:fa:34:1f:61:9c:1d:9c:b9:8c:99:36:
                    d5:34:53:4d:7a:e4:f1:de:83:de:dc:fe:dc:db:56:74:
                    04:64:2a:1d:2e:bf:73:3b:97:e5:c7:25:82:3b:72:a7:
                    ad:c0:29:18:ac:03:1d:68:6b:78:33:9d:0d:79:a7:fc:
                    c7:76:be:bb:3e:16:c1:99:af:b0:15:60:87:01:54:7e:
                    cf:5d:e1:76:3c:28:e1:e7:fc:6a:d2:a4:3f:52:8a:66:
                    af:29:ed:a8:45:5c:3c:76:41:74:59:76:d8:7f:5f:9c:
                    be:7f:55:c4:dd:dd:7e:69:57:a0:72:ef:4b:25:4d:14:
                    24:88:aa:1c:62:5e:34:3f:8a:e8:04:55:f1:02:2d:d4:
                    88:25:2b:b6:70:e8:8e:34:52:85:df:35:fc:46:4f:4d:
                    92:b2:cc:88:8a:bd:43:c5:73:21:37:5f:f7:11:36:5d:
                    78:b3:79:92:33:6f:3d:2c:b5:68:49:37:3a:7f:d2:a0:
                    59:71:3f:24:f9:61:50:69:ad:99:88:3c:83:b3:73:78:
                    1f:a6:90:13:be:cb:b8:0e:23:7e:1b:fe:72:ee:3f:8f:
                    ef:70:ef:8f:4b:90:1c:4a:84:1f:cf:25:67:ae:47:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        69:a6:5b:47:c9:38:4a:11:14:a3:4f:9d:f5:6c:cc:17:
        dc:e8:3d:8a:43:8a:bf:f3:fd:87:60:9c:37:e9:98:ae:
        f5:ab:26:8e:fc:50:b0:50:3a:9f:33:52:70:ec:83:5b:
        16:59:f0:54:b7:22:03:be:78:90:10:ea:f9:e8:00:da:
        6d:49:85:8a:c4:c1:59:5e:54:90:a4:d7:87:5f:a6:31:
        de:fe:7c:c4:4a:12:63:d1:8b:b4:44:54:65:68:a2:b0:
        0a:f0:ac:fb:7e:ba:87:4d:89:b8:56:6b:82:5e:f3:1f:
        15:6e:42:73:b1:dd:9e:c2:77:74:91:02:8e:56:1f:09:
        f8:46:aa:15:00:5f:f5:1a:14:3b:c9:e2:d3:f9:28:17:
        a0:ba:18:86:bb:41:71:e9:c0:db:b7:f8:e8:de:cf:c9:
        4b:57:9e:93:2b:44:f9:0d:13:53:08:e1:15:a6:bd:23:
        bf:6a:d7:e5:2e:a0:63:22:3c:7e:5a:10:9c:ff:bb:94:
        6d:ea:a7:cc:e6:eb:99:56:52:73:9a:40:67:fc:fb:b7:
        2f:8c:17:8c:09:13:9b:2c:6e:f9:fb:92:3a:05:9f:75:
        94:31:31:cd:ed:1a:89:d7:73:14:0e:0a:ad:40:64:d5:
        ef:9a:67:e0:e9:0d:17:03:03:e0:49:a4:54:01:25:c1
    Fingerprint (SHA-256):
        3F:9C:A6:B3:41:A1:BD:16:28:1A:F6:2B:74:C6:80:E7:DD:4A:BD:CD:5B:B1:2E:22:68:5B:EE:4E:D2:C4:96:F9
    Fingerprint (SHA1):
        21:EA:51:07:C0:A7:24:45:F2:C5:EB:AC:15:5A:AB:D1:14:62:61:C8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14386: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14387: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #14388: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175928 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14389: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #14390: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14391: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14392: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 1021175929   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #14393: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14394: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #14395: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14396: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 1021175930   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14397: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14398: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #14399: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14400: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 1021175931   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14401: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14402: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14403: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14404: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 1021175932   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14405: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14406: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #14407: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14408: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 1021175933   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14409: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14410: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #14411: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14412: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 1021175934   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14413: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14414: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #14415: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14416: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 1021175935   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14417: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14418: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #14419: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14420: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 1021175936   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #14421: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14422: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #14423: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14424: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 1021175937   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14425: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14426: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #14427: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14428: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 1021175938   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14429: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14430: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #14431: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14432: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 1021175939   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14433: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14434: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #14435: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14436: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 1021175940   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14437: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14438: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #14439: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14440: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 1021175941   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14441: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14442: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #14443: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14444: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 1021175942   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14445: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14446: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #14447: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14448: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 1021175943   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14449: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14450: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #14451: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14452: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 1021175944   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14453: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14454: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #14455: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14456: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 1021175945   --extCP --extIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #14457: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14458: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #14459: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14460: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 1021175946   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14461: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14462: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #14463: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14464: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 1021175947   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14465: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14466: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #14467: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14468: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 1021175948   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14469: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14470: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #14471: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14472: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 1021175949   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14473: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14474: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #14475: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14476: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 1021175950   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14477: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14478: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #14479: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14480: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 1021175951   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14481: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14482: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #14483: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14484: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 1021175952   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14485: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14486: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #14487: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14488: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 1021175953   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14489: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14490: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #14491: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14492: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 1021175954   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14493: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14494: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #14495: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14496: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 1021175955   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14497: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14498: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #14499: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14500: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 1021175956   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14501: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14502: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #14503: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14504: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 1021175957   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14505: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14506: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14507: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175928 (0x3cdde878)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:26:54 2017
            Not After : Fri Oct 21 18:26:54 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:f5:cb:29:67:9e:e0:03:a4:30:17:18:f4:c1:39:ea:
                    94:2b:ce:59:ef:a9:47:21:93:d3:f8:a1:f3:d5:7f:48:
                    ad:84:e1:2c:ed:09:b3:2c:20:98:d8:c2:9c:d1:4c:4f:
                    be:34:61:a6:d2:99:48:8e:5a:f0:4b:60:4a:b5:8b:f8:
                    20:b1:f8:e8:57:17:0f:95:17:c0:47:74:70:77:a3:0f:
                    02:d3:cb:36:ef:57:ca:db:45:52:62:09:3b:79:07:09:
                    d1:5e:17:2b:af:6e:46:1f:61:c2:75:78:51:a5:f2:ea:
                    6e:12:a3:31:f5:67:7b:c9:35:ec:4d:63:a2:c2:5b:7c:
                    a0:42:cb:8a:5a:a9:b2:f1:27:15:d1:72:30:63:95:e9:
                    d3:68:9b:72:45:2f:f1:01:8a:b2:b6:ef:4e:68:2c:40:
                    4c:ec:3e:f5:d2:e8:8f:b8:2e:4d:df:7e:0a:ab:6c:85:
                    ef:4f:6d:7d:68:92:34:42:57:ba:1a:5d:e3:ce:ca:44:
                    a3:ce:17:2a:da:80:c9:e2:12:99:e3:fc:3c:02:4f:d7:
                    38:70:ab:79:c4:5c:1f:4b:f1:70:38:5a:11:b7:c7:54:
                    6b:c1:a1:f0:ce:98:a4:ef:73:87:d7:68:43:a3:12:74:
                    1d:b3:b1:5f:c7:e4:c6:16:84:c8:a3:70:52:ba:17:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:c1:5d:7f:bd:dc:80:28:20:42:f3:ff:35:4c:c8:57:
        38:b9:de:44:cb:5d:ad:bb:b3:01:7f:75:18:2b:50:9f:
        fa:00:4d:9d:dd:83:72:0e:ea:97:d5:f4:ed:ab:0b:a9:
        76:4a:dd:ef:5f:45:6c:8e:d8:0e:b3:29:6c:79:94:f2:
        9f:f5:1f:9b:97:41:a5:e8:f4:1f:39:bd:08:c5:c2:c9:
        ef:56:fa:a0:d2:de:40:58:bf:b6:36:d0:27:44:36:5e:
        c7:fc:19:e4:f0:04:8d:54:26:a2:a2:e8:2a:ef:8b:41:
        75:90:6e:49:88:71:dc:89:2b:7c:42:7a:a3:2d:89:ae:
        3a:af:55:c3:b3:38:3f:46:25:a0:cf:81:ef:65:b5:c9:
        72:9f:dd:f2:65:fc:12:7e:ae:2a:85:58:dd:ab:ab:ab:
        1a:14:fc:b3:c4:6c:43:98:fe:8e:0d:db:ad:fe:10:06:
        31:f4:0b:b2:71:c1:cd:23:86:58:cb:fa:59:a1:ef:a7:
        5f:f5:f0:30:08:ef:a4:54:b2:09:3a:f9:14:28:08:73:
        f5:0b:81:fb:a3:95:a9:0a:33:04:d1:76:cb:3b:5c:0d:
        96:94:bc:fa:fe:88:36:a2:46:5a:01:0e:7f:03:84:ac:
        34:49:ef:23:7f:4c:bb:ae:14:74:08:21:78:00:1a:5e
    Fingerprint (SHA-256):
        52:A2:BE:6E:47:9B:4B:BA:BA:DA:6A:5D:8D:BC:7E:92:29:55:C8:F4:9F:7E:16:59:27:12:36:2E:7D:75:30:F2
    Fingerprint (SHA1):
        47:EF:44:C2:A1:CB:52:2C:48:06:CE:B2:D4:F3:D9:E6:D2:A9:CA:81
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14508: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14509: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175928 (0x3cdde878)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:26:54 2017
            Not After : Fri Oct 21 18:26:54 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:f5:cb:29:67:9e:e0:03:a4:30:17:18:f4:c1:39:ea:
                    94:2b:ce:59:ef:a9:47:21:93:d3:f8:a1:f3:d5:7f:48:
                    ad:84:e1:2c:ed:09:b3:2c:20:98:d8:c2:9c:d1:4c:4f:
                    be:34:61:a6:d2:99:48:8e:5a:f0:4b:60:4a:b5:8b:f8:
                    20:b1:f8:e8:57:17:0f:95:17:c0:47:74:70:77:a3:0f:
                    02:d3:cb:36:ef:57:ca:db:45:52:62:09:3b:79:07:09:
                    d1:5e:17:2b:af:6e:46:1f:61:c2:75:78:51:a5:f2:ea:
                    6e:12:a3:31:f5:67:7b:c9:35:ec:4d:63:a2:c2:5b:7c:
                    a0:42:cb:8a:5a:a9:b2:f1:27:15:d1:72:30:63:95:e9:
                    d3:68:9b:72:45:2f:f1:01:8a:b2:b6:ef:4e:68:2c:40:
                    4c:ec:3e:f5:d2:e8:8f:b8:2e:4d:df:7e:0a:ab:6c:85:
                    ef:4f:6d:7d:68:92:34:42:57:ba:1a:5d:e3:ce:ca:44:
                    a3:ce:17:2a:da:80:c9:e2:12:99:e3:fc:3c:02:4f:d7:
                    38:70:ab:79:c4:5c:1f:4b:f1:70:38:5a:11:b7:c7:54:
                    6b:c1:a1:f0:ce:98:a4:ef:73:87:d7:68:43:a3:12:74:
                    1d:b3:b1:5f:c7:e4:c6:16:84:c8:a3:70:52:ba:17:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:c1:5d:7f:bd:dc:80:28:20:42:f3:ff:35:4c:c8:57:
        38:b9:de:44:cb:5d:ad:bb:b3:01:7f:75:18:2b:50:9f:
        fa:00:4d:9d:dd:83:72:0e:ea:97:d5:f4:ed:ab:0b:a9:
        76:4a:dd:ef:5f:45:6c:8e:d8:0e:b3:29:6c:79:94:f2:
        9f:f5:1f:9b:97:41:a5:e8:f4:1f:39:bd:08:c5:c2:c9:
        ef:56:fa:a0:d2:de:40:58:bf:b6:36:d0:27:44:36:5e:
        c7:fc:19:e4:f0:04:8d:54:26:a2:a2:e8:2a:ef:8b:41:
        75:90:6e:49:88:71:dc:89:2b:7c:42:7a:a3:2d:89:ae:
        3a:af:55:c3:b3:38:3f:46:25:a0:cf:81:ef:65:b5:c9:
        72:9f:dd:f2:65:fc:12:7e:ae:2a:85:58:dd:ab:ab:ab:
        1a:14:fc:b3:c4:6c:43:98:fe:8e:0d:db:ad:fe:10:06:
        31:f4:0b:b2:71:c1:cd:23:86:58:cb:fa:59:a1:ef:a7:
        5f:f5:f0:30:08:ef:a4:54:b2:09:3a:f9:14:28:08:73:
        f5:0b:81:fb:a3:95:a9:0a:33:04:d1:76:cb:3b:5c:0d:
        96:94:bc:fa:fe:88:36:a2:46:5a:01:0e:7f:03:84:ac:
        34:49:ef:23:7f:4c:bb:ae:14:74:08:21:78:00:1a:5e
    Fingerprint (SHA-256):
        52:A2:BE:6E:47:9B:4B:BA:BA:DA:6A:5D:8D:BC:7E:92:29:55:C8:F4:9F:7E:16:59:27:12:36:2E:7D:75:30:F2
    Fingerprint (SHA1):
        47:EF:44:C2:A1:CB:52:2C:48:06:CE:B2:D4:F3:D9:E6:D2:A9:CA:81
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14510: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14511: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14512: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14513: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175928 (0x3cdde878)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:26:54 2017
            Not After : Fri Oct 21 18:26:54 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:f5:cb:29:67:9e:e0:03:a4:30:17:18:f4:c1:39:ea:
                    94:2b:ce:59:ef:a9:47:21:93:d3:f8:a1:f3:d5:7f:48:
                    ad:84:e1:2c:ed:09:b3:2c:20:98:d8:c2:9c:d1:4c:4f:
                    be:34:61:a6:d2:99:48:8e:5a:f0:4b:60:4a:b5:8b:f8:
                    20:b1:f8:e8:57:17:0f:95:17:c0:47:74:70:77:a3:0f:
                    02:d3:cb:36:ef:57:ca:db:45:52:62:09:3b:79:07:09:
                    d1:5e:17:2b:af:6e:46:1f:61:c2:75:78:51:a5:f2:ea:
                    6e:12:a3:31:f5:67:7b:c9:35:ec:4d:63:a2:c2:5b:7c:
                    a0:42:cb:8a:5a:a9:b2:f1:27:15:d1:72:30:63:95:e9:
                    d3:68:9b:72:45:2f:f1:01:8a:b2:b6:ef:4e:68:2c:40:
                    4c:ec:3e:f5:d2:e8:8f:b8:2e:4d:df:7e:0a:ab:6c:85:
                    ef:4f:6d:7d:68:92:34:42:57:ba:1a:5d:e3:ce:ca:44:
                    a3:ce:17:2a:da:80:c9:e2:12:99:e3:fc:3c:02:4f:d7:
                    38:70:ab:79:c4:5c:1f:4b:f1:70:38:5a:11:b7:c7:54:
                    6b:c1:a1:f0:ce:98:a4:ef:73:87:d7:68:43:a3:12:74:
                    1d:b3:b1:5f:c7:e4:c6:16:84:c8:a3:70:52:ba:17:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:c1:5d:7f:bd:dc:80:28:20:42:f3:ff:35:4c:c8:57:
        38:b9:de:44:cb:5d:ad:bb:b3:01:7f:75:18:2b:50:9f:
        fa:00:4d:9d:dd:83:72:0e:ea:97:d5:f4:ed:ab:0b:a9:
        76:4a:dd:ef:5f:45:6c:8e:d8:0e:b3:29:6c:79:94:f2:
        9f:f5:1f:9b:97:41:a5:e8:f4:1f:39:bd:08:c5:c2:c9:
        ef:56:fa:a0:d2:de:40:58:bf:b6:36:d0:27:44:36:5e:
        c7:fc:19:e4:f0:04:8d:54:26:a2:a2:e8:2a:ef:8b:41:
        75:90:6e:49:88:71:dc:89:2b:7c:42:7a:a3:2d:89:ae:
        3a:af:55:c3:b3:38:3f:46:25:a0:cf:81:ef:65:b5:c9:
        72:9f:dd:f2:65:fc:12:7e:ae:2a:85:58:dd:ab:ab:ab:
        1a:14:fc:b3:c4:6c:43:98:fe:8e:0d:db:ad:fe:10:06:
        31:f4:0b:b2:71:c1:cd:23:86:58:cb:fa:59:a1:ef:a7:
        5f:f5:f0:30:08:ef:a4:54:b2:09:3a:f9:14:28:08:73:
        f5:0b:81:fb:a3:95:a9:0a:33:04:d1:76:cb:3b:5c:0d:
        96:94:bc:fa:fe:88:36:a2:46:5a:01:0e:7f:03:84:ac:
        34:49:ef:23:7f:4c:bb:ae:14:74:08:21:78:00:1a:5e
    Fingerprint (SHA-256):
        52:A2:BE:6E:47:9B:4B:BA:BA:DA:6A:5D:8D:BC:7E:92:29:55:C8:F4:9F:7E:16:59:27:12:36:2E:7D:75:30:F2
    Fingerprint (SHA1):
        47:EF:44:C2:A1:CB:52:2C:48:06:CE:B2:D4:F3:D9:E6:D2:A9:CA:81
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14514: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14515: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14516: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14517: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175928 (0x3cdde878)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:26:54 2017
            Not After : Fri Oct 21 18:26:54 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:f5:cb:29:67:9e:e0:03:a4:30:17:18:f4:c1:39:ea:
                    94:2b:ce:59:ef:a9:47:21:93:d3:f8:a1:f3:d5:7f:48:
                    ad:84:e1:2c:ed:09:b3:2c:20:98:d8:c2:9c:d1:4c:4f:
                    be:34:61:a6:d2:99:48:8e:5a:f0:4b:60:4a:b5:8b:f8:
                    20:b1:f8:e8:57:17:0f:95:17:c0:47:74:70:77:a3:0f:
                    02:d3:cb:36:ef:57:ca:db:45:52:62:09:3b:79:07:09:
                    d1:5e:17:2b:af:6e:46:1f:61:c2:75:78:51:a5:f2:ea:
                    6e:12:a3:31:f5:67:7b:c9:35:ec:4d:63:a2:c2:5b:7c:
                    a0:42:cb:8a:5a:a9:b2:f1:27:15:d1:72:30:63:95:e9:
                    d3:68:9b:72:45:2f:f1:01:8a:b2:b6:ef:4e:68:2c:40:
                    4c:ec:3e:f5:d2:e8:8f:b8:2e:4d:df:7e:0a:ab:6c:85:
                    ef:4f:6d:7d:68:92:34:42:57:ba:1a:5d:e3:ce:ca:44:
                    a3:ce:17:2a:da:80:c9:e2:12:99:e3:fc:3c:02:4f:d7:
                    38:70:ab:79:c4:5c:1f:4b:f1:70:38:5a:11:b7:c7:54:
                    6b:c1:a1:f0:ce:98:a4:ef:73:87:d7:68:43:a3:12:74:
                    1d:b3:b1:5f:c7:e4:c6:16:84:c8:a3:70:52:ba:17:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:c1:5d:7f:bd:dc:80:28:20:42:f3:ff:35:4c:c8:57:
        38:b9:de:44:cb:5d:ad:bb:b3:01:7f:75:18:2b:50:9f:
        fa:00:4d:9d:dd:83:72:0e:ea:97:d5:f4:ed:ab:0b:a9:
        76:4a:dd:ef:5f:45:6c:8e:d8:0e:b3:29:6c:79:94:f2:
        9f:f5:1f:9b:97:41:a5:e8:f4:1f:39:bd:08:c5:c2:c9:
        ef:56:fa:a0:d2:de:40:58:bf:b6:36:d0:27:44:36:5e:
        c7:fc:19:e4:f0:04:8d:54:26:a2:a2:e8:2a:ef:8b:41:
        75:90:6e:49:88:71:dc:89:2b:7c:42:7a:a3:2d:89:ae:
        3a:af:55:c3:b3:38:3f:46:25:a0:cf:81:ef:65:b5:c9:
        72:9f:dd:f2:65:fc:12:7e:ae:2a:85:58:dd:ab:ab:ab:
        1a:14:fc:b3:c4:6c:43:98:fe:8e:0d:db:ad:fe:10:06:
        31:f4:0b:b2:71:c1:cd:23:86:58:cb:fa:59:a1:ef:a7:
        5f:f5:f0:30:08:ef:a4:54:b2:09:3a:f9:14:28:08:73:
        f5:0b:81:fb:a3:95:a9:0a:33:04:d1:76:cb:3b:5c:0d:
        96:94:bc:fa:fe:88:36:a2:46:5a:01:0e:7f:03:84:ac:
        34:49:ef:23:7f:4c:bb:ae:14:74:08:21:78:00:1a:5e
    Fingerprint (SHA-256):
        52:A2:BE:6E:47:9B:4B:BA:BA:DA:6A:5D:8D:BC:7E:92:29:55:C8:F4:9F:7E:16:59:27:12:36:2E:7D:75:30:F2
    Fingerprint (SHA1):
        47:EF:44:C2:A1:CB:52:2C:48:06:CE:B2:D4:F3:D9:E6:D2:A9:CA:81
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14518: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175928 (0x3cdde878)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:26:54 2017
            Not After : Fri Oct 21 18:26:54 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:f5:cb:29:67:9e:e0:03:a4:30:17:18:f4:c1:39:ea:
                    94:2b:ce:59:ef:a9:47:21:93:d3:f8:a1:f3:d5:7f:48:
                    ad:84:e1:2c:ed:09:b3:2c:20:98:d8:c2:9c:d1:4c:4f:
                    be:34:61:a6:d2:99:48:8e:5a:f0:4b:60:4a:b5:8b:f8:
                    20:b1:f8:e8:57:17:0f:95:17:c0:47:74:70:77:a3:0f:
                    02:d3:cb:36:ef:57:ca:db:45:52:62:09:3b:79:07:09:
                    d1:5e:17:2b:af:6e:46:1f:61:c2:75:78:51:a5:f2:ea:
                    6e:12:a3:31:f5:67:7b:c9:35:ec:4d:63:a2:c2:5b:7c:
                    a0:42:cb:8a:5a:a9:b2:f1:27:15:d1:72:30:63:95:e9:
                    d3:68:9b:72:45:2f:f1:01:8a:b2:b6:ef:4e:68:2c:40:
                    4c:ec:3e:f5:d2:e8:8f:b8:2e:4d:df:7e:0a:ab:6c:85:
                    ef:4f:6d:7d:68:92:34:42:57:ba:1a:5d:e3:ce:ca:44:
                    a3:ce:17:2a:da:80:c9:e2:12:99:e3:fc:3c:02:4f:d7:
                    38:70:ab:79:c4:5c:1f:4b:f1:70:38:5a:11:b7:c7:54:
                    6b:c1:a1:f0:ce:98:a4:ef:73:87:d7:68:43:a3:12:74:
                    1d:b3:b1:5f:c7:e4:c6:16:84:c8:a3:70:52:ba:17:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:c1:5d:7f:bd:dc:80:28:20:42:f3:ff:35:4c:c8:57:
        38:b9:de:44:cb:5d:ad:bb:b3:01:7f:75:18:2b:50:9f:
        fa:00:4d:9d:dd:83:72:0e:ea:97:d5:f4:ed:ab:0b:a9:
        76:4a:dd:ef:5f:45:6c:8e:d8:0e:b3:29:6c:79:94:f2:
        9f:f5:1f:9b:97:41:a5:e8:f4:1f:39:bd:08:c5:c2:c9:
        ef:56:fa:a0:d2:de:40:58:bf:b6:36:d0:27:44:36:5e:
        c7:fc:19:e4:f0:04:8d:54:26:a2:a2:e8:2a:ef:8b:41:
        75:90:6e:49:88:71:dc:89:2b:7c:42:7a:a3:2d:89:ae:
        3a:af:55:c3:b3:38:3f:46:25:a0:cf:81:ef:65:b5:c9:
        72:9f:dd:f2:65:fc:12:7e:ae:2a:85:58:dd:ab:ab:ab:
        1a:14:fc:b3:c4:6c:43:98:fe:8e:0d:db:ad:fe:10:06:
        31:f4:0b:b2:71:c1:cd:23:86:58:cb:fa:59:a1:ef:a7:
        5f:f5:f0:30:08:ef:a4:54:b2:09:3a:f9:14:28:08:73:
        f5:0b:81:fb:a3:95:a9:0a:33:04:d1:76:cb:3b:5c:0d:
        96:94:bc:fa:fe:88:36:a2:46:5a:01:0e:7f:03:84:ac:
        34:49:ef:23:7f:4c:bb:ae:14:74:08:21:78:00:1a:5e
    Fingerprint (SHA-256):
        52:A2:BE:6E:47:9B:4B:BA:BA:DA:6A:5D:8D:BC:7E:92:29:55:C8:F4:9F:7E:16:59:27:12:36:2E:7D:75:30:F2
    Fingerprint (SHA1):
        47:EF:44:C2:A1:CB:52:2C:48:06:CE:B2:D4:F3:D9:E6:D2:A9:CA:81
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14519: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14520: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175928 (0x3cdde878)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:26:54 2017
            Not After : Fri Oct 21 18:26:54 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:f5:cb:29:67:9e:e0:03:a4:30:17:18:f4:c1:39:ea:
                    94:2b:ce:59:ef:a9:47:21:93:d3:f8:a1:f3:d5:7f:48:
                    ad:84:e1:2c:ed:09:b3:2c:20:98:d8:c2:9c:d1:4c:4f:
                    be:34:61:a6:d2:99:48:8e:5a:f0:4b:60:4a:b5:8b:f8:
                    20:b1:f8:e8:57:17:0f:95:17:c0:47:74:70:77:a3:0f:
                    02:d3:cb:36:ef:57:ca:db:45:52:62:09:3b:79:07:09:
                    d1:5e:17:2b:af:6e:46:1f:61:c2:75:78:51:a5:f2:ea:
                    6e:12:a3:31:f5:67:7b:c9:35:ec:4d:63:a2:c2:5b:7c:
                    a0:42:cb:8a:5a:a9:b2:f1:27:15:d1:72:30:63:95:e9:
                    d3:68:9b:72:45:2f:f1:01:8a:b2:b6:ef:4e:68:2c:40:
                    4c:ec:3e:f5:d2:e8:8f:b8:2e:4d:df:7e:0a:ab:6c:85:
                    ef:4f:6d:7d:68:92:34:42:57:ba:1a:5d:e3:ce:ca:44:
                    a3:ce:17:2a:da:80:c9:e2:12:99:e3:fc:3c:02:4f:d7:
                    38:70:ab:79:c4:5c:1f:4b:f1:70:38:5a:11:b7:c7:54:
                    6b:c1:a1:f0:ce:98:a4:ef:73:87:d7:68:43:a3:12:74:
                    1d:b3:b1:5f:c7:e4:c6:16:84:c8:a3:70:52:ba:17:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:c1:5d:7f:bd:dc:80:28:20:42:f3:ff:35:4c:c8:57:
        38:b9:de:44:cb:5d:ad:bb:b3:01:7f:75:18:2b:50:9f:
        fa:00:4d:9d:dd:83:72:0e:ea:97:d5:f4:ed:ab:0b:a9:
        76:4a:dd:ef:5f:45:6c:8e:d8:0e:b3:29:6c:79:94:f2:
        9f:f5:1f:9b:97:41:a5:e8:f4:1f:39:bd:08:c5:c2:c9:
        ef:56:fa:a0:d2:de:40:58:bf:b6:36:d0:27:44:36:5e:
        c7:fc:19:e4:f0:04:8d:54:26:a2:a2:e8:2a:ef:8b:41:
        75:90:6e:49:88:71:dc:89:2b:7c:42:7a:a3:2d:89:ae:
        3a:af:55:c3:b3:38:3f:46:25:a0:cf:81:ef:65:b5:c9:
        72:9f:dd:f2:65:fc:12:7e:ae:2a:85:58:dd:ab:ab:ab:
        1a:14:fc:b3:c4:6c:43:98:fe:8e:0d:db:ad:fe:10:06:
        31:f4:0b:b2:71:c1:cd:23:86:58:cb:fa:59:a1:ef:a7:
        5f:f5:f0:30:08:ef:a4:54:b2:09:3a:f9:14:28:08:73:
        f5:0b:81:fb:a3:95:a9:0a:33:04:d1:76:cb:3b:5c:0d:
        96:94:bc:fa:fe:88:36:a2:46:5a:01:0e:7f:03:84:ac:
        34:49:ef:23:7f:4c:bb:ae:14:74:08:21:78:00:1a:5e
    Fingerprint (SHA-256):
        52:A2:BE:6E:47:9B:4B:BA:BA:DA:6A:5D:8D:BC:7E:92:29:55:C8:F4:9F:7E:16:59:27:12:36:2E:7D:75:30:F2
    Fingerprint (SHA1):
        47:EF:44:C2:A1:CB:52:2C:48:06:CE:B2:D4:F3:D9:E6:D2:A9:CA:81
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14521: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14522: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14523: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14524: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175928 (0x3cdde878)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:26:54 2017
            Not After : Fri Oct 21 18:26:54 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:f5:cb:29:67:9e:e0:03:a4:30:17:18:f4:c1:39:ea:
                    94:2b:ce:59:ef:a9:47:21:93:d3:f8:a1:f3:d5:7f:48:
                    ad:84:e1:2c:ed:09:b3:2c:20:98:d8:c2:9c:d1:4c:4f:
                    be:34:61:a6:d2:99:48:8e:5a:f0:4b:60:4a:b5:8b:f8:
                    20:b1:f8:e8:57:17:0f:95:17:c0:47:74:70:77:a3:0f:
                    02:d3:cb:36:ef:57:ca:db:45:52:62:09:3b:79:07:09:
                    d1:5e:17:2b:af:6e:46:1f:61:c2:75:78:51:a5:f2:ea:
                    6e:12:a3:31:f5:67:7b:c9:35:ec:4d:63:a2:c2:5b:7c:
                    a0:42:cb:8a:5a:a9:b2:f1:27:15:d1:72:30:63:95:e9:
                    d3:68:9b:72:45:2f:f1:01:8a:b2:b6:ef:4e:68:2c:40:
                    4c:ec:3e:f5:d2:e8:8f:b8:2e:4d:df:7e:0a:ab:6c:85:
                    ef:4f:6d:7d:68:92:34:42:57:ba:1a:5d:e3:ce:ca:44:
                    a3:ce:17:2a:da:80:c9:e2:12:99:e3:fc:3c:02:4f:d7:
                    38:70:ab:79:c4:5c:1f:4b:f1:70:38:5a:11:b7:c7:54:
                    6b:c1:a1:f0:ce:98:a4:ef:73:87:d7:68:43:a3:12:74:
                    1d:b3:b1:5f:c7:e4:c6:16:84:c8:a3:70:52:ba:17:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:c1:5d:7f:bd:dc:80:28:20:42:f3:ff:35:4c:c8:57:
        38:b9:de:44:cb:5d:ad:bb:b3:01:7f:75:18:2b:50:9f:
        fa:00:4d:9d:dd:83:72:0e:ea:97:d5:f4:ed:ab:0b:a9:
        76:4a:dd:ef:5f:45:6c:8e:d8:0e:b3:29:6c:79:94:f2:
        9f:f5:1f:9b:97:41:a5:e8:f4:1f:39:bd:08:c5:c2:c9:
        ef:56:fa:a0:d2:de:40:58:bf:b6:36:d0:27:44:36:5e:
        c7:fc:19:e4:f0:04:8d:54:26:a2:a2:e8:2a:ef:8b:41:
        75:90:6e:49:88:71:dc:89:2b:7c:42:7a:a3:2d:89:ae:
        3a:af:55:c3:b3:38:3f:46:25:a0:cf:81:ef:65:b5:c9:
        72:9f:dd:f2:65:fc:12:7e:ae:2a:85:58:dd:ab:ab:ab:
        1a:14:fc:b3:c4:6c:43:98:fe:8e:0d:db:ad:fe:10:06:
        31:f4:0b:b2:71:c1:cd:23:86:58:cb:fa:59:a1:ef:a7:
        5f:f5:f0:30:08:ef:a4:54:b2:09:3a:f9:14:28:08:73:
        f5:0b:81:fb:a3:95:a9:0a:33:04:d1:76:cb:3b:5c:0d:
        96:94:bc:fa:fe:88:36:a2:46:5a:01:0e:7f:03:84:ac:
        34:49:ef:23:7f:4c:bb:ae:14:74:08:21:78:00:1a:5e
    Fingerprint (SHA-256):
        52:A2:BE:6E:47:9B:4B:BA:BA:DA:6A:5D:8D:BC:7E:92:29:55:C8:F4:9F:7E:16:59:27:12:36:2E:7D:75:30:F2
    Fingerprint (SHA1):
        47:EF:44:C2:A1:CB:52:2C:48:06:CE:B2:D4:F3:D9:E6:D2:A9:CA:81
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14525: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175928 (0x3cdde878)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:26:54 2017
            Not After : Fri Oct 21 18:26:54 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:f5:cb:29:67:9e:e0:03:a4:30:17:18:f4:c1:39:ea:
                    94:2b:ce:59:ef:a9:47:21:93:d3:f8:a1:f3:d5:7f:48:
                    ad:84:e1:2c:ed:09:b3:2c:20:98:d8:c2:9c:d1:4c:4f:
                    be:34:61:a6:d2:99:48:8e:5a:f0:4b:60:4a:b5:8b:f8:
                    20:b1:f8:e8:57:17:0f:95:17:c0:47:74:70:77:a3:0f:
                    02:d3:cb:36:ef:57:ca:db:45:52:62:09:3b:79:07:09:
                    d1:5e:17:2b:af:6e:46:1f:61:c2:75:78:51:a5:f2:ea:
                    6e:12:a3:31:f5:67:7b:c9:35:ec:4d:63:a2:c2:5b:7c:
                    a0:42:cb:8a:5a:a9:b2:f1:27:15:d1:72:30:63:95:e9:
                    d3:68:9b:72:45:2f:f1:01:8a:b2:b6:ef:4e:68:2c:40:
                    4c:ec:3e:f5:d2:e8:8f:b8:2e:4d:df:7e:0a:ab:6c:85:
                    ef:4f:6d:7d:68:92:34:42:57:ba:1a:5d:e3:ce:ca:44:
                    a3:ce:17:2a:da:80:c9:e2:12:99:e3:fc:3c:02:4f:d7:
                    38:70:ab:79:c4:5c:1f:4b:f1:70:38:5a:11:b7:c7:54:
                    6b:c1:a1:f0:ce:98:a4:ef:73:87:d7:68:43:a3:12:74:
                    1d:b3:b1:5f:c7:e4:c6:16:84:c8:a3:70:52:ba:17:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:c1:5d:7f:bd:dc:80:28:20:42:f3:ff:35:4c:c8:57:
        38:b9:de:44:cb:5d:ad:bb:b3:01:7f:75:18:2b:50:9f:
        fa:00:4d:9d:dd:83:72:0e:ea:97:d5:f4:ed:ab:0b:a9:
        76:4a:dd:ef:5f:45:6c:8e:d8:0e:b3:29:6c:79:94:f2:
        9f:f5:1f:9b:97:41:a5:e8:f4:1f:39:bd:08:c5:c2:c9:
        ef:56:fa:a0:d2:de:40:58:bf:b6:36:d0:27:44:36:5e:
        c7:fc:19:e4:f0:04:8d:54:26:a2:a2:e8:2a:ef:8b:41:
        75:90:6e:49:88:71:dc:89:2b:7c:42:7a:a3:2d:89:ae:
        3a:af:55:c3:b3:38:3f:46:25:a0:cf:81:ef:65:b5:c9:
        72:9f:dd:f2:65:fc:12:7e:ae:2a:85:58:dd:ab:ab:ab:
        1a:14:fc:b3:c4:6c:43:98:fe:8e:0d:db:ad:fe:10:06:
        31:f4:0b:b2:71:c1:cd:23:86:58:cb:fa:59:a1:ef:a7:
        5f:f5:f0:30:08:ef:a4:54:b2:09:3a:f9:14:28:08:73:
        f5:0b:81:fb:a3:95:a9:0a:33:04:d1:76:cb:3b:5c:0d:
        96:94:bc:fa:fe:88:36:a2:46:5a:01:0e:7f:03:84:ac:
        34:49:ef:23:7f:4c:bb:ae:14:74:08:21:78:00:1a:5e
    Fingerprint (SHA-256):
        52:A2:BE:6E:47:9B:4B:BA:BA:DA:6A:5D:8D:BC:7E:92:29:55:C8:F4:9F:7E:16:59:27:12:36:2E:7D:75:30:F2
    Fingerprint (SHA1):
        47:EF:44:C2:A1:CB:52:2C:48:06:CE:B2:D4:F3:D9:E6:D2:A9:CA:81
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #14526: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175928 (0x3cdde878)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:26:54 2017
            Not After : Fri Oct 21 18:26:54 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:f5:cb:29:67:9e:e0:03:a4:30:17:18:f4:c1:39:ea:
                    94:2b:ce:59:ef:a9:47:21:93:d3:f8:a1:f3:d5:7f:48:
                    ad:84:e1:2c:ed:09:b3:2c:20:98:d8:c2:9c:d1:4c:4f:
                    be:34:61:a6:d2:99:48:8e:5a:f0:4b:60:4a:b5:8b:f8:
                    20:b1:f8:e8:57:17:0f:95:17:c0:47:74:70:77:a3:0f:
                    02:d3:cb:36:ef:57:ca:db:45:52:62:09:3b:79:07:09:
                    d1:5e:17:2b:af:6e:46:1f:61:c2:75:78:51:a5:f2:ea:
                    6e:12:a3:31:f5:67:7b:c9:35:ec:4d:63:a2:c2:5b:7c:
                    a0:42:cb:8a:5a:a9:b2:f1:27:15:d1:72:30:63:95:e9:
                    d3:68:9b:72:45:2f:f1:01:8a:b2:b6:ef:4e:68:2c:40:
                    4c:ec:3e:f5:d2:e8:8f:b8:2e:4d:df:7e:0a:ab:6c:85:
                    ef:4f:6d:7d:68:92:34:42:57:ba:1a:5d:e3:ce:ca:44:
                    a3:ce:17:2a:da:80:c9:e2:12:99:e3:fc:3c:02:4f:d7:
                    38:70:ab:79:c4:5c:1f:4b:f1:70:38:5a:11:b7:c7:54:
                    6b:c1:a1:f0:ce:98:a4:ef:73:87:d7:68:43:a3:12:74:
                    1d:b3:b1:5f:c7:e4:c6:16:84:c8:a3:70:52:ba:17:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:c1:5d:7f:bd:dc:80:28:20:42:f3:ff:35:4c:c8:57:
        38:b9:de:44:cb:5d:ad:bb:b3:01:7f:75:18:2b:50:9f:
        fa:00:4d:9d:dd:83:72:0e:ea:97:d5:f4:ed:ab:0b:a9:
        76:4a:dd:ef:5f:45:6c:8e:d8:0e:b3:29:6c:79:94:f2:
        9f:f5:1f:9b:97:41:a5:e8:f4:1f:39:bd:08:c5:c2:c9:
        ef:56:fa:a0:d2:de:40:58:bf:b6:36:d0:27:44:36:5e:
        c7:fc:19:e4:f0:04:8d:54:26:a2:a2:e8:2a:ef:8b:41:
        75:90:6e:49:88:71:dc:89:2b:7c:42:7a:a3:2d:89:ae:
        3a:af:55:c3:b3:38:3f:46:25:a0:cf:81:ef:65:b5:c9:
        72:9f:dd:f2:65:fc:12:7e:ae:2a:85:58:dd:ab:ab:ab:
        1a:14:fc:b3:c4:6c:43:98:fe:8e:0d:db:ad:fe:10:06:
        31:f4:0b:b2:71:c1:cd:23:86:58:cb:fa:59:a1:ef:a7:
        5f:f5:f0:30:08:ef:a4:54:b2:09:3a:f9:14:28:08:73:
        f5:0b:81:fb:a3:95:a9:0a:33:04:d1:76:cb:3b:5c:0d:
        96:94:bc:fa:fe:88:36:a2:46:5a:01:0e:7f:03:84:ac:
        34:49:ef:23:7f:4c:bb:ae:14:74:08:21:78:00:1a:5e
    Fingerprint (SHA-256):
        52:A2:BE:6E:47:9B:4B:BA:BA:DA:6A:5D:8D:BC:7E:92:29:55:C8:F4:9F:7E:16:59:27:12:36:2E:7D:75:30:F2
    Fingerprint (SHA1):
        47:EF:44:C2:A1:CB:52:2C:48:06:CE:B2:D4:F3:D9:E6:D2:A9:CA:81
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #14527: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175928 (0x3cdde878)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:26:54 2017
            Not After : Fri Oct 21 18:26:54 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:f5:cb:29:67:9e:e0:03:a4:30:17:18:f4:c1:39:ea:
                    94:2b:ce:59:ef:a9:47:21:93:d3:f8:a1:f3:d5:7f:48:
                    ad:84:e1:2c:ed:09:b3:2c:20:98:d8:c2:9c:d1:4c:4f:
                    be:34:61:a6:d2:99:48:8e:5a:f0:4b:60:4a:b5:8b:f8:
                    20:b1:f8:e8:57:17:0f:95:17:c0:47:74:70:77:a3:0f:
                    02:d3:cb:36:ef:57:ca:db:45:52:62:09:3b:79:07:09:
                    d1:5e:17:2b:af:6e:46:1f:61:c2:75:78:51:a5:f2:ea:
                    6e:12:a3:31:f5:67:7b:c9:35:ec:4d:63:a2:c2:5b:7c:
                    a0:42:cb:8a:5a:a9:b2:f1:27:15:d1:72:30:63:95:e9:
                    d3:68:9b:72:45:2f:f1:01:8a:b2:b6:ef:4e:68:2c:40:
                    4c:ec:3e:f5:d2:e8:8f:b8:2e:4d:df:7e:0a:ab:6c:85:
                    ef:4f:6d:7d:68:92:34:42:57:ba:1a:5d:e3:ce:ca:44:
                    a3:ce:17:2a:da:80:c9:e2:12:99:e3:fc:3c:02:4f:d7:
                    38:70:ab:79:c4:5c:1f:4b:f1:70:38:5a:11:b7:c7:54:
                    6b:c1:a1:f0:ce:98:a4:ef:73:87:d7:68:43:a3:12:74:
                    1d:b3:b1:5f:c7:e4:c6:16:84:c8:a3:70:52:ba:17:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:c1:5d:7f:bd:dc:80:28:20:42:f3:ff:35:4c:c8:57:
        38:b9:de:44:cb:5d:ad:bb:b3:01:7f:75:18:2b:50:9f:
        fa:00:4d:9d:dd:83:72:0e:ea:97:d5:f4:ed:ab:0b:a9:
        76:4a:dd:ef:5f:45:6c:8e:d8:0e:b3:29:6c:79:94:f2:
        9f:f5:1f:9b:97:41:a5:e8:f4:1f:39:bd:08:c5:c2:c9:
        ef:56:fa:a0:d2:de:40:58:bf:b6:36:d0:27:44:36:5e:
        c7:fc:19:e4:f0:04:8d:54:26:a2:a2:e8:2a:ef:8b:41:
        75:90:6e:49:88:71:dc:89:2b:7c:42:7a:a3:2d:89:ae:
        3a:af:55:c3:b3:38:3f:46:25:a0:cf:81:ef:65:b5:c9:
        72:9f:dd:f2:65:fc:12:7e:ae:2a:85:58:dd:ab:ab:ab:
        1a:14:fc:b3:c4:6c:43:98:fe:8e:0d:db:ad:fe:10:06:
        31:f4:0b:b2:71:c1:cd:23:86:58:cb:fa:59:a1:ef:a7:
        5f:f5:f0:30:08:ef:a4:54:b2:09:3a:f9:14:28:08:73:
        f5:0b:81:fb:a3:95:a9:0a:33:04:d1:76:cb:3b:5c:0d:
        96:94:bc:fa:fe:88:36:a2:46:5a:01:0e:7f:03:84:ac:
        34:49:ef:23:7f:4c:bb:ae:14:74:08:21:78:00:1a:5e
    Fingerprint (SHA-256):
        52:A2:BE:6E:47:9B:4B:BA:BA:DA:6A:5D:8D:BC:7E:92:29:55:C8:F4:9F:7E:16:59:27:12:36:2E:7D:75:30:F2
    Fingerprint (SHA1):
        47:EF:44:C2:A1:CB:52:2C:48:06:CE:B2:D4:F3:D9:E6:D2:A9:CA:81
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #14528: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175928 (0x3cdde878)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:26:54 2017
            Not After : Fri Oct 21 18:26:54 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:f5:cb:29:67:9e:e0:03:a4:30:17:18:f4:c1:39:ea:
                    94:2b:ce:59:ef:a9:47:21:93:d3:f8:a1:f3:d5:7f:48:
                    ad:84:e1:2c:ed:09:b3:2c:20:98:d8:c2:9c:d1:4c:4f:
                    be:34:61:a6:d2:99:48:8e:5a:f0:4b:60:4a:b5:8b:f8:
                    20:b1:f8:e8:57:17:0f:95:17:c0:47:74:70:77:a3:0f:
                    02:d3:cb:36:ef:57:ca:db:45:52:62:09:3b:79:07:09:
                    d1:5e:17:2b:af:6e:46:1f:61:c2:75:78:51:a5:f2:ea:
                    6e:12:a3:31:f5:67:7b:c9:35:ec:4d:63:a2:c2:5b:7c:
                    a0:42:cb:8a:5a:a9:b2:f1:27:15:d1:72:30:63:95:e9:
                    d3:68:9b:72:45:2f:f1:01:8a:b2:b6:ef:4e:68:2c:40:
                    4c:ec:3e:f5:d2:e8:8f:b8:2e:4d:df:7e:0a:ab:6c:85:
                    ef:4f:6d:7d:68:92:34:42:57:ba:1a:5d:e3:ce:ca:44:
                    a3:ce:17:2a:da:80:c9:e2:12:99:e3:fc:3c:02:4f:d7:
                    38:70:ab:79:c4:5c:1f:4b:f1:70:38:5a:11:b7:c7:54:
                    6b:c1:a1:f0:ce:98:a4:ef:73:87:d7:68:43:a3:12:74:
                    1d:b3:b1:5f:c7:e4:c6:16:84:c8:a3:70:52:ba:17:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:c1:5d:7f:bd:dc:80:28:20:42:f3:ff:35:4c:c8:57:
        38:b9:de:44:cb:5d:ad:bb:b3:01:7f:75:18:2b:50:9f:
        fa:00:4d:9d:dd:83:72:0e:ea:97:d5:f4:ed:ab:0b:a9:
        76:4a:dd:ef:5f:45:6c:8e:d8:0e:b3:29:6c:79:94:f2:
        9f:f5:1f:9b:97:41:a5:e8:f4:1f:39:bd:08:c5:c2:c9:
        ef:56:fa:a0:d2:de:40:58:bf:b6:36:d0:27:44:36:5e:
        c7:fc:19:e4:f0:04:8d:54:26:a2:a2:e8:2a:ef:8b:41:
        75:90:6e:49:88:71:dc:89:2b:7c:42:7a:a3:2d:89:ae:
        3a:af:55:c3:b3:38:3f:46:25:a0:cf:81:ef:65:b5:c9:
        72:9f:dd:f2:65:fc:12:7e:ae:2a:85:58:dd:ab:ab:ab:
        1a:14:fc:b3:c4:6c:43:98:fe:8e:0d:db:ad:fe:10:06:
        31:f4:0b:b2:71:c1:cd:23:86:58:cb:fa:59:a1:ef:a7:
        5f:f5:f0:30:08:ef:a4:54:b2:09:3a:f9:14:28:08:73:
        f5:0b:81:fb:a3:95:a9:0a:33:04:d1:76:cb:3b:5c:0d:
        96:94:bc:fa:fe:88:36:a2:46:5a:01:0e:7f:03:84:ac:
        34:49:ef:23:7f:4c:bb:ae:14:74:08:21:78:00:1a:5e
    Fingerprint (SHA-256):
        52:A2:BE:6E:47:9B:4B:BA:BA:DA:6A:5D:8D:BC:7E:92:29:55:C8:F4:9F:7E:16:59:27:12:36:2E:7D:75:30:F2
    Fingerprint (SHA1):
        47:EF:44:C2:A1:CB:52:2C:48:06:CE:B2:D4:F3:D9:E6:D2:A9:CA:81
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #14529: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175928 (0x3cdde878)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:26:54 2017
            Not After : Fri Oct 21 18:26:54 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:f5:cb:29:67:9e:e0:03:a4:30:17:18:f4:c1:39:ea:
                    94:2b:ce:59:ef:a9:47:21:93:d3:f8:a1:f3:d5:7f:48:
                    ad:84:e1:2c:ed:09:b3:2c:20:98:d8:c2:9c:d1:4c:4f:
                    be:34:61:a6:d2:99:48:8e:5a:f0:4b:60:4a:b5:8b:f8:
                    20:b1:f8:e8:57:17:0f:95:17:c0:47:74:70:77:a3:0f:
                    02:d3:cb:36:ef:57:ca:db:45:52:62:09:3b:79:07:09:
                    d1:5e:17:2b:af:6e:46:1f:61:c2:75:78:51:a5:f2:ea:
                    6e:12:a3:31:f5:67:7b:c9:35:ec:4d:63:a2:c2:5b:7c:
                    a0:42:cb:8a:5a:a9:b2:f1:27:15:d1:72:30:63:95:e9:
                    d3:68:9b:72:45:2f:f1:01:8a:b2:b6:ef:4e:68:2c:40:
                    4c:ec:3e:f5:d2:e8:8f:b8:2e:4d:df:7e:0a:ab:6c:85:
                    ef:4f:6d:7d:68:92:34:42:57:ba:1a:5d:e3:ce:ca:44:
                    a3:ce:17:2a:da:80:c9:e2:12:99:e3:fc:3c:02:4f:d7:
                    38:70:ab:79:c4:5c:1f:4b:f1:70:38:5a:11:b7:c7:54:
                    6b:c1:a1:f0:ce:98:a4:ef:73:87:d7:68:43:a3:12:74:
                    1d:b3:b1:5f:c7:e4:c6:16:84:c8:a3:70:52:ba:17:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:c1:5d:7f:bd:dc:80:28:20:42:f3:ff:35:4c:c8:57:
        38:b9:de:44:cb:5d:ad:bb:b3:01:7f:75:18:2b:50:9f:
        fa:00:4d:9d:dd:83:72:0e:ea:97:d5:f4:ed:ab:0b:a9:
        76:4a:dd:ef:5f:45:6c:8e:d8:0e:b3:29:6c:79:94:f2:
        9f:f5:1f:9b:97:41:a5:e8:f4:1f:39:bd:08:c5:c2:c9:
        ef:56:fa:a0:d2:de:40:58:bf:b6:36:d0:27:44:36:5e:
        c7:fc:19:e4:f0:04:8d:54:26:a2:a2:e8:2a:ef:8b:41:
        75:90:6e:49:88:71:dc:89:2b:7c:42:7a:a3:2d:89:ae:
        3a:af:55:c3:b3:38:3f:46:25:a0:cf:81:ef:65:b5:c9:
        72:9f:dd:f2:65:fc:12:7e:ae:2a:85:58:dd:ab:ab:ab:
        1a:14:fc:b3:c4:6c:43:98:fe:8e:0d:db:ad:fe:10:06:
        31:f4:0b:b2:71:c1:cd:23:86:58:cb:fa:59:a1:ef:a7:
        5f:f5:f0:30:08:ef:a4:54:b2:09:3a:f9:14:28:08:73:
        f5:0b:81:fb:a3:95:a9:0a:33:04:d1:76:cb:3b:5c:0d:
        96:94:bc:fa:fe:88:36:a2:46:5a:01:0e:7f:03:84:ac:
        34:49:ef:23:7f:4c:bb:ae:14:74:08:21:78:00:1a:5e
    Fingerprint (SHA-256):
        52:A2:BE:6E:47:9B:4B:BA:BA:DA:6A:5D:8D:BC:7E:92:29:55:C8:F4:9F:7E:16:59:27:12:36:2E:7D:75:30:F2
    Fingerprint (SHA1):
        47:EF:44:C2:A1:CB:52:2C:48:06:CE:B2:D4:F3:D9:E6:D2:A9:CA:81
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #14530: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14531: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14532: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175958 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14533: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14534: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #14535: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14536: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 1021175959   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14537: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14538: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #14539: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14540: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 1021175960   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14541: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14542: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #14543: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14544: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 1021175961   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14545: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14546: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #14547: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14548: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 1021175962   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14549: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14550: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #14551: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14552: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 1021175963   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14553: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14554: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #14555: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14556: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 1021175964   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14557: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14558: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14559: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175958 (0x3cdde896)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:31:04 2017
            Not After : Fri Oct 21 18:31:04 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:46:73:b7:33:85:bc:85:ba:f0:06:d8:96:4f:fa:7b:
                    47:25:17:7b:c4:34:37:cd:78:ec:8d:f4:25:b1:34:ce:
                    e8:b5:23:fe:e0:18:46:16:11:94:66:5d:44:18:7a:93:
                    76:2b:32:26:a3:a1:5e:54:6e:ac:de:b4:07:af:22:40:
                    ff:51:31:e5:3b:42:9f:31:ff:8a:f5:b2:bd:d8:04:34:
                    2c:03:74:12:4f:33:c4:0d:8e:96:e5:d4:63:92:b2:1a:
                    05:ca:d1:ec:aa:c6:2f:86:37:7f:91:b6:06:5e:54:61:
                    50:52:75:97:21:9b:4a:8f:d9:73:44:02:96:78:cb:76:
                    dd:aa:38:31:32:ae:96:b0:3d:3a:7a:45:1f:ea:c1:b5:
                    8c:06:79:c0:50:a3:6f:18:81:58:11:20:e2:e1:f5:6e:
                    94:3f:13:f0:fb:8b:df:02:fa:f0:cc:67:2e:f3:50:ff:
                    ff:02:49:fd:d2:fd:5e:88:0f:9c:7f:8c:cd:73:1b:5a:
                    34:14:7d:9c:02:fc:3a:4c:50:51:7e:3d:79:a5:4f:ac:
                    fb:45:c4:f1:b5:7a:02:1c:8a:ec:11:5b:9d:38:bc:b9:
                    70:b1:3c:0f:5f:d5:80:02:07:71:fe:eb:b0:31:7d:16:
                    44:11:e3:4b:66:87:96:ca:0b:b0:bd:6a:6b:1e:62:2b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ac:57:6b:1a:5a:35:a1:cd:28:f2:00:ea:65:81:64:0d:
        3c:51:8b:90:b1:db:f1:34:5e:fc:24:17:14:43:07:17:
        2a:14:42:9c:d4:21:cd:50:60:c1:42:1d:fd:e6:83:aa:
        fe:f2:59:cf:29:94:2e:88:a9:3f:2d:da:e7:0a:f7:c6:
        3a:c2:35:01:07:84:78:23:ca:74:8e:48:ff:1b:ec:fe:
        9a:a6:f0:a6:d3:2d:9b:93:37:35:08:83:f4:20:9e:5d:
        f4:32:44:04:3c:e1:03:11:ab:ee:8f:09:fc:23:13:bf:
        46:41:f4:d5:06:cf:16:4c:d6:6b:c1:ad:e0:4d:db:14:
        23:52:6a:6e:25:c9:05:ea:eb:f9:de:6a:12:ef:b1:9d:
        e8:56:71:2d:4b:7a:c7:31:5f:56:12:d9:e4:e1:23:b4:
        ff:12:97:15:17:68:41:46:ac:32:7f:8d:60:71:cf:37:
        5f:2d:c7:fc:d2:de:b5:89:da:e5:25:c9:66:d9:c7:be:
        fc:0d:d6:17:2c:74:f0:85:19:28:fd:81:3c:02:76:9a:
        f6:ca:c7:43:c1:9d:70:db:94:81:a8:e3:d0:f5:32:b9:
        52:23:42:34:0c:93:fe:ac:a6:3c:dd:a4:91:92:4c:e0:
        32:51:fa:32:ec:06:d0:8b:1b:78:ca:76:2c:34:9c:97
    Fingerprint (SHA-256):
        A9:D3:0A:FB:0A:EE:08:B4:4F:08:59:C0:C7:8B:14:E1:6E:8E:7B:61:AB:3F:1C:BC:61:64:29:D0:D4:AA:82:01
    Fingerprint (SHA1):
        A6:3D:9F:CF:ED:15:65:2A:02:A0:CD:B9:9C:72:00:3E:1A:1F:5C:2F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #14560: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14561: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14562: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #14563: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175958 (0x3cdde896)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:31:04 2017
            Not After : Fri Oct 21 18:31:04 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:46:73:b7:33:85:bc:85:ba:f0:06:d8:96:4f:fa:7b:
                    47:25:17:7b:c4:34:37:cd:78:ec:8d:f4:25:b1:34:ce:
                    e8:b5:23:fe:e0:18:46:16:11:94:66:5d:44:18:7a:93:
                    76:2b:32:26:a3:a1:5e:54:6e:ac:de:b4:07:af:22:40:
                    ff:51:31:e5:3b:42:9f:31:ff:8a:f5:b2:bd:d8:04:34:
                    2c:03:74:12:4f:33:c4:0d:8e:96:e5:d4:63:92:b2:1a:
                    05:ca:d1:ec:aa:c6:2f:86:37:7f:91:b6:06:5e:54:61:
                    50:52:75:97:21:9b:4a:8f:d9:73:44:02:96:78:cb:76:
                    dd:aa:38:31:32:ae:96:b0:3d:3a:7a:45:1f:ea:c1:b5:
                    8c:06:79:c0:50:a3:6f:18:81:58:11:20:e2:e1:f5:6e:
                    94:3f:13:f0:fb:8b:df:02:fa:f0:cc:67:2e:f3:50:ff:
                    ff:02:49:fd:d2:fd:5e:88:0f:9c:7f:8c:cd:73:1b:5a:
                    34:14:7d:9c:02:fc:3a:4c:50:51:7e:3d:79:a5:4f:ac:
                    fb:45:c4:f1:b5:7a:02:1c:8a:ec:11:5b:9d:38:bc:b9:
                    70:b1:3c:0f:5f:d5:80:02:07:71:fe:eb:b0:31:7d:16:
                    44:11:e3:4b:66:87:96:ca:0b:b0:bd:6a:6b:1e:62:2b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ac:57:6b:1a:5a:35:a1:cd:28:f2:00:ea:65:81:64:0d:
        3c:51:8b:90:b1:db:f1:34:5e:fc:24:17:14:43:07:17:
        2a:14:42:9c:d4:21:cd:50:60:c1:42:1d:fd:e6:83:aa:
        fe:f2:59:cf:29:94:2e:88:a9:3f:2d:da:e7:0a:f7:c6:
        3a:c2:35:01:07:84:78:23:ca:74:8e:48:ff:1b:ec:fe:
        9a:a6:f0:a6:d3:2d:9b:93:37:35:08:83:f4:20:9e:5d:
        f4:32:44:04:3c:e1:03:11:ab:ee:8f:09:fc:23:13:bf:
        46:41:f4:d5:06:cf:16:4c:d6:6b:c1:ad:e0:4d:db:14:
        23:52:6a:6e:25:c9:05:ea:eb:f9:de:6a:12:ef:b1:9d:
        e8:56:71:2d:4b:7a:c7:31:5f:56:12:d9:e4:e1:23:b4:
        ff:12:97:15:17:68:41:46:ac:32:7f:8d:60:71:cf:37:
        5f:2d:c7:fc:d2:de:b5:89:da:e5:25:c9:66:d9:c7:be:
        fc:0d:d6:17:2c:74:f0:85:19:28:fd:81:3c:02:76:9a:
        f6:ca:c7:43:c1:9d:70:db:94:81:a8:e3:d0:f5:32:b9:
        52:23:42:34:0c:93:fe:ac:a6:3c:dd:a4:91:92:4c:e0:
        32:51:fa:32:ec:06:d0:8b:1b:78:ca:76:2c:34:9c:97
    Fingerprint (SHA-256):
        A9:D3:0A:FB:0A:EE:08:B4:4F:08:59:C0:C7:8B:14:E1:6E:8E:7B:61:AB:3F:1C:BC:61:64:29:D0:D4:AA:82:01
    Fingerprint (SHA1):
        A6:3D:9F:CF:ED:15:65:2A:02:A0:CD:B9:9C:72:00:3E:1A:1F:5C:2F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #14564: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14565: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14566: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14567: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175965 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14568: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14569: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14570: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14571: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021175966   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #14572: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14573: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14574: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14575: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021175967   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14576: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14577: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #14578: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14579: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 1021175968   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14580: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14581: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14582: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #14583: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #14584: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #14585: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175965 (0x3cdde89d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:31:59 2017
            Not After : Fri Oct 21 18:31:59 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:62:7f:53:a4:70:49:10:3f:2b:80:72:3e:11:15:75:
                    7b:32:d5:3a:ae:ab:a1:be:0a:7f:08:57:23:cd:55:4c:
                    ef:54:2e:69:c9:99:53:62:86:f6:d4:cd:6d:48:25:bd:
                    a7:43:07:33:aa:a5:8d:d4:08:28:37:30:48:c0:6d:36:
                    a9:4b:31:a2:88:3b:51:a3:14:b2:3a:b2:65:83:06:e7:
                    29:47:a7:3c:0f:3f:a5:9a:42:a6:a1:6c:b3:f5:63:64:
                    45:55:cc:7e:3f:ba:d4:4f:ae:8f:f2:67:b4:c7:ac:73:
                    4f:0e:46:71:d8:2d:a2:c5:07:1b:34:66:6f:89:a6:fb:
                    07:14:b0:81:a9:4b:91:d4:18:a6:50:3c:5b:a8:bd:43:
                    7e:03:b8:05:be:6a:cc:41:1d:b4:85:95:a8:d2:a0:ac:
                    14:ed:51:7c:81:55:97:59:01:08:b4:39:4e:4d:0d:ef:
                    35:c4:e6:33:6b:76:cc:2f:38:7c:97:61:8a:9a:b2:6f:
                    9e:1f:eb:f8:82:43:d3:c5:1d:98:4c:95:66:e6:e1:38:
                    3d:f2:f5:6a:2b:48:9b:a5:88:b0:ac:e8:29:e4:77:0e:
                    f8:c2:a0:a8:34:1f:46:98:3d:fc:66:39:9d:99:e8:86:
                    ad:81:8f:bd:72:8b:64:d1:eb:df:cf:36:b7:9a:4b:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:9b:dd:86:5c:19:a2:a0:08:01:f8:16:1f:36:ef:57:
        5f:bd:74:f8:83:49:b7:ee:60:21:e4:bd:e9:3f:c5:cc:
        43:93:14:69:fc:dd:e8:c7:db:a9:b4:04:fe:0b:48:c7:
        e0:2c:e2:cd:c5:c2:4c:5b:1f:42:45:c3:90:49:08:26:
        38:fd:17:81:35:c3:ea:58:83:20:82:05:0f:d9:e8:8f:
        04:df:21:b4:6c:3d:95:f3:45:6c:9b:fe:e9:39:9b:c1:
        ea:a3:61:e4:0d:7e:07:97:c2:42:ce:80:c8:1e:68:21:
        e0:c3:3f:bc:df:f6:01:c4:4d:f0:6a:7c:23:e6:5b:85:
        69:f5:b2:a1:7c:f7:cc:b3:34:8d:d7:f4:24:f5:b3:1a:
        0f:42:78:0b:df:db:8b:63:d3:1f:4c:94:f4:0e:90:27:
        04:1c:de:f2:f4:7f:54:67:4e:fc:ac:d2:96:af:70:e8:
        ff:32:64:69:ba:3b:45:1f:bc:6c:3e:b0:3a:e3:3d:b5:
        91:3e:be:0b:71:a3:93:3b:c9:27:8b:0d:6e:0b:4b:a6:
        c7:5f:96:da:fd:61:90:a5:71:03:f3:5b:cb:cf:9f:8c:
        8b:4a:6b:04:76:49:49:a0:c4:91:f6:c5:88:12:c4:36:
        52:5d:4d:66:89:2f:52:d4:f9:6f:a2:86:e0:09:76:e0
    Fingerprint (SHA-256):
        7B:15:B8:06:59:1B:11:9A:28:96:EF:B1:26:9E:10:7E:68:BA:0F:C7:3F:6E:BE:C0:AC:95:07:1B:8D:D8:27:23
    Fingerprint (SHA1):
        64:B5:1B:47:65:75:E1:83:35:80:E5:13:D8:BC:7C:BF:91:CC:01:09
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14586: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14587: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14588: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175966 (0x3cdde89e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:32:10 2017
            Not After : Fri Oct 21 18:32:10 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:8a:8b:86:57:07:d9:53:4c:c2:dc:1a:36:19:69:4c:
                    47:77:d4:36:69:58:ec:2a:5b:dc:b8:2d:f8:1f:5d:4c:
                    a5:b1:da:5a:84:5f:98:b4:40:aa:c1:dc:2d:25:d8:7e:
                    92:a0:14:3e:9b:36:4e:6c:90:9f:90:53:f2:b3:bd:3b:
                    95:c2:e2:4f:e1:ab:7c:27:f0:83:c1:39:b8:e4:1b:1e:
                    5e:d5:37:9f:5b:39:e5:e6:86:3f:f4:ff:1a:be:19:8a:
                    0b:32:13:09:61:9f:a9:08:bd:e5:cc:e2:eb:2f:81:19:
                    61:54:ae:f5:93:45:53:2a:cb:84:18:04:73:e7:86:47:
                    0f:c0:59:f9:b9:70:09:d9:87:8a:20:f1:84:79:d7:06:
                    1c:d2:11:88:00:be:8a:fa:0c:e3:63:b5:47:5e:df:44:
                    32:e1:fb:23:3c:77:ad:2b:e5:eb:87:f7:96:df:9f:3b:
                    a8:95:e3:c7:31:6e:d5:85:da:32:a4:b8:53:a1:78:2d:
                    32:50:3a:61:46:d7:3b:7d:62:56:25:e3:b0:f6:eb:d8:
                    66:4d:5b:27:46:55:b7:18:72:92:43:f1:10:d4:50:e0:
                    58:99:ca:eb:bc:ce:0c:d2:5d:b5:eb:8a:22:75:e5:8c:
                    0d:df:b5:9a:87:47:92:16:0c:b3:a4:15:a5:4f:f4:6d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:35:c8:5d:47:72:a3:7b:34:ed:5a:ae:5c:44:3f:33:
        8b:f8:8d:91:18:ad:b3:12:0f:68:7d:c5:10:0c:d4:6c:
        db:30:54:0a:bb:e5:2e:17:eb:9c:84:45:bf:c8:a9:8b:
        16:3a:e6:73:eb:50:ba:96:15:02:b1:d2:18:0c:fb:6d:
        a5:82:1e:9a:da:b3:e9:bc:13:60:d8:b9:57:03:47:da:
        e7:73:b7:e5:74:32:8f:76:99:c0:c4:6b:d0:80:4a:e4:
        98:46:9c:90:e5:b7:5c:79:85:a5:d0:66:95:1d:71:d6:
        8e:fb:98:01:6f:aa:a9:67:68:cb:4f:db:53:37:92:8c:
        22:40:cb:02:5e:70:d2:63:95:5b:fb:5a:5c:8b:b0:bf:
        47:f8:8f:89:63:ed:82:43:b3:eb:aa:ef:24:40:38:81:
        e2:ad:16:48:c9:3f:ac:27:4b:fd:75:6e:f9:d5:a9:f2:
        49:c8:1c:0f:af:d9:df:09:ac:23:20:a3:c1:61:ca:b5:
        bd:3d:86:42:6e:8b:5a:a4:85:32:02:91:b6:f9:3a:1a:
        b4:e5:37:0b:0e:3e:b6:23:17:38:43:8b:14:81:b2:da:
        16:f4:77:af:f7:9e:d4:18:67:54:c4:93:94:de:ae:fa:
        21:19:f4:54:f5:d3:58:5a:85:74:28:e6:bc:c1:45:73
    Fingerprint (SHA-256):
        52:D3:C3:A2:EB:C3:F2:7F:C6:D4:6F:61:4D:36:AB:E0:61:AA:63:FE:94:38:95:A4:6C:76:6C:C7:2F:16:05:D6
    Fingerprint (SHA1):
        73:F0:48:5B:A7:0C:0B:52:29:25:95:F3:3A:AB:01:C3:31:03:6C:88
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14589: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14590: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175967 (0x3cdde89f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 18:32:18 2017
            Not After : Fri Oct 21 18:32:18 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:52:04:10:35:f4:6e:6f:26:00:85:01:17:09:8a:0f:
                    4a:98:81:ab:d1:52:57:94:d1:97:fa:30:e9:55:d7:c5:
                    ab:b3:de:e6:4e:92:9b:a9:72:f7:cd:e7:a5:fa:f0:f1:
                    c7:e3:14:09:a7:6a:18:b5:c3:ae:c5:88:d7:f5:a6:7a:
                    f5:91:12:85:c0:84:ee:ec:b1:b2:fc:0b:b0:06:a3:1d:
                    8d:9c:77:f5:10:fb:5a:cf:3d:ae:87:86:f3:59:63:9f:
                    a7:48:17:05:a0:93:a7:dc:74:98:22:21:49:9d:3e:a0:
                    0d:5e:f2:d6:a0:4f:a8:4b:88:3a:61:4f:5d:a4:e6:e2:
                    53:a8:a9:b8:62:ea:60:d6:e0:60:7d:46:17:b6:81:04:
                    cb:78:fd:8d:61:8e:9f:e6:e8:3c:df:53:91:e1:74:c3:
                    e5:c5:31:77:2d:86:b3:ca:b8:7f:ee:d5:21:0f:25:95:
                    62:02:93:a2:e2:f6:ab:d0:a3:62:98:5f:8a:b1:f0:b6:
                    28:28:22:26:26:ef:9f:30:cc:fc:01:54:29:f4:e2:42:
                    33:53:0c:89:23:f6:96:77:63:f1:cf:ca:7d:17:d2:eb:
                    51:9b:4d:56:f1:8a:5c:ab:9b:ce:de:ee:16:7f:06:0e:
                    d7:e2:18:88:19:03:a0:91:27:ea:af:51:38:71:62:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7e:66:a8:5a:d4:32:b6:16:1a:d0:4a:88:6c:f8:33:85:
        93:70:73:83:2c:03:52:58:20:16:dd:a2:c2:b4:8a:77:
        ec:8d:ac:a1:9c:82:96:e9:da:d7:30:6f:56:4e:56:12:
        ba:cc:8c:22:dc:5f:46:b4:56:1d:24:69:0d:81:f1:7a:
        2f:bd:3e:26:20:94:89:fc:cd:6f:27:72:ef:6f:18:47:
        f4:2c:a3:fc:c2:c3:f2:ab:45:42:2e:e4:90:77:c0:5c:
        0f:49:ea:92:d2:38:75:93:57:a6:e8:6b:88:56:f6:a7:
        55:8b:07:0e:24:67:95:59:78:44:66:2c:18:e6:40:dc:
        cb:fa:87:dc:b7:1e:75:f3:89:23:ce:7b:d8:03:ac:80:
        05:c2:0d:b3:a2:af:c1:d8:b7:af:67:80:1a:ab:ad:61:
        f3:06:88:4e:b1:f4:b6:d7:dd:72:05:1d:12:e6:e2:95:
        94:55:6b:c2:f4:a7:13:42:77:7d:ed:cc:1e:b8:c9:97:
        1c:3c:af:de:fc:49:89:8e:fc:86:4b:bf:a3:fd:34:b5:
        9d:1e:38:02:f2:44:21:b9:57:6b:ea:32:b9:f4:f5:f1:
        e0:78:c2:e7:6d:5f:38:97:1e:fc:a7:1a:1f:9d:f2:5f:
        41:2f:d3:d4:d0:54:88:1e:02:df:39:f8:c3:cf:ae:82
    Fingerprint (SHA-256):
        31:C2:B3:FD:6C:17:52:80:37:1D:2D:C6:36:08:9E:9F:81:16:57:55:F3:E2:01:C9:F0:89:69:EA:6C:A0:21:97
    Fingerprint (SHA1):
        17:52:5A:66:01:52:14:22:E8:19:3E:DC:48:78:BA:F3:06:3A:36:28
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #14591: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14592: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175969 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14593: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14594: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14595: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14596: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021175970   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14597: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14598: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14599: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14600: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021175971   --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #14601: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14602: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #14603: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14604: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 1021175972   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14605: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14606: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #14607: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14608: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 1021175973   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14609: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14610: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14611: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #14612: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #14613: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #14614: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #14615: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175969 (0x3cdde8a1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:32:41 2017
            Not After : Fri Oct 21 18:32:41 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:b0:33:55:a8:aa:8b:6c:8e:98:02:4b:3d:f3:c4:cc:
                    c8:86:69:09:dc:63:5b:71:3e:e1:b0:ca:70:b7:2e:8c:
                    c2:a2:25:8f:51:0d:a9:92:3f:94:8a:10:a1:5a:37:35:
                    4b:10:a9:3b:b1:68:cc:23:22:0f:85:f2:0c:1f:d7:8a:
                    b4:32:9c:e1:7b:ed:fa:46:71:b9:10:3a:5c:9c:94:50:
                    68:78:a1:7f:0d:32:1d:99:18:27:57:cf:81:41:7e:ac:
                    c8:f0:08:cc:25:50:fe:fd:7a:80:f6:a8:29:dc:cf:9e:
                    d1:2b:77:ea:dd:b4:b8:d5:02:31:2f:9a:fc:bd:bc:85:
                    71:0b:46:07:c9:b5:d0:8f:c2:7c:bc:2b:84:85:92:0d:
                    ae:1d:93:9e:32:65:0f:38:7b:ce:c3:2d:f9:cb:e3:c7:
                    d5:ef:46:e3:a1:e1:fc:bf:b4:c8:c8:47:66:e4:5d:cb:
                    7b:21:14:82:8c:3a:9c:6c:12:90:df:0a:60:59:78:9a:
                    b7:9c:95:67:4b:84:76:09:72:c7:79:e5:b9:86:49:96:
                    ce:ad:4d:d9:69:11:92:a0:83:76:9a:bc:fa:cb:c8:2b:
                    9c:2c:b2:71:e5:75:db:e7:80:ef:67:f9:a1:6a:7f:18:
                    e1:d7:06:31:7b:41:b2:e1:d9:36:8d:47:44:17:74:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        14:c7:c2:ca:fe:82:69:84:86:3d:25:3f:c4:d7:37:36:
        d8:31:18:6b:40:6b:a4:68:13:33:c1:e2:47:4b:e5:b0:
        a2:f4:d0:fd:6c:48:86:e6:d3:f9:97:62:7b:13:ef:b9:
        ae:1d:e1:a9:b9:97:cc:34:a6:8f:6b:01:bf:44:6b:ee:
        46:58:48:a3:49:0e:02:47:15:68:18:de:08:bb:09:54:
        60:91:b2:c2:39:2f:3e:e6:95:bd:cd:c1:e5:1d:7e:c3:
        b3:c1:62:b2:f2:15:79:c9:f8:32:69:c0:af:d9:d1:f5:
        18:8f:7d:69:3b:7f:db:e9:d8:bb:2d:c6:8e:cd:a2:a1:
        7b:97:0e:45:5b:54:c9:c2:e2:7f:71:7f:1b:93:a4:80:
        0e:ac:53:38:69:2a:ae:c5:08:56:c3:07:23:2d:67:df:
        8d:45:b1:a9:1e:fe:52:f8:be:08:0b:9a:c0:4c:92:d2:
        59:4d:07:58:a6:8b:4a:c2:7f:bd:be:32:e9:d9:c2:92:
        7f:dc:51:99:96:db:23:a4:be:e2:ae:b3:e7:7f:9a:f1:
        46:1d:51:85:c0:2b:70:82:bf:51:d4:55:e1:4b:04:8d:
        7e:0d:79:22:1d:a0:54:15:b7:53:bd:70:aa:53:e8:b7:
        6b:9f:e6:91:09:00:31:eb:f9:ed:b0:75:c2:b6:9e:07
    Fingerprint (SHA-256):
        AF:D6:D3:8D:68:7F:F7:96:AB:8B:C2:FF:3D:A0:C7:A1:E4:03:FC:10:B3:C9:0D:7A:D6:46:A1:BB:9E:02:F0:08
    Fingerprint (SHA1):
        50:EC:81:EE:58:8F:78:6F:C2:1E:EF:67:14:2E:F4:86:1B:89:CF:AC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14616: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14617: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175970 (0x3cdde8a2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:32:49 2017
            Not After : Fri Oct 21 18:32:49 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:b2:38:67:22:5f:f9:e6:18:aa:fa:c3:9a:57:85:cd:
                    94:f3:b4:36:66:b8:87:d8:b4:bc:70:37:e7:2f:0a:cb:
                    6d:66:b6:7a:e4:36:fb:35:01:79:7e:2f:f4:d5:9f:0c:
                    f6:39:65:07:b9:d9:17:88:0e:e5:c4:17:3f:82:a4:b0:
                    88:d9:45:9d:c2:8a:ec:db:e7:e8:b6:24:68:84:51:35:
                    16:cd:4f:95:fb:c0:12:e3:12:04:a0:6b:27:7f:58:74:
                    12:fe:79:41:61:9e:e2:83:bf:86:11:a0:31:d3:29:5f:
                    ac:b9:43:64:04:55:1f:e2:a3:b6:71:cb:d7:7b:d2:c1:
                    c2:30:4d:24:25:18:a1:e6:84:23:6f:a3:ad:53:a9:d5:
                    84:bc:e5:11:b6:9e:22:97:77:03:b9:f5:7a:46:cf:ab:
                    9f:4f:25:61:a8:97:56:22:a2:34:4f:8f:42:ad:31:a8:
                    04:c7:d7:a1:a1:a3:21:4b:da:26:63:1e:0b:0e:88:89:
                    a4:c7:be:3d:f8:70:62:1e:cb:3d:c5:eb:d1:ef:48:58:
                    2f:12:e8:9d:02:bc:91:5d:df:fc:6e:cd:48:b8:2f:6f:
                    35:d7:80:83:aa:f1:01:ad:9c:40:37:49:f5:9c:28:78:
                    61:8f:ca:e9:81:78:ff:e8:2c:4c:6d:84:46:16:41:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        58:87:db:8f:2f:37:bc:87:42:5a:d7:7d:b7:46:17:b0:
        23:66:85:4d:37:8e:a1:c8:46:f5:af:33:09:4c:07:10:
        65:fc:3c:ce:9a:67:78:f5:d6:8f:75:14:2b:24:5b:98:
        f4:56:4a:63:d8:7c:f3:b3:a4:c7:30:bf:d3:0d:bc:f7:
        42:4f:72:0c:28:a3:31:1c:7f:fc:70:e9:eb:b6:12:ad:
        4c:9c:a9:53:a6:71:8d:22:94:4b:f0:3b:3a:78:54:19:
        0b:5d:40:58:ff:06:59:cb:b5:49:ab:ca:df:85:dc:f2:
        f4:db:c5:2a:55:42:eb:0d:08:f1:70:b3:b8:12:a1:23:
        f0:d7:d5:e3:b6:bd:d7:06:49:96:8e:b9:fd:10:4f:26:
        3d:94:9e:e6:c1:31:cb:46:58:76:86:c9:d5:4e:c8:2f:
        7e:77:0e:c7:bf:59:79:07:53:b7:fc:e7:62:27:3c:a2:
        20:2d:9c:83:72:95:b3:4a:52:1f:34:9d:2a:0c:a0:aa:
        1a:8b:04:d7:48:9e:17:bd:ce:a9:82:ee:97:b9:54:ec:
        85:1e:d1:42:b5:aa:d7:5c:83:f3:4f:08:21:49:07:13:
        22:6a:a1:32:a8:d0:fa:46:02:b8:61:70:7a:11:b8:dc:
        3a:dd:10:db:2c:27:e2:9d:8a:2f:4d:07:b7:ab:a0:cc
    Fingerprint (SHA-256):
        29:BB:D9:38:04:50:B4:E7:0D:7A:95:C2:2B:C8:A6:4E:44:AA:CC:43:A3:6B:A8:F5:70:BA:C2:DC:C1:8C:2C:4E
    Fingerprint (SHA1):
        A9:69:33:65:92:9A:CE:5E:00:74:87:76:95:2C:39:7B:14:E0:F2:FB
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14618: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14619: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14620: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175971 (0x3cdde8a3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 18:32:58 2017
            Not After : Fri Oct 21 18:32:58 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:1f:8c:80:21:e6:84:0e:26:6a:e1:f5:86:11:f8:9f:
                    80:62:43:5b:50:32:a4:83:28:81:f7:93:33:9b:32:f4:
                    76:b5:61:ac:bb:5b:98:8c:d7:ff:da:14:3c:1a:cb:31:
                    22:6c:a1:e1:e0:6e:8a:71:49:f5:a9:0b:25:da:00:fc:
                    89:ac:fb:de:b1:55:df:7c:2c:99:ff:ae:2e:30:4d:7a:
                    f3:20:ed:65:28:13:8b:f9:01:a8:7f:64:83:1f:c9:02:
                    2e:1b:45:8b:51:fb:31:b9:4a:f1:04:85:df:a5:04:c8:
                    52:1b:4a:c5:8f:2b:e2:28:aa:a7:69:a7:d1:2f:b4:7e:
                    db:b4:f7:ac:ff:70:c1:c4:87:ed:ac:1c:a3:65:90:e5:
                    d6:19:d2:79:e7:43:a8:cf:0e:bb:c4:cb:51:66:15:ce:
                    52:b8:7a:6e:7c:6c:ef:15:22:99:2f:bc:17:62:1e:f0:
                    5e:ae:fb:66:d1:c4:9d:41:03:6c:61:0d:f8:58:5f:fd:
                    a6:9a:d3:53:d7:ba:17:27:ee:d7:a4:24:80:5c:b3:ca:
                    f9:9b:b1:09:50:65:ba:98:1f:d9:90:45:cd:e4:41:84:
                    b5:f5:b1:9b:03:f6:87:bc:be:34:12:ff:1a:fd:7e:85:
                    10:54:c6:63:61:9e:c1:6d:96:01:38:40:e6:0a:28:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        09:f2:64:82:10:71:13:0c:8e:9b:03:c3:0c:bd:37:5b:
        c6:2c:95:5c:2d:3b:22:ba:03:46:96:82:ca:41:7d:48:
        72:a2:fd:02:fc:08:cb:e3:53:63:c4:bf:31:e0:5b:c8:
        13:fd:d5:a0:24:f3:2e:c8:05:6d:f2:fd:a0:c4:0d:49:
        0b:64:b5:d6:0d:98:58:a4:94:ed:35:33:8a:84:ce:40:
        d6:f6:b9:88:48:55:26:c9:5c:19:a3:1a:18:eb:17:37:
        3e:13:b1:69:31:74:0f:e6:0a:95:e7:43:e7:1f:e9:39:
        c6:5d:53:ee:ab:9a:6d:bf:19:af:d8:ca:21:a4:27:fd:
        33:e9:0b:d2:da:f3:87:71:17:9f:de:b6:6e:c2:4e:20:
        1f:4a:bf:f7:5e:9f:bc:04:b7:7c:5c:2a:1e:f7:e1:7a:
        66:1b:22:ae:21:ff:49:ab:3f:78:69:35:f3:99:a1:86:
        60:7c:fc:7f:c7:2e:84:5e:06:34:7c:35:50:ae:5c:47:
        d8:ac:9e:0b:d8:a3:a9:33:af:d1:1f:34:d3:28:24:f8:
        89:3d:08:e5:76:a9:ce:66:10:bd:c2:83:c9:d5:68:3b:
        68:4b:3d:90:c2:74:3e:aa:8f:c7:3f:60:a8:94:d0:f1:
        d4:f1:be:60:0e:60:87:f5:e5:fe:86:ff:9a:6a:ed:a4
    Fingerprint (SHA-256):
        5E:C5:04:CE:8F:2E:42:80:9F:96:D4:3F:4A:4A:5F:B4:C9:94:B9:D6:A4:47:E6:D6:23:6A:EF:B6:0A:5A:D5:A1
    Fingerprint (SHA1):
        1B:BD:89:4F:71:F1:85:CA:CF:7A:B1:A8:C4:06:CC:9D:19:0E:30:59
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #14621: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14622: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175974 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14623: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14624: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14625: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14626: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021175975   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14627: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14628: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14629: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14630: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021175976   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA1Root-1021175753.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14631: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14632: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #14633: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14634: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 1021175977   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14635: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14636: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #14637: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175974 (0x3cdde8a6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:33:32 2017
            Not After : Fri Oct 21 18:33:32 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:b5:ff:31:83:6a:26:88:87:57:00:2c:f0:7b:aa:09:
                    47:12:1d:1f:f8:95:11:83:d5:34:e1:f3:db:1e:7c:21:
                    f3:81:0d:d4:6b:f4:c0:4b:21:bc:39:bc:28:08:db:5a:
                    08:d1:1f:8d:86:37:9a:a2:9d:18:0f:56:3b:ab:5b:91:
                    d6:69:2f:f3:e3:43:fa:5a:63:f4:6d:40:a8:33:44:e9:
                    e9:b1:a7:39:6e:e7:05:ec:07:5c:9e:27:ab:af:3f:0f:
                    51:f6:27:b5:fd:10:c7:24:0c:30:f2:85:25:35:0c:d7:
                    f8:c7:bf:97:cf:44:b5:f5:5e:27:f7:7b:1a:e2:b7:9d:
                    2f:4d:71:11:9f:d4:0a:b5:aa:ca:7c:14:93:bf:d6:6f:
                    cf:4a:cc:08:f6:72:69:d4:19:21:cf:fd:f3:fb:ef:05:
                    2a:93:01:f3:82:ab:a4:7f:af:19:3f:98:0b:d5:19:8d:
                    01:4a:68:60:05:6f:cd:9a:a2:04:d6:ce:51:b1:4c:de:
                    fd:87:6b:19:d0:17:71:c2:f3:14:dd:45:64:33:3b:aa:
                    e6:8f:53:6b:eb:dc:34:31:fd:e9:01:09:13:7d:63:60:
                    43:0c:73:e3:a3:96:8e:84:39:5e:a2:6b:06:7d:f1:57:
                    f1:ff:bb:eb:d1:41:b9:41:9a:15:6d:15:f4:9e:6f:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        95:bd:68:40:ff:48:b0:af:b5:44:34:bc:1c:1b:31:5b:
        71:c9:75:8c:4b:4d:1d:4b:d8:22:97:64:56:73:6c:c6:
        d7:e7:4f:3d:67:e2:c9:4e:9d:ca:0b:e3:f8:9c:36:f7:
        a8:7b:e0:ca:a6:ef:64:dc:77:2e:a9:9f:14:0c:d0:e6:
        7d:ce:60:3b:1b:1d:a3:19:70:40:ec:6e:18:ab:59:79:
        ec:c8:cd:c4:65:75:00:9b:43:aa:e1:93:42:9d:31:2f:
        61:5f:3e:92:87:02:f9:11:62:9c:3d:f7:80:16:5a:a3:
        e2:37:ca:cb:d0:06:0d:c9:ef:17:37:44:48:7b:2b:e4:
        49:16:f3:a2:be:3b:1d:55:0e:fc:ab:fd:4e:a0:61:35:
        47:d7:e0:66:de:27:26:3c:68:c5:d3:4d:5b:0b:df:52:
        2a:36:3f:85:ee:4d:44:04:c8:c2:57:5f:8c:5f:16:81:
        dc:23:7d:1c:eb:22:95:73:49:81:f9:5e:03:f8:5f:22:
        77:5f:99:dd:43:63:de:7c:c7:b6:89:67:51:a2:1a:e2:
        02:0d:33:ec:28:a7:1e:e6:6d:35:1d:02:17:48:72:04:
        bf:bc:09:49:23:19:ee:11:f2:a3:83:f8:a7:5a:34:85:
        cb:ac:33:42:09:26:7e:64:61:cd:74:04:fe:57:cc:2c
    Fingerprint (SHA-256):
        4D:C0:4F:4A:DD:AC:61:8B:66:B9:B1:ED:38:63:64:43:0C:14:28:6C:04:B5:3D:E4:E0:F6:CB:D8:5A:D1:DC:45
    Fingerprint (SHA1):
        AA:BD:99:28:75:11:07:31:0C:EC:3E:76:5D:54:B3:58:29:36:68:9D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14638: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #14639: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175978 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14640: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #14641: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #14642: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175979 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14643: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #14644: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #14645: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14646: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 1021175980 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14647: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14648: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 1021175981 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14649: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14650: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #14651: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14652: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14653: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 1021175982   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-Bridge-1021175754.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14654: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14655: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14656: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14657: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021175983   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14658: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14659: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #14660: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175978 (0x3cdde8aa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 18:34:01 2017
            Not After : Fri Oct 21 18:34:01 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:59:0f:d4:9a:01:49:0a:78:34:af:b6:ac:4a:66:56:
                    ba:6b:56:a0:47:12:db:2b:98:15:2b:b8:a8:9f:5b:32:
                    12:0d:fa:cb:47:8a:69:38:87:28:b0:62:9c:ca:79:5a:
                    7e:29:47:2b:d6:94:fc:85:89:00:f7:ad:50:47:cf:64:
                    41:81:6f:de:02:bb:91:cf:93:41:74:b1:7a:76:7d:2a:
                    8b:d8:f8:7d:12:fc:0a:2b:0e:19:08:62:26:d2:dd:4e:
                    1f:8e:4f:00:70:20:bc:ea:aa:9a:bb:76:6c:be:2d:ee:
                    f0:55:e7:21:b5:29:17:6c:6a:7d:a6:5c:71:af:81:a4:
                    99:4a:21:57:a0:4f:e8:d4:18:75:19:35:c9:c4:90:9b:
                    66:1f:7c:48:ba:1d:ba:57:25:12:f9:fb:90:bb:d3:94:
                    e3:b2:a6:b8:41:1f:98:16:38:9e:b4:5b:6f:32:ec:81:
                    12:2d:7d:6d:f8:d8:38:2e:d1:ab:30:82:b5:83:ec:c8:
                    a3:2b:9b:b8:e4:68:fb:a2:89:e4:f2:23:c8:d9:82:c4:
                    0a:2a:62:cb:ea:ca:37:90:76:e7:91:b6:0f:6d:29:13:
                    4d:00:58:af:98:57:c2:06:ce:44:c6:23:c2:80:9d:b3:
                    f7:70:f4:c7:51:11:74:1e:ed:aa:df:1f:67:fc:73:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        73:20:23:7d:a6:21:8d:b4:54:d4:21:17:e9:32:3d:f5:
        42:f3:b1:06:17:cc:89:45:c7:db:68:48:f2:26:4a:93:
        07:99:3b:e5:1a:6b:ad:0a:4e:b1:15:f9:ad:19:cb:79:
        39:3a:8c:81:ab:2f:2b:44:3d:89:7c:e8:8a:98:0f:02:
        71:99:36:d4:a8:20:ad:bc:83:07:c8:55:17:e4:e4:4a:
        0f:6b:13:34:e3:14:73:86:05:5d:86:4b:dc:19:fc:33:
        22:b1:a1:72:85:74:c5:d3:5c:9f:86:7c:a3:37:51:fe:
        1e:0a:fa:a9:84:a9:f6:ab:b6:1f:c9:a5:a2:22:d3:d8:
        5c:f0:3d:cf:bb:84:fd:c9:29:bf:f4:e2:30:c9:c7:56:
        25:8c:f8:bc:ff:ec:9e:e9:51:d9:54:fe:14:11:a9:66:
        f8:17:f5:f8:03:06:78:6b:7e:5f:8a:f3:d3:4b:8e:3d:
        a5:45:60:cd:14:93:4a:e1:38:84:f9:01:54:d5:b9:21:
        29:74:6b:0f:ad:a2:23:79:67:88:52:ae:0c:6f:a0:34:
        73:60:ae:4d:71:03:8c:8a:21:78:29:eb:ff:b7:88:e6:
        20:2e:0c:40:f8:c2:a5:11:03:9e:e9:4a:22:5a:e9:50:
        19:fe:d5:22:6a:a7:f2:44:a3:55:46:46:2b:df:90:b0
    Fingerprint (SHA-256):
        26:D3:9C:5E:36:D8:D2:58:CA:61:E2:EF:A5:38:27:CE:2B:49:F2:76:98:C7:E4:73:4D:B0:39:9C:4E:2C:33:4D
    Fingerprint (SHA1):
        43:04:E7:69:5C:F5:90:06:DD:B5:0D:69:72:95:17:D0:BF:CD:EF:39
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14661: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175979 (0x3cdde8ab)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 18:34:08 2017
            Not After : Fri Oct 21 18:34:08 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:9a:a4:15:5b:10:ad:34:50:87:e2:ce:f2:59:9d:98:
                    4c:59:bd:b0:44:fe:ef:a0:9a:53:b8:f1:0d:9d:fa:fb:
                    a2:0a:6d:59:01:1a:73:1a:16:91:4f:6f:d5:75:06:50:
                    af:b6:ce:3b:37:38:61:70:0d:9c:df:e2:5e:d2:63:74:
                    44:ec:29:58:48:43:93:9a:e7:7c:aa:81:15:95:fe:4a:
                    e0:bb:45:dd:13:1d:c8:02:e0:20:7a:9a:b8:12:0b:48:
                    1b:3c:30:3c:1a:14:f4:24:a9:da:cc:44:47:06:ca:a7:
                    d7:c6:a4:11:a3:56:30:da:24:ac:ec:51:c2:96:c4:08:
                    79:60:fa:cc:ec:57:07:66:00:7e:66:a3:e2:28:42:48:
                    c9:3f:98:f4:a9:9e:5d:f7:96:91:c4:c4:52:50:79:fe:
                    95:5a:73:5b:3a:97:71:ea:72:f4:da:71:70:78:51:28:
                    91:48:d1:0d:7e:9c:be:08:c6:55:1b:58:66:d7:95:7b:
                    ae:39:07:20:6a:dd:c1:c6:74:2d:66:84:aa:3a:55:46:
                    ab:79:50:db:dc:67:d8:ac:65:ad:fc:63:11:8f:df:7e:
                    d6:f1:29:71:3d:4c:ce:70:82:c9:c3:46:85:ae:ea:32:
                    1d:f9:9c:1f:1d:10:64:bf:bf:e5:40:11:6c:58:07:a1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:87:4f:44:2e:cd:6c:77:be:d5:36:c5:88:41:61:ed:
        1d:47:49:19:70:79:a1:db:ca:21:30:8e:0a:e6:d2:6c:
        05:ac:1a:4d:76:6e:c8:0a:5b:0d:3e:86:3d:9d:cb:87:
        2e:42:eb:0c:7c:02:07:05:28:15:b9:5e:29:42:58:f5:
        45:7e:94:dc:9f:93:f6:6c:f5:4d:e6:36:f6:bf:c5:8b:
        cd:43:43:e8:69:f3:75:2f:9d:43:4f:5a:c8:2c:55:e1:
        2c:09:b1:f8:3a:28:8d:8d:98:36:2f:28:7a:f0:73:80:
        f2:45:f9:80:39:8c:f6:93:fe:a1:c1:b8:68:7c:27:e0:
        88:24:c9:98:88:d3:2f:d9:aa:05:ff:72:31:a7:40:7f:
        ab:22:94:aa:30:df:68:e2:ee:ce:2e:6f:f9:c1:42:c0:
        09:fa:de:b7:d7:a0:57:c9:1b:7b:12:45:1f:52:20:00:
        87:48:a6:02:c8:f7:1a:e6:0a:01:60:c9:41:6d:f0:fd:
        de:e4:41:b7:dc:ef:b8:71:2a:3c:e1:e5:f9:dd:41:1c:
        ae:0b:73:51:b3:43:66:9f:e6:4f:2e:8e:84:7f:94:3f:
        5d:d3:b4:a3:7d:68:fb:c1:9a:45:a0:7a:53:57:81:a7:
        2f:8c:7b:67:50:69:10:cc:11:56:d7:0a:a1:9d:90:1e
    Fingerprint (SHA-256):
        A5:3B:B0:34:80:4A:15:D1:07:B7:AE:9F:C8:69:CD:3E:C0:8A:67:66:94:BE:C7:40:DD:56:96:8D:67:8F:4B:A3
    Fingerprint (SHA1):
        25:1E:80:2A:BE:72:39:8A:14:59:74:EB:55:68:BD:F4:CA:C5:33:A6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14662: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175979 (0x3cdde8ab)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 18:34:08 2017
            Not After : Fri Oct 21 18:34:08 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:9a:a4:15:5b:10:ad:34:50:87:e2:ce:f2:59:9d:98:
                    4c:59:bd:b0:44:fe:ef:a0:9a:53:b8:f1:0d:9d:fa:fb:
                    a2:0a:6d:59:01:1a:73:1a:16:91:4f:6f:d5:75:06:50:
                    af:b6:ce:3b:37:38:61:70:0d:9c:df:e2:5e:d2:63:74:
                    44:ec:29:58:48:43:93:9a:e7:7c:aa:81:15:95:fe:4a:
                    e0:bb:45:dd:13:1d:c8:02:e0:20:7a:9a:b8:12:0b:48:
                    1b:3c:30:3c:1a:14:f4:24:a9:da:cc:44:47:06:ca:a7:
                    d7:c6:a4:11:a3:56:30:da:24:ac:ec:51:c2:96:c4:08:
                    79:60:fa:cc:ec:57:07:66:00:7e:66:a3:e2:28:42:48:
                    c9:3f:98:f4:a9:9e:5d:f7:96:91:c4:c4:52:50:79:fe:
                    95:5a:73:5b:3a:97:71:ea:72:f4:da:71:70:78:51:28:
                    91:48:d1:0d:7e:9c:be:08:c6:55:1b:58:66:d7:95:7b:
                    ae:39:07:20:6a:dd:c1:c6:74:2d:66:84:aa:3a:55:46:
                    ab:79:50:db:dc:67:d8:ac:65:ad:fc:63:11:8f:df:7e:
                    d6:f1:29:71:3d:4c:ce:70:82:c9:c3:46:85:ae:ea:32:
                    1d:f9:9c:1f:1d:10:64:bf:bf:e5:40:11:6c:58:07:a1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:87:4f:44:2e:cd:6c:77:be:d5:36:c5:88:41:61:ed:
        1d:47:49:19:70:79:a1:db:ca:21:30:8e:0a:e6:d2:6c:
        05:ac:1a:4d:76:6e:c8:0a:5b:0d:3e:86:3d:9d:cb:87:
        2e:42:eb:0c:7c:02:07:05:28:15:b9:5e:29:42:58:f5:
        45:7e:94:dc:9f:93:f6:6c:f5:4d:e6:36:f6:bf:c5:8b:
        cd:43:43:e8:69:f3:75:2f:9d:43:4f:5a:c8:2c:55:e1:
        2c:09:b1:f8:3a:28:8d:8d:98:36:2f:28:7a:f0:73:80:
        f2:45:f9:80:39:8c:f6:93:fe:a1:c1:b8:68:7c:27:e0:
        88:24:c9:98:88:d3:2f:d9:aa:05:ff:72:31:a7:40:7f:
        ab:22:94:aa:30:df:68:e2:ee:ce:2e:6f:f9:c1:42:c0:
        09:fa:de:b7:d7:a0:57:c9:1b:7b:12:45:1f:52:20:00:
        87:48:a6:02:c8:f7:1a:e6:0a:01:60:c9:41:6d:f0:fd:
        de:e4:41:b7:dc:ef:b8:71:2a:3c:e1:e5:f9:dd:41:1c:
        ae:0b:73:51:b3:43:66:9f:e6:4f:2e:8e:84:7f:94:3f:
        5d:d3:b4:a3:7d:68:fb:c1:9a:45:a0:7a:53:57:81:a7:
        2f:8c:7b:67:50:69:10:cc:11:56:d7:0a:a1:9d:90:1e
    Fingerprint (SHA-256):
        A5:3B:B0:34:80:4A:15:D1:07:B7:AE:9F:C8:69:CD:3E:C0:8A:67:66:94:BE:C7:40:DD:56:96:8D:67:8F:4B:A3
    Fingerprint (SHA1):
        25:1E:80:2A:BE:72:39:8A:14:59:74:EB:55:68:BD:F4:CA:C5:33:A6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14663: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #14664: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175984 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14665: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #14666: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #14667: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175985 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14668: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #14669: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #14670: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14671: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 1021175986 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14672: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14673: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 1021175987 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14674: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14675: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #14676: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14677: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14678: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 1021175988   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-Bridge-1021175755.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14679: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14680: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14681: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14682: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021175989   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14683: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14684: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14685: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14686: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 1021175990   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-BridgeNavy-1021175756.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14687: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14688: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #14689: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14690: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 1021175991   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14691: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14692: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #14693: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175984 (0x3cdde8b0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 18:34:43 2017
            Not After : Fri Oct 21 18:34:43 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:25:56:4b:bc:d6:21:28:68:8c:b0:fa:df:07:d1:30:
                    fd:0d:d3:59:5b:b5:84:7f:d0:41:2b:f1:d6:08:5e:af:
                    8f:c5:b7:84:99:49:f5:90:67:3a:73:b6:21:2b:3e:01:
                    97:88:fb:6e:b9:58:43:67:01:4e:f8:16:56:f1:0a:a5:
                    ec:ce:57:41:5d:ff:9f:36:c9:5c:62:fa:04:8f:13:70:
                    bf:97:10:b7:e7:76:b3:15:86:bc:f0:a3:a1:a3:ef:d2:
                    b2:d0:9d:4d:83:d5:ec:50:b0:de:06:93:c7:b6:f2:48:
                    aa:83:77:32:35:4d:0f:0f:62:ac:4c:0a:6d:86:cd:9f:
                    d7:af:cc:4c:3a:87:ab:f3:b9:ac:b3:17:8e:8a:dc:23:
                    6b:fe:94:28:ad:88:32:77:27:13:84:9e:45:0a:8e:c8:
                    85:54:6c:b7:d9:89:f3:3a:49:5e:f8:d3:94:2b:88:b9:
                    28:18:ae:cc:83:05:9c:0b:75:5c:62:15:8c:75:2d:da:
                    06:a1:71:cf:bd:0d:f5:df:40:1b:2e:28:63:94:43:ce:
                    68:08:84:dc:a2:f6:fb:d6:07:ab:44:10:87:f9:4e:6f:
                    73:09:4b:3d:7e:d1:5e:64:92:42:13:76:48:bd:f2:32:
                    04:0d:a6:67:d4:61:18:a5:6f:fd:a9:7a:4d:6d:bc:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a5:27:9c:8b:2a:c7:c2:fe:96:89:dc:f1:61:42:d1:65:
        1d:0e:7f:96:8f:28:72:42:be:ed:a0:99:89:d9:01:93:
        ae:bf:a8:b6:c0:02:cf:a2:da:aa:9b:11:ed:87:68:02:
        26:45:7f:dd:f9:f2:f4:04:35:4f:ea:f6:ce:e7:64:06:
        de:2e:30:d3:24:44:1d:be:00:ac:9d:5e:b2:fb:e1:0f:
        1f:e2:e3:32:a1:60:d7:77:27:85:10:8f:f9:33:21:78:
        70:fe:9c:e1:aa:01:89:72:7d:6d:27:bf:3c:22:d0:10:
        6e:4e:98:5a:fc:68:6a:92:1d:b2:94:ee:7b:e9:a2:2d:
        3b:81:bb:f4:d8:66:91:bc:6a:24:0a:e4:47:c9:90:b6:
        b9:4c:b4:e0:ee:b0:3d:f9:51:e2:28:c0:86:ac:bb:35:
        ab:05:56:6d:08:17:7e:d5:ed:3f:1e:76:7a:73:19:8b:
        f6:9a:67:5b:7f:c0:b3:de:a7:3f:5d:a4:7a:bc:95:e2:
        99:1d:d9:71:32:84:15:f7:b0:43:c3:25:38:ac:68:6f:
        7c:4d:a1:3c:af:4e:a5:31:46:22:f7:de:d2:30:0d:90:
        ba:1d:b2:d9:60:bf:59:38:3c:a2:a9:7a:c9:df:c1:11:
        e1:41:24:f7:0b:bd:92:03:a5:a7:d6:7b:75:84:06:77
    Fingerprint (SHA-256):
        CC:58:E6:46:36:31:A2:E7:C1:43:50:54:BF:6C:7F:A3:33:AB:02:17:44:87:0B:5A:95:15:9F:8D:30:AD:D3:78
    Fingerprint (SHA1):
        E0:6C:10:B3:09:EB:05:61:B1:3C:1A:01:C4:C4:1E:39:98:45:2C:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14694: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175985 (0x3cdde8b1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 18:34:49 2017
            Not After : Fri Oct 21 18:34:49 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:ce:16:27:d8:e4:8f:07:cd:05:ce:fb:41:47:83:98:
                    64:1f:aa:d8:2e:03:f2:8b:84:29:72:61:e3:c2:c0:04:
                    3f:90:0a:2b:e9:c5:ee:2a:db:ab:e2:18:b6:28:62:b4:
                    fd:cd:e1:91:e6:2c:40:f7:9f:b8:2c:2f:46:5e:06:60:
                    0d:05:d1:f9:28:40:64:a0:04:10:c0:f0:a8:b2:93:a3:
                    de:ef:0e:fd:53:13:6e:9b:37:c5:bf:b7:ad:45:8c:ec:
                    8f:b3:1e:c3:34:96:9b:87:bd:db:d3:c5:4c:bf:c3:0b:
                    7d:3e:d0:a3:ff:3b:20:b2:af:ad:f4:21:98:a5:8a:81:
                    da:8b:2b:a2:d8:c6:84:ab:27:22:b9:f8:65:b4:28:4b:
                    65:f1:17:ef:61:01:1d:2b:d2:fb:73:52:2f:cd:ba:d5:
                    2c:a5:b9:ac:54:f9:f0:9d:4e:66:1d:06:bf:20:43:a2:
                    b5:e6:9e:d1:d5:6a:9d:f8:f4:75:f4:bd:ad:cf:89:45:
                    a0:70:ec:c5:c0:92:56:3f:88:c5:10:58:93:42:ed:93:
                    34:68:b9:68:e1:54:e6:31:0f:01:79:fd:f8:fc:07:73:
                    53:07:5c:b8:1d:4c:11:64:fc:95:72:a6:3d:d3:6e:ba:
                    de:c4:9a:44:7d:77:5c:2d:b4:2e:fe:8b:84:c0:17:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:5a:ca:dd:7d:1f:e5:72:db:ac:0c:b9:92:0a:54:e3:
        b0:88:25:40:70:87:c4:6c:5d:ed:22:d3:3e:85:83:47:
        ee:46:1b:53:f8:c2:53:b8:10:ca:60:96:b1:81:e1:ff:
        75:c7:86:4a:b5:04:90:40:47:cb:06:e9:c4:98:84:f1:
        ff:d0:3a:c6:e5:21:d4:fd:98:24:4d:ce:ac:4a:5c:ed:
        cf:b9:52:2d:ab:a0:6b:21:3b:37:eb:b0:12:cd:86:08:
        d5:c2:f2:07:12:5f:ef:57:e0:1b:31:a4:24:49:21:b5:
        b1:55:c5:a2:8b:c2:17:97:e9:59:cd:7c:3f:c7:68:c1:
        a3:76:84:1f:c3:89:8e:15:46:7f:cf:10:65:c0:62:9f:
        50:fb:b8:12:88:7b:29:19:30:12:c3:53:a6:18:47:69:
        a4:fe:27:29:74:9e:88:b9:32:2f:77:35:9d:c5:de:db:
        e4:f2:92:49:cc:55:80:3a:30:0f:0c:e1:2f:a2:ef:cf:
        43:97:a6:05:99:3c:c7:ac:91:9f:8e:59:26:a7:3d:69:
        7d:42:29:ea:76:8d:eb:89:53:2a:ea:2a:0c:c8:0e:82:
        4a:c2:2d:47:01:d1:34:54:04:9f:16:f7:f7:ac:d7:25:
        68:af:95:fa:4f:b3:96:5b:7f:8b:91:dd:22:31:de:66
    Fingerprint (SHA-256):
        6F:65:8C:D7:39:CF:72:E1:7B:69:74:46:48:6F:A7:75:B2:2A:3D:78:AF:C7:D3:73:E5:2B:69:F8:E8:7D:09:DD
    Fingerprint (SHA1):
        CD:F3:6B:54:96:44:38:52:6F:C9:12:44:AC:08:66:CD:75:3F:99:E7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14695: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175985 (0x3cdde8b1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 18:34:49 2017
            Not After : Fri Oct 21 18:34:49 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:ce:16:27:d8:e4:8f:07:cd:05:ce:fb:41:47:83:98:
                    64:1f:aa:d8:2e:03:f2:8b:84:29:72:61:e3:c2:c0:04:
                    3f:90:0a:2b:e9:c5:ee:2a:db:ab:e2:18:b6:28:62:b4:
                    fd:cd:e1:91:e6:2c:40:f7:9f:b8:2c:2f:46:5e:06:60:
                    0d:05:d1:f9:28:40:64:a0:04:10:c0:f0:a8:b2:93:a3:
                    de:ef:0e:fd:53:13:6e:9b:37:c5:bf:b7:ad:45:8c:ec:
                    8f:b3:1e:c3:34:96:9b:87:bd:db:d3:c5:4c:bf:c3:0b:
                    7d:3e:d0:a3:ff:3b:20:b2:af:ad:f4:21:98:a5:8a:81:
                    da:8b:2b:a2:d8:c6:84:ab:27:22:b9:f8:65:b4:28:4b:
                    65:f1:17:ef:61:01:1d:2b:d2:fb:73:52:2f:cd:ba:d5:
                    2c:a5:b9:ac:54:f9:f0:9d:4e:66:1d:06:bf:20:43:a2:
                    b5:e6:9e:d1:d5:6a:9d:f8:f4:75:f4:bd:ad:cf:89:45:
                    a0:70:ec:c5:c0:92:56:3f:88:c5:10:58:93:42:ed:93:
                    34:68:b9:68:e1:54:e6:31:0f:01:79:fd:f8:fc:07:73:
                    53:07:5c:b8:1d:4c:11:64:fc:95:72:a6:3d:d3:6e:ba:
                    de:c4:9a:44:7d:77:5c:2d:b4:2e:fe:8b:84:c0:17:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:5a:ca:dd:7d:1f:e5:72:db:ac:0c:b9:92:0a:54:e3:
        b0:88:25:40:70:87:c4:6c:5d:ed:22:d3:3e:85:83:47:
        ee:46:1b:53:f8:c2:53:b8:10:ca:60:96:b1:81:e1:ff:
        75:c7:86:4a:b5:04:90:40:47:cb:06:e9:c4:98:84:f1:
        ff:d0:3a:c6:e5:21:d4:fd:98:24:4d:ce:ac:4a:5c:ed:
        cf:b9:52:2d:ab:a0:6b:21:3b:37:eb:b0:12:cd:86:08:
        d5:c2:f2:07:12:5f:ef:57:e0:1b:31:a4:24:49:21:b5:
        b1:55:c5:a2:8b:c2:17:97:e9:59:cd:7c:3f:c7:68:c1:
        a3:76:84:1f:c3:89:8e:15:46:7f:cf:10:65:c0:62:9f:
        50:fb:b8:12:88:7b:29:19:30:12:c3:53:a6:18:47:69:
        a4:fe:27:29:74:9e:88:b9:32:2f:77:35:9d:c5:de:db:
        e4:f2:92:49:cc:55:80:3a:30:0f:0c:e1:2f:a2:ef:cf:
        43:97:a6:05:99:3c:c7:ac:91:9f:8e:59:26:a7:3d:69:
        7d:42:29:ea:76:8d:eb:89:53:2a:ea:2a:0c:c8:0e:82:
        4a:c2:2d:47:01:d1:34:54:04:9f:16:f7:f7:ac:d7:25:
        68:af:95:fa:4f:b3:96:5b:7f:8b:91:dd:22:31:de:66
    Fingerprint (SHA-256):
        6F:65:8C:D7:39:CF:72:E1:7B:69:74:46:48:6F:A7:75:B2:2A:3D:78:AF:C7:D3:73:E5:2B:69:F8:E8:7D:09:DD
    Fingerprint (SHA1):
        CD:F3:6B:54:96:44:38:52:6F:C9:12:44:AC:08:66:CD:75:3F:99:E7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14696: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #14697: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175984 (0x3cdde8b0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 18:34:43 2017
            Not After : Fri Oct 21 18:34:43 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:25:56:4b:bc:d6:21:28:68:8c:b0:fa:df:07:d1:30:
                    fd:0d:d3:59:5b:b5:84:7f:d0:41:2b:f1:d6:08:5e:af:
                    8f:c5:b7:84:99:49:f5:90:67:3a:73:b6:21:2b:3e:01:
                    97:88:fb:6e:b9:58:43:67:01:4e:f8:16:56:f1:0a:a5:
                    ec:ce:57:41:5d:ff:9f:36:c9:5c:62:fa:04:8f:13:70:
                    bf:97:10:b7:e7:76:b3:15:86:bc:f0:a3:a1:a3:ef:d2:
                    b2:d0:9d:4d:83:d5:ec:50:b0:de:06:93:c7:b6:f2:48:
                    aa:83:77:32:35:4d:0f:0f:62:ac:4c:0a:6d:86:cd:9f:
                    d7:af:cc:4c:3a:87:ab:f3:b9:ac:b3:17:8e:8a:dc:23:
                    6b:fe:94:28:ad:88:32:77:27:13:84:9e:45:0a:8e:c8:
                    85:54:6c:b7:d9:89:f3:3a:49:5e:f8:d3:94:2b:88:b9:
                    28:18:ae:cc:83:05:9c:0b:75:5c:62:15:8c:75:2d:da:
                    06:a1:71:cf:bd:0d:f5:df:40:1b:2e:28:63:94:43:ce:
                    68:08:84:dc:a2:f6:fb:d6:07:ab:44:10:87:f9:4e:6f:
                    73:09:4b:3d:7e:d1:5e:64:92:42:13:76:48:bd:f2:32:
                    04:0d:a6:67:d4:61:18:a5:6f:fd:a9:7a:4d:6d:bc:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a5:27:9c:8b:2a:c7:c2:fe:96:89:dc:f1:61:42:d1:65:
        1d:0e:7f:96:8f:28:72:42:be:ed:a0:99:89:d9:01:93:
        ae:bf:a8:b6:c0:02:cf:a2:da:aa:9b:11:ed:87:68:02:
        26:45:7f:dd:f9:f2:f4:04:35:4f:ea:f6:ce:e7:64:06:
        de:2e:30:d3:24:44:1d:be:00:ac:9d:5e:b2:fb:e1:0f:
        1f:e2:e3:32:a1:60:d7:77:27:85:10:8f:f9:33:21:78:
        70:fe:9c:e1:aa:01:89:72:7d:6d:27:bf:3c:22:d0:10:
        6e:4e:98:5a:fc:68:6a:92:1d:b2:94:ee:7b:e9:a2:2d:
        3b:81:bb:f4:d8:66:91:bc:6a:24:0a:e4:47:c9:90:b6:
        b9:4c:b4:e0:ee:b0:3d:f9:51:e2:28:c0:86:ac:bb:35:
        ab:05:56:6d:08:17:7e:d5:ed:3f:1e:76:7a:73:19:8b:
        f6:9a:67:5b:7f:c0:b3:de:a7:3f:5d:a4:7a:bc:95:e2:
        99:1d:d9:71:32:84:15:f7:b0:43:c3:25:38:ac:68:6f:
        7c:4d:a1:3c:af:4e:a5:31:46:22:f7:de:d2:30:0d:90:
        ba:1d:b2:d9:60:bf:59:38:3c:a2:a9:7a:c9:df:c1:11:
        e1:41:24:f7:0b:bd:92:03:a5:a7:d6:7b:75:84:06:77
    Fingerprint (SHA-256):
        CC:58:E6:46:36:31:A2:E7:C1:43:50:54:BF:6C:7F:A3:33:AB:02:17:44:87:0B:5A:95:15:9F:8D:30:AD:D3:78
    Fingerprint (SHA1):
        E0:6C:10:B3:09:EB:05:61:B1:3C:1A:01:C4:C4:1E:39:98:45:2C:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14698: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175985 (0x3cdde8b1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 18:34:49 2017
            Not After : Fri Oct 21 18:34:49 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:ce:16:27:d8:e4:8f:07:cd:05:ce:fb:41:47:83:98:
                    64:1f:aa:d8:2e:03:f2:8b:84:29:72:61:e3:c2:c0:04:
                    3f:90:0a:2b:e9:c5:ee:2a:db:ab:e2:18:b6:28:62:b4:
                    fd:cd:e1:91:e6:2c:40:f7:9f:b8:2c:2f:46:5e:06:60:
                    0d:05:d1:f9:28:40:64:a0:04:10:c0:f0:a8:b2:93:a3:
                    de:ef:0e:fd:53:13:6e:9b:37:c5:bf:b7:ad:45:8c:ec:
                    8f:b3:1e:c3:34:96:9b:87:bd:db:d3:c5:4c:bf:c3:0b:
                    7d:3e:d0:a3:ff:3b:20:b2:af:ad:f4:21:98:a5:8a:81:
                    da:8b:2b:a2:d8:c6:84:ab:27:22:b9:f8:65:b4:28:4b:
                    65:f1:17:ef:61:01:1d:2b:d2:fb:73:52:2f:cd:ba:d5:
                    2c:a5:b9:ac:54:f9:f0:9d:4e:66:1d:06:bf:20:43:a2:
                    b5:e6:9e:d1:d5:6a:9d:f8:f4:75:f4:bd:ad:cf:89:45:
                    a0:70:ec:c5:c0:92:56:3f:88:c5:10:58:93:42:ed:93:
                    34:68:b9:68:e1:54:e6:31:0f:01:79:fd:f8:fc:07:73:
                    53:07:5c:b8:1d:4c:11:64:fc:95:72:a6:3d:d3:6e:ba:
                    de:c4:9a:44:7d:77:5c:2d:b4:2e:fe:8b:84:c0:17:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:5a:ca:dd:7d:1f:e5:72:db:ac:0c:b9:92:0a:54:e3:
        b0:88:25:40:70:87:c4:6c:5d:ed:22:d3:3e:85:83:47:
        ee:46:1b:53:f8:c2:53:b8:10:ca:60:96:b1:81:e1:ff:
        75:c7:86:4a:b5:04:90:40:47:cb:06:e9:c4:98:84:f1:
        ff:d0:3a:c6:e5:21:d4:fd:98:24:4d:ce:ac:4a:5c:ed:
        cf:b9:52:2d:ab:a0:6b:21:3b:37:eb:b0:12:cd:86:08:
        d5:c2:f2:07:12:5f:ef:57:e0:1b:31:a4:24:49:21:b5:
        b1:55:c5:a2:8b:c2:17:97:e9:59:cd:7c:3f:c7:68:c1:
        a3:76:84:1f:c3:89:8e:15:46:7f:cf:10:65:c0:62:9f:
        50:fb:b8:12:88:7b:29:19:30:12:c3:53:a6:18:47:69:
        a4:fe:27:29:74:9e:88:b9:32:2f:77:35:9d:c5:de:db:
        e4:f2:92:49:cc:55:80:3a:30:0f:0c:e1:2f:a2:ef:cf:
        43:97:a6:05:99:3c:c7:ac:91:9f:8e:59:26:a7:3d:69:
        7d:42:29:ea:76:8d:eb:89:53:2a:ea:2a:0c:c8:0e:82:
        4a:c2:2d:47:01:d1:34:54:04:9f:16:f7:f7:ac:d7:25:
        68:af:95:fa:4f:b3:96:5b:7f:8b:91:dd:22:31:de:66
    Fingerprint (SHA-256):
        6F:65:8C:D7:39:CF:72:E1:7B:69:74:46:48:6F:A7:75:B2:2A:3D:78:AF:C7:D3:73:E5:2B:69:F8:E8:7D:09:DD
    Fingerprint (SHA1):
        CD:F3:6B:54:96:44:38:52:6F:C9:12:44:AC:08:66:CD:75:3F:99:E7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14699: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175985 (0x3cdde8b1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 18:34:49 2017
            Not After : Fri Oct 21 18:34:49 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:ce:16:27:d8:e4:8f:07:cd:05:ce:fb:41:47:83:98:
                    64:1f:aa:d8:2e:03:f2:8b:84:29:72:61:e3:c2:c0:04:
                    3f:90:0a:2b:e9:c5:ee:2a:db:ab:e2:18:b6:28:62:b4:
                    fd:cd:e1:91:e6:2c:40:f7:9f:b8:2c:2f:46:5e:06:60:
                    0d:05:d1:f9:28:40:64:a0:04:10:c0:f0:a8:b2:93:a3:
                    de:ef:0e:fd:53:13:6e:9b:37:c5:bf:b7:ad:45:8c:ec:
                    8f:b3:1e:c3:34:96:9b:87:bd:db:d3:c5:4c:bf:c3:0b:
                    7d:3e:d0:a3:ff:3b:20:b2:af:ad:f4:21:98:a5:8a:81:
                    da:8b:2b:a2:d8:c6:84:ab:27:22:b9:f8:65:b4:28:4b:
                    65:f1:17:ef:61:01:1d:2b:d2:fb:73:52:2f:cd:ba:d5:
                    2c:a5:b9:ac:54:f9:f0:9d:4e:66:1d:06:bf:20:43:a2:
                    b5:e6:9e:d1:d5:6a:9d:f8:f4:75:f4:bd:ad:cf:89:45:
                    a0:70:ec:c5:c0:92:56:3f:88:c5:10:58:93:42:ed:93:
                    34:68:b9:68:e1:54:e6:31:0f:01:79:fd:f8:fc:07:73:
                    53:07:5c:b8:1d:4c:11:64:fc:95:72:a6:3d:d3:6e:ba:
                    de:c4:9a:44:7d:77:5c:2d:b4:2e:fe:8b:84:c0:17:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:5a:ca:dd:7d:1f:e5:72:db:ac:0c:b9:92:0a:54:e3:
        b0:88:25:40:70:87:c4:6c:5d:ed:22:d3:3e:85:83:47:
        ee:46:1b:53:f8:c2:53:b8:10:ca:60:96:b1:81:e1:ff:
        75:c7:86:4a:b5:04:90:40:47:cb:06:e9:c4:98:84:f1:
        ff:d0:3a:c6:e5:21:d4:fd:98:24:4d:ce:ac:4a:5c:ed:
        cf:b9:52:2d:ab:a0:6b:21:3b:37:eb:b0:12:cd:86:08:
        d5:c2:f2:07:12:5f:ef:57:e0:1b:31:a4:24:49:21:b5:
        b1:55:c5:a2:8b:c2:17:97:e9:59:cd:7c:3f:c7:68:c1:
        a3:76:84:1f:c3:89:8e:15:46:7f:cf:10:65:c0:62:9f:
        50:fb:b8:12:88:7b:29:19:30:12:c3:53:a6:18:47:69:
        a4:fe:27:29:74:9e:88:b9:32:2f:77:35:9d:c5:de:db:
        e4:f2:92:49:cc:55:80:3a:30:0f:0c:e1:2f:a2:ef:cf:
        43:97:a6:05:99:3c:c7:ac:91:9f:8e:59:26:a7:3d:69:
        7d:42:29:ea:76:8d:eb:89:53:2a:ea:2a:0c:c8:0e:82:
        4a:c2:2d:47:01:d1:34:54:04:9f:16:f7:f7:ac:d7:25:
        68:af:95:fa:4f:b3:96:5b:7f:8b:91:dd:22:31:de:66
    Fingerprint (SHA-256):
        6F:65:8C:D7:39:CF:72:E1:7B:69:74:46:48:6F:A7:75:B2:2A:3D:78:AF:C7:D3:73:E5:2B:69:F8:E8:7D:09:DD
    Fingerprint (SHA1):
        CD:F3:6B:54:96:44:38:52:6F:C9:12:44:AC:08:66:CD:75:3F:99:E7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #14700: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #14701: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175992 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14702: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #14703: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #14704: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021175993 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14705: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #14706: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #14707: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14708: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 1021175994   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14709: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14710: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #14711: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14712: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 1021175995   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14713: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14714: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #14715: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14716: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 1021175996 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #14717: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14718: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 1021175997 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #14719: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14720: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #14721: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14722: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14723: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 1021175998   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14724: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14725: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14726: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14727: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 1021175999   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14728: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14729: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14730: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14731: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021176000   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14732: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14733: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #14734: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14735: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 1021176001   --extCP < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14736: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14737: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14738: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175992 (0x3cdde8b8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Sat Oct 21 18:35:49 2017
            Not After : Fri Oct 21 18:35:49 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a0:f5:25:6b:10:83:98:d2:c8:d6:70:b8:6c:b6:76:2f:
                    05:42:41:2a:6a:d9:eb:56:56:b5:00:d7:c5:ef:2d:84:
                    95:94:16:34:f8:a7:13:60:34:dd:51:09:61:ab:17:13:
                    24:30:ee:b5:0c:a0:60:34:f0:6c:30:75:80:f6:b5:56:
                    18:e0:da:8a:b8:ff:7a:a3:31:e8:5b:66:be:e4:a2:d4:
                    c5:49:fb:b7:32:a9:e5:66:e2:4d:74:ac:45:2b:3c:08:
                    bb:06:54:35:90:af:5f:d3:41:f4:35:a2:79:e7:75:66:
                    81:85:c5:28:77:aa:43:ea:dc:a3:80:3b:ff:ee:b3:11:
                    e4:b4:7e:65:28:60:79:cc:aa:a4:0b:da:df:08:a1:a0:
                    63:8c:50:fa:2b:a9:bf:2f:1d:73:40:34:62:12:d2:b7:
                    58:56:c2:d7:03:7b:76:71:2a:66:86:9e:62:6e:86:2d:
                    0f:68:a0:2c:af:c4:1f:42:5c:b5:1f:fa:15:13:bd:82:
                    59:1e:e5:ac:a5:68:a7:72:31:fc:45:0e:45:a8:e3:6e:
                    e9:cf:d5:f7:20:2e:44:2b:72:db:87:9f:4b:ab:79:96:
                    b4:4d:54:59:c1:f5:a4:db:b5:f6:07:81:39:10:fa:ac:
                    33:d7:c4:9b:ab:17:1e:d7:b0:0a:11:58:6e:8c:8c:5f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:00:f3:90:b9:52:ca:4e:50:52:44:5a:a2:09:2e:d8:
        ca:48:b6:20:bc:58:a5:a3:f7:8c:a0:eb:54:0c:00:57:
        4c:ee:09:9d:07:f6:c1:06:f6:50:b0:9b:2e:7c:0c:47:
        05:e0:6b:35:61:08:e7:06:8a:da:05:8a:40:ac:b8:e8:
        81:d6:b6:4f:7e:5d:43:94:25:cc:a9:4e:08:9b:a0:04:
        ff:74:d0:fb:f1:bd:64:75:ec:c4:b5:f7:23:18:a5:fa:
        f0:fb:a1:ef:fd:e6:6b:e0:34:49:82:ad:4f:ee:74:91:
        13:55:0c:87:a9:70:61:76:9c:e6:c0:8e:93:ce:c8:ad:
        b5:d7:07:0a:34:08:82:c4:a6:23:45:cd:0f:95:e9:67:
        a0:3d:b1:bc:61:42:5c:ed:8d:49:73:2c:b5:04:1c:ff:
        f6:e2:8d:df:52:ac:a6:36:39:61:20:96:1f:a7:a7:8b:
        79:2e:af:2f:48:e6:c3:28:b4:bf:73:f8:46:21:6d:1a:
        a3:ca:7b:08:48:11:57:ff:14:79:03:ff:2f:91:18:b6:
        4b:0d:24:19:b5:ff:c7:66:b0:37:f0:57:da:89:59:1b:
        66:36:ac:93:a7:cc:fd:47:40:87:2d:aa:28:97:7a:83:
        6c:16:5b:2e:61:ab:85:f0:ce:6e:2b:95:34:6f:3f:8e
    Fingerprint (SHA-256):
        20:37:AF:9E:0E:50:8E:0A:B5:B0:C6:55:04:19:D4:7E:26:15:52:F3:BA:A7:23:95:F1:CC:51:AA:AE:71:2F:86
    Fingerprint (SHA1):
        85:93:18:DC:C8:35:94:FA:E4:FD:F9:8B:F1:D5:0F:92:31:80:19:55
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #14739: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14740: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14741: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14742: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14743: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14744: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14745: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14746: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14747: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021175993 (0x3cdde8b9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Sat Oct 21 18:35:55 2017
            Not After : Fri Oct 21 18:35:55 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:34:05:47:8f:c5:b6:cd:55:85:54:8c:aa:5b:1e:97:
                    37:31:10:fa:32:30:d7:30:87:ed:67:6d:59:f1:a9:0c:
                    53:3b:7c:60:4b:94:3b:ab:73:7c:43:6f:d6:78:ec:e8:
                    ce:67:60:8c:0b:dd:e8:2a:06:22:28:fe:5c:42:2f:2a:
                    69:ac:9c:f5:ee:97:43:a2:d3:f9:cd:2c:94:86:66:c1:
                    9f:97:9b:e5:ce:f1:8d:c2:57:8e:4e:8a:10:1c:51:a3:
                    0f:62:06:56:ae:4d:47:ea:7a:88:be:07:be:0b:d6:e4:
                    be:b1:26:c7:1c:ee:38:9a:88:56:26:95:31:17:3d:01:
                    47:20:ca:56:c6:45:26:4b:ff:c4:f4:96:fd:d2:6a:6e:
                    4e:69:e2:34:2d:5c:86:cb:0c:a2:59:f8:b3:6a:64:25:
                    2c:97:bb:d2:e8:e8:2d:a9:f8:82:82:ae:6c:61:c6:b1:
                    25:c7:9f:bb:57:b7:d5:83:53:0a:bb:a8:e9:47:1f:42:
                    3c:02:ea:b6:d9:36:04:c0:c8:eb:3c:d3:43:e9:07:48:
                    6a:aa:39:f8:e3:a4:5e:a2:ae:a6:a3:ce:f9:2d:d4:e2:
                    ee:1c:71:b6:9e:d8:39:2f:e8:ad:48:af:69:51:5e:7b:
                    06:d1:dd:fb:4d:4e:27:56:11:53:6a:a4:20:52:b0:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:af:b4:84:30:f7:dd:c5:77:69:d1:a5:2a:77:63:19:
        73:d6:1f:0b:c4:f9:9e:46:9b:f1:e0:40:ba:2c:4f:06:
        f0:31:74:4f:62:01:fa:da:82:3c:ca:0e:6e:bc:bf:70:
        0a:d0:c5:9b:10:28:c5:22:c4:4a:26:8d:d3:91:8c:01:
        d6:51:7f:9f:55:6d:49:f6:52:c3:03:e3:97:dc:8c:90:
        ff:7c:77:f6:bc:8d:93:2b:1f:ec:a5:75:41:67:b5:2b:
        4f:e5:75:ee:a0:2e:db:f9:3a:2f:6b:e2:4b:7c:5e:e0:
        6b:01:17:71:75:90:aa:f6:cf:0d:66:87:93:1f:09:ad:
        97:fe:33:b1:d4:81:2a:74:02:d4:31:0c:6b:1d:28:92:
        21:9e:d7:a9:33:34:de:81:d9:d1:20:e9:23:cd:38:a7:
        a0:3b:4b:27:f0:12:02:d8:63:fc:bd:65:3b:64:8f:0e:
        69:6c:bb:5a:c8:c8:a6:17:a1:82:dd:26:2b:6f:09:2f:
        56:73:87:c0:09:53:6a:fa:76:3c:9e:96:3d:3b:6c:e1:
        2a:d6:f9:84:91:e9:ef:8d:3a:0b:a9:f5:67:95:8e:c3:
        c9:3b:5b:55:d0:f9:29:3e:1b:68:e1:6e:6d:d4:be:bd:
        7b:65:03:eb:75:ba:56:5a:e6:35:be:1e:b5:db:fe:30
    Fingerprint (SHA-256):
        88:E3:F5:B2:9C:37:A3:39:19:AE:EF:99:BA:7A:CE:6F:AE:3B:B3:F4:86:AD:2E:1E:BE:91:22:FA:E0:2D:0B:CD
    Fingerprint (SHA1):
        EB:B6:9A:7D:88:66:CD:11:F0:BE:A0:D2:1B:09:02:BA:3A:A5:5A:C5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #14748: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14749: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14750: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14751: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14752: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #14753: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14754: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #14755: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #14756: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #14757: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #14758: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #14759: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #14760: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #14761: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14762: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14763: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #14764: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #14765: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14766: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021176002 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14767: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14768: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14769: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14770: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 1021176003   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14771: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14772: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14773: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14774: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 1021176004   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14775: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14776: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14777: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14778: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 1021176005   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14779: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14780: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #14781: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14782: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 1021176006   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14783: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14784: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #14785: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14786: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 1021176007   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14787: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14788: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #14789: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14790: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 1021176008   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14791: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14792: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #14793: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14794: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 1021176009   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14795: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14796: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #14797: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14798: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 1021176010   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14799: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14800: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14801: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021176002 (0x3cdde8c2)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:37:11 2017
            Not After : Fri Oct 21 18:37:11 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    9d:39:c2:a6:65:36:ff:a1:7f:fe:71:1a:fb:71:8f:f2:
                    6f:6c:a9:0e:56:e6:5d:e1:59:08:3d:77:5f:db:3b:ab:
                    d2:c3:98:fb:dc:8f:8d:fd:87:cf:69:65:1b:d9:21:34:
                    48:35:b2:6a:16:46:52:bb:30:29:2d:1f:84:e8:13:42:
                    25:c9:95:38:1c:49:e5:db:b5:d5:6d:58:81:52:0a:8a:
                    5a:8d:a3:c9:50:8e:b0:ce:b0:e5:d0:68:de:b9:e9:b2:
                    fd:2b:b8:a0:65:00:22:ac:33:d1:52:d9:18:9a:99:4c:
                    65:4b:80:49:34:c8:67:e6:ef:10:7d:23:09:86:9f:7c:
                    65:e7:11:46:8c:77:43:d3:a5:e8:19:97:3c:4f:2b:69:
                    45:76:b9:63:b2:10:a9:90:61:1a:4b:2b:3e:b6:de:95:
                    6f:50:51:73:75:f1:5a:45:5e:a2:a6:a9:69:28:70:1e:
                    eb:fb:e0:ee:5b:b6:69:4b:ca:60:69:07:99:cb:a4:29:
                    d3:79:14:49:b5:db:89:bc:d0:e2:1e:b0:c0:f0:5c:48:
                    28:cc:97:6e:e1:38:54:b6:33:84:29:a5:e8:de:96:68:
                    12:b2:ce:ff:80:0b:ef:c6:fc:35:3b:b0:8b:1e:24:27:
                    7b:7b:9b:38:01:18:ae:78:94:01:e6:1e:4d:23:e4:47
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3c:02:1c:18:3c:3c:b7:c4:97:cf:4c:4b:c2:71:f1:
        66:46:d2:d3:cd:5a:3a:07:c7:d3:a9:c8:24:ab:af:cb:
        02:1c:77:f7:c0:7d:96:8e:11:90:02:0a:f5:08:54:4d:
        3c:a9:c7:3a:d6:53:82:6c:e5:e7:2a:46:03:dd
    Fingerprint (SHA-256):
        D2:50:35:9B:CB:14:16:8E:DB:A7:86:BF:D3:83:FF:29:38:DE:A1:7F:A4:88:C5:C8:4C:DA:69:0D:01:AE:90:0C
    Fingerprint (SHA1):
        3B:64:90:2C:2B:8E:59:E6:8E:38:37:CA:18:C1:F8:B1:2A:F5:EA:51
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14802: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021176002 (0x3cdde8c2)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:37:11 2017
            Not After : Fri Oct 21 18:37:11 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    9d:39:c2:a6:65:36:ff:a1:7f:fe:71:1a:fb:71:8f:f2:
                    6f:6c:a9:0e:56:e6:5d:e1:59:08:3d:77:5f:db:3b:ab:
                    d2:c3:98:fb:dc:8f:8d:fd:87:cf:69:65:1b:d9:21:34:
                    48:35:b2:6a:16:46:52:bb:30:29:2d:1f:84:e8:13:42:
                    25:c9:95:38:1c:49:e5:db:b5:d5:6d:58:81:52:0a:8a:
                    5a:8d:a3:c9:50:8e:b0:ce:b0:e5:d0:68:de:b9:e9:b2:
                    fd:2b:b8:a0:65:00:22:ac:33:d1:52:d9:18:9a:99:4c:
                    65:4b:80:49:34:c8:67:e6:ef:10:7d:23:09:86:9f:7c:
                    65:e7:11:46:8c:77:43:d3:a5:e8:19:97:3c:4f:2b:69:
                    45:76:b9:63:b2:10:a9:90:61:1a:4b:2b:3e:b6:de:95:
                    6f:50:51:73:75:f1:5a:45:5e:a2:a6:a9:69:28:70:1e:
                    eb:fb:e0:ee:5b:b6:69:4b:ca:60:69:07:99:cb:a4:29:
                    d3:79:14:49:b5:db:89:bc:d0:e2:1e:b0:c0:f0:5c:48:
                    28:cc:97:6e:e1:38:54:b6:33:84:29:a5:e8:de:96:68:
                    12:b2:ce:ff:80:0b:ef:c6:fc:35:3b:b0:8b:1e:24:27:
                    7b:7b:9b:38:01:18:ae:78:94:01:e6:1e:4d:23:e4:47
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3c:02:1c:18:3c:3c:b7:c4:97:cf:4c:4b:c2:71:f1:
        66:46:d2:d3:cd:5a:3a:07:c7:d3:a9:c8:24:ab:af:cb:
        02:1c:77:f7:c0:7d:96:8e:11:90:02:0a:f5:08:54:4d:
        3c:a9:c7:3a:d6:53:82:6c:e5:e7:2a:46:03:dd
    Fingerprint (SHA-256):
        D2:50:35:9B:CB:14:16:8E:DB:A7:86:BF:D3:83:FF:29:38:DE:A1:7F:A4:88:C5:C8:4C:DA:69:0D:01:AE:90:0C
    Fingerprint (SHA1):
        3B:64:90:2C:2B:8E:59:E6:8E:38:37:CA:18:C1:F8:B1:2A:F5:EA:51
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14803: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021176002 (0x3cdde8c2)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:37:11 2017
            Not After : Fri Oct 21 18:37:11 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    9d:39:c2:a6:65:36:ff:a1:7f:fe:71:1a:fb:71:8f:f2:
                    6f:6c:a9:0e:56:e6:5d:e1:59:08:3d:77:5f:db:3b:ab:
                    d2:c3:98:fb:dc:8f:8d:fd:87:cf:69:65:1b:d9:21:34:
                    48:35:b2:6a:16:46:52:bb:30:29:2d:1f:84:e8:13:42:
                    25:c9:95:38:1c:49:e5:db:b5:d5:6d:58:81:52:0a:8a:
                    5a:8d:a3:c9:50:8e:b0:ce:b0:e5:d0:68:de:b9:e9:b2:
                    fd:2b:b8:a0:65:00:22:ac:33:d1:52:d9:18:9a:99:4c:
                    65:4b:80:49:34:c8:67:e6:ef:10:7d:23:09:86:9f:7c:
                    65:e7:11:46:8c:77:43:d3:a5:e8:19:97:3c:4f:2b:69:
                    45:76:b9:63:b2:10:a9:90:61:1a:4b:2b:3e:b6:de:95:
                    6f:50:51:73:75:f1:5a:45:5e:a2:a6:a9:69:28:70:1e:
                    eb:fb:e0:ee:5b:b6:69:4b:ca:60:69:07:99:cb:a4:29:
                    d3:79:14:49:b5:db:89:bc:d0:e2:1e:b0:c0:f0:5c:48:
                    28:cc:97:6e:e1:38:54:b6:33:84:29:a5:e8:de:96:68:
                    12:b2:ce:ff:80:0b:ef:c6:fc:35:3b:b0:8b:1e:24:27:
                    7b:7b:9b:38:01:18:ae:78:94:01:e6:1e:4d:23:e4:47
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3c:02:1c:18:3c:3c:b7:c4:97:cf:4c:4b:c2:71:f1:
        66:46:d2:d3:cd:5a:3a:07:c7:d3:a9:c8:24:ab:af:cb:
        02:1c:77:f7:c0:7d:96:8e:11:90:02:0a:f5:08:54:4d:
        3c:a9:c7:3a:d6:53:82:6c:e5:e7:2a:46:03:dd
    Fingerprint (SHA-256):
        D2:50:35:9B:CB:14:16:8E:DB:A7:86:BF:D3:83:FF:29:38:DE:A1:7F:A4:88:C5:C8:4C:DA:69:0D:01:AE:90:0C
    Fingerprint (SHA1):
        3B:64:90:2C:2B:8E:59:E6:8E:38:37:CA:18:C1:F8:B1:2A:F5:EA:51
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #14804: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021176002 (0x3cdde8c2)
        Signature Algorithm: DSA with SHA-256 Signature
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:37:11 2017
            Not After : Fri Oct 21 18:37:11 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    9d:39:c2:a6:65:36:ff:a1:7f:fe:71:1a:fb:71:8f:f2:
                    6f:6c:a9:0e:56:e6:5d:e1:59:08:3d:77:5f:db:3b:ab:
                    d2:c3:98:fb:dc:8f:8d:fd:87:cf:69:65:1b:d9:21:34:
                    48:35:b2:6a:16:46:52:bb:30:29:2d:1f:84:e8:13:42:
                    25:c9:95:38:1c:49:e5:db:b5:d5:6d:58:81:52:0a:8a:
                    5a:8d:a3:c9:50:8e:b0:ce:b0:e5:d0:68:de:b9:e9:b2:
                    fd:2b:b8:a0:65:00:22:ac:33:d1:52:d9:18:9a:99:4c:
                    65:4b:80:49:34:c8:67:e6:ef:10:7d:23:09:86:9f:7c:
                    65:e7:11:46:8c:77:43:d3:a5:e8:19:97:3c:4f:2b:69:
                    45:76:b9:63:b2:10:a9:90:61:1a:4b:2b:3e:b6:de:95:
                    6f:50:51:73:75:f1:5a:45:5e:a2:a6:a9:69:28:70:1e:
                    eb:fb:e0:ee:5b:b6:69:4b:ca:60:69:07:99:cb:a4:29:
                    d3:79:14:49:b5:db:89:bc:d0:e2:1e:b0:c0:f0:5c:48:
                    28:cc:97:6e:e1:38:54:b6:33:84:29:a5:e8:de:96:68:
                    12:b2:ce:ff:80:0b:ef:c6:fc:35:3b:b0:8b:1e:24:27:
                    7b:7b:9b:38:01:18:ae:78:94:01:e6:1e:4d:23:e4:47
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: DSA with SHA-256 Signature
    Signature:
        30:3c:02:1c:18:3c:3c:b7:c4:97:cf:4c:4b:c2:71:f1:
        66:46:d2:d3:cd:5a:3a:07:c7:d3:a9:c8:24:ab:af:cb:
        02:1c:77:f7:c0:7d:96:8e:11:90:02:0a:f5:08:54:4d:
        3c:a9:c7:3a:d6:53:82:6c:e5:e7:2a:46:03:dd
    Fingerprint (SHA-256):
        D2:50:35:9B:CB:14:16:8E:DB:A7:86:BF:D3:83:FF:29:38:DE:A1:7F:A4:88:C5:C8:4C:DA:69:0D:01:AE:90:0C
    Fingerprint (SHA1):
        3B:64:90:2C:2B:8E:59:E6:8E:38:37:CA:18:C1:F8:B1:2A:F5:EA:51
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #14805: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14806: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 10 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14807: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14808: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #14809: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14810: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14811: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14812: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14813: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14814: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14815: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14816: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #14817: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14818: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14819: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14820: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #14821: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14822: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14823: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14824: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14825: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14826: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14827: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14828: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #14829: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14830: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14831: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14832: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20171021183851Z
nextupdate=20181021183852Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Sat Oct 21 18:38:51 2017
    Next Update: Sun Oct 21 18:38:52 2018
    CRL Extensions:
chains.sh: #14833: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021183852Z
nextupdate=20181021183852Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 18:38:52 2017
    Next Update: Sun Oct 21 18:38:52 2018
    CRL Extensions:
chains.sh: #14834: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20171021183853Z
nextupdate=20181021183853Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Sat Oct 21 18:38:53 2017
    Next Update: Sun Oct 21 18:38:53 2018
    CRL Extensions:
chains.sh: #14835: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20171021183854Z
nextupdate=20181021183854Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Sat Oct 21 18:38:54 2017
    Next Update: Sun Oct 21 18:38:54 2018
    CRL Extensions:
chains.sh: #14836: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20171021183855Z
addcert 14 20171021183855Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Sat Oct 21 18:38:55 2017
    Next Update: Sun Oct 21 18:38:53 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Sat Oct 21 18:38:55 2017
    CRL Extensions:
chains.sh: #14837: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021183856Z
addcert 15 20171021183856Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 18:38:56 2017
    Next Update: Sun Oct 21 18:38:52 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Sat Oct 21 18:38:56 2017
    CRL Extensions:
chains.sh: #14838: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14839: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14840: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #14841: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #14842: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #14843: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #14844: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #14845: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #14846: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #14847: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:38:06 2017
            Not After : Fri Oct 21 18:38:06 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:42:49:63:77:66:5c:96:45:9c:0e:15:33:27:11:ee:
                    51:ea:9e:ad:0e:07:20:af:2a:64:cd:95:6a:6b:c7:cf:
                    3f:b6:eb:5b:b3:a0:38:82:08:1e:b3:d9:b2:8f:a8:14:
                    42:39:76:23:7b:d7:63:3d:03:f0:c5:c5:99:ad:6c:ab:
                    c4:42:a1:0f:18:1c:90:cd:50:29:45:1d:a8:7c:a1:36:
                    bb:ef:b5:e5:07:b2:fd:23:e7:f8:9f:74:45:cb:1e:6a:
                    cf:b0:67:4e:6d:12:2f:51:99:9a:27:64:23:23:f6:f5:
                    1c:dd:66:21:d5:da:ad:44:84:f4:27:cf:7d:85:84:61:
                    b0:2a:f0:d4:f3:0a:07:04:83:a6:ec:ca:f2:8c:be:05:
                    3d:67:41:cf:80:eb:a0:14:1e:a7:9f:6d:e4:37:e0:c7:
                    1a:f6:e8:f7:72:91:f8:d9:37:f8:be:fb:ea:ee:54:48:
                    81:26:da:d3:f2:c9:0a:c0:5c:4e:0f:16:87:ef:d9:52:
                    99:e0:98:05:03:a2:41:80:d2:11:23:dd:c7:af:f4:2b:
                    6b:dd:23:26:5f:c9:cc:d0:c2:87:9a:b5:15:d9:3f:d8:
                    96:c7:83:c8:61:48:b6:7f:e3:5b:bb:6d:b3:ca:5a:b0:
                    d1:96:4f:9f:d5:ff:09:f9:1b:b9:6f:77:1e:57:7f:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b3:27:fe:a6:27:bf:f0:6c:31:b7:e5:89:a1:db:7f:77:
        1f:f7:dd:8f:10:ec:12:0d:d3:c0:dc:11:41:35:37:ef:
        c9:79:81:de:8d:bf:44:e7:c8:b4:87:10:64:fe:ee:e3:
        34:df:7f:ce:eb:2c:4f:0d:f5:cb:ea:9b:b2:3a:23:13:
        64:25:fd:9c:96:ee:f0:30:55:59:4f:75:9c:a8:96:3a:
        2e:fb:b6:33:62:06:4d:e5:4f:bf:32:d5:14:8f:7a:e9:
        ce:bc:af:61:3b:3f:68:74:66:c4:62:00:32:f7:ba:ae:
        e7:e9:74:34:fb:ae:d4:d6:41:bb:6c:65:df:6a:9e:21:
        28:21:02:64:73:6c:2e:e2:e1:5b:1f:a1:52:c8:af:bd:
        a8:d4:63:fa:e8:cc:df:40:34:67:c1:2e:b7:88:2e:e4:
        af:8e:81:70:94:37:91:78:9a:97:98:71:1f:0d:04:a7:
        25:76:60:0f:38:fc:26:26:56:4b:fd:2f:45:53:2d:93:
        7f:18:e9:16:6d:6d:9b:dc:22:38:59:01:04:a6:92:89:
        4e:a0:a7:1a:a2:05:34:aa:e4:a8:f8:4e:ff:62:43:cb:
        9b:c3:a1:bf:aa:a8:01:92:b7:fe:47:c3:d4:0c:81:e4:
        3f:a4:2e:96:83:83:e3:b7:a0:54:b0:67:f5:c5:70:ea
    Fingerprint (SHA-256):
        00:AE:16:9A:39:27:A0:F4:9A:03:9B:A6:A4:CD:19:3E:58:57:80:99:89:B0:11:C2:58:8E:03:8B:6C:F9:60:E0
    Fingerprint (SHA1):
        35:18:90:5A:6E:03:38:77:48:27:B5:F6:99:E3:3B:49:79:9C:FC:E3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #14848: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #14849: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:38:06 2017
            Not After : Fri Oct 21 18:38:06 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:42:49:63:77:66:5c:96:45:9c:0e:15:33:27:11:ee:
                    51:ea:9e:ad:0e:07:20:af:2a:64:cd:95:6a:6b:c7:cf:
                    3f:b6:eb:5b:b3:a0:38:82:08:1e:b3:d9:b2:8f:a8:14:
                    42:39:76:23:7b:d7:63:3d:03:f0:c5:c5:99:ad:6c:ab:
                    c4:42:a1:0f:18:1c:90:cd:50:29:45:1d:a8:7c:a1:36:
                    bb:ef:b5:e5:07:b2:fd:23:e7:f8:9f:74:45:cb:1e:6a:
                    cf:b0:67:4e:6d:12:2f:51:99:9a:27:64:23:23:f6:f5:
                    1c:dd:66:21:d5:da:ad:44:84:f4:27:cf:7d:85:84:61:
                    b0:2a:f0:d4:f3:0a:07:04:83:a6:ec:ca:f2:8c:be:05:
                    3d:67:41:cf:80:eb:a0:14:1e:a7:9f:6d:e4:37:e0:c7:
                    1a:f6:e8:f7:72:91:f8:d9:37:f8:be:fb:ea:ee:54:48:
                    81:26:da:d3:f2:c9:0a:c0:5c:4e:0f:16:87:ef:d9:52:
                    99:e0:98:05:03:a2:41:80:d2:11:23:dd:c7:af:f4:2b:
                    6b:dd:23:26:5f:c9:cc:d0:c2:87:9a:b5:15:d9:3f:d8:
                    96:c7:83:c8:61:48:b6:7f:e3:5b:bb:6d:b3:ca:5a:b0:
                    d1:96:4f:9f:d5:ff:09:f9:1b:b9:6f:77:1e:57:7f:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b3:27:fe:a6:27:bf:f0:6c:31:b7:e5:89:a1:db:7f:77:
        1f:f7:dd:8f:10:ec:12:0d:d3:c0:dc:11:41:35:37:ef:
        c9:79:81:de:8d:bf:44:e7:c8:b4:87:10:64:fe:ee:e3:
        34:df:7f:ce:eb:2c:4f:0d:f5:cb:ea:9b:b2:3a:23:13:
        64:25:fd:9c:96:ee:f0:30:55:59:4f:75:9c:a8:96:3a:
        2e:fb:b6:33:62:06:4d:e5:4f:bf:32:d5:14:8f:7a:e9:
        ce:bc:af:61:3b:3f:68:74:66:c4:62:00:32:f7:ba:ae:
        e7:e9:74:34:fb:ae:d4:d6:41:bb:6c:65:df:6a:9e:21:
        28:21:02:64:73:6c:2e:e2:e1:5b:1f:a1:52:c8:af:bd:
        a8:d4:63:fa:e8:cc:df:40:34:67:c1:2e:b7:88:2e:e4:
        af:8e:81:70:94:37:91:78:9a:97:98:71:1f:0d:04:a7:
        25:76:60:0f:38:fc:26:26:56:4b:fd:2f:45:53:2d:93:
        7f:18:e9:16:6d:6d:9b:dc:22:38:59:01:04:a6:92:89:
        4e:a0:a7:1a:a2:05:34:aa:e4:a8:f8:4e:ff:62:43:cb:
        9b:c3:a1:bf:aa:a8:01:92:b7:fe:47:c3:d4:0c:81:e4:
        3f:a4:2e:96:83:83:e3:b7:a0:54:b0:67:f5:c5:70:ea
    Fingerprint (SHA-256):
        00:AE:16:9A:39:27:A0:F4:9A:03:9B:A6:A4:CD:19:3E:58:57:80:99:89:B0:11:C2:58:8E:03:8B:6C:F9:60:E0
    Fingerprint (SHA1):
        35:18:90:5A:6E:03:38:77:48:27:B5:F6:99:E3:3B:49:79:9C:FC:E3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #14850: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #14851: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #14852: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021176011 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14853: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #14854: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #14855: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14856: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 1021176012   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14857: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14858: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14859: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021175783.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14860: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0Root-1021175757.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14861: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14862: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #14863: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021175783.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14864: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 1021176013   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14865: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14866: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14867: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021175783.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14868: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0Root-1021175758.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14869: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14870: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #14871: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14872: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 1021176014   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14873: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14874: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14875: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021175783.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14876: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0Root-1021175759.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14877: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14878: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #14879: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0-1021175783.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #14880: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9193/localhost-3868-CA0Root-1021175760.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #14881: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14882: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20171021184003Z
nextupdate=20181021184003Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Sat Oct 21 18:40:03 2017
    Next Update: Sun Oct 21 18:40:03 2018
    CRL Extensions:
chains.sh: #14883: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021184004Z
nextupdate=20181021184004Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 18:40:04 2017
    Next Update: Sun Oct 21 18:40:04 2018
    CRL Extensions:
chains.sh: #14884: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20171021184005Z
nextupdate=20181021184005Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Sat Oct 21 18:40:05 2017
    Next Update: Sun Oct 21 18:40:05 2018
    CRL Extensions:
chains.sh: #14885: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20171021184005Z
nextupdate=20181021184006Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Sat Oct 21 18:40:05 2017
    Next Update: Sun Oct 21 18:40:06 2018
    CRL Extensions:
chains.sh: #14886: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021184006Z
addcert 20 20171021184006Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 18:40:06 2017
    Next Update: Sun Oct 21 18:40:04 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Sat Oct 21 18:40:06 2017
    CRL Extensions:
chains.sh: #14887: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20171021184008Z
addcert 40 20171021184008Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Sat Oct 21 18:40:08 2017
    Next Update: Sun Oct 21 18:40:04 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Sat Oct 21 18:40:06 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Sat Oct 21 18:40:08 2017
    CRL Extensions:
chains.sh: #14888: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #14889: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14890: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #14891: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021176011 (0x3cdde8cb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:39:15 2017
            Not After : Fri Oct 21 18:39:15 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:1c:55:62:79:7e:64:e4:ca:a0:a0:f7:0d:56:94:85:
                    b0:7c:0d:dd:15:7f:b2:ad:4b:83:20:42:c7:5e:38:62:
                    71:23:4d:27:fe:81:a1:be:1e:8b:62:df:52:46:9f:05:
                    a9:7a:6e:21:f3:3c:63:c8:ae:ba:0a:36:a2:ef:92:59:
                    c3:e4:76:b0:4d:e2:ce:d0:b3:3d:ef:84:e5:98:84:b9:
                    a5:d2:7a:bb:53:4d:e9:a9:51:ae:0c:e7:cf:59:dc:61:
                    2c:64:51:eb:23:8e:3f:b9:ba:c0:23:31:65:42:96:19:
                    d8:56:5d:0b:48:b0:c5:9a:32:93:db:07:7f:e8:d7:af:
                    b4:09:cd:d4:9b:d3:35:41:bf:8f:96:af:6b:03:56:4f:
                    88:0d:ce:ed:7a:21:65:09:b0:53:b0:52:d9:f4:c0:31:
                    9c:f9:7a:6d:bf:18:a7:ec:7d:be:42:7f:d8:d1:05:68:
                    ec:e2:ad:65:d5:3e:e3:65:7a:f3:fa:e4:a3:e5:99:aa:
                    a0:97:49:43:de:78:d9:8e:16:75:74:e6:23:55:07:06:
                    21:b3:a1:77:35:c6:82:ba:05:b0:5e:ea:8e:48:c4:06:
                    b5:b7:21:9c:4e:49:d2:a1:f7:07:55:3d:ba:77:40:62:
                    86:ca:e6:8d:65:f6:a8:5c:b1:90:8c:fd:6e:55:89:33
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:1a:fe:08:7d:af:f0:25:f8:17:14:b1:7b:14:ae:a4:
        1b:f0:54:7b:23:f7:ec:5c:62:f1:5f:21:2c:d4:c7:37:
        ff:69:e6:ac:18:f9:e8:52:90:51:7b:c0:7a:59:a5:33:
        8b:54:6f:2f:1e:fd:a8:25:c5:d5:5d:c5:d0:80:d4:55:
        17:18:ba:12:41:2e:0e:76:03:e9:67:cd:2a:f7:1a:11:
        38:e0:59:65:6a:e9:24:b1:ae:61:8d:7b:62:10:3f:59:
        60:be:60:f8:a1:31:dd:8b:f4:7a:a6:78:b9:56:b5:b5:
        67:dc:a8:3d:24:61:55:70:ab:ad:8a:1e:bb:30:1a:a1:
        78:97:8a:20:3f:76:a3:ec:e5:06:c1:c1:f7:f5:a1:2d:
        da:35:fe:af:26:ff:c4:61:7a:46:5e:5a:31:ae:4d:c3:
        36:6d:82:a5:47:17:47:76:ff:54:e5:15:56:33:aa:6c:
        3e:65:20:9c:fd:eb:f7:ff:66:54:1e:22:e5:5e:4a:f8:
        c9:05:b9:e6:b0:3a:93:68:09:28:cd:c0:b7:7e:2b:7a:
        4d:97:66:2e:75:f5:ff:00:af:5d:d0:34:40:cb:65:38:
        8e:5d:3e:45:86:c9:95:c3:6b:8d:e5:46:28:66:22:af:
        9b:af:c8:65:f8:8f:70:53:22:ca:c6:60:30:59:24:28
    Fingerprint (SHA-256):
        F0:F1:5C:2D:DC:BC:23:3D:BA:5A:FD:0E:94:B9:F3:0B:6C:31:06:2B:CC:FE:46:BF:60:F6:3A:98:C5:F5:DF:AB
    Fingerprint (SHA1):
        ED:09:E4:70:C6:E6:46:AF:95:D4:43:F6:C9:7E:A7:ED:BF:A4:38:86
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #14892: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #14893: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021176011 (0x3cdde8cb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Sat Oct 21 18:39:15 2017
            Not After : Fri Oct 21 18:39:15 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:1c:55:62:79:7e:64:e4:ca:a0:a0:f7:0d:56:94:85:
                    b0:7c:0d:dd:15:7f:b2:ad:4b:83:20:42:c7:5e:38:62:
                    71:23:4d:27:fe:81:a1:be:1e:8b:62:df:52:46:9f:05:
                    a9:7a:6e:21:f3:3c:63:c8:ae:ba:0a:36:a2:ef:92:59:
                    c3:e4:76:b0:4d:e2:ce:d0:b3:3d:ef:84:e5:98:84:b9:
                    a5:d2:7a:bb:53:4d:e9:a9:51:ae:0c:e7:cf:59:dc:61:
                    2c:64:51:eb:23:8e:3f:b9:ba:c0:23:31:65:42:96:19:
                    d8:56:5d:0b:48:b0:c5:9a:32:93:db:07:7f:e8:d7:af:
                    b4:09:cd:d4:9b:d3:35:41:bf:8f:96:af:6b:03:56:4f:
                    88:0d:ce:ed:7a:21:65:09:b0:53:b0:52:d9:f4:c0:31:
                    9c:f9:7a:6d:bf:18:a7:ec:7d:be:42:7f:d8:d1:05:68:
                    ec:e2:ad:65:d5:3e:e3:65:7a:f3:fa:e4:a3:e5:99:aa:
                    a0:97:49:43:de:78:d9:8e:16:75:74:e6:23:55:07:06:
                    21:b3:a1:77:35:c6:82:ba:05:b0:5e:ea:8e:48:c4:06:
                    b5:b7:21:9c:4e:49:d2:a1:f7:07:55:3d:ba:77:40:62:
                    86:ca:e6:8d:65:f6:a8:5c:b1:90:8c:fd:6e:55:89:33
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:1a:fe:08:7d:af:f0:25:f8:17:14:b1:7b:14:ae:a4:
        1b:f0:54:7b:23:f7:ec:5c:62:f1:5f:21:2c:d4:c7:37:
        ff:69:e6:ac:18:f9:e8:52:90:51:7b:c0:7a:59:a5:33:
        8b:54:6f:2f:1e:fd:a8:25:c5:d5:5d:c5:d0:80:d4:55:
        17:18:ba:12:41:2e:0e:76:03:e9:67:cd:2a:f7:1a:11:
        38:e0:59:65:6a:e9:24:b1:ae:61:8d:7b:62:10:3f:59:
        60:be:60:f8:a1:31:dd:8b:f4:7a:a6:78:b9:56:b5:b5:
        67:dc:a8:3d:24:61:55:70:ab:ad:8a:1e:bb:30:1a:a1:
        78:97:8a:20:3f:76:a3:ec:e5:06:c1:c1:f7:f5:a1:2d:
        da:35:fe:af:26:ff:c4:61:7a:46:5e:5a:31:ae:4d:c3:
        36:6d:82:a5:47:17:47:76:ff:54:e5:15:56:33:aa:6c:
        3e:65:20:9c:fd:eb:f7:ff:66:54:1e:22:e5:5e:4a:f8:
        c9:05:b9:e6:b0:3a:93:68:09:28:cd:c0:b7:7e:2b:7a:
        4d:97:66:2e:75:f5:ff:00:af:5d:d0:34:40:cb:65:38:
        8e:5d:3e:45:86:c9:95:c3:6b:8d:e5:46:28:66:22:af:
        9b:af:c8:65:f8:8f:70:53:22:ca:c6:60:30:59:24:28
    Fingerprint (SHA-256):
        F0:F1:5C:2D:DC:BC:23:3D:BA:5A:FD:0E:94:B9:F3:0B:6C:31:06:2B:CC:FE:46:BF:60:F6:3A:98:C5:F5:DF:AB
    Fingerprint (SHA1):
        ED:09:E4:70:C6:E6:46:AF:95:D4:43:F6:C9:7E:A7:ED:BF:A4:38:86
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #14894: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #14895: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #14896: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021176015 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14897: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #14898: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #14899: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14900: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 1021176016   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14901: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14902: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #14903: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14904: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 1021176017   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14905: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14906: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #14907: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14908: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 1021176018   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14909: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14910: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #14911: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -m 1021176019 < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #14912: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #14913: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #14914: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #14915: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 1021176020   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14916: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14917: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #14918: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #14919: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 1021176021   < /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #14920: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #14921: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #14922: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #14923: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #14924: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021176015 (0x3cdde8cf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:40:22 2017
            Not After : Fri Oct 21 18:40:22 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:17:7c:93:52:ad:20:3f:c6:96:0d:56:9d:db:f2:0c:
                    c4:b8:eb:15:64:90:ae:d3:f2:c0:ca:a4:66:3c:9a:b6:
                    42:7c:f0:be:ab:c3:d0:a2:a8:4e:42:5d:63:d7:08:cc:
                    0c:e6:b5:99:f2:b1:86:74:29:ad:48:14:14:13:1b:a0:
                    a7:2e:9a:6b:ea:99:38:24:1b:4f:dd:c3:2b:99:9a:0d:
                    27:e1:16:4d:71:75:5a:6a:dd:3b:7c:26:1a:a6:a1:b0:
                    2d:9f:2d:a2:a6:2f:b2:bf:f5:92:f6:97:7b:d8:00:f4:
                    c9:83:3a:e7:89:20:2c:34:98:d3:38:91:dc:61:14:f5:
                    a9:7f:3c:f7:08:fb:b5:da:5e:91:5e:2e:8a:31:c7:19:
                    51:03:fe:c3:e0:79:52:f7:e7:40:a7:0f:83:8f:5f:c6:
                    da:94:cc:71:3a:24:65:4b:eb:7f:a9:64:3b:8b:86:a7:
                    1b:d6:eb:46:8c:51:b2:5f:2a:a1:b5:75:b5:1d:3a:fa:
                    f6:1d:fc:f5:22:ce:0b:a5:ff:1e:4a:a1:19:4a:1f:8d:
                    82:f5:72:b9:fd:ff:fc:04:09:00:1f:8c:0e:ad:2c:a1:
                    5d:17:17:68:d5:48:15:d5:3c:e2:1e:f3:64:24:45:a0:
                    9f:c3:65:35:a9:fc:97:a1:c0:8e:e6:64:a5:b0:21:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7e:2b:c3:76:c1:28:2a:91:7a:68:d5:56:d2:9a:3f:b4:
        4a:14:73:f0:bf:5a:c4:55:22:c3:5e:e8:1a:d0:b3:e4:
        bb:42:28:47:00:23:41:da:ff:35:0f:84:85:27:f4:6d:
        fe:96:99:46:dd:ce:20:04:96:2e:3b:a0:1e:35:17:da:
        1b:67:a8:f2:56:0e:c1:65:6d:ca:51:e6:0f:0d:64:65:
        a9:48:17:36:ba:63:5e:57:cc:dc:c5:75:22:d6:9c:42:
        4c:93:6e:c6:fd:3a:f3:dd:6b:d8:1d:7e:97:88:60:48:
        e3:6d:41:77:02:61:91:88:33:40:df:c6:30:65:dc:bb:
        85:8c:2e:4d:f6:7e:bd:1d:3b:a7:30:67:a1:bc:cd:99:
        f9:69:d9:06:ea:54:96:1b:48:b1:8c:e3:17:17:77:00:
        58:fa:96:66:2c:70:4d:c3:b5:21:c7:40:78:25:e6:f5:
        c6:14:fe:98:9d:a6:76:06:02:59:64:01:ed:8b:7c:70:
        17:c5:c4:60:96:2a:49:d6:7d:f0:f9:85:8f:65:74:3d:
        17:0d:61:07:89:c9:69:07:ed:54:2e:a7:47:75:b5:67:
        3e:79:ca:73:7f:ff:4f:ef:34:58:ed:81:ab:08:e3:a9:
        ca:9b:30:12:4b:e3:d4:c7:42:2e:7b:c6:14:8b:1b:62
    Fingerprint (SHA-256):
        C7:AD:78:14:A6:C0:3B:01:45:CC:1E:E6:36:91:ED:34:DF:BB:C4:A9:A0:81:6E:BB:9E:51:81:61:E0:8A:40:C9
    Fingerprint (SHA1):
        A0:B4:F8:4B:7E:AF:B3:FC:2D:53:CD:FF:80:86:98:BD:18:4E:3F:62
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14925: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021176017 (0x3cdde8d1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 18:40:41 2017
            Not After : Fri Oct 21 18:40:41 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ef:4c:5b:20:68:37:7a:a2:07:3d:ae:c2:01:61:99:92:
                    c4:2c:8a:bf:52:bb:ac:fd:13:1a:10:e6:61:e9:7c:e3:
                    82:76:3f:2b:31:45:19:46:3a:ca:b9:01:30:35:6d:d1:
                    ee:c9:3e:f6:36:b2:84:c7:f8:ba:4f:c5:93:eb:10:7c:
                    a2:1c:56:53:7d:1f:5b:c9:c3:88:52:dd:87:ce:ab:cb:
                    b4:75:f4:bb:0a:bd:18:7f:fc:32:15:21:e6:f0:e4:44:
                    17:37:eb:d1:a8:af:0c:20:73:36:bb:ed:79:07:2c:81:
                    46:ff:66:31:57:47:48:57:d4:ce:fa:ce:bc:f3:b5:4d:
                    22:8f:ff:0b:22:39:43:1d:91:21:6a:a6:ac:b9:32:2a:
                    35:2f:3d:e0:a2:57:2d:51:99:d0:da:8f:f4:b5:c1:cd:
                    75:b5:38:75:39:18:df:46:4e:e2:ac:7d:15:2e:b7:86:
                    85:bb:3f:4f:f2:1e:ce:79:85:2f:ed:2b:fd:3c:45:a7:
                    95:14:57:b6:c8:05:67:ac:b4:a5:c2:5f:ee:3c:62:bd:
                    cf:1f:a1:ab:d1:9d:10:3b:21:ac:29:4f:68:e1:93:b9:
                    fc:47:91:6f:c1:27:ad:b2:69:68:6f:98:da:37:15:a0:
                    f1:fe:c9:7d:c3:34:3b:2a:e1:0a:46:5e:7c:36:ee:0b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3f:55:12:40:c8:ce:14:e0:ac:32:7d:1a:2d:e1:5b:12:
        ed:90:3e:4e:92:bb:8a:cb:9d:b3:e4:60:b7:e8:96:7e:
        61:4a:9a:f4:22:50:5f:e2:b3:43:d2:92:5e:01:b0:de:
        0d:e4:71:0d:a8:34:cb:cf:65:38:11:7d:76:1e:c8:06:
        02:33:16:4e:59:79:30:81:00:1a:6b:86:ec:b3:ed:82:
        f9:0c:e0:25:8d:87:51:11:c3:6c:3b:a5:c2:bc:d0:2e:
        8b:27:1f:f0:18:a3:3c:1f:e9:26:3a:30:af:be:1c:f7:
        46:70:d5:e6:7c:2a:9a:d2:4d:34:5d:7b:00:ed:44:78:
        b2:a5:e3:22:9c:b3:fd:d9:38:51:8c:f5:b1:78:d9:a6:
        2a:a4:6f:43:ea:7f:b3:09:da:be:3f:23:d7:50:d2:0a:
        c5:70:b8:47:24:f2:d2:71:75:66:68:9e:c1:57:48:52:
        f8:b8:a3:58:4b:cc:bb:ca:7e:fd:e1:79:51:c8:04:de:
        e3:c2:cf:c1:34:68:9e:1e:84:92:55:cc:56:c4:e3:f8:
        78:52:27:ad:e1:36:b4:d2:02:23:c7:f9:59:ae:d6:2c:
        57:75:6f:b1:98:61:79:6d:8a:7b:83:1f:12:4d:9a:b7:
        a3:b4:db:a6:d3:27:d7:3d:7f:b7:77:05:5a:63:26:6c
    Fingerprint (SHA-256):
        DC:36:A7:55:99:E5:11:7E:E5:03:32:4F:A6:3D:22:3D:9B:41:22:45:45:6F:96:17:BE:C2:6A:2D:CE:0A:60:E3
    Fingerprint (SHA1):
        2F:35:6C:56:64:D7:7E:62:DD:B7:AB:DF:66:7C:E4:99:46:40:9D:0E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14926: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021176015 (0x3cdde8cf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:40:22 2017
            Not After : Fri Oct 21 18:40:22 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:17:7c:93:52:ad:20:3f:c6:96:0d:56:9d:db:f2:0c:
                    c4:b8:eb:15:64:90:ae:d3:f2:c0:ca:a4:66:3c:9a:b6:
                    42:7c:f0:be:ab:c3:d0:a2:a8:4e:42:5d:63:d7:08:cc:
                    0c:e6:b5:99:f2:b1:86:74:29:ad:48:14:14:13:1b:a0:
                    a7:2e:9a:6b:ea:99:38:24:1b:4f:dd:c3:2b:99:9a:0d:
                    27:e1:16:4d:71:75:5a:6a:dd:3b:7c:26:1a:a6:a1:b0:
                    2d:9f:2d:a2:a6:2f:b2:bf:f5:92:f6:97:7b:d8:00:f4:
                    c9:83:3a:e7:89:20:2c:34:98:d3:38:91:dc:61:14:f5:
                    a9:7f:3c:f7:08:fb:b5:da:5e:91:5e:2e:8a:31:c7:19:
                    51:03:fe:c3:e0:79:52:f7:e7:40:a7:0f:83:8f:5f:c6:
                    da:94:cc:71:3a:24:65:4b:eb:7f:a9:64:3b:8b:86:a7:
                    1b:d6:eb:46:8c:51:b2:5f:2a:a1:b5:75:b5:1d:3a:fa:
                    f6:1d:fc:f5:22:ce:0b:a5:ff:1e:4a:a1:19:4a:1f:8d:
                    82:f5:72:b9:fd:ff:fc:04:09:00:1f:8c:0e:ad:2c:a1:
                    5d:17:17:68:d5:48:15:d5:3c:e2:1e:f3:64:24:45:a0:
                    9f:c3:65:35:a9:fc:97:a1:c0:8e:e6:64:a5:b0:21:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7e:2b:c3:76:c1:28:2a:91:7a:68:d5:56:d2:9a:3f:b4:
        4a:14:73:f0:bf:5a:c4:55:22:c3:5e:e8:1a:d0:b3:e4:
        bb:42:28:47:00:23:41:da:ff:35:0f:84:85:27:f4:6d:
        fe:96:99:46:dd:ce:20:04:96:2e:3b:a0:1e:35:17:da:
        1b:67:a8:f2:56:0e:c1:65:6d:ca:51:e6:0f:0d:64:65:
        a9:48:17:36:ba:63:5e:57:cc:dc:c5:75:22:d6:9c:42:
        4c:93:6e:c6:fd:3a:f3:dd:6b:d8:1d:7e:97:88:60:48:
        e3:6d:41:77:02:61:91:88:33:40:df:c6:30:65:dc:bb:
        85:8c:2e:4d:f6:7e:bd:1d:3b:a7:30:67:a1:bc:cd:99:
        f9:69:d9:06:ea:54:96:1b:48:b1:8c:e3:17:17:77:00:
        58:fa:96:66:2c:70:4d:c3:b5:21:c7:40:78:25:e6:f5:
        c6:14:fe:98:9d:a6:76:06:02:59:64:01:ed:8b:7c:70:
        17:c5:c4:60:96:2a:49:d6:7d:f0:f9:85:8f:65:74:3d:
        17:0d:61:07:89:c9:69:07:ed:54:2e:a7:47:75:b5:67:
        3e:79:ca:73:7f:ff:4f:ef:34:58:ed:81:ab:08:e3:a9:
        ca:9b:30:12:4b:e3:d4:c7:42:2e:7b:c6:14:8b:1b:62
    Fingerprint (SHA-256):
        C7:AD:78:14:A6:C0:3B:01:45:CC:1E:E6:36:91:ED:34:DF:BB:C4:A9:A0:81:6E:BB:9E:51:81:61:E0:8A:40:C9
    Fingerprint (SHA1):
        A0:B4:F8:4B:7E:AF:B3:FC:2D:53:CD:FF:80:86:98:BD:18:4E:3F:62
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14927: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #14928: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021176015 (0x3cdde8cf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:40:22 2017
            Not After : Fri Oct 21 18:40:22 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:17:7c:93:52:ad:20:3f:c6:96:0d:56:9d:db:f2:0c:
                    c4:b8:eb:15:64:90:ae:d3:f2:c0:ca:a4:66:3c:9a:b6:
                    42:7c:f0:be:ab:c3:d0:a2:a8:4e:42:5d:63:d7:08:cc:
                    0c:e6:b5:99:f2:b1:86:74:29:ad:48:14:14:13:1b:a0:
                    a7:2e:9a:6b:ea:99:38:24:1b:4f:dd:c3:2b:99:9a:0d:
                    27:e1:16:4d:71:75:5a:6a:dd:3b:7c:26:1a:a6:a1:b0:
                    2d:9f:2d:a2:a6:2f:b2:bf:f5:92:f6:97:7b:d8:00:f4:
                    c9:83:3a:e7:89:20:2c:34:98:d3:38:91:dc:61:14:f5:
                    a9:7f:3c:f7:08:fb:b5:da:5e:91:5e:2e:8a:31:c7:19:
                    51:03:fe:c3:e0:79:52:f7:e7:40:a7:0f:83:8f:5f:c6:
                    da:94:cc:71:3a:24:65:4b:eb:7f:a9:64:3b:8b:86:a7:
                    1b:d6:eb:46:8c:51:b2:5f:2a:a1:b5:75:b5:1d:3a:fa:
                    f6:1d:fc:f5:22:ce:0b:a5:ff:1e:4a:a1:19:4a:1f:8d:
                    82:f5:72:b9:fd:ff:fc:04:09:00:1f:8c:0e:ad:2c:a1:
                    5d:17:17:68:d5:48:15:d5:3c:e2:1e:f3:64:24:45:a0:
                    9f:c3:65:35:a9:fc:97:a1:c0:8e:e6:64:a5:b0:21:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7e:2b:c3:76:c1:28:2a:91:7a:68:d5:56:d2:9a:3f:b4:
        4a:14:73:f0:bf:5a:c4:55:22:c3:5e:e8:1a:d0:b3:e4:
        bb:42:28:47:00:23:41:da:ff:35:0f:84:85:27:f4:6d:
        fe:96:99:46:dd:ce:20:04:96:2e:3b:a0:1e:35:17:da:
        1b:67:a8:f2:56:0e:c1:65:6d:ca:51:e6:0f:0d:64:65:
        a9:48:17:36:ba:63:5e:57:cc:dc:c5:75:22:d6:9c:42:
        4c:93:6e:c6:fd:3a:f3:dd:6b:d8:1d:7e:97:88:60:48:
        e3:6d:41:77:02:61:91:88:33:40:df:c6:30:65:dc:bb:
        85:8c:2e:4d:f6:7e:bd:1d:3b:a7:30:67:a1:bc:cd:99:
        f9:69:d9:06:ea:54:96:1b:48:b1:8c:e3:17:17:77:00:
        58:fa:96:66:2c:70:4d:c3:b5:21:c7:40:78:25:e6:f5:
        c6:14:fe:98:9d:a6:76:06:02:59:64:01:ed:8b:7c:70:
        17:c5:c4:60:96:2a:49:d6:7d:f0:f9:85:8f:65:74:3d:
        17:0d:61:07:89:c9:69:07:ed:54:2e:a7:47:75:b5:67:
        3e:79:ca:73:7f:ff:4f:ef:34:58:ed:81:ab:08:e3:a9:
        ca:9b:30:12:4b:e3:d4:c7:42:2e:7b:c6:14:8b:1b:62
    Fingerprint (SHA-256):
        C7:AD:78:14:A6:C0:3B:01:45:CC:1E:E6:36:91:ED:34:DF:BB:C4:A9:A0:81:6E:BB:9E:51:81:61:E0:8A:40:C9
    Fingerprint (SHA1):
        A0:B4:F8:4B:7E:AF:B3:FC:2D:53:CD:FF:80:86:98:BD:18:4E:3F:62
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14929: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021176017 (0x3cdde8d1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Sat Oct 21 18:40:41 2017
            Not After : Fri Oct 21 18:40:41 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ef:4c:5b:20:68:37:7a:a2:07:3d:ae:c2:01:61:99:92:
                    c4:2c:8a:bf:52:bb:ac:fd:13:1a:10:e6:61:e9:7c:e3:
                    82:76:3f:2b:31:45:19:46:3a:ca:b9:01:30:35:6d:d1:
                    ee:c9:3e:f6:36:b2:84:c7:f8:ba:4f:c5:93:eb:10:7c:
                    a2:1c:56:53:7d:1f:5b:c9:c3:88:52:dd:87:ce:ab:cb:
                    b4:75:f4:bb:0a:bd:18:7f:fc:32:15:21:e6:f0:e4:44:
                    17:37:eb:d1:a8:af:0c:20:73:36:bb:ed:79:07:2c:81:
                    46:ff:66:31:57:47:48:57:d4:ce:fa:ce:bc:f3:b5:4d:
                    22:8f:ff:0b:22:39:43:1d:91:21:6a:a6:ac:b9:32:2a:
                    35:2f:3d:e0:a2:57:2d:51:99:d0:da:8f:f4:b5:c1:cd:
                    75:b5:38:75:39:18:df:46:4e:e2:ac:7d:15:2e:b7:86:
                    85:bb:3f:4f:f2:1e:ce:79:85:2f:ed:2b:fd:3c:45:a7:
                    95:14:57:b6:c8:05:67:ac:b4:a5:c2:5f:ee:3c:62:bd:
                    cf:1f:a1:ab:d1:9d:10:3b:21:ac:29:4f:68:e1:93:b9:
                    fc:47:91:6f:c1:27:ad:b2:69:68:6f:98:da:37:15:a0:
                    f1:fe:c9:7d:c3:34:3b:2a:e1:0a:46:5e:7c:36:ee:0b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3f:55:12:40:c8:ce:14:e0:ac:32:7d:1a:2d:e1:5b:12:
        ed:90:3e:4e:92:bb:8a:cb:9d:b3:e4:60:b7:e8:96:7e:
        61:4a:9a:f4:22:50:5f:e2:b3:43:d2:92:5e:01:b0:de:
        0d:e4:71:0d:a8:34:cb:cf:65:38:11:7d:76:1e:c8:06:
        02:33:16:4e:59:79:30:81:00:1a:6b:86:ec:b3:ed:82:
        f9:0c:e0:25:8d:87:51:11:c3:6c:3b:a5:c2:bc:d0:2e:
        8b:27:1f:f0:18:a3:3c:1f:e9:26:3a:30:af:be:1c:f7:
        46:70:d5:e6:7c:2a:9a:d2:4d:34:5d:7b:00:ed:44:78:
        b2:a5:e3:22:9c:b3:fd:d9:38:51:8c:f5:b1:78:d9:a6:
        2a:a4:6f:43:ea:7f:b3:09:da:be:3f:23:d7:50:d2:0a:
        c5:70:b8:47:24:f2:d2:71:75:66:68:9e:c1:57:48:52:
        f8:b8:a3:58:4b:cc:bb:ca:7e:fd:e1:79:51:c8:04:de:
        e3:c2:cf:c1:34:68:9e:1e:84:92:55:cc:56:c4:e3:f8:
        78:52:27:ad:e1:36:b4:d2:02:23:c7:f9:59:ae:d6:2c:
        57:75:6f:b1:98:61:79:6d:8a:7b:83:1f:12:4d:9a:b7:
        a3:b4:db:a6:d3:27:d7:3d:7f:b7:77:05:5a:63:26:6c
    Fingerprint (SHA-256):
        DC:36:A7:55:99:E5:11:7E:E5:03:32:4F:A6:3D:22:3D:9B:41:22:45:45:6F:96:17:BE:C2:6A:2D:CE:0A:60:E3
    Fingerprint (SHA1):
        2F:35:6C:56:64:D7:7E:62:DD:B7:AB:DF:66:7C:E4:99:46:40:9D:0E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14930: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #14931: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #14932: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #14933: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021176015 (0x3cdde8cf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:40:22 2017
            Not After : Fri Oct 21 18:40:22 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:17:7c:93:52:ad:20:3f:c6:96:0d:56:9d:db:f2:0c:
                    c4:b8:eb:15:64:90:ae:d3:f2:c0:ca:a4:66:3c:9a:b6:
                    42:7c:f0:be:ab:c3:d0:a2:a8:4e:42:5d:63:d7:08:cc:
                    0c:e6:b5:99:f2:b1:86:74:29:ad:48:14:14:13:1b:a0:
                    a7:2e:9a:6b:ea:99:38:24:1b:4f:dd:c3:2b:99:9a:0d:
                    27:e1:16:4d:71:75:5a:6a:dd:3b:7c:26:1a:a6:a1:b0:
                    2d:9f:2d:a2:a6:2f:b2:bf:f5:92:f6:97:7b:d8:00:f4:
                    c9:83:3a:e7:89:20:2c:34:98:d3:38:91:dc:61:14:f5:
                    a9:7f:3c:f7:08:fb:b5:da:5e:91:5e:2e:8a:31:c7:19:
                    51:03:fe:c3:e0:79:52:f7:e7:40:a7:0f:83:8f:5f:c6:
                    da:94:cc:71:3a:24:65:4b:eb:7f:a9:64:3b:8b:86:a7:
                    1b:d6:eb:46:8c:51:b2:5f:2a:a1:b5:75:b5:1d:3a:fa:
                    f6:1d:fc:f5:22:ce:0b:a5:ff:1e:4a:a1:19:4a:1f:8d:
                    82:f5:72:b9:fd:ff:fc:04:09:00:1f:8c:0e:ad:2c:a1:
                    5d:17:17:68:d5:48:15:d5:3c:e2:1e:f3:64:24:45:a0:
                    9f:c3:65:35:a9:fc:97:a1:c0:8e:e6:64:a5:b0:21:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7e:2b:c3:76:c1:28:2a:91:7a:68:d5:56:d2:9a:3f:b4:
        4a:14:73:f0:bf:5a:c4:55:22:c3:5e:e8:1a:d0:b3:e4:
        bb:42:28:47:00:23:41:da:ff:35:0f:84:85:27:f4:6d:
        fe:96:99:46:dd:ce:20:04:96:2e:3b:a0:1e:35:17:da:
        1b:67:a8:f2:56:0e:c1:65:6d:ca:51:e6:0f:0d:64:65:
        a9:48:17:36:ba:63:5e:57:cc:dc:c5:75:22:d6:9c:42:
        4c:93:6e:c6:fd:3a:f3:dd:6b:d8:1d:7e:97:88:60:48:
        e3:6d:41:77:02:61:91:88:33:40:df:c6:30:65:dc:bb:
        85:8c:2e:4d:f6:7e:bd:1d:3b:a7:30:67:a1:bc:cd:99:
        f9:69:d9:06:ea:54:96:1b:48:b1:8c:e3:17:17:77:00:
        58:fa:96:66:2c:70:4d:c3:b5:21:c7:40:78:25:e6:f5:
        c6:14:fe:98:9d:a6:76:06:02:59:64:01:ed:8b:7c:70:
        17:c5:c4:60:96:2a:49:d6:7d:f0:f9:85:8f:65:74:3d:
        17:0d:61:07:89:c9:69:07:ed:54:2e:a7:47:75:b5:67:
        3e:79:ca:73:7f:ff:4f:ef:34:58:ed:81:ab:08:e3:a9:
        ca:9b:30:12:4b:e3:d4:c7:42:2e:7b:c6:14:8b:1b:62
    Fingerprint (SHA-256):
        C7:AD:78:14:A6:C0:3B:01:45:CC:1E:E6:36:91:ED:34:DF:BB:C4:A9:A0:81:6E:BB:9E:51:81:61:E0:8A:40:C9
    Fingerprint (SHA1):
        A0:B4:F8:4B:7E:AF:B3:FC:2D:53:CD:FF:80:86:98:BD:18:4E:3F:62
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14934: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021176019 (0x3cdde8d3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Sat Oct 21 18:40:59 2017
            Not After : Fri Oct 21 18:40:59 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:d2:00:1d:80:90:1b:e1:e3:72:28:90:9f:49:66:db:
                    24:0c:9a:89:60:25:7a:67:56:a8:c8:8b:ec:21:bd:23:
                    9a:f5:2e:85:3b:2a:db:2b:23:7f:d8:13:38:66:7f:79:
                    37:79:e5:f3:0e:a9:8c:e6:9c:e2:46:43:be:01:4b:5b:
                    6a:2c:6e:ec:a0:9b:15:c0:66:6e:13:62:53:9b:74:21:
                    b4:73:cd:9e:79:c6:e0:b4:af:01:04:f8:92:fe:0a:e7:
                    35:66:ee:e6:de:f1:12:f3:49:25:d5:f6:1c:2b:c0:cd:
                    9f:20:01:e0:89:72:89:65:7f:41:d1:db:88:51:97:7f:
                    17:1c:50:6c:71:e4:a3:db:ba:55:40:76:e3:12:03:a7:
                    9b:32:54:86:36:80:d7:b0:09:15:32:70:ca:27:63:ad:
                    c2:cc:5d:3e:97:4f:15:9a:93:75:56:a0:c1:d1:8a:bf:
                    57:09:34:ee:1d:da:a9:93:a7:48:8d:03:dc:73:53:28:
                    78:e6:07:88:e9:0a:4c:ad:e6:be:a8:53:1e:b6:4b:16:
                    36:38:f7:6e:dd:45:6f:79:d7:8c:2c:89:cd:6a:46:13:
                    48:db:b2:46:bb:c9:7e:a9:2e:28:1b:03:dd:c5:e2:54:
                    1c:1a:e4:e3:d3:92:cc:58:91:dc:c4:14:54:36:a1:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4d:47:38:1c:c7:39:af:24:2f:2a:5d:21:f0:3c:ab:37:
        1f:ca:4e:61:5f:d0:88:fb:fb:80:72:eb:bf:b4:af:59:
        19:9e:90:b0:ad:b3:ce:5e:8a:45:5a:d7:3e:3e:25:8e:
        b5:b5:26:5c:fb:51:40:39:69:ee:5b:67:80:3e:c7:6a:
        7a:e8:65:79:d1:88:72:bd:ed:83:a5:51:47:6f:d3:56:
        a9:07:06:6d:c9:fb:19:92:dd:d8:e8:ef:59:f1:b8:dd:
        91:5a:af:a2:e5:3b:59:94:18:4b:5c:e0:d4:08:8f:2e:
        9e:d3:3e:e1:04:e0:12:93:39:d7:a9:92:dc:e4:17:a1:
        8c:49:75:6c:17:da:ba:17:92:64:42:1a:57:6a:c7:62:
        66:80:20:4f:9c:28:38:d2:63:41:a8:1c:71:c5:dc:61:
        0d:9a:e5:a7:60:0b:26:99:60:cb:1d:e6:bb:4c:5b:fc:
        d5:ef:43:c4:c4:81:d0:b6:1d:9f:5c:a8:6a:82:12:cc:
        15:a7:d9:e3:df:df:f8:59:48:4d:2b:0c:22:c5:26:ef:
        86:59:3a:07:1d:c3:a0:88:5a:f1:80:34:93:aa:a5:5a:
        f3:fb:3e:65:73:c7:49:f7:ea:54:53:32:e8:5a:12:3b:
        95:59:b3:d7:7b:e3:62:98:01:5b:79:22:46:b2:fa:9b
    Fingerprint (SHA-256):
        23:27:ED:70:81:B0:21:02:BA:12:C1:4C:43:9C:C5:8F:27:41:63:67:D5:69:5A:EE:BB:EA:E6:5D:16:04:43:39
    Fingerprint (SHA1):
        40:18:CE:42:06:35:3C:F7:60:5E:F4:E7:7B:0C:9F:19:82:06:68:C8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #14935: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021176015 (0x3cdde8cf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Sat Oct 21 18:40:22 2017
            Not After : Fri Oct 21 18:40:22 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:17:7c:93:52:ad:20:3f:c6:96:0d:56:9d:db:f2:0c:
                    c4:b8:eb:15:64:90:ae:d3:f2:c0:ca:a4:66:3c:9a:b6:
                    42:7c:f0:be:ab:c3:d0:a2:a8:4e:42:5d:63:d7:08:cc:
                    0c:e6:b5:99:f2:b1:86:74:29:ad:48:14:14:13:1b:a0:
                    a7:2e:9a:6b:ea:99:38:24:1b:4f:dd:c3:2b:99:9a:0d:
                    27:e1:16:4d:71:75:5a:6a:dd:3b:7c:26:1a:a6:a1:b0:
                    2d:9f:2d:a2:a6:2f:b2:bf:f5:92:f6:97:7b:d8:00:f4:
                    c9:83:3a:e7:89:20:2c:34:98:d3:38:91:dc:61:14:f5:
                    a9:7f:3c:f7:08:fb:b5:da:5e:91:5e:2e:8a:31:c7:19:
                    51:03:fe:c3:e0:79:52:f7:e7:40:a7:0f:83:8f:5f:c6:
                    da:94:cc:71:3a:24:65:4b:eb:7f:a9:64:3b:8b:86:a7:
                    1b:d6:eb:46:8c:51:b2:5f:2a:a1:b5:75:b5:1d:3a:fa:
                    f6:1d:fc:f5:22:ce:0b:a5:ff:1e:4a:a1:19:4a:1f:8d:
                    82:f5:72:b9:fd:ff:fc:04:09:00:1f:8c:0e:ad:2c:a1:
                    5d:17:17:68:d5:48:15:d5:3c:e2:1e:f3:64:24:45:a0:
                    9f:c3:65:35:a9:fc:97:a1:c0:8e:e6:64:a5:b0:21:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7e:2b:c3:76:c1:28:2a:91:7a:68:d5:56:d2:9a:3f:b4:
        4a:14:73:f0:bf:5a:c4:55:22:c3:5e:e8:1a:d0:b3:e4:
        bb:42:28:47:00:23:41:da:ff:35:0f:84:85:27:f4:6d:
        fe:96:99:46:dd:ce:20:04:96:2e:3b:a0:1e:35:17:da:
        1b:67:a8:f2:56:0e:c1:65:6d:ca:51:e6:0f:0d:64:65:
        a9:48:17:36:ba:63:5e:57:cc:dc:c5:75:22:d6:9c:42:
        4c:93:6e:c6:fd:3a:f3:dd:6b:d8:1d:7e:97:88:60:48:
        e3:6d:41:77:02:61:91:88:33:40:df:c6:30:65:dc:bb:
        85:8c:2e:4d:f6:7e:bd:1d:3b:a7:30:67:a1:bc:cd:99:
        f9:69:d9:06:ea:54:96:1b:48:b1:8c:e3:17:17:77:00:
        58:fa:96:66:2c:70:4d:c3:b5:21:c7:40:78:25:e6:f5:
        c6:14:fe:98:9d:a6:76:06:02:59:64:01:ed:8b:7c:70:
        17:c5:c4:60:96:2a:49:d6:7d:f0:f9:85:8f:65:74:3d:
        17:0d:61:07:89:c9:69:07:ed:54:2e:a7:47:75:b5:67:
        3e:79:ca:73:7f:ff:4f:ef:34:58:ed:81:ab:08:e3:a9:
        ca:9b:30:12:4b:e3:d4:c7:42:2e:7b:c6:14:8b:1b:62
    Fingerprint (SHA-256):
        C7:AD:78:14:A6:C0:3B:01:45:CC:1E:E6:36:91:ED:34:DF:BB:C4:A9:A0:81:6E:BB:9E:51:81:61:E0:8A:40:C9
    Fingerprint (SHA1):
        A0:B4:F8:4B:7E:AF:B3:FC:2D:53:CD:FF:80:86:98:BD:18:4E:3F:62
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #14936: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #14937: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #14938: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #14939: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #14940: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #14941: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1021176020 (0x3cdde8d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Sat Oct 21 18:41:08 2017
            Not After : Fri Oct 21 18:41:08 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:7f:dd:e2:80:be:7f:87:7b:8b:73:c0:46:f4:6f:50:
                    17:1d:14:40:4a:fc:e2:ba:27:87:32:7f:c7:f7:ff:49:
                    08:54:e5:b1:99:c8:5d:fa:7e:69:aa:cf:78:76:61:98:
                    f8:89:e5:1a:1b:2f:10:0d:09:f7:be:a7:95:cf:54:f5:
                    87:8a:dd:4c:2e:44:56:7f:f1:e2:17:e9:3d:91:ff:e5:
                    74:5d:0c:fa:96:34:40:cc:9f:5b:3c:ad:a2:e8:01:a7:
                    84:f9:bd:ec:7e:3b:4f:a7:49:25:38:86:60:18:b3:8b:
                    f3:01:ba:d3:b9:a7:11:53:16:5a:a4:a0:65:e5:14:e6:
                    5d:c9:6f:12:3f:f8:38:b7:81:ec:08:41:4e:b5:02:28:
                    46:c8:a5:db:ff:f5:26:70:7b:d6:d0:65:df:92:f6:15:
                    a8:94:96:98:79:9d:d9:1e:e2:b8:c0:32:de:85:d0:73:
                    e5:40:9e:45:48:8a:a8:e0:86:5b:61:25:77:81:82:79:
                    67:3b:a4:89:03:8f:6c:cf:92:c7:b0:68:79:fe:d1:7a:
                    b6:b7:74:e5:a4:d1:de:55:f6:12:72:28:73:68:a1:5d:
                    6c:95:32:17:0e:c7:91:5e:fd:e1:b9:83:79:5f:bc:1f:
                    2d:75:1f:72:09:4e:00:a4:b2:37:cc:fc:c7:ca:72:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:56:91:6f:6e:11:e2:62:47:03:84:e5:e8:33:9e:44:
        af:84:8a:b3:5a:f9:6e:c1:bd:4c:88:87:f2:1d:52:b5:
        5a:87:e4:d7:6e:31:fa:80:5b:38:d8:35:02:e2:bd:ad:
        55:95:0d:aa:9a:3a:26:36:0a:39:dc:87:50:b8:a9:60:
        63:d3:f8:01:79:4d:43:0f:6a:44:23:c0:16:8e:df:de:
        e1:13:a7:a1:61:15:f7:35:69:b6:41:8b:3a:16:8f:bb:
        86:e1:08:80:9d:df:a1:5c:6a:a6:94:4b:f5:60:1b:4c:
        60:bc:e6:99:8a:31:8c:e4:6d:24:e0:1b:95:50:32:23:
        03:f1:e7:a7:88:c6:9d:2e:ab:2b:64:35:bb:61:75:1e:
        cf:53:c4:b4:4b:c3:e2:1a:01:9a:74:42:ce:4e:6f:a6:
        c5:8e:68:6c:9b:4f:bb:2e:43:bc:8c:f5:3b:21:d2:24:
        02:d8:aa:96:2a:d9:f8:89:21:c6:bc:2d:72:f3:bf:23:
        19:43:6f:fa:5a:75:1e:94:82:26:8d:48:07:e0:2f:ad:
        d1:e1:ea:3b:46:07:65:27:8f:d6:31:8d:60:91:f4:e1:
        ce:e2:20:f2:f5:4d:66:dc:43:c3:f8:e3:29:2c:f2:77:
        52:c8:12:c8:ba:e4:d0:e7:96:73:07:6a:68:62:01:b1
    Fingerprint (SHA-256):
        BE:9B:C4:ED:C7:F5:6A:75:39:C4:90:27:94:45:18:AB:6A:5B:9C:94:98:C6:58:63:F7:05:89:D5:62:52:88:8C
    Fingerprint (SHA1):
        4D:98:33:74:C5:90:C9:91:1B:0C:9E:03:16:92:44:D4:29:44:7D:7E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #14942: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #14943: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #14944: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #14945: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #14946: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14947: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14948: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14949: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14950: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14951: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14952: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14953: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14954: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14955: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14956: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #14957: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14958: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14959: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14960: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #14961: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14962: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #14963: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #14964: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.28.4/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #14965: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 3072 at Sat Oct 21 18:42:01 UTC 2017
kill -USR1 3072
httpserv: normal termination
httpserv -b -p 9193 2>/dev/null;
httpserv with PID 3072 killed at Sat Oct 21 18:42:02 UTC 2017
TIMESTAMP chains END: Sat Oct 21 18:42:02 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Sat Oct 21 18:42:02 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Sat Oct 21 18:42:02 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #14966: ec(perf) test - PASSED
TIMESTAMP ecperf END: Sat Oct 21 18:42:02 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Sat Oct 21 18:42:02 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #14967: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #14968: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #14969: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #14970: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #14971: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #14972: pk11 ec tests - PASSED
TIMESTAMP ectest END: Sat Oct 21 18:42:10 UTC 2017
TIMESTAMP ec END: Sat Oct 21 18:42:10 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Sat Oct 21 18:42:10 UTC 2017
gtests: der_gtest pk11_gtest
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (1 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (1 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (1 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (2 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (4 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #14973: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #14974: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #14975: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #14976: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #14977: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #14978: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #14979: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #14980: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #14981: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #14982: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #14983: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #14984: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #14985: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #14986: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #14987: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #14988: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #14989: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: pk11_gtest ===============================
executing pk11_gtest
[==========] Running 21 tests from 7 test cases.
[----------] Global test environment set-up.
[----------] 6 tests from Pkcs11AESKeyWrapTest
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest1
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest1 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest2
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest2 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest3
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest3 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest4
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest4 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest5
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest5 (0 ms)
[ RUN      ] Pkcs11AESKeyWrapTest.WrapUnwrepTest6
[       OK ] Pkcs11AESKeyWrapTest.WrapUnwrepTest6 (0 ms)
[----------] 6 tests from Pkcs11AESKeyWrapTest (2 ms total)
[----------] 3 tests from Pkcs11ChaCha20Poly1305Test
[ RUN      ] Pkcs11ChaCha20Poly1305Test.GenerateEncryptDecrypt
[       OK ] Pkcs11ChaCha20Poly1305Test.GenerateEncryptDecrypt (1 ms)
[ RUN      ] Pkcs11ChaCha20Poly1305Test.CheckTestVector1
[       OK ] Pkcs11ChaCha20Poly1305Test.CheckTestVector1 (0 ms)
[ RUN      ] Pkcs11ChaCha20Poly1305Test.CheckTestVector2
[       OK ] Pkcs11ChaCha20Poly1305Test.CheckTestVector2 (1 ms)
[----------] 3 tests from Pkcs11ChaCha20Poly1305Test (2 ms total)
[----------] 2 tests from Pkcs11ExportTest
[ RUN      ] Pkcs11ExportTest.DeriveNonExport
[       OK ] Pkcs11ExportTest.DeriveNonExport (0 ms)
[ RUN      ] Pkcs11ExportTest.DeriveExport
[       OK ] Pkcs11ExportTest.DeriveExport (0 ms)
[----------] 2 tests from Pkcs11ExportTest (1 ms total)
[----------] 2 tests from Pkcs11Pbkdf2Test
[ RUN      ] Pkcs11Pbkdf2Test.DeriveKnown1
[       OK ] Pkcs11Pbkdf2Test.DeriveKnown1 (154 ms)
[ RUN      ] Pkcs11Pbkdf2Test.DeriveKnown2
[       OK ] Pkcs11Pbkdf2Test.DeriveKnown2 (334 ms)
[----------] 2 tests from Pkcs11Pbkdf2Test (488 ms total)
[----------] 5 tests from TlsPrfTest
[ RUN      ] TlsPrfTest.ExtendedMsParamErr
[       OK ] TlsPrfTest.ExtendedMsParamErr (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsDhTlsPrf
[       OK ] TlsPrfTest.ExtendedMsDhTlsPrf (1 ms)
[ RUN      ] TlsPrfTest.ExtendedMsRsaTlsPrf
[       OK ] TlsPrfTest.ExtendedMsRsaTlsPrf (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsDhSha256
[       OK ] TlsPrfTest.ExtendedMsDhSha256 (0 ms)
[ RUN      ] TlsPrfTest.ExtendedMsRsaSha256
[       OK ] TlsPrfTest.ExtendedMsRsaSha256 (0 ms)
[----------] 5 tests from TlsPrfTest (2 ms total)
[----------] 1 test from Pkcs11RsaPssTest
[ RUN      ] Pkcs11RsaPssTest.GenerateAndSignAndVerify
[       OK ] Pkcs11RsaPssTest.GenerateAndSignAndVerify (666 ms)
[----------] 1 test from Pkcs11RsaPssTest (666 ms total)
[----------] 2 tests from Pkcs11RsaPssVectorTest
[ RUN      ] Pkcs11RsaPssVectorTest.VerifyKnownSignature1
[       OK ] Pkcs11RsaPssVectorTest.VerifyKnownSignature1 (1 ms)
[ RUN      ] Pkcs11RsaPssVectorTest.VerifyKnownSignature2
[       OK ] Pkcs11RsaPssVectorTest.VerifyKnownSignature2 (2 ms)
[----------] 2 tests from Pkcs11RsaPssVectorTest (3 ms total)
[----------] Global test environment tear-down
[==========] 21 tests from 7 test cases ran. (1164 ms total)
[  PASSED  ] 21 tests.
gtests.sh: #14990: pk11_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.28.4/tests_results/security/localhost.1/sharedb/pk11_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #14991: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest1' - PASSED
gtests.sh: #14992: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest2' - PASSED
gtests.sh: #14993: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest3' - PASSED
gtests.sh: #14994: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest4' - PASSED
gtests.sh: #14995: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest5' - PASSED
gtests.sh: #14996: 'Pkcs11AESKeyWrapTest: WrapUnwrepTest6' - PASSED
gtests.sh: #14997: 'Pkcs11ChaCha20Poly1305Test: GenerateEncryptDecrypt' - PASSED
gtests.sh: #14998: 'Pkcs11ChaCha20Poly1305Test: CheckTestVector1' - PASSED
gtests.sh: #14999: 'Pkcs11ChaCha20Poly1305Test: CheckTestVector2' - PASSED
gtests.sh: #15000: 'Pkcs11ExportTest: DeriveNonExport' - PASSED
gtests.sh: #15001: 'Pkcs11ExportTest: DeriveExport' - PASSED
gtests.sh: #15002: 'Pkcs11Pbkdf2Test: DeriveKnown1' - PASSED
gtests.sh: #15003: 'Pkcs11Pbkdf2Test: DeriveKnown2' - PASSED
gtests.sh: #15004: 'TlsPrfTest: ExtendedMsParamErr' - PASSED
gtests.sh: #15005: 'TlsPrfTest: ExtendedMsDhTlsPrf' - PASSED
gtests.sh: #15006: 'TlsPrfTest: ExtendedMsRsaTlsPrf' - PASSED
gtests.sh: #15007: 'TlsPrfTest: ExtendedMsDhSha256' - PASSED
gtests.sh: #15008: 'TlsPrfTest: ExtendedMsRsaSha256' - PASSED
gtests.sh: #15009: 'Pkcs11RsaPssTest: GenerateAndSignAndVerify' - PASSED
gtests.sh: #15010: 'Pkcs11RsaPssVectorTest: VerifyKnownSignature1' - PASSED
gtests.sh: #15011: 'Pkcs11RsaPssVectorTest: VerifyKnownSignature2' - PASSED
TIMESTAMP gtests END: Sat Oct 21 18:42:14 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Sat Oct 21 18:42:14 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #15012: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15013: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15014: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15015: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15016: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15017: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15018: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15019: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15020: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15021: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15022: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15023: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15024: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15025: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #15026: create certificate: sign  - PASSED
executing ssl_gtest
[==========] Running 816 tests from 15 test cases.
[----------] Global test environment set-up.
[----------] 60 tests from CipherSuiteRC4/TlsCipherSuiteTest
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/0 (431 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/1 (92 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/2 (140 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/3 (150 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/4 (127 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/5 (82 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/6 (92 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/7 (125 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/8 (149 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/9 (125 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/10 (81 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/11 (92 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/12 (124 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/13 (149 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.SingleCipherSuite/14 (125 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/0 (193 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/1 (245 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/2 (276 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/3 (329 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/4 (289 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/5 (193 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/6 (242 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/7 (276 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/8 (330 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/9 (289 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/10 (193 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/11 (243 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/12 (276 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/13 (330 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ResumeCipherSuite/14 (288 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/0 (85 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/1 (92 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/2 (126 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/3 (151 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/4 (126 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/5 (83 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/6 (92 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/7 (125 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/8 (149 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/9 (125 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/10 (83 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/11 (92 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/12 (128 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/13 (153 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.ReadLimit/14 (126 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/0 (83 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/1 (92 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/2 (125 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/3 (151 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/4 (126 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.1
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/5 (82 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/6 (92 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/7 (125 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/8 (176 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/9
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/9 (160 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/10
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/10 (98 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/11
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/11 (114 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/12
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/12 (124 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/13
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/13 (149 ms)
[ RUN      ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/14
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_RC4_128_SHA
[       OK ] CipherSuiteRC4/TlsCipherSuiteTest.WriteLimit/14 (124 ms)
[----------] 60 tests from CipherSuiteRC4/TlsCipherSuiteTest (9639 ms total)
[----------] 48 tests from CipherSuiteAEAD12/TlsCipherSuiteTest
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/0 (95 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/1 (89 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/2 (328 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/3 (310 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/4 (127 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/5 (127 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/6 (82 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/7 (84 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/8 (297 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/9 (300 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/10 (127 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.SingleCipherSuite/11 (128 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/0 (194 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/1 (195 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/2 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/3 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/4 (280 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/5 (292 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/6 (192 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/7 (194 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/8 (4 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/9 (5 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/10 (280 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ResumeCipherSuite/11 (291 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/0 (82 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/1 (84 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/2 (297 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/3 (298 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/4 (127 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/5 (127 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/6 (83 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/7 (84 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/8 (298 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/9 (299 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/10 (127 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.ReadLimit/11 (128 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/0 (82 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/1 (82 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/2 (297 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/3 (298 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/4 (126 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/5 (127 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/6
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/6 (83 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/7
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/7 (84 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/8 (298 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/9 (299 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/10 (127 ms)
[ RUN      ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
[       OK ] CipherSuiteAEAD12/TlsCipherSuiteTest.WriteLimit/11 (127 ms)
[----------] 48 tests from CipherSuiteAEAD12/TlsCipherSuiteTest (8100 ms total)
[----------] 72 tests from CipherSuiteAEAD/TlsCipherSuiteTest
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/0 (125 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/1 (126 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/2 (125 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/3 (127 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/4 (183 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/5 (184 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/6 (125 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/7 (125 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/8 (183 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/9 (125 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/10 (126 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/11 (125 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/12 (126 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/13 (183 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/14 (183 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/15 (125 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/16 (125 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.SingleCipherSuite/17 (182 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/0 (276 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/1 (277 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/2 (288 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/3 (289 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/4 (346 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/5 (347 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/6 (274 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/7 (287 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/8 (344 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/9 (277 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/10 (277 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/11 (288 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/12 (290 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/13 (347 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/14 (347 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/15 (275 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/16 (289 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ResumeCipherSuite/17 (345 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/0 (125 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/1 (126 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/2 (126 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/3 (126 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/4 (183 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/5 (183 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/6 (124 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/7 (125 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/8 (184 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/9 (125 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/10 (126 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/11 (126 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/12 (128 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/13 (183 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/14 (184 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/15 (125 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/16 (126 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.ReadLimit/17 (184 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/0 (125 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/1 (126 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/2 (124 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/3 (125 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/4 (182 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/5 (183 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/6 (125 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/7 (125 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/8 (182 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/9 (125 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/10 (126 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/11 (125 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/12 (126 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/13 (184 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/14 (185 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/15 (124 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/16 (124 ms)
[ RUN      ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/17
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[       OK ] CipherSuiteAEAD/TlsCipherSuiteTest.WriteLimit/17 (182 ms)
[----------] 72 tests from CipherSuiteAEAD/TlsCipherSuiteTest (13284 ms total)
[----------] 64 tests from CipherSuiteCBC12/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/0 (183 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/1 (84 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/2 (125 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/3 (125 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/4 (183 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/5 (82 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/6 (298 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/7 (298 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/8 (185 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/9 (83 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/10 (125 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/11 (129 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/12 (184 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/13 (83 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/14 (300 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.SingleCipherSuite/15 (300 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/0 (347 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/1 (193 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/2 (277 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/3 (290 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/4 (347 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/5 (193 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/6 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/7 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/8 (350 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/9 (194 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/10 (277 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/11 (290 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/12 (349 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/13 (194 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/14 (4 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
Skipping DSA suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ResumeCipherSuite/15 (5 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/0 (184 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/1 (83 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/2 (126 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/3 (126 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/4 (184 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/5 (82 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/6 (298 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/7 (298 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/8 (184 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/9 (83 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/10 (125 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/11 (126 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/12 (184 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/13 (84 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/14 (299 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.ReadLimit/15 (298 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/0 (183 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/1 (82 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/2 (126 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/3 (125 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/4 (183 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/5 (83 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/6 (298 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/7 (297 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/8 (183 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/9 (83 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/10 (125 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/11 (126 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/12 (184 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/13 (82 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/14 (297 ms)
[ RUN      ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[       OK ] CipherSuiteCBC12/TlsCipherSuiteTest.WriteLimit/15 (299 ms)
[----------] 64 tests from CipherSuiteCBC12/TlsCipherSuiteTest (11621 ms total)
[----------] 192 tests from CipherSuiteCBCStream/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/0 (92 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/1 (93 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/2 (93 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/3 (93 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/4 (125 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/5 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/6 (127 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/7 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/8 (149 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/9 (150 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/10 (149 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/11 (150 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/12 (125 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/13 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/14 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/15 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/16 (91 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/17 (92 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/18 (92 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/19 (92 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/20 (124 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/21 (125 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/22 (125 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/23 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/24 (149 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/25 (151 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/26 (150 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/27 (150 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/28 (124 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/29 (125 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/30 (125 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/31 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/32 (91 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/33 (92 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/34 (92 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/35 (91 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/36 (124 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/37 (125 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/38 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/39 (125 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/40 (149 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/41 (149 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/42 (150 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/43 (150 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/44 (125 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/45 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/46 (127 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.SingleCipherSuite/47 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/0 (241 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/1 (244 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/2 (251 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/3 (245 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/4 (275 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/5 (278 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/6 (278 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/7 (277 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/8 (328 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/9 (331 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/10 (341 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/11 (331 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/12 (287 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/13 (290 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/14 (290 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/15 (291 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/16 (243 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/17 (244 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/18 (247 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/19 (246 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/20 (275 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/21 (277 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/22 (278 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/23 (276 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/24 (328 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/25 (331 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/26 (331 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/27 (331 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/28 (288 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/29 (290 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/30 (291 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/31 (290 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/32 (241 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/33 (244 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/34 (244 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/35 (244 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/36 (275 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/37 (277 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/38 (276 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/39 (276 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/40 (327 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/41 (329 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/42 (329 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/43 (329 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/44 (287 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/45 (291 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/46 (290 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ResumeCipherSuite/47 (290 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/0 (91 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/1 (93 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/2 (92 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/3 (92 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/4 (124 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/5 (127 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/6 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/7 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/8 (149 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/9 (152 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/10 (151 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/11 (152 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/12 (125 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/13 (127 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/14 (127 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/15 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/16 (93 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/17 (93 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/18 (92 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/19 (93 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/20 (125 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/21 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/22 (127 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/23 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/24 (149 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/25 (151 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/26 (151 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/27 (152 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/28 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/29 (127 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/30 (127 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/31 (127 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/32 (92 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/33 (93 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/34 (92 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/35 (93 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/36 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/37 (125 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/38 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/39 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/40 (150 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/41 (150 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/42 (150 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/43 (151 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/44 (124 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/45 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/46 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.ReadLimit/47 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/0
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/0 (91 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/1
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/1 (92 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/2
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/2 (92 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/3
Version: TLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/3 (92 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/4
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/4 (124 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/5
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/5 (125 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/6
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/6 (125 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/7
Version: TLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/7 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/8
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/8 (152 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/9
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/9 (150 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/10
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/10 (149 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/11
Version: TLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/11 (150 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/12
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/12 (124 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/13
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/13 (127 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/14
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/14 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/15
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/15 (135 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/16
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/16 (97 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/17
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/17 (117 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/18
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/18 (106 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/19
Version: TLS 1.1
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/19 (106 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/20
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/20 (123 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/21
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/21 (128 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/22
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/22 (125 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/23
Version: TLS 1.1
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/23 (129 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/24
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/24 (156 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/25
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/25 (151 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/26
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/26 (151 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/27
Version: TLS 1.1
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/27 (150 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/28
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/28 (125 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/29
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/29 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/30
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/30 (127 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/31
Version: TLS 1.1
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/31 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/32
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/32 (90 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/33
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/33 (92 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/34
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/34 (92 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/35
Version: TLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/35 (92 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/36
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/36 (124 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/37
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/37 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/38
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/38 (125 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/39
Version: TLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/39 (125 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/40
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/40 (149 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/41
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/41 (149 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/42
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/42 (151 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/43
Version: TLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/43 (150 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/44
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/44 (125 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/45
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/45 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/46
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/46 (126 ms)
[ RUN      ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/47
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCStream/TlsCipherSuiteTest.WriteLimit/47 (126 ms)
[----------] 192 tests from CipherSuiteCBCStream/TlsCipherSuiteTest (31570 ms total)
[----------] 96 tests from CipherSuiteCBCDatagram/TlsCipherSuiteTest
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/0 (92 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/1 (93 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/2 (93 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/3 (126 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/4 (126 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/5 (146 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/6 (157 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/7 (158 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/8 (158 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/9 (133 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/10 (133 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/11 (133 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/12 (95 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/13 (93 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/14 (92 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/15 (127 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/16 (127 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/17 (126 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/18 (151 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/19 (152 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/20 (151 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/21 (126 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/22 (126 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.SingleCipherSuite/23 (126 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/0 (245 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/1 (245 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/2 (244 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/3 (277 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/4 (279 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/5 (279 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/6 (329 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/7 (331 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/8 (332 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/9 (290 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/10 (292 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/11 (290 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/12 (244 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/13 (244 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/14 (246 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/15 (279 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/16 (280 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/17 (279 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/18 (332 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/19 (331 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/20 (331 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/21 (290 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/22 (290 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ResumeCipherSuite/23 (290 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/0 (93 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/1 (93 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/2 (93 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/3 (127 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/4 (127 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/5 (127 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/6 (152 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/7 (152 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/8 (151 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/9 (128 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/10 (129 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/11 (127 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/12 (92 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/13 (93 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/14 (92 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/15 (125 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/16 (126 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/17 (126 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/18 (150 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/19 (152 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/20 (151 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/21 (127 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/22 (127 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
server: Read error SSL_ERROR_TOO_MANY_RECORDS: SSL sent or received too many records with the same symmetric key.
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.ReadLimit/23 (127 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/0
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/0 (93 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/1
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/1 (93 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/2
Version: DTLS 1.0
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/2 (93 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/3
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/3 (127 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/4
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/4 (127 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/5
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/5 (127 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/6
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/6 (151 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/7
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/7 (152 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/8
Version: DTLS 1.0
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/8 (151 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/9
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/9 (126 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/10
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/10 (127 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/11
Version: DTLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/11 (127 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/12
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/12 (92 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/13
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/13 (90 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/14
Version: DTLS 1.2
Cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/14 (93 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/15
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/15 (126 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/16
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/16 (126 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/17
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/17 (126 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/18
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/18 (151 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/19
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/19 (152 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/20
Version: DTLS 1.2
Cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/20 (151 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/21
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/21 (126 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/22
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/22 (126 ms)
[ RUN      ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/23
Version: DTLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[       OK ] CipherSuiteCBCDatagram/TlsCipherSuiteTest.WriteLimit/23 (126 ms)
[----------] 96 tests from CipherSuiteCBCDatagram/TlsCipherSuiteTest (15892 ms total)
[----------] 8 tests from TestSecurityStatus/SecurityStatusTest
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/0
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_NULL_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_NULL_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/0 (126 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/1
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_RC4_128_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_RC4_128_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/1 (85 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/2
Version: TLS 1.0
Cipher suite: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/2 (126 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/3
Version: TLS 1.0
Cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 769 cipher suite TLS_RSA_WITH_AES_128_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/3 (85 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/4
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_CBC_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/4 (83 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/5
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_128_GCM_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/5 (83 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/6
Version: TLS 1.2
Cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/6 (83 ms)
[ RUN      ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/7
Version: TLS 1.2
Cipher suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] TestSecurityStatus/SecurityStatusTest.CheckSecurityStatus/7 (126 ms)
[----------] 8 tests from TestSecurityStatus/SecurityStatusTest (797 ms total)
[----------] 72 tests from DamageYStream/TlsDamageDHYTest
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030108418c14c391f493c6971c2a7721628b7dc6f130420a2735ad6b...
record new: [1184] 02000051030108418c14c391f493c6971c2a7721628b7dc6f130420a2735ad6b...
server: Original packet: [1189] 16030104a002000051030108418c14c391f493c6971c2a7721628b7dc6f13042...
server: Filtered packet: [1189] 16030104a002000051030108418c14c391f493c6971c2a7721628b7dc6f13042...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/0 (107 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/1
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103011d71cf27e67ea6c37d93b123b0fc76f51dc34f3a721ac8becc4b...
record new: [1184] 0200005103011d71cf27e67ea6c37d93b123b0fc76f51dc34f3a721ac8becc4b...
server: Original packet: [1189] 16030104a00200005103011d71cf27e67ea6c37d93b123b0fc76f51dc34f3a72...
server: Filtered packet: [1189] 16030104a00200005103011d71cf27e67ea6c37d93b123b0fc76f51dc34f3a72...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/1 (106 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/2
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301be99d5a1a0b56f74501992cfdc09e9cfe950aef29d11c659ed83...
record new: [1184] 020000510301be99d5a1a0b56f74501992cfdc09e9cfe950aef29d11c659ed83...
server: Original packet: [1189] 16030104a0020000510301be99d5a1a0b56f74501992cfdc09e9cfe950aef29d...
server: Filtered packet: [1189] 16030104a0020000510301be99d5a1a0b56f74501992cfdc09e9cfe950aef29d...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/2 (106 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/3
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301ab287871cd2077e0bd2c5940670b9ea9dd9219285e54970d19f0...
record new: [1184] 020000510301ab287871cd2077e0bd2c5940670b9ea9dd9219285e54970d19f0...
server: Original packet: [1189] 16030104a0020000510301ab287871cd2077e0bd2c5940670b9ea9dd9219285e...
server: Filtered packet: [1189] 16030104a0020000510301ab287871cd2077e0bd2c5940670b9ea9dd9219285e...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/3 (106 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/4
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301e2f2a4f13e7b13f671ba426da89da506ef7612fa5c2e659a97f8...
record new: [1184] 020000510301e2f2a4f13e7b13f671ba426da89da506ef7612fa5c2e659a97f8...
server: Original packet: [1189] 16030104a0020000510301e2f2a4f13e7b13f671ba426da89da506ef7612fa5c...
server: Filtered packet: [1189] 16030104a0020000510301e2f2a4f13e7b13f671ba426da89da506ef7612fa5c...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/4 (106 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/5
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301a202c1e158ec34ea9430058c399385f22c4de70f746b5b77088e...
record new: [1184] 020000510301a202c1e158ec34ea9430058c399385f22c4de70f746b5b77088e...
server: Original packet: [1189] 16030104a0020000510301a202c1e158ec34ea9430058c399385f22c4de70f74...
server: Filtered packet: [1189] 16030104a0020000510301a202c1e158ec34ea9430058c399385f22c4de70f74...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/5 (107 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/6
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103012867a6317abf6eea090b81bb7d44046edb641a5ce794f3182ca4...
record new: [1184] 0200005103012867a6317abf6eea090b81bb7d44046edb641a5ce794f3182ca4...
server: Original packet: [1189] 16030104a00200005103012867a6317abf6eea090b81bb7d44046edb641a5ce7...
server: Filtered packet: [1189] 16030104a00200005103012867a6317abf6eea090b81bb7d44046edb641a5ce7...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/6 (106 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/7
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301bda3aaae275e8cbcccb436df8e0fc446db1786108c5aef983d40...
record new: [1184] 020000510301bda3aaae275e8cbcccb436df8e0fc446db1786108c5aef983d40...
server: Original packet: [1189] 16030104a0020000510301bda3aaae275e8cbcccb436df8e0fc446db1786108c...
server: Filtered packet: [1189] 16030104a0020000510301bda3aaae275e8cbcccb436df8e0fc446db1786108c...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/7 (107 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/8
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301671a831dbd15698a10ae44f2c54fa7dc6cbca5afbada205b435d...
record new: [1185] 020000510301671a831dbd15698a10ae44f2c54fa7dc6cbca5afbada205b435d...
server: Original packet: [1189] 16030104a0020000510301671a831dbd15698a10ae44f2c54fa7dc6cbca5afba...
server: Filtered packet: [1190] 16030104a1020000510301671a831dbd15698a10ae44f2c54fa7dc6cbca5afba...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/8 (106 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/9
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301f97d938dc64c10da050f53de4e3205c29a9c26f23aff3ce4ba32...
record new: [1185] 020000510301f97d938dc64c10da050f53de4e3205c29a9c26f23aff3ce4ba32...
server: Original packet: [1189] 16030104a0020000510301f97d938dc64c10da050f53de4e3205c29a9c26f23a...
server: Filtered packet: [1190] 16030104a1020000510301f97d938dc64c10da050f53de4e3205c29a9c26f23a...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/9 (106 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/10
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510301d279332a404833b12f349c96f138b78cd5dab9c1df1648f4aa50...
record new: [1185] 020000510301d279332a404833b12f349c96f138b78cd5dab9c1df1648f4aa50...
server: Original packet: [1189] 16030104a0020000510301d279332a404833b12f349c96f138b78cd5dab9c1df...
server: Filtered packet: [1190] 16030104a1020000510301d279332a404833b12f349c96f138b78cd5dab9c1df...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/10 (107 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/11
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030129fec7a130240b03e48c54dee69e8e0c64859c711d5a601b30de...
record new: [1185] 02000051030129fec7a130240b03e48c54dee69e8e0c64859c711d5a601b30de...
server: Original packet: [1189] 16030104a002000051030129fec7a130240b03e48c54dee69e8e0c64859c711d...
server: Filtered packet: [1190] 16030104a102000051030129fec7a130240b03e48c54dee69e8e0c64859c711d...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/11 (107 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/12
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302ad1fb13719a36107a6d4e49a1420ebe0d55c7cb9dfe987235a81...
record new: [1184] 020000510302ad1fb13719a36107a6d4e49a1420ebe0d55c7cb9dfe987235a81...
server: Original packet: [1189] 16030204a0020000510302ad1fb13719a36107a6d4e49a1420ebe0d55c7cb9df...
server: Filtered packet: [1189] 16030204a0020000510302ad1fb13719a36107a6d4e49a1420ebe0d55c7cb9df...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/12 (106 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/13
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302fc18cbe9d66830868b15cf398d728445ba251efa395c649cfc86...
record new: [1184] 020000510302fc18cbe9d66830868b15cf398d728445ba251efa395c649cfc86...
server: Original packet: [1189] 16030204a0020000510302fc18cbe9d66830868b15cf398d728445ba251efa39...
server: Filtered packet: [1189] 16030204a0020000510302fc18cbe9d66830868b15cf398d728445ba251efa39...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/13 (106 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/14
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030291b82a282d5f45cc050f08e11fc308bfd5099b9bf4fdeaccd1fb...
record new: [1184] 02000051030291b82a282d5f45cc050f08e11fc308bfd5099b9bf4fdeaccd1fb...
server: Original packet: [1189] 16030204a002000051030291b82a282d5f45cc050f08e11fc308bfd5099b9bf4...
server: Filtered packet: [1189] 16030204a002000051030291b82a282d5f45cc050f08e11fc308bfd5099b9bf4...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/14 (106 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/15
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103029eec211eaff17c008f20170154a250db0d4c7615422c5d32f46b...
record new: [1184] 0200005103029eec211eaff17c008f20170154a250db0d4c7615422c5d32f46b...
server: Original packet: [1189] 16030204a00200005103029eec211eaff17c008f20170154a250db0d4c761542...
server: Filtered packet: [1189] 16030204a00200005103029eec211eaff17c008f20170154a250db0d4c761542...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/15 (107 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/16
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103029dff5d5c506074baaa2ed0b20e30ab53727c49beb2e68b77fa4e...
record new: [1184] 0200005103029dff5d5c506074baaa2ed0b20e30ab53727c49beb2e68b77fa4e...
server: Original packet: [1189] 16030204a00200005103029dff5d5c506074baaa2ed0b20e30ab53727c49beb2...
server: Filtered packet: [1189] 16030204a00200005103029dff5d5c506074baaa2ed0b20e30ab53727c49beb2...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/16 (106 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/17
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302ca848e327e7b07cf11e964de2117ac9438b35933e931852c9043...
record new: [1184] 020000510302ca848e327e7b07cf11e964de2117ac9438b35933e931852c9043...
server: Original packet: [1189] 16030204a0020000510302ca848e327e7b07cf11e964de2117ac9438b35933e9...
server: Filtered packet: [1189] 16030204a0020000510302ca848e327e7b07cf11e964de2117ac9438b35933e9...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/17 (107 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/18
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302951de944c5d8388993f5dd6955f841f70490578095607934d55d...
record new: [1184] 020000510302951de944c5d8388993f5dd6955f841f70490578095607934d55d...
server: Original packet: [1189] 16030204a0020000510302951de944c5d8388993f5dd6955f841f70490578095...
server: Filtered packet: [1189] 16030204a0020000510302951de944c5d8388993f5dd6955f841f70490578095...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/18 (106 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/19
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302ea659189f8b95f496d0e057912027cf3121e75d1020d3e1edd51...
record new: [1184] 020000510302ea659189f8b95f496d0e057912027cf3121e75d1020d3e1edd51...
server: Original packet: [1189] 16030204a0020000510302ea659189f8b95f496d0e057912027cf3121e75d102...
server: Filtered packet: [1189] 16030204a0020000510302ea659189f8b95f496d0e057912027cf3121e75d102...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/19 (106 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/20
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 02000051030286ec873964e6fc462a934cc707b62169e9b4fad210d771d8583f...
record new: [1185] 02000051030286ec873964e6fc462a934cc707b62169e9b4fad210d771d8583f...
server: Original packet: [1189] 16030204a002000051030286ec873964e6fc462a934cc707b62169e9b4fad210...
server: Filtered packet: [1190] 16030204a102000051030286ec873964e6fc462a934cc707b62169e9b4fad210...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/20 (107 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/21
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302a99d1a2675a535cba9eb3d2d72c344578b5de84fa72964b138fb...
record new: [1185] 020000510302a99d1a2675a535cba9eb3d2d72c344578b5de84fa72964b138fb...
server: Original packet: [1189] 16030204a0020000510302a99d1a2675a535cba9eb3d2d72c344578b5de84fa7...
server: Filtered packet: [1190] 16030204a1020000510302a99d1a2675a535cba9eb3d2d72c344578b5de84fa7...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/21 (106 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/22
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 020000510302beb80f088b68bbe134c4db7835f16761bce779af628a8dd46a30...
record new: [1185] 020000510302beb80f088b68bbe134c4db7835f16761bce779af628a8dd46a30...
server: Original packet: [1189] 16030204a0020000510302beb80f088b68bbe134c4db7835f16761bce779af62...
server: Filtered packet: [1190] 16030204a1020000510302beb80f088b68bbe134c4db7835f16761bce779af62...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/22 (107 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/23
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1184] 0200005103028320ebe3960df0066dc9b731b69540d79d4a5a7abab624876012...
record new: [1185] 0200005103028320ebe3960df0066dc9b731b69540d79d4a5a7abab624876012...
server: Original packet: [1189] 16030204a00200005103028320ebe3960df0066dc9b731b69540d79d4a5a7aba...
server: Filtered packet: [1190] 16030204a10200005103028320ebe3960df0066dc9b731b69540d79d4a5a7aba...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/23 (107 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/24
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 02000051030360ef9efb0ea17dfa8e3ce964a6a88d97e7eca70855631e255d99...
record new: [1186] 02000051030360ef9efb0ea17dfa8e3ce964a6a88d97e7eca70855631e255d99...
server: Original packet: [1191] 16030304a202000051030360ef9efb0ea17dfa8e3ce964a6a88d97e7eca70855...
server: Filtered packet: [1191] 16030304a202000051030360ef9efb0ea17dfa8e3ce964a6a88d97e7eca70855...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/24 (106 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/25
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303844e2ffb4059dc21a252625feaff6ee395f66530f0e368bb16f2...
record new: [1186] 020000510303844e2ffb4059dc21a252625feaff6ee395f66530f0e368bb16f2...
server: Original packet: [1191] 16030304a2020000510303844e2ffb4059dc21a252625feaff6ee395f66530f0...
server: Filtered packet: [1191] 16030304a2020000510303844e2ffb4059dc21a252625feaff6ee395f66530f0...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/25 (106 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/26
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303f628cf7437277a206b66d66442b159350a74f07bc72b80fa202b...
record new: [1186] 020000510303f628cf7437277a206b66d66442b159350a74f07bc72b80fa202b...
server: Original packet: [1191] 16030304a2020000510303f628cf7437277a206b66d66442b159350a74f07bc7...
server: Filtered packet: [1191] 16030304a2020000510303f628cf7437277a206b66d66442b159350a74f07bc7...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/26 (105 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/27
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303a26ef151838f8b5ee9ca02955ffd7e8a56e7dfc3f74f9a3a7879...
record new: [1186] 020000510303a26ef151838f8b5ee9ca02955ffd7e8a56e7dfc3f74f9a3a7879...
server: Original packet: [1191] 16030304a2020000510303a26ef151838f8b5ee9ca02955ffd7e8a56e7dfc3f7...
server: Filtered packet: [1191] 16030304a2020000510303a26ef151838f8b5ee9ca02955ffd7e8a56e7dfc3f7...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/27 (106 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/28
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103033678d77c740a15cc091d1f7d4f15d0c9dd3d3af17c18c89dc267...
record new: [1186] 0200005103033678d77c740a15cc091d1f7d4f15d0c9dd3d3af17c18c89dc267...
server: Original packet: [1191] 16030304a20200005103033678d77c740a15cc091d1f7d4f15d0c9dd3d3af17c...
server: Filtered packet: [1191] 16030304a20200005103033678d77c740a15cc091d1f7d4f15d0c9dd3d3af17c...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/28 (106 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/29
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303893607182012cfffde61b88ad223acff0729f82a03636247150d...
record new: [1186] 020000510303893607182012cfffde61b88ad223acff0729f82a03636247150d...
server: Original packet: [1191] 16030304a2020000510303893607182012cfffde61b88ad223acff0729f82a03...
server: Filtered packet: [1191] 16030304a2020000510303893607182012cfffde61b88ad223acff0729f82a03...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/29 (105 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/30
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103038dae943a205e7c5c9892ccae77c082e1601430837021391f834f...
record new: [1186] 0200005103038dae943a205e7c5c9892ccae77c082e1601430837021391f834f...
server: Original packet: [1191] 16030304a20200005103038dae943a205e7c5c9892ccae77c082e16014308370...
server: Filtered packet: [1191] 16030304a20200005103038dae943a205e7c5c9892ccae77c082e16014308370...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/30 (106 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/31
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303f1b861754aa5eb24843d3742fc43f5f625b2095511551ad0c1b6...
record new: [1186] 020000510303f1b861754aa5eb24843d3742fc43f5f625b2095511551ad0c1b6...
server: Original packet: [1191] 16030304a2020000510303f1b861754aa5eb24843d3742fc43f5f625b2095511...
server: Filtered packet: [1191] 16030304a2020000510303f1b861754aa5eb24843d3742fc43f5f625b2095511...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/31 (106 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/32
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 02000051030310b76675a3ad3eb04c65bd98a595ba1443d47902bb0d4eafdd51...
record new: [1187] 02000051030310b76675a3ad3eb04c65bd98a595ba1443d47902bb0d4eafdd51...
server: Original packet: [1191] 16030304a202000051030310b76675a3ad3eb04c65bd98a595ba1443d47902bb...
server: Filtered packet: [1192] 16030304a302000051030310b76675a3ad3eb04c65bd98a595ba1443d47902bb...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/32 (105 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/33
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103038343d619cf52801cc3881266b2b447eef33f17605569ffb40cbd...
record new: [1187] 0200005103038343d619cf52801cc3881266b2b447eef33f17605569ffb40cbd...
server: Original packet: [1191] 16030304a20200005103038343d619cf52801cc3881266b2b447eef33f176055...
server: Filtered packet: [1192] 16030304a30200005103038343d619cf52801cc3881266b2b447eef33f176055...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/33 (107 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/34
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 0200005103033064074196a0e21e8f2884ddaf7a11e11cacb3b65f87ea413b5f...
record new: [1187] 0200005103033064074196a0e21e8f2884ddaf7a11e11cacb3b65f87ea413b5f...
server: Original packet: [1191] 16030304a20200005103033064074196a0e21e8f2884ddaf7a11e11cacb3b65f...
server: Filtered packet: [1192] 16030304a30200005103033064074196a0e21e8f2884ddaf7a11e11cacb3b65f...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/34 (106 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageServerY/35
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [1186] 020000510303dbdefcf64b827d66f112daf57c40d3ef91ac00d163de319398ee...
record new: [1187] 020000510303dbdefcf64b827d66f112daf57c40d3ef91ac00d163de319398ee...
server: Original packet: [1191] 16030304a2020000510303dbdefcf64b827d66f112daf57c40d3ef91ac00d163...
server: Filtered packet: [1192] 16030304a3020000510303dbdefcf64b827d66f112daf57c40d3ef91ac00d163...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageServerY/35 (107 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100129b7878fa901146943f75f9785db65ee506c899d6c858c3d9d478f6b13b...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100129b7878fa901146943f75f9785db65ee506c899d6c858c3d9d4...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 1603010106100001020100129b7878fa901146943f75f9785db65ee506c899d6...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/0 (159 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/1
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010005ee2eda75daad6ba52e3d3205ea0b53384640f89843554d5340e9af77c0...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 10000102010005ee2eda75daad6ba52e3d3205ea0b53384640f89843554d5340...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 160301010610000102010005ee2eda75daad6ba52e3d3205ea0b53384640f898...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/1 (159 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/2
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01004ecc4bf1f5e6965b752c9613c42324023679cebeb7608de54fb913a8e958...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 1000010201004ecc4bf1f5e6965b752c9613c42324023679cebeb7608de54fb9...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 16030101061000010201004ecc4bf1f5e6965b752c9613c42324023679cebeb7...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/2 (158 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/3
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010063d204e425ac1eb3d55b911eaa6bdec70b2e28545f923d33f386f4ce2144...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 10000102010063d204e425ac1eb3d55b911eaa6bdec70b2e28545f923d33f386...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [326] 160301010610000102010063d204e425ac1eb3d55b911eaa6bdec70b2e28545f...
client: Filtered packet: [326] 1603010106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/3 (159 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/4
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100d99688052a7a49b3e826a0cf40f30da3c485084a9ea5530cd781493efd90...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100d99688052a7a49b3e826a0cf40f30da3c485084a9ea5530cd781...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [326] 1603010106100001020100d99688052a7a49b3e826a0cf40f30da3c485084a9e...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/4 (159 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/5
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010085c3bd1ff233d650f14c0b5af9b36f2f73f88951e9687a3b29129b4d1361...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 10000102010085c3bd1ff233d650f14c0b5af9b36f2f73f88951e9687a3b2912...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [326] 160301010610000102010085c3bd1ff233d650f14c0b5af9b36f2f73f88951e9...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/5 (157 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/6
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100da0d0ce72a2505f6a6070b89bd605c3be1cba46bb8972f3459c0478309c1...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100da0d0ce72a2505f6a6070b89bd605c3be1cba46bb8972f3459c0...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [326] 1603010106100001020100da0d0ce72a2505f6a6070b89bd605c3be1cba46bb8...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/6 (157 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/7
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01009ce8ee7fa0f3b9669460fe1f7a681e3b01435b2698f767650ce17b441af8...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 1000010201009ce8ee7fa0f3b9669460fe1f7a681e3b01435b2698f767650ce1...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [326] 16030101061000010201009ce8ee7fa0f3b9669460fe1f7a681e3b01435b2698...
client: Filtered packet: [326] 1603010106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/7 (159 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/8
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100b9e25a8d50a1a3c0d57f86758c66f662bf086f83825d42351c546c5b717f...
handshake new: [259] 010101b9e25a8d50a1a3c0d57f86758c66f662bf086f83825d42351c546c5b71...
record old: [262] 100001020100b9e25a8d50a1a3c0d57f86758c66f662bf086f83825d42351c54...
record new: [263] 10000103010101b9e25a8d50a1a3c0d57f86758c66f662bf086f83825d42351c...
client: Original packet: [326] 1603010106100001020100b9e25a8d50a1a3c0d57f86758c66f662bf086f8382...
client: Filtered packet: [327] 160301010710000103010101b9e25a8d50a1a3c0d57f86758c66f662bf086f83...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/8 (159 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/9
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01001f2e43a0e9ac0170cff54e298c6ad0ad418441daa4a803de3129491f19db...
handshake new: [259] 0101011f2e43a0e9ac0170cff54e298c6ad0ad418441daa4a803de3129491f19...
record old: [262] 1000010201001f2e43a0e9ac0170cff54e298c6ad0ad418441daa4a803de3129...
record new: [263] 100001030101011f2e43a0e9ac0170cff54e298c6ad0ad418441daa4a803de31...
client: Original packet: [326] 16030101061000010201001f2e43a0e9ac0170cff54e298c6ad0ad418441daa4...
client: Filtered packet: [327] 1603010107100001030101011f2e43a0e9ac0170cff54e298c6ad0ad418441da...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/9 (159 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/10
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010010edf7acd9e7ccf1d6d7eaf16c733421554e5bcb0314d6d446aa1765a938...
handshake new: [259] 01010010edf7acd9e7ccf1d6d7eaf16c733421554e5bcb0314d6d446aa1765a9...
record old: [262] 10000102010010edf7acd9e7ccf1d6d7eaf16c733421554e5bcb0314d6d446aa...
record new: [263] 1000010301010010edf7acd9e7ccf1d6d7eaf16c733421554e5bcb0314d6d446...
client: Original packet: [326] 160301010610000102010010edf7acd9e7ccf1d6d7eaf16c733421554e5bcb03...
client: Filtered packet: [327] 16030101071000010301010010edf7acd9e7ccf1d6d7eaf16c733421554e5bcb...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/10 (185 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/11
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01008030e92953a618840f5b8b309a25a28fd3e9d3a8f84a7dadc9faf47e6459...
handshake new: [259] 0101008030e92953a618840f5b8b309a25a28fd3e9d3a8f84a7dadc9faf47e64...
record old: [262] 1000010201008030e92953a618840f5b8b309a25a28fd3e9d3a8f84a7dadc9fa...
record new: [263] 100001030101008030e92953a618840f5b8b309a25a28fd3e9d3a8f84a7dadc9...
client: Original packet: [326] 16030101061000010201008030e92953a618840f5b8b309a25a28fd3e9d3a8f8...
client: Filtered packet: [327] 1603010107100001030101008030e92953a618840f5b8b309a25a28fd3e9d3a8...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/11 (183 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/12
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100343f4705c663546b0fde7cdf039635fdd2fad7ed24a45ab7ead773c8000e...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100343f4705c663546b0fde7cdf039635fdd2fad7ed24a45ab7ead7...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 1603020106100001020100343f4705c663546b0fde7cdf039635fdd2fad7ed24...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/12 (157 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/13
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e6e47f647a3047c59cab1aab17aa623b3ae4b1f101e9f3b261f118968c55...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100e6e47f647a3047c59cab1aab17aa623b3ae4b1f101e9f3b261f1...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 1603020106100001020100e6e47f647a3047c59cab1aab17aa623b3ae4b1f101...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/13 (158 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/14
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e843f2905918adcfe0e9a530ffca38fabece2e4819860718841d2c853a86...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100e843f2905918adcfe0e9a530ffca38fabece2e4819860718841d...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 1603020106100001020100e843f2905918adcfe0e9a530ffca38fabece2e4819...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/14 (159 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/15
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010082af34734b3bcac789c8be5386888c9bbeeec4ec32578413dd6a7d87af04...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 10000102010082af34734b3bcac789c8be5386888c9bbeeec4ec32578413dd6a...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [342] 160302010610000102010082af34734b3bcac789c8be5386888c9bbeeec4ec32...
client: Filtered packet: [342] 1603020106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/15 (160 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/16
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010047696a765a5469ba73270de7ea045795373f1b6bce6df6759e972a7a3810...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 10000102010047696a765a5469ba73270de7ea045795373f1b6bce6df6759e97...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [342] 160302010610000102010047696a765a5469ba73270de7ea045795373f1b6bce...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/16 (158 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/17
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100bb91b9df2f17a3a916344be75556a8bafe64322f4b75efe204e172500b8a...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100bb91b9df2f17a3a916344be75556a8bafe64322f4b75efe204e1...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [342] 1603020106100001020100bb91b9df2f17a3a916344be75556a8bafe64322f4b...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/17 (159 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/18
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100b05109f41e808a0b6968351598ff0f73e891c47a9e8665e6a6a193e92a7e...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100b05109f41e808a0b6968351598ff0f73e891c47a9e8665e6a6a1...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [342] 1603020106100001020100b05109f41e808a0b6968351598ff0f73e891c47a9e...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/18 (158 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/19
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c9315fe64d2e8091554caf8a491ddc54cefef0a5b4da8ec7122af9b57db3...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 100001020100c9315fe64d2e8091554caf8a491ddc54cefef0a5b4da8ec7122a...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [342] 1603020106100001020100c9315fe64d2e8091554caf8a491ddc54cefef0a5b4...
client: Filtered packet: [342] 1603020106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/19 (158 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/20
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01001f7b2acdec1a02d79580071797d042007e671b0d54020891992300f45bfc...
handshake new: [259] 0101011f7b2acdec1a02d79580071797d042007e671b0d54020891992300f45b...
record old: [262] 1000010201001f7b2acdec1a02d79580071797d042007e671b0d540208919923...
record new: [263] 100001030101011f7b2acdec1a02d79580071797d042007e671b0d5402089199...
client: Original packet: [342] 16030201061000010201001f7b2acdec1a02d79580071797d042007e671b0d54...
client: Filtered packet: [343] 1603020107100001030101011f7b2acdec1a02d79580071797d042007e671b0d...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/20 (158 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/21
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100cfe23c4f2159900b133f8ceab2a3e28d90ee69670ee7bbfa4318ea8b1900...
handshake new: [259] 010101cfe23c4f2159900b133f8ceab2a3e28d90ee69670ee7bbfa4318ea8b19...
record old: [262] 100001020100cfe23c4f2159900b133f8ceab2a3e28d90ee69670ee7bbfa4318...
record new: [263] 10000103010101cfe23c4f2159900b133f8ceab2a3e28d90ee69670ee7bbfa43...
client: Original packet: [342] 1603020106100001020100cfe23c4f2159900b133f8ceab2a3e28d90ee69670e...
client: Filtered packet: [343] 160302010710000103010101cfe23c4f2159900b133f8ceab2a3e28d90ee6967...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/21 (158 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/22
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01006ca6f7faabf663a6fe1da9e14de3bbb9994acdb897e8a6381c2b2d5dbe1e...
handshake new: [259] 0101006ca6f7faabf663a6fe1da9e14de3bbb9994acdb897e8a6381c2b2d5dbe...
record old: [262] 1000010201006ca6f7faabf663a6fe1da9e14de3bbb9994acdb897e8a6381c2b...
record new: [263] 100001030101006ca6f7faabf663a6fe1da9e14de3bbb9994acdb897e8a6381c...
client: Original packet: [342] 16030201061000010201006ca6f7faabf663a6fe1da9e14de3bbb9994acdb897...
client: Filtered packet: [343] 1603020107100001030101006ca6f7faabf663a6fe1da9e14de3bbb9994acdb8...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/22 (184 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/23
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100fcf73c6d650e9126dd6eed3d169df0a747eac9942e29393ce6f7e8c2aab1...
handshake new: [259] 010100fcf73c6d650e9126dd6eed3d169df0a747eac9942e29393ce6f7e8c2aa...
record old: [262] 100001020100fcf73c6d650e9126dd6eed3d169df0a747eac9942e29393ce6f7...
record new: [263] 10000103010100fcf73c6d650e9126dd6eed3d169df0a747eac9942e29393ce6...
client: Original packet: [342] 1603020106100001020100fcf73c6d650e9126dd6eed3d169df0a747eac9942e...
client: Filtered packet: [343] 160302010710000103010100fcf73c6d650e9126dd6eed3d169df0a747eac994...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/23 (184 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/24
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100798d041e9f2bf57cfec3760ae62762273cdfebf76ff7de821ebb449f60bf...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100798d041e9f2bf57cfec3760ae62762273cdfebf76ff7de821ebb...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 1603030106100001020100798d041e9f2bf57cfec3760ae62762273cdfebf76f...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/24 (158 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/25
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010026dee8d39ce02252cec87a44533853ae34a09d2e011a2651dea0a96a74e3...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 10000102010026dee8d39ce02252cec87a44533853ae34a09d2e011a2651dea0...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 160303010610000102010026dee8d39ce02252cec87a44533853ae34a09d2e01...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/25 (157 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/26
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c4419b99260479515374ff4ca065a7bb65363dab5484efdd4d3c7bf551a3...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100c4419b99260479515374ff4ca065a7bb65363dab5484efdd4d3c...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 1603030106100001020100c4419b99260479515374ff4ca065a7bb65363dab54...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/26 (157 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/27
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100887d058f3b2da8e13cff64e0791e681366ee12bfda7e63215d2658e7253e...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [262] 100001020100887d058f3b2da8e13cff64e0791e681366ee12bfda7e63215d26...
record new: [262] 1000010201000000000000000000000000000000000000000000000000000000...
client: Original packet: [318] 1603030106100001020100887d058f3b2da8e13cff64e0791e681366ee12bfda...
client: Filtered packet: [318] 1603030106100001020100000000000000000000000000000000000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/27 (157 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/28
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100bd13cd17346f3cef810ecbca12f2f464b66bedf7e61f694ac113c348a5e6...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100bd13cd17346f3cef810ecbca12f2f464b66bedf7e61f694ac113...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [318] 1603030106100001020100bd13cd17346f3cef810ecbca12f2f464b66bedf7e6...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/28 (157 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/29
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a548e3e428356d9c1eb42f00b28492cf7d06a9e68545dcf569dbbd1626e3...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [262] 100001020100a548e3e428356d9c1eb42f00b28492cf7d06a9e68545dcf569db...
record new: [262] 100001020100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9...
client: Original packet: [318] 1603030106100001020100a548e3e428356d9c1eb42f00b28492cf7d06a9e685...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffadf85458a2bb4a9aafdc562027...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/29 (159 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/30
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010046eaa552193515645b02f00bc6a27550fe9afd7cc66493a07c1c9f760dcc...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 10000102010046eaa552193515645b02f00bc6a27550fe9afd7cc66493a07c1c...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [318] 160303010610000102010046eaa552193515645b02f00bc6a27550fe9afd7cc6...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/30 (160 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/31
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010055925673bf0d124306b6719606a8f97128ed1d32d0403716a134e1c543d9...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [262] 10000102010055925673bf0d124306b6719606a8f97128ed1d32d0403716a134...
record new: [262] 100001020100ffffffffffffffffffffffffffffffffffffffffffffffffffff...
client: Original packet: [318] 160303010610000102010055925673bf0d124306b6719606a8f97128ed1d32d0...
client: Filtered packet: [318] 1603030106100001020100ffffffffffffffffffffffffffffffffffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/31 (161 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/32
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100319b3198862226f03366abd7fc415a0d7a83707b7e486c0a8e827872d498...
handshake new: [259] 010101319b3198862226f03366abd7fc415a0d7a83707b7e486c0a8e827872d4...
record old: [262] 100001020100319b3198862226f03366abd7fc415a0d7a83707b7e486c0a8e82...
record new: [263] 10000103010101319b3198862226f03366abd7fc415a0d7a83707b7e486c0a8e...
client: Original packet: [318] 1603030106100001020100319b3198862226f03366abd7fc415a0d7a83707b7e...
client: Filtered packet: [319] 160303010710000103010101319b3198862226f03366abd7fc415a0d7a83707b...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/32 (157 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/33
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01006ba036ef12cd11fcbf233d6704a1ef49e6b61f13c108d8c192d6640db047...
handshake new: [259] 0101016ba036ef12cd11fcbf233d6704a1ef49e6b61f13c108d8c192d6640db0...
record old: [262] 1000010201006ba036ef12cd11fcbf233d6704a1ef49e6b61f13c108d8c192d6...
record new: [263] 100001030101016ba036ef12cd11fcbf233d6704a1ef49e6b61f13c108d8c192...
client: Original packet: [318] 16030301061000010201006ba036ef12cd11fcbf233d6704a1ef49e6b61f13c1...
client: Filtered packet: [319] 1603030107100001030101016ba036ef12cd11fcbf233d6704a1ef49e6b61f13...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/33 (157 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/34
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100da6e6d332f29b44180bcd37e40f800f2e34d95a56e789118a9ff57542e90...
handshake new: [259] 010100da6e6d332f29b44180bcd37e40f800f2e34d95a56e789118a9ff57542e...
record old: [262] 100001020100da6e6d332f29b44180bcd37e40f800f2e34d95a56e789118a9ff...
record new: [263] 10000103010100da6e6d332f29b44180bcd37e40f800f2e34d95a56e789118a9...
client: Original packet: [318] 1603030106100001020100da6e6d332f29b44180bcd37e40f800f2e34d95a56e...
client: Filtered packet: [319] 160303010710000103010100da6e6d332f29b44180bcd37e40f800f2e34d95a5...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/34 (183 ms)
[ RUN      ] DamageYStream/TlsDamageDHYTest.DamageClientY/35
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01002aa4773e46107906161cd52f11d3399e7928e56e1a5dd5098300132469db...
handshake new: [259] 0101002aa4773e46107906161cd52f11d3399e7928e56e1a5dd5098300132469...
record old: [262] 1000010201002aa4773e46107906161cd52f11d3399e7928e56e1a5dd5098300...
record new: [263] 100001030101002aa4773e46107906161cd52f11d3399e7928e56e1a5dd50983...
client: Original packet: [318] 16030301061000010201002aa4773e46107906161cd52f11d3399e7928e56e1a...
client: Filtered packet: [319] 1603030107100001030101002aa4773e46107906161cd52f11d3399e7928e56e...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYStream/TlsDamageDHYTest.DamageClientY/35 (184 ms)
[----------] 72 tests from DamageYStream/TlsDamageDHYTest (9689 ms total)
[----------] 48 tests from DamageYDatagram/TlsDamageDHYTest
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/0
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff5ece182b95...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff5ece182b95...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/0 (107 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/1
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff0072b4eda6...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff0072b4eda6...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/1 (136 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff108847adb8...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff108847adb8...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/2 (107 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff8a0aeea072...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff8a0aeea072...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/3 (105 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/4
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffe79c1822df...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feffe79c1822df...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/4 (106 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/5
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff7532e03947...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff7532e03947...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/5 (106 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/6
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff464e707dcd...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff464e707dcd...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/6 (106 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/7
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff3d96088390...
server: Filtered packet: [1268] 16feff0000000000000000005d020000510000000000000051feff3d96088390...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/7 (105 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/8
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff0703211914...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff0703211914...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/8 (108 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/9
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feffbd64518195...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feffbd64518195...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/9 (106 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/10
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff6882f78eb2...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff6882f78eb2...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/10 (107 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/11
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [649] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [650] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [661] 0c00028900020000000002890100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [662] 0c00028a000200000000028a0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1268] 16feff0000000000000000005d020000510000000000000051feff06b483777b...
server: Filtered packet: [1269] 16feff0000000000000000005d020000510000000000000051feff06b483777b...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_PKCS11_DEVICE_ERROR: A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/11 (108 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/12
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd547bab721f...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd547bab721f...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/12 (106 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/13
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd304825ffaa...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd304825ffaa...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/13 (107 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/14
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdd98bb76966...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdd98bb76966...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/14 (106 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/15
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd90033e03b6...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd90033e03b6...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/15 (107 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/16
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd9a0ed078ed...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd9a0ed078ed...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/16 (107 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/17
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefda4c0188fe7...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefda4c0188fe7...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/17 (106 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/18
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd9b32a46417...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd9b32a46417...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/18 (106 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/19
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd4fed580d88...
server: Filtered packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefd4fed580d88...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/19 (106 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/20
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdd14f4e1639...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefdd14f4e1639...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/20 (107 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/21
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdebb4a63fb8...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefdebb4a63fb8...
client: Alert sent: level=2 desc=47
client: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=47
server: Handshake failed with error SSL_ERROR_ILLEGAL_PARAMETER_ALERT: SSL peer rejected a handshake message for unacceptable content.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/21 (106 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/22
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefda08cfb1160...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefda08cfb1160...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/22 (107 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/23
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [651] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
handshake new: [652] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [663] 0c00028b000200000000028b0100ffffffffffffffffadf85458a2bb4a9aafdc...
record new: [664] 0c00028c000200000000028c0100ffffffffffffffffadf85458a2bb4a9aafdc...
server: Original packet: [1270] 16fefd0000000000000000005d020000510000000000000051fefdea7ad3006a...
server: Filtered packet: [1271] 16fefd0000000000000000005d020000510000000000000051fefdea7ad3006a...
client: Alert sent: level=2 desc=51
client: Handshake failed with error SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=51
server: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
server: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageServerY/23 (107 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/0
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e229b4157038ba20b9494c4790b85d5f9666d1673dbf6ff9657e742048fb...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100e229b4157038ba20b9494c4790b85d5f9666...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100e229b41570...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/0 (158 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/1
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01003e947540d40d366cbefc9c023bd2e7b5f7fcc8fe4991f7ac754de5143356...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 10000102000100000000010201003e947540d40d366cbefc9c023bd2e7b5f7fc...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201003e947540d4...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/1 (158 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100aca30c31e3de57bd1bcb9898ecca8d40145bdada191ff82a69578b91850c...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 1000010200010000000001020100aca30c31e3de57bd1bcb9898ecca8d40145b...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100aca30c31e3...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/2 (158 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01001211ccf62259f8280c4f31720efabd3e63871f11d84404bade92a91df2e7...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 10000102000100000000010201001211ccf62259f8280c4f31720efabd3e6387...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201001211ccf622...
client: Filtered packet: [374] 16feff0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/3 (159 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/4
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100733ae2f75e9ad050bf7862e7077c0945fbe82b3c8d3dad073cae6c59d3f8...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 1000010200010000000001020100733ae2f75e9ad050bf7862e7077c0945fbe8...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100733ae2f75e...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/4 (158 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/5
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100455551121b89149d8107823706a7dee9ae9ac506381835304dece1d7ee83...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 1000010200010000000001020100455551121b89149d8107823706a7dee9ae9a...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100455551121b...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/5 (158 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/6
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100f73f6c4f5a54f8dc3f90c60bd6590320c88c533c4de82ea4d892c55bbbba...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 1000010200010000000001020100f73f6c4f5a54f8dc3f90c60bd6590320c88c...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100f73f6c4f5a...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/6 (159 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/7
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100a5bd6e5ed0dedb1dc8faa0bd25423b5285d0be7d9f955222ad2aca59cb39...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 1000010200010000000001020100a5bd6e5ed0dedb1dc8faa0bd25423b5285d0...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [374] 16feff0000000000000001010e1000010200010000000001020100a5bd6e5ed0...
client: Filtered packet: [374] 16feff0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/7 (158 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/8
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01002e29fe9a867e5da226751703611d24c78bb356b2dda579a417e33c66ad82...
handshake new: [259] 0101012e29fe9a867e5da226751703611d24c78bb356b2dda579a417e33c66ad...
record old: [270] 10000102000100000000010201002e29fe9a867e5da226751703611d24c78bb3...
record new: [271] 1000010300010000000001030101012e29fe9a867e5da226751703611d24c78b...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201002e29fe9a86...
client: Filtered packet: [375] 16feff0000000000000001010f1000010300010000000001030101012e29fe9a...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/8 (158 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/9
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010038244e23a022fd65b63852269160f3ac16add3971d5087a6b697689f364b...
handshake new: [259] 01010138244e23a022fd65b63852269160f3ac16add3971d5087a6b697689f36...
record old: [270] 100001020001000000000102010038244e23a022fd65b63852269160f3ac16ad...
record new: [271] 10000103000100000000010301010138244e23a022fd65b63852269160f3ac16...
client: Original packet: [374] 16feff0000000000000001010e100001020001000000000102010038244e23a0...
client: Filtered packet: [375] 16feff0000000000000001010f10000103000100000000010301010138244e23...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/9 (158 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/10
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01008de3a52d7834edbd06e8aea0abe39aa40f662e7182d76d196d27815a8253...
handshake new: [259] 0101008de3a52d7834edbd06e8aea0abe39aa40f662e7182d76d196d27815a82...
record old: [270] 10000102000100000000010201008de3a52d7834edbd06e8aea0abe39aa40f66...
record new: [271] 1000010300010000000001030101008de3a52d7834edbd06e8aea0abe39aa40f...
client: Original packet: [374] 16feff0000000000000001010e10000102000100000000010201008de3a52d78...
client: Filtered packet: [375] 16feff0000000000000001010f1000010300010000000001030101008de3a52d...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/10 (184 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/11
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010004c532eef83a81fc4b34ec6ae108099dc375898e28ba5db0468d8dbd4cde...
handshake new: [259] 01010004c532eef83a81fc4b34ec6ae108099dc375898e28ba5db0468d8dbd4c...
record old: [270] 100001020001000000000102010004c532eef83a81fc4b34ec6ae108099dc375...
record new: [271] 10000103000100000000010301010004c532eef83a81fc4b34ec6ae108099dc3...
client: Original packet: [374] 16feff0000000000000001010e100001020001000000000102010004c532eef8...
client: Filtered packet: [375] 16feff0000000000000001010f10000103000100000000010301010004c532ee...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/11 (183 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/12
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010037054296cb2ec8023057fcf7edb3876f08d6880171844beeb596cadc1b45...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 100001020001000000000102010037054296cb2ec8023057fcf7edb3876f08d6...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010037054296cb...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/12 (157 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/13
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010001eebe27ec566729f85fc50f9e77ae99948651e173af4b0dfbc1347bca36...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 100001020001000000000102010001eebe27ec566729f85fc50f9e77ae999486...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010001eebe27ec...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/13 (158 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/14
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01006d975ca98b6dbc2e221ef8866181e0a326eb922d21a51912bbfc9e96d3eb...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 10000102000100000000010201006d975ca98b6dbc2e221ef8866181e0a326eb...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201006d975ca98b...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/14 (159 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/15
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010031f78f0ec77a085a7b7f91e1c2a92c25cef98123cbdaec0a2c743f315731...
handshake new: [258] 0100000000000000000000000000000000000000000000000000000000000000...
record old: [270] 100001020001000000000102010031f78f0ec77a085a7b7f91e1c2a92c25cef9...
record new: [270] 1000010200010000000001020100000000000000000000000000000000000000...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010031f78f0ec7...
client: Filtered packet: [358] 16fefd0000000000000001010e10000102000100000000010201000000000000...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/15 (158 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/16
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 010064bd8fac194cb910e64e5e79f7979e6ad7869a6accd305bc35c8690d1793...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 100001020001000000000102010064bd8fac194cb910e64e5e79f7979e6ad786...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [358] 16fefd0000000000000001010e100001020001000000000102010064bd8fac19...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/16 (159 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/17
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01005951773a1f8f126ea026377d20b4c091e07be3dd9994c7209e8fdde90fcc...
handshake new: [258] 0100ffffffffffffffffadf85458a2bb4a9aafdc5620273d3cf1d8b9c583ce2d...
record old: [270] 10000102000100000000010201005951773a1f8f126ea026377d20b4c091e07b...
record new: [270] 1000010200010000000001020100ffffffffffffffffadf85458a2bb4a9aafdc...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201005951773a1f...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/17 (156 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/18
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100bb8fac9d4985beb732f250d75e6023f0380f51f09bc81877713ae716b939...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 1000010200010000000001020100bb8fac9d4985beb732f250d75e6023f0380f...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100bb8fac9d49...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/18 (159 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/19
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100e276b8c96fcf6ec22021f6e31217ba30d8524ef5ceac3fdefdedbe8c61e6...
handshake new: [258] 0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff...
record old: [270] 1000010200010000000001020100e276b8c96fcf6ec22021f6e31217ba30d852...
record new: [270] 1000010200010000000001020100ffffffffffffffffffffffffffffffffffff...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100e276b8c96f...
client: Filtered packet: [358] 16fefd0000000000000001010e1000010200010000000001020100ffffffffff...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/19 (158 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/20
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100b24942160dc1c349231dd0bd2d2959ca7c834905cac05703363c0d0624a7...
handshake new: [259] 010101b24942160dc1c349231dd0bd2d2959ca7c834905cac05703363c0d0624...
record old: [270] 1000010200010000000001020100b24942160dc1c349231dd0bd2d2959ca7c83...
record new: [271] 100001030001000000000103010101b24942160dc1c349231dd0bd2d2959ca7c...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100b24942160d...
client: Filtered packet: [359] 16fefd0000000000000001010f100001030001000000000103010101b2494216...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/20 (158 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/21
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100c746031b2843dce07ca24b6b356e007f302cd01a27f74fb1486839c28d01...
handshake new: [259] 010101c746031b2843dce07ca24b6b356e007f302cd01a27f74fb1486839c28d...
record old: [270] 1000010200010000000001020100c746031b2843dce07ca24b6b356e007f302c...
record new: [271] 100001030001000000000103010101c746031b2843dce07ca24b6b356e007f30...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100c746031b28...
client: Filtered packet: [359] 16fefd0000000000000001010f100001030001000000000103010101c746031b...
server: Alert sent: level=2 desc=40
server: Handshake failed with error SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE: SSL received a malformed DHE key share handshake extension.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=40
client: Handshake failed with error SSL_ERROR_HANDSHAKE_FAILURE_ALERT: SSL peer was unable to negotiate an acceptable set of security parameters.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/21 (157 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/22
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 01000c174f048c467d7698abfae2557808030dd7838c29ccf3daaa388e1c79e6...
handshake new: [259] 0101000c174f048c467d7698abfae2557808030dd7838c29ccf3daaa388e1c79...
record old: [270] 10000102000100000000010201000c174f048c467d7698abfae2557808030dd7...
record new: [271] 1000010300010000000001030101000c174f048c467d7698abfae2557808030d...
client: Original packet: [358] 16fefd0000000000000001010e10000102000100000000010201000c174f048c...
client: Filtered packet: [359] 16fefd0000000000000001010f1000010300010000000001030101000c174f04...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/22 (182 ms)
[ RUN      ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/23
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
handshake old: [258] 0100d83049decc81f38a93d1739d4cf1e8e17182664e30a7303a5eb45afd90e1...
handshake new: [259] 010100d83049decc81f38a93d1739d4cf1e8e17182664e30a7303a5eb45afd90...
record old: [270] 1000010200010000000001020100d83049decc81f38a93d1739d4cf1e8e17182...
record new: [271] 100001030001000000000103010100d83049decc81f38a93d1739d4cf1e8e171...
client: Original packet: [358] 16fefd0000000000000001010e1000010200010000000001020100d83049decc...
client: Filtered packet: [359] 16fefd0000000000000001010f100001030001000000000103010100d83049de...
server: Alert sent: level=2 desc=51
server: Handshake failed with error SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE: Received incorrect handshakes hash values from peer.
server: Changing state from CONNECTING to ERROR
client: Alert received: level=2 desc=51
client: Handshake failed with error SSL_ERROR_DECRYPT_ERROR_ALERT: Peer reports failure of signature verification or key exchange.
client: Changing state from CONNECTING to ERROR
[       OK ] DamageYDatagram/TlsDamageDHYTest.DamageClientY/23 (183 ms)
[----------] 48 tests from DamageYDatagram/TlsDamageDHYTest (6485 ms total)
[----------] 2 tests from Datagram12Plus/TlsConnectDatagram12Plus
[ RUN      ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindow/0
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindow/0 (126 ms)
[ RUN      ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindowAndOne/0
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
client: Alert sent: level=1 desc=0
[       OK ] Datagram12Plus/TlsConnectDatagram12Plus.MissAWindowAndOne/0 (125 ms)
[----------] 2 tests from Datagram12Plus/TlsConnectDatagram12Plus (251 ms total)
[----------] 16 tests from KeyExchangeTest/TlsKeyExchangeTest
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/0 (268 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/1 (220 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/2 (220 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384Priority/3 (223 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/0 (220 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/1 (218 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/2 (220 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.DuplicateGroupConfig/3 (220 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/0 (227 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/1 (221 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/2 (222 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.P384PriorityDHEnabled/3 (221 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/0
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/0 (126 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/1
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/1 (126 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/2
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 771 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/2 (127 ms)
[ RUN      ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/3
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
server: Handshake success
server: Changing state from CONNECTING to CONNECTED
server: Handshake success
server: Read error PR_WOULD_BLOCK_ERROR: The operation would have blocked
client: Handshake success
client: Changing state from CONNECTING to CONNECTED
client: Handshake success
Connected with version 770 cipher suite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
client: Alert sent: level=1 desc=0
[       OK ] KeyExchangeTest/TlsKeyExchangeTest.Curve25519/3 (127 ms)
[----------] 16 tests from KeyExchangeTest/TlsKeyExchangeTest (3208 ms total)
[----------] 88 tests from TlsPadding/TlsPaddingTest
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fefefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.Correct/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0e0e
[       OK ] TlsPadding/TlsPaddingTest.Correct/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fcfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.Correct/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0c0c
[       OK ] TlsPadding/TlsPaddingTest.Correct/3 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fbfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.Correct/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0b0b
[       OK ] TlsPadding/TlsPaddingTest.Correct/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f1f1...
[       OK ] TlsPadding/TlsPaddingTest.Correct/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410101
[       OK ] TlsPadding/TlsPaddingTest.Correct/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f0...
[       OK ] TlsPadding/TlsPaddingTest.Correct/8 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/9
Content length=31 padding length=0 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141414100
[       OK ] TlsPadding/TlsPaddingTest.Correct/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/13 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/16 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/18 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/19
Content length=287 padding length=0 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/20 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.Correct/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.Correct/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/0
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0e10
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/2
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0c20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/3 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/4
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0b20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/6
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/6 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410120
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/8
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/9
Content length=31 padding length=0 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141414120
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/10
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/12
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/12 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/14
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/15
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/16
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/17
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/17 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/18
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/19
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/20
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/20 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.PadTooLong/21
[       OK ] TlsPadding/TlsPaddingTest.PadTooLong/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fffefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/0 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410f0e0e0e0e0e0e0e0e0e0e0e0e0e0e
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fdfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410d0c0c0c0c0c0c0c0c0c0c0c0c
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/3 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fcfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410c0b0b0b0b0b0b0b0b0b0b0b
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f2f1...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/6 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410201
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f1...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/9
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/12 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/14 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/17 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/19
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/20 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.FirstByteOfPadWrong/21 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/0
Content length=1 padding length=254 total length=256
Plaintext: [256] 41fefefefefefefefefefefefefefefefefefefefefefefefefefefefefefefe...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/0 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/1
Content length=1 padding length=14 total length=16
Plaintext: [16] 410e0e0e0e0e0e0e0e0e0e0e0e0e0f0e
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/1 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/2
Content length=19 padding length=252 total length=272
Plaintext: [272] 41414141414141414141414141414141414141fcfcfcfcfcfcfcfcfcfcfcfcfc...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/2 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/3
Content length=19 padding length=12 total length=32
Plaintext: [32] 414141414141414141414141414141414141410c0c0c0c0c0c0c0c0c0c0c0d0c
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/3 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/4
Content length=20 padding length=251 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141fbfbfbfbfbfbfbfbfbfbfbfb...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/4 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/5
Content length=20 padding length=11 total length=32
Plaintext: [32] 41414141414141414141414141414141414141410b0b0b0b0b0b0b0b0b0b0c0b
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/5 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/6
Content length=30 padding length=241 total length=272
Plaintext: [272] 414141414141414141414141414141414141414141414141414141414141f1f1...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/6 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/7
Content length=30 padding length=1 total length=32
Plaintext: [32] 4141414141414141414141414141414141414141414141414141414141410201
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/7 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/8
Content length=31 padding length=240 total length=272
Plaintext: [272] 41414141414141414141414141414141414141414141414141414141414141f0...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/8 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/9
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/9 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/10
Content length=32 padding length=255 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/10 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/11
Content length=32 padding length=15 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/11 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/12
Content length=36 padding length=251 total length=288
Plaintext: [288] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/12 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/13
Content length=36 padding length=11 total length=48
Plaintext: [48] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/13 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/14
Content length=256 padding length=255 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/14 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/15
Content length=256 padding length=15 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/15 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/16
Content length=257 padding length=254 total length=512
Plaintext: [512] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/16 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/17
Content length=257 padding length=14 total length=272
Plaintext: [272] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/17 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/18
Content length=287 padding length=240 total length=528
Plaintext: [528] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/18 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/19
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/19 (0 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/20
Content length=288 padding length=255 total length=544
Plaintext: [544] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/20 (1 ms)
[ RUN      ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/21
Content length=288 padding length=15 total length=304
Plaintext: [304] 4141414141414141414141414141414141414141414141414141414141414141...
[       OK ] TlsPadding/TlsPaddingTest.LastByteOfPadWrong/21 (0 ms)
[----------] 88 tests from TlsPadding/TlsPaddingTest (29 ms total)
[----------] 8 tests from SkipTls10/TlsSkipTest
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateRsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 0200005103010dd788d1beb7d6627f6c8716a2d17a81370511c933746c602f7d...
record new: [89] 0200005103010dd788d1beb7d6627f6c8716a2d17a81370511c933746c602f7d...
server: Original packet: [536] 16030102130200005103010dd788d1beb7d6627f6c8716a2d17a81370511c933...
server: Filtered packet: [94] 16030100590200005103010dd788d1beb7d6627f6c8716a2d17a81370511c933...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateRsa/0 (78 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateDhe/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 0200005703013a919c2438899f74b6178b7b6a4994243a590aac98a3e577e44d...
record new: [265] 0200005703013a919c2438899f74b6178b7b6a4994243a590aac98a3e577e44d...
server: Original packet: [712] 16030102c30200005703013a919c2438899f74b6178b7b6a4994243a590aac98...
server: Filtered packet: [270] 16030101090200005703013a919c2438899f74b6178b7b6a4994243a590aac98...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateDhe/0 (87 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateEcdhe/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570301f16b5bd863e4b2658004e9277b8171325a25f09d9f749e9b35c0...
record new: [265] 020000570301f16b5bd863e4b2658004e9277b8171325a25f09d9f749e9b35c0...
server: Original packet: [712] 16030102c3020000570301f16b5bd863e4b2658004e9277b8171325a25f09d9f...
server: Filtered packet: [270] 1603010109020000570301f16b5bd863e4b2658004e9277b8171325a25f09d9f...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateEcdhe/0 (87 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertificateEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [525] 020000570301ebb6747ca46f2e3894431b74f56d05855e3bc721ad8a55adabab...
record new: [208] 020000570301ebb6747ca46f2e3894431b74f56d05855e3bc721ad8a55adabab...
server: Original packet: [530] 160301020d020000570301ebb6747ca46f2e3894431b74f56d05855e3bc721ad...
server: Filtered packet: [213] 16030100d0020000570301ebb6747ca46f2e3894431b74f56d05855e3bc721ad...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertificateEcdsa/0 (65 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipServerKeyExchange/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [707] 020000570301892910588e30df05c120177697f5660ef13aae32de9ba5f35af4...
record new: [537] 020000570301892910588e30df05c120177697f5660ef13aae32de9ba5f35af4...
server: Original packet: [712] 16030102c3020000570301892910588e30df05c120177697f5660ef13aae32de...
server: Filtered packet: [542] 1603010219020000570301892910588e30df05c120177697f5660ef13aae32de...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipServerKeyExchange/0 (87 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipServerKeyExchangeEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [525] 02000057030110883d3e950ce315cc8dd107610926ceb52677a4e409669592c5...
record new: [412] 02000057030110883d3e950ce315cc8dd107610926ceb52677a4e409669592c5...
server: Original packet: [530] 160301020d02000057030110883d3e950ce315cc8dd107610926ceb52677a4e4...
server: Filtered packet: [417] 160301019c02000057030110883d3e950ce315cc8dd107610926ceb52677a4e4...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipServerKeyExchangeEcdsa/0 (65 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertAndKeyExch/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570301d946222b7f81f440dae8f71ef99e2eaee724f8a9a8189935cd84...
record new: [265] 020000570301d946222b7f81f440dae8f71ef99e2eaee724f8a9a8189935cd84...
Dropping handshake: 12
record old: [265] 020000570301d946222b7f81f440dae8f71ef99e2eaee724f8a9a8189935cd84...
record new: [95] 020000570301d946222b7f81f440dae8f71ef99e2eaee724f8a9a8189935cd84...
server: Original packet: [712] 16030102c3020000570301d946222b7f81f440dae8f71ef99e2eaee724f8a9a8...
server: Filtered packet: [100] 160301005f020000570301d946222b7f81f440dae8f71ef99e2eaee724f8a9a8...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertAndKeyExch/0 (82 ms)
[ RUN      ] SkipTls10/TlsSkipTest.SkipCertAndKeyExchEcdsa/0
Version: TLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [524] 020000570301c97819e0929e3cf934e4dca36a0c3939f8b37268990242ea9835...
record new: [207] 020000570301c97819e0929e3cf934e4dca36a0c3939f8b37268990242ea9835...
Dropping handshake: 12
record old: [207] 020000570301c97819e0929e3cf934e4dca36a0c3939f8b37268990242ea9835...
record new: [95] 020000570301c97819e0929e3cf934e4dca36a0c3939f8b37268990242ea9835...
server: Original packet: [529] 160301020c020000570301c97819e0929e3cf934e4dca36a0c3939f8b3726899...
server: Filtered packet: [100] 160301005f020000570301c97819e0929e3cf934e4dca36a0c3939f8b3726899...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipTls10/TlsSkipTest.SkipCertAndKeyExchEcdsa/0 (60 ms)
[----------] 8 tests from SkipTls10/TlsSkipTest (613 ms total)
[----------] 32 tests from SkipVariants/TlsSkipTest
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 020000510302bf6b69e12264b1471d1e98060dd3f03bb9d9a2d82e2a392b1ad9...
record new: [89] 020000510302bf6b69e12264b1471d1e98060dd3f03bb9d9a2d82e2a392b1ad9...
server: Original packet: [536] 1603020213020000510302bf6b69e12264b1471d1e98060dd3f03bb9d9a2d82e...
server: Filtered packet: [94] 1603020059020000510302bf6b69e12264b1471d1e98060dd3f03bb9d9a2d82e...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/0 (71 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [531] 02000051030333633d866b84338899ddfd23dd1d3bddad97095c0b1654f506fd...
record new: [89] 02000051030333633d866b84338899ddfd23dd1d3bddad97095c0b1654f506fd...
server: Original packet: [536] 160303021302000051030333633d866b84338899ddfd23dd1d3bddad97095c0b...
server: Filtered packet: [94] 160303005902000051030333633d866b84338899ddfd23dd1d3bddad97095c0b...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/1 (70 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [594] 16feff0000000000000000005d020000510000000000000051feffb979e6d044...
server: Filtered packet: [144] 16feff0000000000000000005d020000510000000000000051feffb979e6d044...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/2 (70 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateRsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [594] 16fefd0000000000000000005d020000510000000000000051fefd13fb66fae7...
server: Filtered packet: [144] 16fefd0000000000000000005d020000510000000000000051fefd13fb66fae7...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateRsa/3 (71 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570302bf9ec89ac5fa16cdd2c490a1ee219139e8fdf853bef2f7eb8437...
record new: [265] 020000570302bf9ec89ac5fa16cdd2c490a1ee219139e8fdf853bef2f7eb8437...
server: Original packet: [712] 16030202c3020000570302bf9ec89ac5fa16cdd2c490a1ee219139e8fdf853be...
server: Filtered packet: [270] 1603020109020000570302bf9ec89ac5fa16cdd2c490a1ee219139e8fdf853be...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/0 (90 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 0200005703032e156d5cd0956a8514df2d526cc1aafcc33e129805e6a3b122e6...
record new: [267] 0200005703032e156d5cd0956a8514df2d526cc1aafcc33e129805e6a3b122e6...
server: Original packet: [714] 16030302c50200005703032e156d5cd0956a8514df2d526cc1aafcc33e129805...
server: Filtered packet: [272] 160303010b0200005703032e156d5cd0956a8514df2d526cc1aafcc33e129805...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/1 (80 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20198ba9b31578204d39a317c88bf922d4...
record new: [178] 0c0000a600010000000000a603001d20198ba9b31578204d39a317c88bf922d4...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff5d55500f1d...
server: Filtered packet: [341] 16feff00000000000000000063020000570000000000000057feff5d55500f1d...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/2 (81 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateDhe/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20198ba9b31578204d39a317c88bf922d4...
record new: [180] 0c0000a800010000000000a803001d20198ba9b31578204d39a317c88bf922d4...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefdafa5ae85eb...
server: Filtered packet: [343] 16fefd00000000000000000063020000570000000000000057fefdafa5ae85eb...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateDhe/3 (81 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 020000570302a35f3d1ad14eb1cadfe63d33f7928b18ef153fe81cb0e072f9db...
record new: [265] 020000570302a35f3d1ad14eb1cadfe63d33f7928b18ef153fe81cb0e072f9db...
server: Original packet: [712] 16030202c3020000570302a35f3d1ad14eb1cadfe63d33f7928b18ef153fe81c...
server: Filtered packet: [270] 1603020109020000570302a35f3d1ad14eb1cadfe63d33f7928b18ef153fe81c...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/0 (80 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 02000057030360d6b6df2e8e864b826f3efccb7548ca49633054f6628221926e...
record new: [267] 02000057030360d6b6df2e8e864b826f3efccb7548ca49633054f6628221926e...
server: Original packet: [714] 16030302c502000057030360d6b6df2e8e864b826f3efccb7548ca49633054f6...
server: Filtered packet: [272] 160303010b02000057030360d6b6df2e8e864b826f3efccb7548ca49633054f6...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/1 (80 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20198ba9b31578204d39a317c88bf922d4...
record new: [178] 0c0000a600010000000000a603001d20198ba9b31578204d39a317c88bf922d4...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff0456e0d1e3...
server: Filtered packet: [341] 16feff00000000000000000063020000570000000000000057feff0456e0d1e3...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/2 (81 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20198ba9b31578204d39a317c88bf922d4...
record new: [180] 0c0000a800010000000000a803001d20198ba9b31578204d39a317c88bf922d4...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefd0057c92070...
server: Filtered packet: [343] 16fefd00000000000000000063020000570000000000000057fefd0057c92070...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdhe/3 (80 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [526] 020000570302205592c7dcfb59d775f0b47cbdbaee099fdf4731f736f5635794...
record new: [209] 020000570302205592c7dcfb59d775f0b47cbdbaee099fdf4731f736f5635794...
server: Original packet: [531] 160302020e020000570302205592c7dcfb59d775f0b47cbdbaee099fdf4731f7...
server: Filtered packet: [214] 16030200d1020000570302205592c7dcfb59d775f0b47cbdbaee099fdf4731f7...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/0 (58 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [527] 020000570303db5ba2ba8f2a12c0e6014ff73342bd84a713be70524296cfe966...
record new: [210] 020000570303db5ba2ba8f2a12c0e6014ff73342bd84a713be70524296cfe966...
server: Original packet: [532] 160303020f020000570303db5ba2ba8f2a12c0e6014ff73342bd84a713be7052...
server: Filtered packet: [215] 16030300d2020000570303db5ba2ba8f2a12c0e6014ff73342bd84a713be7052...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/1 (58 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [325] 0b00013900010000000001390001360001333082012f3081d5a0030201020201...
record new: [0] 
record old: [120] 0c00006c000200000000006c03001d20198ba9b31578204d39a317c88bf922d4...
record new: [120] 0c00006c000100000000006c03001d20198ba9b31578204d39a317c88bf922d4...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [608] 16feff00000000000000000063020000570000000000000057feff6984043d70...
server: Filtered packet: [283] 16feff00000000000000000063020000570000000000000057feff6984043d70...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/2 (67 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [325] 0b00013900010000000001390001360001333082012f3081d5a0030201020201...
record new: [0] 
record old: [123] 0c00006f000200000000006f03001d20198ba9b31578204d39a317c88bf922d4...
record new: [123] 0c00006f000100000000006f03001d20198ba9b31578204d39a317c88bf922d4...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [611] 16fefd00000000000000000063020000570000000000000057fefdb775bde8cc...
server: Filtered packet: [286] 16fefd00000000000000000063020000570000000000000057fefdb775bde8cc...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH: SSL received an unexpected Server Key Exchange handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertificateEcdsa/3 (61 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [707] 020000570302239315cabc92686b98bb1c0af035337785488f550c66ee6ca39f...
record new: [537] 020000570302239315cabc92686b98bb1c0af035337785488f550c66ee6ca39f...
server: Original packet: [712] 16030202c3020000570302239315cabc92686b98bb1c0af035337785488f550c...
server: Filtered packet: [542] 1603020219020000570302239315cabc92686b98bb1c0af035337785488f550c...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/0 (81 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [709] 02000057030395418699d58927d0da197e588c87b18c2657a1c0cdd8e9bbbe85...
record new: [537] 02000057030395418699d58927d0da197e588c87b18c2657a1c0cdd8e9bbbe85...
server: Original packet: [714] 16030302c502000057030395418699d58927d0da197e588c87b18c2657a1c0cd...
server: Filtered packet: [542] 160303021902000057030395418699d58927d0da197e588c87b18c2657a1c0cd...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/1 (80 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [178] 0c0000a600020000000000a603001d20198ba9b31578204d39a317c88bf922d4...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feffa3ea085470...
server: Filtered packet: [613] 16feff00000000000000000063020000570000000000000057feffa3ea085470...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/2 (80 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [180] 0c0000a800020000000000a803001d20198ba9b31578204d39a317c88bf922d4...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefd5bc5fa0488...
server: Filtered packet: [613] 16fefd00000000000000000063020000570000000000000057fefd5bc5fa0488...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchange/3 (81 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [525] 02000057030264ca26b8a9345e9595c8729ce1d0cc0a2d5b36ae4657d261fe01...
record new: [412] 02000057030264ca26b8a9345e9595c8729ce1d0cc0a2d5b36ae4657d261fe01...
server: Original packet: [530] 160302020d02000057030264ca26b8a9345e9595c8729ce1d0cc0a2d5b36ae46...
server: Filtered packet: [417] 160302019c02000057030264ca26b8a9345e9595c8729ce1d0cc0a2d5b36ae46...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/0 (60 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [527] 020000570303c23be99c2b2f08b36c8c8c8ce7bae97b4658be10f11998761a21...
record new: [412] 020000570303c23be99c2b2f08b36c8c8c8ce7bae97b4658be10f11998761a21...
server: Original packet: [532] 160303020f020000570303c23be99c2b2f08b36c8c8c8ce7bae97b4658be10f1...
server: Filtered packet: [417] 160303019c020000570303c23be99c2b2f08b36c8c8c8ce7bae97b4658be10f1...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/1 (60 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [122] 0c00006e000200000000006e03001d20198ba9b31578204d39a317c88bf922d4...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [610] 16feff00000000000000000063020000570000000000000057feffe150ffede2...
server: Filtered packet: [488] 16feff00000000000000000063020000570000000000000057feffe150ffede2...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/2 (60 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 12
record old: [123] 0c00006f000200000000006f03001d20198ba9b31578204d39a317c88bf922d4...
record new: [0] 
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
server: Original packet: [611] 16fefd00000000000000000063020000570000000000000057fefd1e764ff840...
server: Filtered packet: [488] 16fefd00000000000000000063020000570000000000000057fefd1e764ff840...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipServerKeyExchangeEcdsa/3 (61 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [707] 0200005703023917c4a6ba8b30763b4dcfae5fd3de44f6d0cdcca145ac85a155...
record new: [265] 0200005703023917c4a6ba8b30763b4dcfae5fd3de44f6d0cdcca145ac85a155...
Dropping handshake: 12
record old: [265] 0200005703023917c4a6ba8b30763b4dcfae5fd3de44f6d0cdcca145ac85a155...
record new: [95] 0200005703023917c4a6ba8b30763b4dcfae5fd3de44f6d0cdcca145ac85a155...
server: Original packet: [712] 16030202c30200005703023917c4a6ba8b30763b4dcfae5fd3de44f6d0cdcca1...
server: Filtered packet: [100] 160302005f0200005703023917c4a6ba8b30763b4dcfae5fd3de44f6d0cdcca1...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/0 (81 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [709] 02000057030363f077de81085f668c6125e8f02686ad2bae4bb79254b3fbf81a...
record new: [267] 02000057030363f077de81085f668c6125e8f02686ad2bae4bb79254b3fbf81a...
Dropping handshake: 12
record old: [267] 02000057030363f077de81085f668c6125e8f02686ad2bae4bb79254b3fbf81a...
record new: [95] 02000057030363f077de81085f668c6125e8f02686ad2bae4bb79254b3fbf81a...
server: Original packet: [714] 16030302c502000057030363f077de81085f668c6125e8f02686ad2bae4bb792...
server: Filtered packet: [100] 160303005f02000057030363f077de81085f668c6125e8f02686ad2bae4bb792...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/1 (81 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [178] 0c0000a600020000000000a603001d20198ba9b31578204d39a317c88bf922d4...
record new: [178] 0c0000a600010000000000a603001d20198ba9b31578204d39a317c88bf922d4...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [178] 0c0000a600010000000000a603001d20198ba9b31578204d39a317c88bf922d4...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [791] 16feff00000000000000000063020000570000000000000057feff1bb9834870...
server: Filtered packet: [163] 16feff00000000000000000063020000570000000000000057feff1bb9834870...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/2 (82 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [450] 0b0001b600010000000001b60001b30001b0308201ac30820115a00302010202...
record new: [0] 
record old: [180] 0c0000a800020000000000a803001d20198ba9b31578204d39a317c88bf922d4...
record new: [180] 0c0000a800010000000000a803001d20198ba9b31578204d39a317c88bf922d4...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [180] 0c0000a800010000000000a803001d20198ba9b31578204d39a317c88bf922d4...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [793] 16fefd00000000000000000063020000570000000000000057fefda8a52bb8c4...
server: Filtered packet: [163] 16fefd00000000000000000063020000570000000000000057fefda8a52bb8c4...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExch/3 (85 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/0
Version: TLS 1.1
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [526] 020000570302a36ac2ffdc00837c5ae8c8da0d03c74af214e1ee9b8b644326de...
record new: [209] 020000570302a36ac2ffdc00837c5ae8c8da0d03c74af214e1ee9b8b644326de...
Dropping handshake: 12
record old: [209] 020000570302a36ac2ffdc00837c5ae8c8da0d03c74af214e1ee9b8b644326de...
record new: [95] 020000570302a36ac2ffdc00837c5ae8c8da0d03c74af214e1ee9b8b644326de...
server: Original packet: [531] 160302020e020000570302a36ac2ffdc00837c5ae8c8da0d03c74af214e1ee9b...
server: Filtered packet: [100] 160302005f020000570302a36ac2ffdc00837c5ae8c8da0d03c74af214e1ee9b...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/0 (63 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/1
Version: TLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [527] 020000570303336e4a9f7ff5bc0b424f10e999cc69a342b4d49fdd23afb0b852...
record new: [210] 020000570303336e4a9f7ff5bc0b424f10e999cc69a342b4d49fdd23afb0b852...
Dropping handshake: 12
record old: [210] 020000570303336e4a9f7ff5bc0b424f10e999cc69a342b4d49fdd23afb0b852...
record new: [95] 020000570303336e4a9f7ff5bc0b424f10e999cc69a342b4d49fdd23afb0b852...
server: Original packet: [532] 160303020f020000570303336e4a9f7ff5bc0b424f10e999cc69a342b4d49fdd...
server: Filtered packet: [100] 160303005f020000570303336e4a9f7ff5bc0b424f10e999cc69a342b4d49fdd...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/1 (61 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/2
Version: DTLS 1.0
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [325] 0b00013900010000000001390001360001333082012f3081d5a0030201020201...
record new: [0] 
record old: [121] 0c00006d000200000000006d03001d20198ba9b31578204d39a317c88bf922d4...
record new: [121] 0c00006d000100000000006d03001d20198ba9b31578204d39a317c88bf922d4...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [121] 0c00006d000100000000006d03001d20198ba9b31578204d39a317c88bf922d4...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [609] 16feff00000000000000000063020000570000000000000057feff4790ec249e...
server: Filtered packet: [163] 16feff00000000000000000063020000570000000000000057feff4790ec249e...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/2 (62 ms)
[ RUN      ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/3
Version: DTLS 1.2
server: Changing state from INIT to CONNECTING
client: Changing state from INIT to CONNECTING
Dropping handshake: 11
record old: [325] 0b00013900010000000001390001360001333082012f3081d5a0030201020201...
record new: [0] 
record old: [123] 0c00006f000200000000006f03001d20198ba9b31578204d39a317c88bf922d4...
record new: [123] 0c00006f000100000000006f03001d20198ba9b31578204d39a317c88bf922d4...
record old: [12] 0e0000000003000000000000
record new: [12] 0e0000000002000000000000
Dropping handshake: 12
record old: [123] 0c00006f000100000000006f03001d20198ba9b31578204d39a317c88bf922d4...
record new: [0] 
record old: [12] 0e0000000002000000000000
record new: [12] 0e0000000001000000000000
server: Original packet: [611] 16fefd00000000000000000063020000570000000000000057fefd2941490b1c...
server: Filtered packet: [163] 16fefd00000000000000000063020000570000000000000057fefd2941490b1c...
Alert: [2] 020a
client: Alert sent: level=2 desc=10
client: Handshake failed with error SSL_ERROR_RX_UNEXPECTED_HELLO_DONE: SSL received an unexpected Server Hello Done handshake message.
client: Changing state from CONNECTING to ERROR
server: Alert received: level=2 desc=10
server: Handshake failed with error SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT: SSL peer was not expecting a handshake message it received.
server: Changing state from CONNECTING to ERROR
[       OK ] SkipVariants/TlsSkipTest.SkipCertAndKeyExchEcdsa/3 (62 ms)
[----------] 32 tests from SkipVariants/TlsSkipTest (2323 ms total)
[----------] 10 tests from AllHashFuncs/TlsHkdfTest
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/0
Hash = SHA-256
Output: [32] 33ad0a1c607ec03b09e6cd9893680ce210adf300aa1f2660e1b22e10f170f92a
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/0 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/1
Hash = SHA-384
Output: [48] 7ee8206f5570023e6dc7519eb1073bc4e791ad37b5c382aa10ba18e2357e7169...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfNullNull/1 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/0
Hash = SHA-256
Output: [32] 11873828a9197811339124b58a1bb09f7f0d8dbb10f49c54bd1fd885cd153033
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/0 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/1
Hash = SHA-384
Output: [48] 51b1d5b4597979084a15b2db84d3d6bcfc9345d9dc74da1a57c2769f3f83452f...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Only/1 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/0
Hash = SHA-256
Output: [32] 2f5f78d0a4c436ee6c8a4ef9d043810213fd4783633ad2e1406d2d9800fdc187
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/1
Hash = SHA-384
Output: [48] 7b40f9ef91ffc9d129245cbff8827668ae4b63e803dd39a8d46af6e5eceaf87d...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey2Only/1 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/0
Hash = SHA-256
Output: [32] 7953b8dd6b98ce00b7dce803708ce3ac068b22fd0e3448e6e5e08ad61618e548
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/0 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/1
Hash = SHA-384
Output: [48] 0193c0073f6a830e2e4fb258e400085c689c37320037ffc31c5b980b02923ffd...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfKey1Key2/1 (1 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/0
Hash = SHA-256
Output: [32] 347c6780ff0bbad71c283b16eb2f9cf62d24e6cdb613d51776548cb07dcde74c
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/0 (0 ms)
[ RUN      ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/1
Hash = SHA-384
Output: [48] 4b1e5ec1493078ea35bd3f0104e61aea14cc182ad1c47621c464c04e4b361605...
[       OK ] AllHashFuncs/TlsHkdfTest.HkdfExpandLabel/1 (0 ms)
[----------] 10 tests from AllHashFuncs/TlsHkdfTest (8 ms total)
[----------] Global test environment tear-down
[==========] 816 tests from 15 test cases ran. (113511 ms total)
[  PASSED  ] 816 tests.
ssl_gtest.sh: #15027: ssl_gtest run successfully  - PASSED
executing sed to parse the xml report
processing the parsed report
ssl_gtest.sh: #15028: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15029: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15030: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15031: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15032: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15033: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15034: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15035: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15036: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15037: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15038: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15039: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15040: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15041: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15042: 'CipherSuiteRC4/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15043: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15044: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15045: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15046: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15047: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15048: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15049: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15050: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15051: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15052: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15053: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15054: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15055: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15056: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15057: 'CipherSuiteRC4/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15058: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15059: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15060: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15061: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15062: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15063: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15064: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15065: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15066: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15067: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15068: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15069: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15070: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15071: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15072: 'CipherSuiteRC4/TlsCipherSuiteTest: ReadLimit/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15073: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 769, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15074: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 769, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15075: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 769, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15076: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 769, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15077: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 769, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15078: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 770, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15079: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 770, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15080: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 770, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15081: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 770, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15082: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/9 (&quot;TLS&quot;, 770, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15083: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/10 (&quot;TLS&quot;, 771, 5, 65537, 0)' - PASSED
ssl_gtest.sh: #15084: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/11 (&quot;TLS&quot;, 771, 49154, 65537, 0)' - PASSED
ssl_gtest.sh: #15085: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/12 (&quot;TLS&quot;, 771, 49159, 65537, 0)' - PASSED
ssl_gtest.sh: #15086: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/13 (&quot;TLS&quot;, 771, 49164, 65537, 0)' - PASSED
ssl_gtest.sh: #15087: 'CipherSuiteRC4/TlsCipherSuiteTest: WriteLimit/14 (&quot;TLS&quot;, 771, 49169, 65537, 0)' - PASSED
ssl_gtest.sh: #15088: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #15089: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #15090: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #15091: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #15092: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #15093: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #15094: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #15095: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #15096: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #15097: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #15098: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #15099: 'CipherSuiteAEAD12/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #15100: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #15101: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #15102: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #15103: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #15104: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #15105: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #15106: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #15107: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #15108: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #15109: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #15110: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #15111: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #15112: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #15113: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #15114: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #15115: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #15116: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #15117: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #15118: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #15119: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #15120: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #15121: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #15122: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #15123: 'CipherSuiteAEAD12/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #15124: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #15125: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #15126: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #15127: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #15128: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #15129: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #15130: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/6 (&quot;DTLS&quot;, 771, 156, 65537, 0)' - PASSED
ssl_gtest.sh: #15131: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/7 (&quot;DTLS&quot;, 771, 157, 65537, 0)' - PASSED
ssl_gtest.sh: #15132: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 771, 162, 65537, 0)' - PASSED
ssl_gtest.sh: #15133: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 163, 65537, 0)' - PASSED
ssl_gtest.sh: #15134: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49188, 65537, 0)' - PASSED
ssl_gtest.sh: #15135: 'CipherSuiteAEAD12/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49192, 65537, 0)' - PASSED
ssl_gtest.sh: #15136: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #15137: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #15138: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #15139: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #15140: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #15141: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #15142: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #15143: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #15144: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #15145: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #15146: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #15147: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #15148: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #15149: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #15150: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #15151: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #15152: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #15153: 'CipherSuiteAEAD/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #15154: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #15155: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #15156: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #15157: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #15158: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #15159: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #15160: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #15161: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #15162: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #15163: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #15164: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #15165: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #15166: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #15167: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #15168: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #15169: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #15170: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #15171: 'CipherSuiteAEAD/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #15172: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #15173: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #15174: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #15175: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #15176: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #15177: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #15178: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #15179: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #15180: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #15181: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #15182: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #15183: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #15184: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #15185: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #15186: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #15187: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #15188: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #15189: 'CipherSuiteAEAD/TlsCipherSuiteTest: ReadLimit/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #15190: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #15191: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #15192: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #15193: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #15194: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #15195: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #15196: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #15197: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #15198: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #15199: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 49195, 65537, 0)' - PASSED
ssl_gtest.sh: #15200: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49196, 65537, 0)' - PASSED
ssl_gtest.sh: #15201: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49199, 65537, 0)' - PASSED
ssl_gtest.sh: #15202: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 49200, 65537, 0)' - PASSED
ssl_gtest.sh: #15203: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 158, 65537, 0)' - PASSED
ssl_gtest.sh: #15204: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 159, 65537, 0)' - PASSED
ssl_gtest.sh: #15205: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 52393, 65537, 0)' - PASSED
ssl_gtest.sh: #15206: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/16 (&quot;DTLS&quot;, 771, 52392, 65537, 0)' - PASSED
ssl_gtest.sh: #15207: 'CipherSuiteAEAD/TlsCipherSuiteTest: WriteLimit/17 (&quot;DTLS&quot;, 771, 52394, 65537, 0)' - PASSED
ssl_gtest.sh: #15208: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #15209: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #15210: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #15211: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #15212: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #15213: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #15214: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #15215: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #15216: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #15217: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #15218: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #15219: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #15220: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #15221: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #15222: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #15223: 'CipherSuiteCBC12/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #15224: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #15225: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #15226: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #15227: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #15228: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #15229: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #15230: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #15231: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #15232: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #15233: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #15234: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #15235: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #15236: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #15237: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #15238: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #15239: 'CipherSuiteCBC12/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #15240: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #15241: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #15242: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #15243: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #15244: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #15245: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #15246: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #15247: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #15248: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #15249: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #15250: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #15251: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #15252: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #15253: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #15254: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #15255: 'CipherSuiteCBC12/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #15256: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #15257: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #15258: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #15259: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #15260: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #15261: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #15262: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #15263: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #15264: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 771, 107, 65537, 0)' - PASSED
ssl_gtest.sh: #15265: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 771, 61, 65537, 0)' - PASSED
ssl_gtest.sh: #15266: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 771, 49187, 65537, 0)' - PASSED
ssl_gtest.sh: #15267: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 771, 49191, 65537, 0)' - PASSED
ssl_gtest.sh: #15268: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 103, 65537, 0)' - PASSED
ssl_gtest.sh: #15269: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 60, 65537, 0)' - PASSED
ssl_gtest.sh: #15270: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 64, 65537, 0)' - PASSED
ssl_gtest.sh: #15271: 'CipherSuiteCBC12/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 106, 65537, 0)' - PASSED
ssl_gtest.sh: #15272: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15273: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15274: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15275: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15276: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15277: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15278: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15279: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15280: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15281: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15282: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15283: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15284: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15285: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15286: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15287: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15288: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15289: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15290: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15291: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15292: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15293: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15294: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15295: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15296: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15297: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15298: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15299: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15300: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15301: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15302: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15303: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15304: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15305: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15306: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15307: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15308: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15309: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15310: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15311: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15312: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15313: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15314: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15315: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15316: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15317: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15318: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15319: 'CipherSuiteCBCStream/TlsCipherSuiteTest: SingleCipherSuite/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15320: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15321: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15322: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15323: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15324: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15325: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15326: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15327: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15328: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15329: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15330: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15331: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15332: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15333: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15334: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15335: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15336: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15337: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15338: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15339: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15340: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15341: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15342: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15343: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15344: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15345: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15346: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15347: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15348: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15349: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15350: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15351: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15352: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15353: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15354: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15355: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15356: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15357: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15358: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15359: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15360: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15361: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15362: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15363: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15364: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15365: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15366: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15367: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ResumeCipherSuite/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15368: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15369: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15370: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15371: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15372: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15373: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15374: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15375: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15376: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15377: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15378: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15379: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15380: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15381: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15382: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15383: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15384: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15385: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15386: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15387: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15388: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15389: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15390: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15391: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15392: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15393: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15394: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15395: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15396: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15397: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15398: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15399: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15400: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15401: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15402: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15403: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15404: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15405: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15406: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15407: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15408: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15409: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15410: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15411: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15412: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15413: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15414: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15415: 'CipherSuiteCBCStream/TlsCipherSuiteTest: ReadLimit/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15416: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/0 (&quot;TLS&quot;, 769, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15417: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/1 (&quot;TLS&quot;, 769, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15418: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/2 (&quot;TLS&quot;, 769, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15419: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/3 (&quot;TLS&quot;, 769, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15420: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/4 (&quot;TLS&quot;, 769, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15421: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/5 (&quot;TLS&quot;, 769, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15422: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/6 (&quot;TLS&quot;, 769, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15423: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/7 (&quot;TLS&quot;, 769, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15424: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/8 (&quot;TLS&quot;, 769, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15425: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/9 (&quot;TLS&quot;, 769, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15426: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/10 (&quot;TLS&quot;, 769, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15427: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/11 (&quot;TLS&quot;, 769, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15428: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/12 (&quot;TLS&quot;, 769, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15429: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/13 (&quot;TLS&quot;, 769, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15430: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/14 (&quot;TLS&quot;, 769, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15431: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/15 (&quot;TLS&quot;, 769, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15432: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/16 (&quot;TLS&quot;, 770, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15433: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/17 (&quot;TLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15434: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/18 (&quot;TLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15435: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/19 (&quot;TLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15436: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/20 (&quot;TLS&quot;, 770, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15437: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/21 (&quot;TLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15438: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/22 (&quot;TLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15439: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/23 (&quot;TLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15440: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/24 (&quot;TLS&quot;, 770, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15441: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/25 (&quot;TLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15442: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/26 (&quot;TLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15443: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/27 (&quot;TLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15444: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/28 (&quot;TLS&quot;, 770, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15445: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/29 (&quot;TLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15446: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/30 (&quot;TLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15447: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/31 (&quot;TLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15448: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/32 (&quot;TLS&quot;, 771, 49153, 65537, 0)' - PASSED
ssl_gtest.sh: #15449: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/33 (&quot;TLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15450: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/34 (&quot;TLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15451: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/35 (&quot;TLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15452: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/36 (&quot;TLS&quot;, 771, 49158, 65537, 0)' - PASSED
ssl_gtest.sh: #15453: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/37 (&quot;TLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15454: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/38 (&quot;TLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15455: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/39 (&quot;TLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15456: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/40 (&quot;TLS&quot;, 771, 49163, 65537, 0)' - PASSED
ssl_gtest.sh: #15457: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/41 (&quot;TLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15458: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/42 (&quot;TLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15459: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/43 (&quot;TLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15460: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/44 (&quot;TLS&quot;, 771, 49168, 65537, 0)' - PASSED
ssl_gtest.sh: #15461: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/45 (&quot;TLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15462: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/46 (&quot;TLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15463: 'CipherSuiteCBCStream/TlsCipherSuiteTest: WriteLimit/47 (&quot;TLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15464: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15465: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15466: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15467: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15468: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15469: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15470: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15471: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15472: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15473: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15474: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15475: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15476: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15477: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15478: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15479: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15480: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15481: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15482: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15483: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15484: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15485: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15486: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15487: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: SingleCipherSuite/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15488: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15489: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15490: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15491: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15492: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15493: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15494: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15495: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15496: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15497: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15498: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15499: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15500: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15501: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15502: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15503: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15504: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15505: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15506: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15507: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15508: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15509: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15510: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15511: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ResumeCipherSuite/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15512: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15513: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15514: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15515: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15516: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15517: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15518: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15519: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15520: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15521: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15522: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15523: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15524: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15525: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15526: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15527: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15528: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15529: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15530: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15531: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15532: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15533: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15534: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15535: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: ReadLimit/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15536: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/0 (&quot;DTLS&quot;, 770, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15537: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/1 (&quot;DTLS&quot;, 770, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15538: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/2 (&quot;DTLS&quot;, 770, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15539: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/3 (&quot;DTLS&quot;, 770, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15540: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/4 (&quot;DTLS&quot;, 770, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15541: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/5 (&quot;DTLS&quot;, 770, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15542: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/6 (&quot;DTLS&quot;, 770, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15543: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/7 (&quot;DTLS&quot;, 770, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15544: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/8 (&quot;DTLS&quot;, 770, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15545: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/9 (&quot;DTLS&quot;, 770, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15546: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/10 (&quot;DTLS&quot;, 770, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15547: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/11 (&quot;DTLS&quot;, 770, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15548: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/12 (&quot;DTLS&quot;, 771, 49155, 65537, 0)' - PASSED
ssl_gtest.sh: #15549: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/13 (&quot;DTLS&quot;, 771, 49156, 65537, 0)' - PASSED
ssl_gtest.sh: #15550: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/14 (&quot;DTLS&quot;, 771, 49157, 65537, 0)' - PASSED
ssl_gtest.sh: #15551: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/15 (&quot;DTLS&quot;, 771, 49160, 65537, 0)' - PASSED
ssl_gtest.sh: #15552: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/16 (&quot;DTLS&quot;, 771, 49161, 65537, 0)' - PASSED
ssl_gtest.sh: #15553: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/17 (&quot;DTLS&quot;, 771, 49162, 65537, 0)' - PASSED
ssl_gtest.sh: #15554: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/18 (&quot;DTLS&quot;, 771, 49165, 65537, 0)' - PASSED
ssl_gtest.sh: #15555: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/19 (&quot;DTLS&quot;, 771, 49166, 65537, 0)' - PASSED
ssl_gtest.sh: #15556: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/20 (&quot;DTLS&quot;, 771, 49167, 65537, 0)' - PASSED
ssl_gtest.sh: #15557: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/21 (&quot;DTLS&quot;, 771, 49170, 65537, 0)' - PASSED
ssl_gtest.sh: #15558: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/22 (&quot;DTLS&quot;, 771, 49171, 65537, 0)' - PASSED
ssl_gtest.sh: #15559: 'CipherSuiteCBCDatagram/TlsCipherSuiteTest: WriteLimit/23 (&quot;DTLS&quot;, 771, 49172, 65537, 0)' - PASSED
ssl_gtest.sh: #15560: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/0 TLS 1.0, TLS_ECDHE_RSA_WITH_NULL_SHA, name = &quot;NULL&quot;, key size = 0' - PASSED
ssl_gtest.sh: #15561: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/1 TLS 1.0, TLS_RSA_WITH_RC4_128_SHA, name = &quot;RC4&quot;, key size = 128' - PASSED
ssl_gtest.sh: #15562: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/2 TLS 1.0, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, name = &quot;3DES-EDE-CBC&quot;, key size = 168' - PASSED
ssl_gtest.sh: #15563: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/3 TLS 1.0, TLS_RSA_WITH_AES_128_CBC_SHA, name = &quot;AES-128&quot;, key size = 128' - PASSED
ssl_gtest.sh: #15564: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/4 TLS 1.2, TLS_RSA_WITH_AES_256_CBC_SHA256, name = &quot;AES-256&quot;, key size = 256' - PASSED
ssl_gtest.sh: #15565: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/5 TLS 1.2, TLS_RSA_WITH_AES_128_GCM_SHA256, name = &quot;AES-128-GCM&quot;, key size = 128' - PASSED
ssl_gtest.sh: #15566: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/6 TLS 1.2, TLS_RSA_WITH_AES_256_GCM_SHA384, name = &quot;AES-256-GCM&quot;, key size = 256' - PASSED
ssl_gtest.sh: #15567: 'TestSecurityStatus/SecurityStatusTest: CheckSecurityStatus/7 TLS 1.2, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256, name = &quot;ChaCha20-Poly1305&quot;, key size = 256' - PASSED
ssl_gtest.sh: #15568: 'DamageYStream/TlsDamageDHYTest: DamageServerY/0 (&quot;TLS&quot;, 769, 0, true)' - PASSED
ssl_gtest.sh: #15569: 'DamageYStream/TlsDamageDHYTest: DamageServerY/1 (&quot;TLS&quot;, 769, 0, false)' - PASSED
ssl_gtest.sh: #15570: 'DamageYStream/TlsDamageDHYTest: DamageServerY/2 (&quot;TLS&quot;, 769, 1, true)' - PASSED
ssl_gtest.sh: #15571: 'DamageYStream/TlsDamageDHYTest: DamageServerY/3 (&quot;TLS&quot;, 769, 1, false)' - PASSED
ssl_gtest.sh: #15572: 'DamageYStream/TlsDamageDHYTest: DamageServerY/4 (&quot;TLS&quot;, 769, 2, true)' - PASSED
ssl_gtest.sh: #15573: 'DamageYStream/TlsDamageDHYTest: DamageServerY/5 (&quot;TLS&quot;, 769, 2, false)' - PASSED
ssl_gtest.sh: #15574: 'DamageYStream/TlsDamageDHYTest: DamageServerY/6 (&quot;TLS&quot;, 769, 3, true)' - PASSED
ssl_gtest.sh: #15575: 'DamageYStream/TlsDamageDHYTest: DamageServerY/7 (&quot;TLS&quot;, 769, 3, false)' - PASSED
ssl_gtest.sh: #15576: 'DamageYStream/TlsDamageDHYTest: DamageServerY/8 (&quot;TLS&quot;, 769, 4, true)' - PASSED
ssl_gtest.sh: #15577: 'DamageYStream/TlsDamageDHYTest: DamageServerY/9 (&quot;TLS&quot;, 769, 4, false)' - PASSED
ssl_gtest.sh: #15578: 'DamageYStream/TlsDamageDHYTest: DamageServerY/10 (&quot;TLS&quot;, 769, 5, true)' - PASSED
ssl_gtest.sh: #15579: 'DamageYStream/TlsDamageDHYTest: DamageServerY/11 (&quot;TLS&quot;, 769, 5, false)' - PASSED
ssl_gtest.sh: #15580: 'DamageYStream/TlsDamageDHYTest: DamageServerY/12 (&quot;TLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #15581: 'DamageYStream/TlsDamageDHYTest: DamageServerY/13 (&quot;TLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #15582: 'DamageYStream/TlsDamageDHYTest: DamageServerY/14 (&quot;TLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #15583: 'DamageYStream/TlsDamageDHYTest: DamageServerY/15 (&quot;TLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #15584: 'DamageYStream/TlsDamageDHYTest: DamageServerY/16 (&quot;TLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #15585: 'DamageYStream/TlsDamageDHYTest: DamageServerY/17 (&quot;TLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #15586: 'DamageYStream/TlsDamageDHYTest: DamageServerY/18 (&quot;TLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #15587: 'DamageYStream/TlsDamageDHYTest: DamageServerY/19 (&quot;TLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #15588: 'DamageYStream/TlsDamageDHYTest: DamageServerY/20 (&quot;TLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #15589: 'DamageYStream/TlsDamageDHYTest: DamageServerY/21 (&quot;TLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #15590: 'DamageYStream/TlsDamageDHYTest: DamageServerY/22 (&quot;TLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #15591: 'DamageYStream/TlsDamageDHYTest: DamageServerY/23 (&quot;TLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #15592: 'DamageYStream/TlsDamageDHYTest: DamageServerY/24 (&quot;TLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #15593: 'DamageYStream/TlsDamageDHYTest: DamageServerY/25 (&quot;TLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #15594: 'DamageYStream/TlsDamageDHYTest: DamageServerY/26 (&quot;TLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #15595: 'DamageYStream/TlsDamageDHYTest: DamageServerY/27 (&quot;TLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #15596: 'DamageYStream/TlsDamageDHYTest: DamageServerY/28 (&quot;TLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #15597: 'DamageYStream/TlsDamageDHYTest: DamageServerY/29 (&quot;TLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #15598: 'DamageYStream/TlsDamageDHYTest: DamageServerY/30 (&quot;TLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #15599: 'DamageYStream/TlsDamageDHYTest: DamageServerY/31 (&quot;TLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #15600: 'DamageYStream/TlsDamageDHYTest: DamageServerY/32 (&quot;TLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #15601: 'DamageYStream/TlsDamageDHYTest: DamageServerY/33 (&quot;TLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #15602: 'DamageYStream/TlsDamageDHYTest: DamageServerY/34 (&quot;TLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #15603: 'DamageYStream/TlsDamageDHYTest: DamageServerY/35 (&quot;TLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #15604: 'DamageYStream/TlsDamageDHYTest: DamageClientY/0 (&quot;TLS&quot;, 769, 0, true)' - PASSED
ssl_gtest.sh: #15605: 'DamageYStream/TlsDamageDHYTest: DamageClientY/1 (&quot;TLS&quot;, 769, 0, false)' - PASSED
ssl_gtest.sh: #15606: 'DamageYStream/TlsDamageDHYTest: DamageClientY/2 (&quot;TLS&quot;, 769, 1, true)' - PASSED
ssl_gtest.sh: #15607: 'DamageYStream/TlsDamageDHYTest: DamageClientY/3 (&quot;TLS&quot;, 769, 1, false)' - PASSED
ssl_gtest.sh: #15608: 'DamageYStream/TlsDamageDHYTest: DamageClientY/4 (&quot;TLS&quot;, 769, 2, true)' - PASSED
ssl_gtest.sh: #15609: 'DamageYStream/TlsDamageDHYTest: DamageClientY/5 (&quot;TLS&quot;, 769, 2, false)' - PASSED
ssl_gtest.sh: #15610: 'DamageYStream/TlsDamageDHYTest: DamageClientY/6 (&quot;TLS&quot;, 769, 3, true)' - PASSED
ssl_gtest.sh: #15611: 'DamageYStream/TlsDamageDHYTest: DamageClientY/7 (&quot;TLS&quot;, 769, 3, false)' - PASSED
ssl_gtest.sh: #15612: 'DamageYStream/TlsDamageDHYTest: DamageClientY/8 (&quot;TLS&quot;, 769, 4, true)' - PASSED
ssl_gtest.sh: #15613: 'DamageYStream/TlsDamageDHYTest: DamageClientY/9 (&quot;TLS&quot;, 769, 4, false)' - PASSED
ssl_gtest.sh: #15614: 'DamageYStream/TlsDamageDHYTest: DamageClientY/10 (&quot;TLS&quot;, 769, 5, true)' - PASSED
ssl_gtest.sh: #15615: 'DamageYStream/TlsDamageDHYTest: DamageClientY/11 (&quot;TLS&quot;, 769, 5, false)' - PASSED
ssl_gtest.sh: #15616: 'DamageYStream/TlsDamageDHYTest: DamageClientY/12 (&quot;TLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #15617: 'DamageYStream/TlsDamageDHYTest: DamageClientY/13 (&quot;TLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #15618: 'DamageYStream/TlsDamageDHYTest: DamageClientY/14 (&quot;TLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #15619: 'DamageYStream/TlsDamageDHYTest: DamageClientY/15 (&quot;TLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #15620: 'DamageYStream/TlsDamageDHYTest: DamageClientY/16 (&quot;TLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #15621: 'DamageYStream/TlsDamageDHYTest: DamageClientY/17 (&quot;TLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #15622: 'DamageYStream/TlsDamageDHYTest: DamageClientY/18 (&quot;TLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #15623: 'DamageYStream/TlsDamageDHYTest: DamageClientY/19 (&quot;TLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #15624: 'DamageYStream/TlsDamageDHYTest: DamageClientY/20 (&quot;TLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #15625: 'DamageYStream/TlsDamageDHYTest: DamageClientY/21 (&quot;TLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #15626: 'DamageYStream/TlsDamageDHYTest: DamageClientY/22 (&quot;TLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #15627: 'DamageYStream/TlsDamageDHYTest: DamageClientY/23 (&quot;TLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #15628: 'DamageYStream/TlsDamageDHYTest: DamageClientY/24 (&quot;TLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #15629: 'DamageYStream/TlsDamageDHYTest: DamageClientY/25 (&quot;TLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #15630: 'DamageYStream/TlsDamageDHYTest: DamageClientY/26 (&quot;TLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #15631: 'DamageYStream/TlsDamageDHYTest: DamageClientY/27 (&quot;TLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #15632: 'DamageYStream/TlsDamageDHYTest: DamageClientY/28 (&quot;TLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #15633: 'DamageYStream/TlsDamageDHYTest: DamageClientY/29 (&quot;TLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #15634: 'DamageYStream/TlsDamageDHYTest: DamageClientY/30 (&quot;TLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #15635: 'DamageYStream/TlsDamageDHYTest: DamageClientY/31 (&quot;TLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #15636: 'DamageYStream/TlsDamageDHYTest: DamageClientY/32 (&quot;TLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #15637: 'DamageYStream/TlsDamageDHYTest: DamageClientY/33 (&quot;TLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #15638: 'DamageYStream/TlsDamageDHYTest: DamageClientY/34 (&quot;TLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #15639: 'DamageYStream/TlsDamageDHYTest: DamageClientY/35 (&quot;TLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #15640: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/0 (&quot;DTLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #15641: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/1 (&quot;DTLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #15642: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/2 (&quot;DTLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #15643: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/3 (&quot;DTLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #15644: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/4 (&quot;DTLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #15645: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/5 (&quot;DTLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #15646: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/6 (&quot;DTLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #15647: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/7 (&quot;DTLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #15648: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/8 (&quot;DTLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #15649: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/9 (&quot;DTLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #15650: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/10 (&quot;DTLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #15651: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/11 (&quot;DTLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #15652: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/12 (&quot;DTLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #15653: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/13 (&quot;DTLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #15654: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/14 (&quot;DTLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #15655: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/15 (&quot;DTLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #15656: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/16 (&quot;DTLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #15657: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/17 (&quot;DTLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #15658: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/18 (&quot;DTLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #15659: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/19 (&quot;DTLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #15660: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/20 (&quot;DTLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #15661: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/21 (&quot;DTLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #15662: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/22 (&quot;DTLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #15663: 'DamageYDatagram/TlsDamageDHYTest: DamageServerY/23 (&quot;DTLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #15664: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/0 (&quot;DTLS&quot;, 770, 0, true)' - PASSED
ssl_gtest.sh: #15665: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/1 (&quot;DTLS&quot;, 770, 0, false)' - PASSED
ssl_gtest.sh: #15666: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/2 (&quot;DTLS&quot;, 770, 1, true)' - PASSED
ssl_gtest.sh: #15667: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/3 (&quot;DTLS&quot;, 770, 1, false)' - PASSED
ssl_gtest.sh: #15668: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/4 (&quot;DTLS&quot;, 770, 2, true)' - PASSED
ssl_gtest.sh: #15669: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/5 (&quot;DTLS&quot;, 770, 2, false)' - PASSED
ssl_gtest.sh: #15670: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/6 (&quot;DTLS&quot;, 770, 3, true)' - PASSED
ssl_gtest.sh: #15671: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/7 (&quot;DTLS&quot;, 770, 3, false)' - PASSED
ssl_gtest.sh: #15672: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/8 (&quot;DTLS&quot;, 770, 4, true)' - PASSED
ssl_gtest.sh: #15673: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/9 (&quot;DTLS&quot;, 770, 4, false)' - PASSED
ssl_gtest.sh: #15674: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/10 (&quot;DTLS&quot;, 770, 5, true)' - PASSED
ssl_gtest.sh: #15675: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/11 (&quot;DTLS&quot;, 770, 5, false)' - PASSED
ssl_gtest.sh: #15676: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/12 (&quot;DTLS&quot;, 771, 0, true)' - PASSED
ssl_gtest.sh: #15677: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/13 (&quot;DTLS&quot;, 771, 0, false)' - PASSED
ssl_gtest.sh: #15678: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/14 (&quot;DTLS&quot;, 771, 1, true)' - PASSED
ssl_gtest.sh: #15679: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/15 (&quot;DTLS&quot;, 771, 1, false)' - PASSED
ssl_gtest.sh: #15680: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/16 (&quot;DTLS&quot;, 771, 2, true)' - PASSED
ssl_gtest.sh: #15681: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/17 (&quot;DTLS&quot;, 771, 2, false)' - PASSED
ssl_gtest.sh: #15682: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/18 (&quot;DTLS&quot;, 771, 3, true)' - PASSED
ssl_gtest.sh: #15683: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/19 (&quot;DTLS&quot;, 771, 3, false)' - PASSED
ssl_gtest.sh: #15684: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/20 (&quot;DTLS&quot;, 771, 4, true)' - PASSED
ssl_gtest.sh: #15685: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/21 (&quot;DTLS&quot;, 771, 4, false)' - PASSED
ssl_gtest.sh: #15686: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/22 (&quot;DTLS&quot;, 771, 5, true)' - PASSED
ssl_gtest.sh: #15687: 'DamageYDatagram/TlsDamageDHYTest: DamageClientY/23 (&quot;DTLS&quot;, 771, 5, false)' - PASSED
ssl_gtest.sh: #15688: 'Datagram12Plus/TlsConnectDatagram12Plus: MissAWindow/0 771' - PASSED
ssl_gtest.sh: #15689: 'Datagram12Plus/TlsConnectDatagram12Plus: MissAWindowAndOne/0 771' - PASSED
ssl_gtest.sh: #15690: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15691: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15692: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15693: 'KeyExchangeTest/TlsKeyExchangeTest: P384Priority/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15694: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15695: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15696: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15697: 'KeyExchangeTest/TlsKeyExchangeTest: DuplicateGroupConfig/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15698: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15699: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15700: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15701: 'KeyExchangeTest/TlsKeyExchangeTest: P384PriorityDHEnabled/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15702: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/0 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15703: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/1 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15704: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/2 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15705: 'KeyExchangeTest/TlsKeyExchangeTest: Curve25519/3 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15706: 'TlsPadding/TlsPaddingTest: Correct/0 (1, true)' - PASSED
ssl_gtest.sh: #15707: 'TlsPadding/TlsPaddingTest: Correct/1 (1, false)' - PASSED
ssl_gtest.sh: #15708: 'TlsPadding/TlsPaddingTest: Correct/2 (19, true)' - PASSED
ssl_gtest.sh: #15709: 'TlsPadding/TlsPaddingTest: Correct/3 (19, false)' - PASSED
ssl_gtest.sh: #15710: 'TlsPadding/TlsPaddingTest: Correct/4 (20, true)' - PASSED
ssl_gtest.sh: #15711: 'TlsPadding/TlsPaddingTest: Correct/5 (20, false)' - PASSED
ssl_gtest.sh: #15712: 'TlsPadding/TlsPaddingTest: Correct/6 (30, true)' - PASSED
ssl_gtest.sh: #15713: 'TlsPadding/TlsPaddingTest: Correct/7 (30, false)' - PASSED
ssl_gtest.sh: #15714: 'TlsPadding/TlsPaddingTest: Correct/8 (31, true)' - PASSED
ssl_gtest.sh: #15715: 'TlsPadding/TlsPaddingTest: Correct/9 (31, false)' - PASSED
ssl_gtest.sh: #15716: 'TlsPadding/TlsPaddingTest: Correct/10 (32, true)' - PASSED
ssl_gtest.sh: #15717: 'TlsPadding/TlsPaddingTest: Correct/11 (32, false)' - PASSED
ssl_gtest.sh: #15718: 'TlsPadding/TlsPaddingTest: Correct/12 (36, true)' - PASSED
ssl_gtest.sh: #15719: 'TlsPadding/TlsPaddingTest: Correct/13 (36, false)' - PASSED
ssl_gtest.sh: #15720: 'TlsPadding/TlsPaddingTest: Correct/14 (256, true)' - PASSED
ssl_gtest.sh: #15721: 'TlsPadding/TlsPaddingTest: Correct/15 (256, false)' - PASSED
ssl_gtest.sh: #15722: 'TlsPadding/TlsPaddingTest: Correct/16 (257, true)' - PASSED
ssl_gtest.sh: #15723: 'TlsPadding/TlsPaddingTest: Correct/17 (257, false)' - PASSED
ssl_gtest.sh: #15724: 'TlsPadding/TlsPaddingTest: Correct/18 (287, true)' - PASSED
ssl_gtest.sh: #15725: 'TlsPadding/TlsPaddingTest: Correct/19 (287, false)' - PASSED
ssl_gtest.sh: #15726: 'TlsPadding/TlsPaddingTest: Correct/20 (288, true)' - PASSED
ssl_gtest.sh: #15727: 'TlsPadding/TlsPaddingTest: Correct/21 (288, false)' - PASSED
ssl_gtest.sh: #15728: 'TlsPadding/TlsPaddingTest: PadTooLong/0 (1, true)' - PASSED
ssl_gtest.sh: #15729: 'TlsPadding/TlsPaddingTest: PadTooLong/1 (1, false)' - PASSED
ssl_gtest.sh: #15730: 'TlsPadding/TlsPaddingTest: PadTooLong/2 (19, true)' - PASSED
ssl_gtest.sh: #15731: 'TlsPadding/TlsPaddingTest: PadTooLong/3 (19, false)' - PASSED
ssl_gtest.sh: #15732: 'TlsPadding/TlsPaddingTest: PadTooLong/4 (20, true)' - PASSED
ssl_gtest.sh: #15733: 'TlsPadding/TlsPaddingTest: PadTooLong/5 (20, false)' - PASSED
ssl_gtest.sh: #15734: 'TlsPadding/TlsPaddingTest: PadTooLong/6 (30, true)' - PASSED
ssl_gtest.sh: #15735: 'TlsPadding/TlsPaddingTest: PadTooLong/7 (30, false)' - PASSED
ssl_gtest.sh: #15736: 'TlsPadding/TlsPaddingTest: PadTooLong/8 (31, true)' - PASSED
ssl_gtest.sh: #15737: 'TlsPadding/TlsPaddingTest: PadTooLong/9 (31, false)' - PASSED
ssl_gtest.sh: #15738: 'TlsPadding/TlsPaddingTest: PadTooLong/10 (32, true)' - PASSED
ssl_gtest.sh: #15739: 'TlsPadding/TlsPaddingTest: PadTooLong/11 (32, false)' - PASSED
ssl_gtest.sh: #15740: 'TlsPadding/TlsPaddingTest: PadTooLong/12 (36, true)' - PASSED
ssl_gtest.sh: #15741: 'TlsPadding/TlsPaddingTest: PadTooLong/13 (36, false)' - PASSED
ssl_gtest.sh: #15742: 'TlsPadding/TlsPaddingTest: PadTooLong/14 (256, true)' - PASSED
ssl_gtest.sh: #15743: 'TlsPadding/TlsPaddingTest: PadTooLong/15 (256, false)' - PASSED
ssl_gtest.sh: #15744: 'TlsPadding/TlsPaddingTest: PadTooLong/16 (257, true)' - PASSED
ssl_gtest.sh: #15745: 'TlsPadding/TlsPaddingTest: PadTooLong/17 (257, false)' - PASSED
ssl_gtest.sh: #15746: 'TlsPadding/TlsPaddingTest: PadTooLong/18 (287, true)' - PASSED
ssl_gtest.sh: #15747: 'TlsPadding/TlsPaddingTest: PadTooLong/19 (287, false)' - PASSED
ssl_gtest.sh: #15748: 'TlsPadding/TlsPaddingTest: PadTooLong/20 (288, true)' - PASSED
ssl_gtest.sh: #15749: 'TlsPadding/TlsPaddingTest: PadTooLong/21 (288, false)' - PASSED
ssl_gtest.sh: #15750: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/0 (1, true)' - PASSED
ssl_gtest.sh: #15751: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/1 (1, false)' - PASSED
ssl_gtest.sh: #15752: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/2 (19, true)' - PASSED
ssl_gtest.sh: #15753: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/3 (19, false)' - PASSED
ssl_gtest.sh: #15754: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/4 (20, true)' - PASSED
ssl_gtest.sh: #15755: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/5 (20, false)' - PASSED
ssl_gtest.sh: #15756: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/6 (30, true)' - PASSED
ssl_gtest.sh: #15757: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/7 (30, false)' - PASSED
ssl_gtest.sh: #15758: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/8 (31, true)' - PASSED
ssl_gtest.sh: #15759: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/9 (31, false)' - PASSED
ssl_gtest.sh: #15760: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/10 (32, true)' - PASSED
ssl_gtest.sh: #15761: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/11 (32, false)' - PASSED
ssl_gtest.sh: #15762: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/12 (36, true)' - PASSED
ssl_gtest.sh: #15763: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/13 (36, false)' - PASSED
ssl_gtest.sh: #15764: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/14 (256, true)' - PASSED
ssl_gtest.sh: #15765: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/15 (256, false)' - PASSED
ssl_gtest.sh: #15766: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/16 (257, true)' - PASSED
ssl_gtest.sh: #15767: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/17 (257, false)' - PASSED
ssl_gtest.sh: #15768: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/18 (287, true)' - PASSED
ssl_gtest.sh: #15769: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/19 (287, false)' - PASSED
ssl_gtest.sh: #15770: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/20 (288, true)' - PASSED
ssl_gtest.sh: #15771: 'TlsPadding/TlsPaddingTest: FirstByteOfPadWrong/21 (288, false)' - PASSED
ssl_gtest.sh: #15772: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/0 (1, true)' - PASSED
ssl_gtest.sh: #15773: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/1 (1, false)' - PASSED
ssl_gtest.sh: #15774: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/2 (19, true)' - PASSED
ssl_gtest.sh: #15775: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/3 (19, false)' - PASSED
ssl_gtest.sh: #15776: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/4 (20, true)' - PASSED
ssl_gtest.sh: #15777: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/5 (20, false)' - PASSED
ssl_gtest.sh: #15778: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/6 (30, true)' - PASSED
ssl_gtest.sh: #15779: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/7 (30, false)' - PASSED
ssl_gtest.sh: #15780: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/8 (31, true)' - PASSED
ssl_gtest.sh: #15781: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/9 (31, false)' - PASSED
ssl_gtest.sh: #15782: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/10 (32, true)' - PASSED
ssl_gtest.sh: #15783: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/11 (32, false)' - PASSED
ssl_gtest.sh: #15784: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/12 (36, true)' - PASSED
ssl_gtest.sh: #15785: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/13 (36, false)' - PASSED
ssl_gtest.sh: #15786: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/14 (256, true)' - PASSED
ssl_gtest.sh: #15787: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/15 (256, false)' - PASSED
ssl_gtest.sh: #15788: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/16 (257, true)' - PASSED
ssl_gtest.sh: #15789: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/17 (257, false)' - PASSED
ssl_gtest.sh: #15790: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/18 (287, true)' - PASSED
ssl_gtest.sh: #15791: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/19 (287, false)' - PASSED
ssl_gtest.sh: #15792: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/20 (288, true)' - PASSED
ssl_gtest.sh: #15793: 'TlsPadding/TlsPaddingTest: LastByteOfPadWrong/21 (288, false)' - PASSED
ssl_gtest.sh: #15794: 'SkipTls10/TlsSkipTest: SkipCertificateRsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #15795: 'SkipTls10/TlsSkipTest: SkipCertificateDhe/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #15796: 'SkipTls10/TlsSkipTest: SkipCertificateEcdhe/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #15797: 'SkipTls10/TlsSkipTest: SkipCertificateEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #15798: 'SkipTls10/TlsSkipTest: SkipServerKeyExchange/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #15799: 'SkipTls10/TlsSkipTest: SkipServerKeyExchangeEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #15800: 'SkipTls10/TlsSkipTest: SkipCertAndKeyExch/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #15801: 'SkipTls10/TlsSkipTest: SkipCertAndKeyExchEcdsa/0 (&quot;TLS&quot;, 769)' - PASSED
ssl_gtest.sh: #15802: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15803: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15804: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15805: 'SkipVariants/TlsSkipTest: SkipCertificateRsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15806: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15807: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15808: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15809: 'SkipVariants/TlsSkipTest: SkipCertificateDhe/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15810: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15811: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15812: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15813: 'SkipVariants/TlsSkipTest: SkipCertificateEcdhe/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15814: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15815: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15816: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15817: 'SkipVariants/TlsSkipTest: SkipCertificateEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15818: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15819: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15820: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15821: 'SkipVariants/TlsSkipTest: SkipServerKeyExchange/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15822: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15823: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15824: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15825: 'SkipVariants/TlsSkipTest: SkipServerKeyExchangeEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15826: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15827: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15828: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15829: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExch/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15830: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/0 (&quot;TLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15831: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/1 (&quot;TLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15832: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/2 (&quot;DTLS&quot;, 770)' - PASSED
ssl_gtest.sh: #15833: 'SkipVariants/TlsSkipTest: SkipCertAndKeyExchEcdsa/3 (&quot;DTLS&quot;, 771)' - PASSED
ssl_gtest.sh: #15834: 'AllHashFuncs/TlsHkdfTest: HkdfNullNull/0 4' - PASSED
ssl_gtest.sh: #15835: 'AllHashFuncs/TlsHkdfTest: HkdfNullNull/1 5' - PASSED
ssl_gtest.sh: #15836: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Only/0 4' - PASSED
ssl_gtest.sh: #15837: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Only/1 5' - PASSED
ssl_gtest.sh: #15838: 'AllHashFuncs/TlsHkdfTest: HkdfKey2Only/0 4' - PASSED
ssl_gtest.sh: #15839: 'AllHashFuncs/TlsHkdfTest: HkdfKey2Only/1 5' - PASSED
ssl_gtest.sh: #15840: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Key2/0 4' - PASSED
ssl_gtest.sh: #15841: 'AllHashFuncs/TlsHkdfTest: HkdfKey1Key2/1 5' - PASSED
ssl_gtest.sh: #15842: 'AllHashFuncs/TlsHkdfTest: HkdfExpandLabel/0 4' - PASSED
ssl_gtest.sh: #15843: 'AllHashFuncs/TlsHkdfTest: HkdfExpandLabel/1 5' - PASSED
TIMESTAMP ssl_gtests END: Sat Oct 21 18:45:13 UTC 2017
SUMMARY:
========
NSS variables:
--------------
HOST=localhost
DOMSUF=localdomain
BUILD_OPT=1
USE_X32=
USE_64=
NSS_CYCLES=""
NSS_TESTS="libpkix cert dbtests tools fips sdr crmf smime ssl ocsp merge pkits chains ec gtests ssl_gtests"
NSS_SSL_TESTS="crl fips_normal normal_fips iopr policy"
NSS_SSL_RUN="cov auth stapling stress"
NSS_AIA_PATH=
NSS_AIA_HTTP=
NSS_AIA_OCSP=
IOPR_HOSTADDR_LIST=
PKITS_DATA=
Tests summary:
--------------
Passed:             15843
Failed:             0
Failed with core:   0
ASan failures:      0
Unknown status:     0
~/build/BUILD/nss-3.28.4
+ popd
+ killall selfserv_9183
selfserv_9183: no process found
+ :
++ grep -c FAILED ./tests_results/security/localhost.1/output.log
+ TEST_FAILURES=0
+ GREP_EXIT_STATUS=1
+ '[' 1 -eq 1 ']'
okay: test suite detected no failures
test suite completed
Processing files: nss-3.28.4-15.el7.armv7hl
+ echo 'okay: test suite detected no failures'
+ echo 'test suite completed'
+ exit 0
Provides: config(nss) = 3.28.4-15.el7 libnss3.so libnss3.so(NSS_3.10) libnss3.so(NSS_3.10.2) libnss3.so(NSS_3.11) libnss3.so(NSS_3.11.1) libnss3.so(NSS_3.11.2) libnss3.so(NSS_3.11.7) libnss3.so(NSS_3.11.9) libnss3.so(NSS_3.12) libnss3.so(NSS_3.12.1) libnss3.so(NSS_3.12.10) libnss3.so(NSS_3.12.3) libnss3.so(NSS_3.12.4) libnss3.so(NSS_3.12.5) libnss3.so(NSS_3.12.6) libnss3.so(NSS_3.12.7) libnss3.so(NSS_3.12.9) libnss3.so(NSS_3.13) libnss3.so(NSS_3.13.2) libnss3.so(NSS_3.14) libnss3.so(NSS_3.14.1) libnss3.so(NSS_3.14.3) libnss3.so(NSS_3.15) libnss3.so(NSS_3.15.4) libnss3.so(NSS_3.16.1) libnss3.so(NSS_3.16.2) libnss3.so(NSS_3.18) libnss3.so(NSS_3.19) libnss3.so(NSS_3.19.1) libnss3.so(NSS_3.2) libnss3.so(NSS_3.2.1) libnss3.so(NSS_3.21) libnss3.so(NSS_3.22) libnss3.so(NSS_3.3) libnss3.so(NSS_3.3.1) libnss3.so(NSS_3.30) libnss3.so(NSS_3.4) libnss3.so(NSS_3.5) libnss3.so(NSS_3.6) libnss3.so(NSS_3.7) libnss3.so(NSS_3.7.1) libnss3.so(NSS_3.8) libnss3.so(NSS_3.9) libnss3.so(NSS_3.9.2) libnss3.so(NSS_3.9.3) libnssckbi.so libnssckbi.so(NSS_3.1) libsmime3.so libsmime3.so(NSS_3.10) libsmime3.so(NSS_3.12.10) libsmime3.so(NSS_3.12.2) libsmime3.so(NSS_3.13) libsmime3.so(NSS_3.15) libsmime3.so(NSS_3.16) libsmime3.so(NSS_3.18) libsmime3.so(NSS_3.2) libsmime3.so(NSS_3.2.1) libsmime3.so(NSS_3.3) libsmime3.so(NSS_3.4) libsmime3.so(NSS_3.4.1) libsmime3.so(NSS_3.6) libsmime3.so(NSS_3.7) libsmime3.so(NSS_3.7.2) libsmime3.so(NSS_3.8) libsmime3.so(NSS_3.9) libsmime3.so(NSS_3.9.3) libssl3.so libssl3.so(NSS_3.11.4) libssl3.so(NSS_3.11.8) libssl3.so(NSS_3.12.10) libssl3.so(NSS_3.12.6) libssl3.so(NSS_3.13) libssl3.so(NSS_3.13.2) libssl3.so(NSS_3.14) libssl3.so(NSS_3.15) libssl3.so(NSS_3.15.4) libssl3.so(NSS_3.2) libssl3.so(NSS_3.2.1) libssl3.so(NSS_3.20) libssl3.so(NSS_3.21) libssl3.so(NSS_3.22) libssl3.so(NSS_3.23) libssl3.so(NSS_3.24) libssl3.so(NSS_3.27) libssl3.so(NSS_3.28) libssl3.so(NSS_3.30.0.1) libssl3.so(NSS_3.4) libssl3.so(NSS_3.7.4) nss = 3.28.4-15.el7 nss(armv7hl-32) = 3.28.4-15.el7
Requires(interp): /bin/sh /bin/sh
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires(post): /bin/sh /usr/sbin/update-alternatives
Requires(postun): /bin/sh /usr/sbin/update-alternatives
Requires: ld-linux-armhf.so.3 ld-linux-armhf.so.3(GLIBC_2.4) libc.so.6 libc.so.6(GLIBC_2.4) libdl.so.2 libgcc_s.so.1 libgcc_s.so.1(GCC_3.5) libnspr4.so libnss3.so libnss3.so(NSS_3.10) libnss3.so(NSS_3.11) libnss3.so(NSS_3.11.1) libnss3.so(NSS_3.11.2) libnss3.so(NSS_3.12) libnss3.so(NSS_3.12.6) libnss3.so(NSS_3.14) libnss3.so(NSS_3.14.3) libnss3.so(NSS_3.15) libnss3.so(NSS_3.19.1) libnss3.so(NSS_3.2) libnss3.so(NSS_3.21) libnss3.so(NSS_3.22) libnss3.so(NSS_3.3) libnss3.so(NSS_3.3.1) libnss3.so(NSS_3.4) libnss3.so(NSS_3.6) libnss3.so(NSS_3.7) libnss3.so(NSS_3.8) libnss3.so(NSS_3.9) libnssutil3.so libnssutil3.so(NSSUTIL_3.12) libnssutil3.so(NSSUTIL_3.12.3) libnssutil3.so(NSSUTIL_3.12.5) libnssutil3.so(NSSUTIL_3.13) libnssutil3.so(NSSUTIL_3.14) libnssutil3.so(NSSUTIL_3.15) libnssutil3.so(NSSUTIL_3.17.1) libnssutil3.so(NSSUTIL_3.21) libnssutil3.so(NSSUTIL_3.24) libplc4.so libplds4.so libpthread.so.0 libpthread.so.0(GLIBC_2.4) libz.so.1 rtld(GNU_HASH)
Processing files: nss-tools-3.28.4-15.el7.armv7hl
Provides: nss-tools = 3.28.4-15.el7 nss-tools(armv7hl-32) = 3.28.4-15.el7
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires: ld-linux-armhf.so.3 ld-linux-armhf.so.3(GLIBC_2.4) libc.so.6 libc.so.6(GLIBC_2.4) libdl.so.2 libgcc_s.so.1 libgcc_s.so.1(GCC_3.5) libnspr4.so libnss3.so libnss3.so(NSS_3.10) libnss3.so(NSS_3.11) libnss3.so(NSS_3.11.7) libnss3.so(NSS_3.12) libnss3.so(NSS_3.12.1) libnss3.so(NSS_3.12.3) libnss3.so(NSS_3.12.6) libnss3.so(NSS_3.12.9) libnss3.so(NSS_3.13) libnss3.so(NSS_3.14) libnss3.so(NSS_3.14.1) libnss3.so(NSS_3.15) libnss3.so(NSS_3.16.1) libnss3.so(NSS_3.16.2) libnss3.so(NSS_3.18) libnss3.so(NSS_3.2) libnss3.so(NSS_3.21) libnss3.so(NSS_3.3) libnss3.so(NSS_3.30) libnss3.so(NSS_3.4) libnss3.so(NSS_3.5) libnss3.so(NSS_3.6) libnss3.so(NSS_3.7) libnss3.so(NSS_3.8) libnss3.so(NSS_3.9) libnss3.so(NSS_3.9.2) libnss3.so(NSS_3.9.3) libnssutil3.so libnssutil3.so(NSSUTIL_3.12) libnssutil3.so(NSSUTIL_3.12.7) libnssutil3.so(NSSUTIL_3.15) libplc4.so libplds4.so libpthread.so.0 libpthread.so.0(GLIBC_2.4) libsmime3.so libsmime3.so(NSS_3.10) libsmime3.so(NSS_3.2) libsmime3.so(NSS_3.3) libsmime3.so(NSS_3.4) libsmime3.so(NSS_3.6) libsmime3.so(NSS_3.9.3) libsoftokn3.so libssl3.so libssl3.so(NSS_3.12.6) libssl3.so(NSS_3.13.2) libssl3.so(NSS_3.14) libssl3.so(NSS_3.15) libssl3.so(NSS_3.15.4) libssl3.so(NSS_3.2) libssl3.so(NSS_3.20) libssl3.so(NSS_3.22) libssl3.so(NSS_3.24) libssl3.so(NSS_3.27) libssl3.so(NSS_3.4) libssl3.so(NSS_3.7.4) libz.so.1 rtld(GNU_HASH)
Processing files: nss-sysinit-3.28.4-15.el7.armv7hl
Provides: libnsssysinit.so nss-sysinit = 3.28.4-15.el7 nss-sysinit(armv7hl-32) = 3.28.4-15.el7 nss-system-init
Requires(interp): /bin/sh
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires(post): coreutils sed
Requires: /bin/sh ld-linux-armhf.so.3 ld-linux-armhf.so.3(GLIBC_2.4) libc.so.6 libc.so.6(GLIBC_2.17) libc.so.6(GLIBC_2.4) libdl.so.2 libgcc_s.so.1 libgcc_s.so.1(GCC_3.5) libnspr4.so libnssutil3.so libnssutil3.so(NSSUTIL_3.12) libnssutil3.so(NSSUTIL_3.14) libplc4.so libplds4.so libpthread.so.0 rtld(GNU_HASH)
Processing files: nss-devel-3.28.4-15.el7.armv7hl
Provides: nss-devel = 3.28.4-15.el7 nss-devel(armv7hl-32) = 3.28.4-15.el7 nss-static = 3.28.4-15.el7 pkgconfig(nss) = 3.28.4
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires: /bin/sh /usr/bin/pkg-config pkgconfig(nspr) >= 4.13.1 pkgconfig(nss-util) >= 3.28.4
Processing files: nss-pkcs11-devel-3.28.4-15.el7.armv7hl
Provides: nss-pkcs11-devel = 3.28.4-15.el7 nss-pkcs11-devel(armv7hl-32) = 3.28.4-15.el7 nss-pkcs11-devel-static = 3.28.4-15.el7
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Processing files: nss-debuginfo-3.28.4-15.el7.armv7hl
Provides: nss-debuginfo = 3.28.4-15.el7 nss-debuginfo(armv7hl-32) = 3.28.4-15.el7
Requires(rpmlib): rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1 rpmlib(CompressedFileNames) <= 3.0.4-1
Checking for unpackaged file(s): /usr/lib/rpm/check-files /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm
Wrote: /builddir/build/RPMS/nss-3.28.4-15.el7.armv7hl.rpm
Wrote: /builddir/build/RPMS/nss-tools-3.28.4-15.el7.armv7hl.rpm
Wrote: /builddir/build/RPMS/nss-sysinit-3.28.4-15.el7.armv7hl.rpm
Wrote: /builddir/build/RPMS/nss-devel-3.28.4-15.el7.armv7hl.rpm
Wrote: /builddir/build/RPMS/nss-pkcs11-devel-3.28.4-15.el7.armv7hl.rpm
Wrote: /builddir/build/RPMS/nss-debuginfo-3.28.4-15.el7.armv7hl.rpm
Executing(%clean): /bin/sh -e /var/tmp/rpm-tmp.eLXZaA
+ umask 022
+ cd /builddir/build/BUILD
+ cd nss-3.28.4
+ /usr/bin/rm -rf /builddir/build/BUILDROOT/nss-3.28.4-15.el7.arm
+ exit 0
Child return code was: 0